The move to a segmented infrastructure is not a revolutionary effort, its an evolutionary one. The slow, steady migration to segmentation is the only realistic path to success. Networking teams should take advantage of the migration to the cloud or other virtual infrastructure to move to a segmented model in a methodological way; new applications…
Since writing The Identity Catechism a few months back, I’ve had a number of requests for advice or suggestions on how to measure the maturity of an enterprise identity program. In an effort to help, I’ve put together the Identity Maturity Calculator as sort of a guide to provide some insight as to where you may…
In 1998, the US passed The Digital Millennium Copyright Act (DMCA) in an effort to enact several of the requirements of World Intellectual Property Organization (WIPO). DMCA makes it a crime to publicize technologies which are developed to bypass measures that control access to copyrighted works. DMCA also makes it a criminal act to subvert…
The evolution is underway. Our infrastructures are borderless, our critical data is cloud based, and our users work from anyplace on the globe – or 36,000 feet above it. Our legacy controls are as outdated as the conceptual hardened perimeter and our users are still human; and will still succumb to the (not so) well…
Identity Attack Vectors, by Haber and Rolls
Honored to have had the privilege to write the forward to the third book of Morey Haber‘s trilogy of enterprise attack vectors. This installment, written with Darran Rolls, discusses the details of identity-based attacks and how to protect against them. I’ve written frequently about the necessity of adequately managing the digital identities of our enterprise…
Read More