Identity management is a key initiative for 2004 and 2005, according to IT executives participating in Nemertes Research’s upcoming “Securing the Enterprise” research benchmark. Digital “identity” refers to the traits, attributes and preferences upon which one may receive personalized services. Identity traits could include government-issued IDs, corporate user accounts and biometric information. Two user “attributes” which may be associated with identity are presence and location.

Identity, presence and location are three characteristics that lie at the core of some of the most critical emerging technologies in the market today: real-time communications (including VoIP, instant messaging and mobile communications), collaboration and identity-based security.

“Presence” is a particularly hot issue, with upwards of 70% of participants in the upcoming benchmark saying they anticipate presence technologies to become pervasive in their organizations within the next 12 months. Presence - most often associated with real-time communications systems such as IM - describes the state of a user’s interaction with a system: which computer they are accessing, whether they are idle or working, and perhaps also which task they are currently performing (reading a document, composing e-mail etc.).

“Location” refers to the user’s physical location - typically, it includes latitude, longitude and (sometimes) altitude. Location is most often associated with GPS-enabled mobile devices.

Though presence and location are not often discussed in an information security context, they can contribute to the security of the enterprise in quite surprising ways.

Authentication and authorization mechanisms generally focus on determining the “who” aspect of identity. But knowing “where” (location) and “what” (presence) can assist in user authentication/authorization through:

* Consistency checking. If a user is attempting to access a company’s network from an IP address in China, while the user’s GPS device locates them in San Jose, the system can raise a red flag and refuse access.

* Selective access. If a user is connecting from a location that is not included in a pre-determined set of locations (home, office, branch) then the authorization system may request additional authentication mechanisms such as two-factor authentication.

Whitepapers

• The Trend from UNIX to Linux in SAP(r) Data Centers
• Secure Wireless Printing Options
• Improve Virtual Storage TCO by Comparing Vendors
• Making IT Invisible
• Best Practices for VMware ESX Server
• Virtualizing Storage for VMware Success

View more DATA CENTER whitepapers

Webcasts

• Branch Office Trends and Best Practices
• Data Protection and Application Availability for Your VMware Environment with Veritas NetBackup and Cluster Server for VMware ESX
• Making NetBackup Highly Available with Storage Foundation HA
• Best Practices for Deploying WAN Optimization for Disaster Recovery
• Tips and Techniques for Remote Data Backup and Delivery
• WAN Optimization Landscape

View more DATA CENTER webcasts

Special Reports

• Executive Guide: Storage Heats Up
• Symantec State of the Data Center Report
• Data Centers: At the center of the action
• Executive Guide: Virtualization Reality Check
• Executive Guide: Data Center Decisions
• Get More From Your WAN

View more DATA CENTER special reports