xmlgrrl.com
New: Report contemplating OAuth and “Zero Trust identity” | Pushing String
http://www.xmlgrrl.com/blog/2011/07/15/new-report-contemplating-oauth-and-zero-trust-identity
New: Report contemplating OAuth and “Zero Trust identity”. Is it possible for an enterprise to turn itself inside-out? Apparently so. I’ve got a new post. Up on the Forrester blogs that discusses the “Zero Trust” aspect of enterprise security that a number of companies are addressing with various clever uses of OAuth. A new identity relationship. New: Modern authorization systems and XACML. Consensual impersonation is delegation done very wrong. New post: Make A Resolution: Kill Your P@55W0rD Policies.
xmlgrrl.com
Pushing String | Developing SGML DTDs
http://www.xmlgrrl.com/blog/publications/developing-sgml-dtds
I cowrote a book called. Developing SGML DTDs: From Text to Model to Markup. If you’re interested to read. You have two choices: find a printed copy somewhere. Or read it online. We made the online version available, with the help of the very talented Norm Walsh. On February 10th, 2008: the tenth anniversary of the publication of the XML V1.0 Recommendation. XML V1.0 has seen several subsequent editions. The only by-hand part was index terms. Most files had one or two places where the indexer wrote:.
xmlgrrl.com
New: Musings on SCIM after IIW | Pushing String
http://www.xmlgrrl.com/blog/2011/10/24/new-musings-on-scim-after-iiw
New: Musings on SCIM after IIW. Over on the Forrester blogs, I talk about. The latest progress on Simple Cloud Identity Management (SCIM), as seen and discussed at IIW. I’ll be at Forrester Security Forum. November 9-10, in lovely Miami — you going? A new identity relationship. New: Modern authorization systems and XACML. Consensual impersonation is delegation done very wrong. New post: Make A Resolution: Kill Your P@55W0rD Policies. New post: Venn of access control for the API economy.
xmlgrrl.com
Consensual impersonation is delegation done very wrong | Pushing String
http://www.xmlgrrl.com/blog/2013/04/02/consensual-impersonation-is-delegation-done-very-wrong
Consensual impersonation is delegation done very wrong. I’ve got a new post up on the Forrester blogs. About “consensual impersonation”, which is what happens when you give your password to someone else so they can do something from your account. As Paul Madsen points out. 2 Comments to “Consensual impersonation is delegation done very wrong”. 2 April 2013 at 6:36 pm #. Suffice to say it is not easy to do access delegation the “right way” :(. 10 April 2013 at 5:45 am #. As well, if the resource server it...
xmlgrrl.com
A new identity relationship | Pushing String
http://www.xmlgrrl.com/blog/2014/07/19/a-new-identity-relationship
A new identity relationship. I’ve been writing on this blog about identity and relationships for a long time (some samples. 8230;). Now I’ve forged (see what I did there? A new relationship, and have joined. ForgeRock’s Office of the CTO. Check out my first post. On the ForgeRock blog. I’m really psyched about this company and my new opportunities to make cool Identity Relationship Management progress there. And I’ve found a lot of fellow rock ‘n’ rollers. New: Modern authorization systems and XACML.
xmlgrrl.com
New: Modern authorization systems and XACML | Pushing String
http://www.xmlgrrl.com/blog/2013/05/13/new-modern-authorization-systems-and-xacml
New: Modern authorization systems and XACML. Over on the Forrester blogs, I take a look. At XACML, advocating that it needs to refactor heavily to meet mobile/cloud authorization policy needs. UMA. As a potential enterprise “access management 2.0” solution makes an appearance as well. Quoting the post: “Would an XACML.next that concentrates on ‘growing the pie’ for declarative authorization policy be valuable? Would an integration of web and post-web access management help you achieve your goals?
xmlgrrl.com
Pushing String | Tangled musings on identity, privacy, trust, and suchlike
http://www.xmlgrrl.com/blog/page/2
How UMA deals with scopes and authorization. Group has been quite busy of late. Like several other efforts (don’t miss John Bradley’s OpenID ABC. Post or anything Mike Jones. Has been blogging in the last few months), we’ve been gearing up for IIW 12. As a great place to try out our newest work, figure out the combinatorial possibilities with all the other new stuff going on, and get feedback. Newcastle University’s SMART project team. Hmm You can read about my identity assurance coverage here. New: R...
xmlgrrl.com
Pushing String | Author Archives
http://www.xmlgrrl.com/blog/author/site-admin
A new identity relationship. I’ve been writing on this blog about identity and relationships for a long time (some samples. 8230;). Now I’ve forged (see what I did there? A new relationship, and have joined. ForgeRock’s Office of the CTO. Check out my first post. On the ForgeRock blog. I’m really psyched about this company and my new opportunities to make cool Identity Relationship Management progress there. And I’ve found a lot of fellow rock ‘n’ rollers. New: Modern authorization systems and XACML.
xmlgrrl.com
Ripping the X off her varsity sweater… | Pushing String
http://www.xmlgrrl.com/blog/2004/12/26/ripping-the-x-off-her-varsity-sweater
Ripping the X off her varsity sweater…. Who am I and why am I here? I was an old-time SGMLer who specialized in information modeling, and was one of the folks whom Jon Bosak. My current day job is the care and feeding of various identity/web services initiatives on behalf of Sun Microsystems, and I’m involved in the OASIS SAML. Committee and the Liberty Alliance. Among others. ( N.B.:. The opinions expressed here are my own, and neither Sun nor any other party necessarily agrees with them.). Not only enc...
xmlgrrl.com
Pushing String | Category Archive | Venn
http://www.xmlgrrl.com/blog/categories/venn
New post: Venn of access control for the API economy. Up on the Forrester blogs. I present a new Venn diagram that compares OAuth, OpenID Connect, and UMA. A number of people contributed to the final form of this one, which we presented in a Google Tech Talk a couple of weeks back. Thanks to all of the following folks (listed in no particular order) for their feedback! Spread the word, join us, and get all your questions answered…. I’ve got a new post. Which is full of Venn goodness! The recent 37signals...
SOCIAL ENGAGEMENT