English   Deutsch
 

Can authentication be both strong and flexible?


Whether you want to place a bid at Bay, check your bank balance online or your credit rating at Schufa or Experian, or access your corporate SAP account: Instead of asking you to please enter your user name and password, chances are the system nowadays will demand some other method of authentication like a token or a smartcard, or it may offer to scan your finger or iris.
MORE  		 

Analysis
Microsoft releases its privacy-enabling U-Prove technology
Microsoft has just announced the availability of U-Prove - an innovative privacy-enabling technology that it acquired almost exactly two years ago. This is a significant announcement, because of...
Barcelona Deja-vu
It’s the phone industry’s dirty little secret: As humble “handys” (as German’s quaintly persist in calling mobile handsets) morph themselves into miniature editions...
GRC and IT Security - where is the link?
GRC became one of the really hot topics in business and IT, especially in larger organizations, over the course of the last few years. However, there is a lot of confusion about the terms...
"Cloud-readiness" – What it means for software developers
Everybody’s up in the air about clouds, but few seem to really know where they’re heading. Most existing applications aren’t ready for the cloud quite yet, especially since the...
Risk and Services take center stage among IT managers
Simplicity – not to be confused with oversimplification – is the key to successful management. By focusing on the critical issues of risk and services, companies can be sure they have...
Why CIO should put GRC on the New Year’s resolution list
GRC (Governance, Risk Management, Compliance) is one of the best-known and least understood buzzwords in IT today. As is too often the case, a variety of stakeholders have seized on the expression...
Virtual (Desktop) Identities
I recently took the chance to investigate the virtualization market a bit deeper, namely the market for Virtual Desktops as I have been used to server virtualization and the different flavors...
CapEx and OpEx – the latest thing in IT buzzwords
On the economics of Cloud Computings
Talking with IT decision makers these days, it seems that two new terms keep cropping up, namely the abbreviations “CapEx” and “OpEx”. They stand, of course, for...
No Information Security Without Identity
IT professionals often have trouble convincing the budget managers that the often costly projects in Identity and Access Management (IAM) are really necessary. That should come as no surprise,...
Show me your terrorists!
How many terrorists work for your company? Dunno? Well, see you in jail, pal!
I just came back from a meeting of the German chapter of IAPP, the International Association of Privacy Professionals, and the words of the chairman, Dr. Jyn Schultze-Melling, a lawyer with the...
 
Services
Annual Contract
Objective, Independent, Substantial, Prospective: Kuppinger Cole Services for IT Professionals
Road to Successful Implementations
KCP has compiled its experience and the results of its research in Identity Management into a roadmap which acts as a guideline for every company investing into Identity Management.
KCP – the second opinion for you
KCP stands for neutrality. We are strictly vendor-neutral. We don’t do any implementation because we are convinced that there is an irresolvable conflict between implementing some few...
Role Analysis and Role Management
KCP's Identity Management Market Study 2006 has shown that role management is in fact still one of the most important identity-related topics for most user companies. Without a good understanding...

Reports
Product Report: Axiomatics Policy Server and Policy Auditor
This product report covers the Axiomatics Policy Server and the accompanying Policy Auditor. These products fall into the category of Entitlement Management solutions. They use the XML-based XACML...
Market Overview Strong Authentication
For companies and their employees as well as for online-services and their customers respectively, authentication with username and password are no longer considered bearable. The multitude of user...
Vendor Report: TESIS SYSware
TESIS SYSware, part of the TESIS group, is a private company located in Munich. The group consists of three divisions that are involved in a variety of IT fields. TESIS SYSware’s (hereafter...
Product Report: Quest Single Sign-On solutions for SAP
The two products discussed here, Quest Single Sign-On for SAP GUI and ABAP and Quest Single Sign-On for NetWeaver, are Quest’s offering in the market for Single Sign-On (SSO) between Active...
Cloud Vendor Report: Amazon
Amazon is widely known as online retailer, having expanded its bookstore business to many other areas over time. Some time ago Amazon has entered the Cloud Computing market. Amazon provides a broad...
Overview Report: A GRC Reference Architecture
Governance, Risk & Compliance - these three terms, in short "GRC" are pretty widely used in these days. Unfortunately, there is great confusion in how this term is used. The reason...
Technology Report: XACML – Extensible Access Control Markup Language
This report explains XACML, an evolving standard in the field of access control. Access control in IT is of vital importance. Companies use access control technology to protect sensitive systems...
Overview Report: SAP Security – Getting the Whole Picture
SAP Security is a wide field. Most SAP Technology Experts think that SAP Security is all about authorizations, user management, roles, profiles and all that highly complicated stuff. But it is...
 
Virtual Events
Cloud Computing Security Foundations
25.03. - 26.03.2010
The Kuppinger Cole Virtual Conference on Cloud Security will do away with many myths and FUD (Fear, Uncertainty, Doubt) around Cloud Computing, Cloud Governance, Cloud Security and highlight what...

Events
Webinar
Making Security Stronger Yet Easier to Use
18.03.2010, 17:00-18:00 CET, 11am Eastern
While companies are moving toward growth in 2010, IT budgets are still under intense scrutiny. IT departments are being asked to keep their networks and applications secure while still allowing end...
Webinar
Beyond Simple Attestation – How to Really Keep Your Access Under Control
24.03.2010, 17:00-18:00 CET, 11am Eastern
Attestation should not be a point solution, but an element within a larger information security architecture. In this Webinar, we will talk about where access certification is today and what is...
Webinar
Cloud Computing – is it Really a Risk?
25.03.2010, 15:00 -16:00 CET, 9am Eastern
Cloud Computing frequently is discussed mainly as a security risk. However, there is as well the view that the cloud is or might be more secure than on-premise IT solutions. Martin Kuppinger will...
Webinar
Cloud Computing Standards - Which ones are Already there and which ones are Missing?
25.03.2010, 16:00 - 17:00 CET, 10am Eastern
There are many standards out there for the cloud. SAML (Security Assertion Markup Language) for federation, SPML (Service Provisioning Markup Language), and many others. But there are as well many...
Webinar
The Internal Cloud – What are the Risks Involved and how to Avoid them?
25.03.2010, 17:00-18:00 CET, 11am Eastern
Many companies are telling that they tend to start with a “private” cloud instead of going to the “public” cloud. Besides the question whether hybrid IT environments aren’t reality today, this...
Webinar
Cloud Management – Sufficient to Mitigate Security Risks?
26.03.2010, 15:00 -16:00 CET, 9am Eastern
There is an increasing number of tools to manage cloud environments. Some are, in fact, more tools to manage virtualized environments, whilst others focus more on service management issues. More...
Webinar
Identity, Security, Governance for the Cloud – Who is Who? A Market Overview
26.03.2010, 16:00 - 17:00 CET, 10am Eastern
There is an increasing number of offerings around Identity Management, Cloud Security, and Cloud Governance in the market. Some of these are well-known and established, others are new. Martin...
Webinar
Managing Cloud Security and Cloud Risk
26.03.2010, 17:00-18:00 CET, 11am Eastern
Martin Kuppinger will discuss in this presentation risk-based approaches to manage cloud security. The issue, from his perspective, isn’t that the cloud is inherently insecure. The real issue is to...
Congress
European Identity Conference 2010
04.05. - 07.05.2010 in Munich
With its world class list of speakers, a unique mix of best practices presentations, panel discussions, thought leadership statements and analyst views, EIC has become an absolute must-attend event...
Congress
CLOUD 2010
04.05. - 07.05.2010 in Munich
Kuppinger Cole are proud to announce the Cloud Computing Flagship Event for Europe: CLOUD 2010. Making Cloud Computing work for your enterprise, how to prepare for it and what the risks involved...

Podcasts
Expanding the Reach - Identity as a Key Enabler of Customer Satisfaction through Context-aware Personalization
10.02.10
Kuppinger Cole Webinar recording
Language: English • Duration: 00:40:52 • Size 39.25 Mb
From E-SSO to a Holistic Authentication- and Authorization Strategy
10.02.10
Kuppinger Cole Webinar recording
Language: English • Duration: 00:40:52 • Size 27.32 Mb
Access Management Tools - can they Integrate with what you have in a Lean Way?
10.02.10
Kuppinger Cole Webinar recording
Language: English • Duration: 00:51:01 • Size 38.55 Mb
Versatile Authentication - One Layer of (Strong) Authentication
10.02.10
Kuppinger Cole Webinar recording
Language: English • Duration: 00:56:16 • Size 50.5 Mb
5 Quick Win Approaches to Achieve the Next Level of your IAM Infrastructure
10.02.10
Kuppinger Cole Webinar recording
Language: English • Duration: 00:48:17 • Size 38.21 Mb
top
Information
Newsletter
Kuppinger Cole Identity Management Newsletter
Services
KCP provides strategic consulting services for vendor and user companies covering all areas of identity & access management.
Reports
Use KCP as an independent, objective, and neutral authority on the Market for Identity Management products and solutions
Podcasts
Free audio and video presentations on important IAM-topics
Current surveys
Marktstudie IT Service Management
PARTICIPATE 
Blogs
Martin Kuppinger
11.03.2010 11:57
Versatile authentication – break-through for mass adoption of strong authentication?
READ 
Tim Cole
09.03.2010 08:25
The business of business is trust
READ 
Sebastian Rohr
24.02.2010 19:23
Ever had trouble securely sharing data with business partners?
READ 
Felix Gaehtgens
19.02.2010 17:40
Gerry Gebel joins Axiomatics
READ 
Joerg Resch
17.02.2010 11:15
Identity Management is key to Smart Grid Security
READ 
European Identity Conference Blog
12.02.2010 13:16
EIC 2010 Agenda Preview
READ 
Links
 Kuppinger Cole News

 Kuppinger Cole Podcasts

 Kuppinger Cole on Facebook

 Kuppinger Cole on Twitter

 Visit us at Xing

 IAM-Wiki

 GenericIAM
Imprint Terms and conditions Privacy policy
© 2003-2010 Kuppinger Cole + Partner