Site Sponsor:

mcafee_logo.gif
line

Now Available:

Featured Resource:

line

Realtime Communities

line

Newsletter

Email Address:


line

Monthly Archives

line

RSS

line

Ask the Expert

Have a question for our resident expert? Email your questions to Dan or post a comment to the blog.

« Generation Gap in IT Security | Main | Poor Data Management Threatens Credibility »

OpenID: Pros and Cons

A new article is available in the Web Security Digital Library on the Web single-sign on standard, OpenID. There are definite advantages and disadvantages of OpenID and this article discusses them. Here's an excerpt:

OpenID is a single sign-on system for Web applications. The standard is not controlled by any one vendor and services are free to end users. Web developers are relieved of building authentication systems from scratch and can take advantage of standards adopted by the likes of Google, IBM, Microsoft, AOL, and Verisign.If that were all that were to be said about OpenID then the standard would likely be a raging success; but there is more to the story. Concerns security vulnerabilities, phishing scams, and consolidated authentication information raises legitimate concerns. This article will examine three aspects of OpenID:
  • Implementation and organizational issues related to single sign-on
  • The advantages of the OpenID standards
  • The disadvantages and potential drawbacks of the standard

You'll also find article son how to allocate your security budget, database security tools, data loss prevention and end user security.

Tags:        
 Email This!  Digg it!  Sphere it!  Del.icio.us  Reddit!  Newsvine

Posted by Dan Sullivan on March 21, 2008 6:46 AM |

TrackBack

TrackBack URL for this entry:
http://www.realtime-websecurity.com/type/mt-tb.cgi/675

Post a comment

(All comments are approved by site leader before appearing here. Thanks for commenting!)

Search

line

Most Active Posts

line

Library Resources

line
line

Recent Posts

line

Categories

line

Latest White Papers

line

Blog Roll

line

Dan Sullivan's Bio:

Dan Sullivan is a systems architect with 20 years of IT experience that includes engagements in enterprise security, application design, and systems architecture. His experience includes a broad range of industries, including financial services, manufacturing, government, retail, gas and oil production, power generation, and education. Dan’s security-related project work has ranged from requirements analysis for enterprise information security to designing and implementing security for database applications and enterprise portals. Dan has written about information security and other enterprise information management topics for Business Security Advisor, DM Review, Intelligent Enterprise, and E-Business Advisor. You can contact Dan at: dan_sullivan@realtimepublishers.net