Why Federated Identity is easier said than done
Stephen Wilson of The Lockstep Group in Sydney, Australia, is scheduled to present an interesting paper, Why Federated Identity is easier said than done, at the AusCERT2011 conference in May. Based on the abstract, the complete paper should be really interesting.
Stephen states that despite,
“near universal acceptance of the idea of Federated Identity … higher risk services like banking, e-health and e-government have steadfastly resisted federation, maintaining their own identifiers and sovereign registration processes.â€
He further asserts that lingering resistance to full adoption results from the fact that,
“Federated Identity is in fact a radical and deeply problematic departure from the way we do business. … Thus the derided identity “silos†are a natural and inevitable consequence of how business rules are matched to particular contexts.â€
Stephen’s final comment:
“If we focused on conserving context and replicating existing real world identities in non-replayable forms, most routine transactions could take place safely online, without the incalculable cost of re-engineering proven business arrangements.â€
If Identity Federation really doesn’t match the way we do business, it will be interesting to see how Stephen expands on and clarifies that final statement in the full paper.
Mark, thanks for the great post. You bring up two valid and important topics:
a) federating identities in data silos
and
b) conserving context
We have found that many of customers have struggled with just those problems. Because of that, we have invited Eve M. from Forrester to co-host a webinar on the subject. We think this will be very valuable for our customers struggling with federated identity and hope that you find some value in it is well.
https://www1.gotomeeting.com/register/725401761
Take care,
David Sason
Radiant Logic, Inc.