- BlackBerry Storm vs. the iPhone
- Digg's Kevin Rose: "We have to do better"
- Blogger warns: "Nortel doesn't make it out alive"
- Financial quagmire bringing out the scammers
- Verizon plays with the wrong e-mail addresses
Newsletters | Podcasts | Chats | Opinions | RSS Feeds | This Week In Print | IT Careers | Community | Reports | Downloads | Slideshows | New Data Center
Partner Sites:Application Performance Solutions | App Performance | Networking Solution | SafeGuard Enterprise Solution Center | SOA | Test your Web Filter | Value of WDS
Dave Kearns provides the information you need to evaluate, install and maintain your corporate identity management system.
Last week's newsletter re-visiting the Identity Bus contrasting virtual data storage with persistent data storage brought forth a number of comments on the Network World Web site, which I’d like to address today.
Neil Macehiter suggests that any change to the query would require that, previously, the new query had been anticipated so that the proper database setup could occur: “e.g. to also store the department information with the purchase order. This could, depending on the business logic, require additional update logic e.g. what happens if an employee changes department.” Well, no. While I didn’t state it expressly, all SQL database data is left in the SQL database, with the power of it’s join engine at our beck and call to select only that data which is needed for our particular problem. In compute-intensive environments it might be necessary to devote a computer to servicing these join requests in tandem with the virtual directory server, but that’s a time-honored (well, 10-15 years, perhaps) method of solving compute problems. The various services could even be linked through a separate backbone, or mesh, network to improve throughput both for those services as well as for all of the clients.
It isn’t a question of what work needs to be done – we mostly agree on that. The question is where should the work be done – redundantly at every client, or as a service available to all.
Daniel Halber also suggests that changing the query shows the need for more intense local computing: “I would propose another query: ‘What purchases of computers were made by employees who are below Director level?’ He suggests that my hierarchical method of looking at employee number won’t work with position identifiers. And, of course, he’s right. But that doesn’t change my response as outlined above – a service based approach, rather than local persistent cache – is the more efficient way to do this.
The method I suggested of identifying employees who were hired in the past two years was also called into question. That presented issues which need a fuller discussion, so I’ll get to that in the next issue. But keep those cards and letters coming!
Also, in corresponding with Courion’s Chris Sullivan about the de-provisioning issue I mentioned in the last newsletter we touched on the education market and how it deals with rapid turnover of student accounts. I’d like to hear from folks in the community about how you deal with the de-provisioning issue for: a) graduating students; b) dropouts; c) transfers; etc. We’ll take up that issue soon.
Dave Kearns is a consultant and editor of IdM, the Journal of Identity Management.
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 |
Copyright © 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comments (2)
distributed dataBy David Kearns on June 16, 2008, 10:48 amgathering all the data that you might potentially need into one place, and keeping it in-sync and accurate at all times carries an immense price in terms of network...
Reply | Read entire comment
What about distributed data?By nmacehiter on June 16, 2008, 9:10 amBut Dave, in response to your comment: "Well, no. While I didn't state it expressly, all SQL database data is left in the SQL database, with the power of it's...
Reply | Read entire comment
View all comments