English   Deutsch
 

The Risks of Local Password Management

Getting Single Sign-On Right
In the run-up to the Black Hat meeting next week in ORT, hackers have announced that they will pulic demonstrate how to compromise the password storage system used by Firefox in its popular browser. Using so-called cross site scripting attacks (XSS), they want to prove that storing passwords locally is inherently dangerous. Well, so what else is new? The real question is: How can we make Single Sign-On (SSO) safe? The answer is: You can do it – but it won’t be easy.
MORE 

Analysis
The new Swift agreement contains the seeds of new security issues
Sachar Paulus
The European Parliament has passed the controversial new Swift agreement following intense debate aimed at dispelling worries about data protection. In fact, nothing much was changed, and the...
How Data Leaks Through Twitter
Sebastian Rohr
If you’re a soccer fan, thinking back to the year 1986 will probably remind you of the nail-biting final between Germany and Argentina that the South Americans narrowly won (unlike the...
Choosing the right Identity Provider
Martin Kuppinger
It isn’t exactly a new idea, but designing your Identity and Access Management (IAM) with your users in mind always makes sense. But how about your customers and suppliers? After all, they,...
Trends from the European Identity Conference
Sachar Paulus
The European Identity Conference (EIC), which has become the foremost gathering point for the identity community Europe, focused this year on a number of current topics in the areas of identity...
Kuppinger Cole analysts present European Identity Award 2010
Bettina Buthmann
European Identity Award for outstanding projects, innovations and advancements in the field of digital identity management was presented by the analyst group Kuppinger Cole at a festive ceremony...
Protecting the “I” in “IT”
Martin Kuppinger
Companies spend substantial sums on IT security, but for some reason it seems they aren’t getting much bang for their bucks. The reason, of course, it that they are putting them in point...
Can authentication be both strong and flexible?
Sebastian Rohr
Whether you want to place a bid at eBay, check your bank balance online or your credit rating at Schufa or Experian, or access your corporate SAP account: Instead of asking you to please enter...
Microsoft releases its privacy-enabling U-Prove technology
Felix Gaehtgens
Microsoft has just announced the availability of U-Prove - an innovative privacy-enabling technology that it acquired almost exactly two years ago. This is a significant announcement, because of...
Barcelona Deja-vu
Tim Cole
It’s the phone industry’s dirty little secret: As humble “handys” (as German’s quaintly persist in calling mobile handsets) morph themselves into miniature editions...
GRC and IT Security - where is the link?
Martin Kuppinger
GRC became one of the really hot topics in business and IT, especially in larger organizations, over the course of the last few years. However, there is a lot of confusion about the terms...
 
Services
Kuppinger Cole Analyst Services
In the networked economy of the 21st century, digital identities play a key role in establishing trust, achieving security, lowering costs and making business processes more efficient. Things like...
Kuppinger Cole Vendor Services
The market for Identity and Access Management (IAM), governance, risk management, and compliance (GRC) and cloud computing is expanding by leaps and bounds. In fact, no other segment of the IT...
Kuppinger Cole Briefings
Kuppinger Cole welcomes the opportunity to hear from IT companies when they launch a new product or service or have other interesting progress to announce. Please fill in the request form...

Reports
Trend Report: Desktop Virtualization and VDIs
Desktop Virtualization and VDIs (Virtual Desktop Infrastructures) are key topics for many IT managers and decision makers. However, like with every hype topic, there are shortcomings. Investments...
Product Report: Völcker ActiveEntry 4.1
Völcker Informatik AG based in Berlin has established itself in recent years as a provider of technically innovative solutions and a vendor to be reckoned with in the field of Identity and...
Trend Report: Hidden Gems 2010
This report covers vendors which are, from the KuppingerCole perspective, Hidden Gems in the mar-kets which we are analyzing. The “Hidden Gems” are vendors which are...
Product Report: wikima4 mesaforte
Mesaforte is a product of the Swiss firm wikima4. The product arose out of experiences from numerous projects. A series of customers has licensed it and it is being advanced within the scope of...
A Review of Cloud Business Models and Demonstrations in Finance and Health Clouds
By Victor Chang, Gary Wills and David De Roure This paper reviews current cloud computing business models and presents proposals on how organisations can achieve sustainability by adopting...
Business Report: GRC Market Structure
GRC stands for Governance, Risk Management, Compliance. It is used to describe Information Tech-nology which supports these specific business requirements. This report provides a segmentation of...
Vendor Report: Passlogix
Passlogix is a software vendor which started in the field of E-SSO (Enterprise Single Sign-On) in 1996 and established itself as one of the leading vendors in that particular segment. The company...
Product Report: Engiweb IDEAS
Engiweb is one of the European vendors in the IAM and GRC space, based in Italy. The company is owned by Engineering Ingegneria Informatica, the largest system integrator in Italy with operations...
10 Top Trends 2010
As in the past years, Kuppinger Cole has worked out 10 Top Trends in IAM (Identity and Access Management) and GRC (Governance, Risk Management, Compliance). These are complemented by 10 Top Trends...
Vendor Report: RM5 Software
RM5 Software is a Finnish software vendor which provides software for managing entitlements in applications for internal and external applications, provided on-premise or in SaaS deployment...
 
Events
Conference
The Experts Conference Europe
04.10. - 06.10.2010 in Düsseldorf
The Experts Conference (TEC) Europe is coming to Düsseldorf in 2010! TEC 2010 Europe delivers world-class training and networking - for the experts, by the experts - and teaches better, more...

Podcasts
Hidden Gems - Vendors you Should Have a Look at
03.07.10
In this webinar, Kuppinger Cole´s founder and chief analyst will talk about his research findings for a recent report on vendors, which are, from the KuppingerCole perspective, Hidden Gems in...
How to Keep Entitlement Management Lean - in any Environment
29.06.10
How to gain more flexibility and efficiency in an environment where requirements change very fast, and where users and services cannot be classified any more as easy as being "internal" or...
Bridging Mobile Networks IP Multimedia Subsystem (IMS) and Internet Identity
25.05.10
Best practices session at the European Identity Conference 2010 by Jonas Hogberg, Ericsson
Orange France Telecom Identity Management Strategy
25.05.10
Best practices session at the European Identity Conference 2010 by Philippe Clément, Orange/France Telecom
Identity Management & Cloud Computing in the Automotive Industry
25.05.10
Best practices session at the European Identity Conference 2010 by Dr. Barbara Mandl, Daimler AG
top
Information
Newsletter
Kuppinger Cole Identity Management Newsletter
Services
KCP provides strategic consulting services for vendor and user companies covering all areas of identity & access management.
Reports
Use KCP as an independent, objective, and neutral authority on the Market for Identity Management products and solutions
Podcasts
Free audio and video presentations on important IAM-topics
Current surveys
IAM-Studie 2010
PARTICIPATE 
Blogs
Martin Kuppinger
27.07.2010 09:26
Facebook – they won’t understand
READ 
European Identity Conference Blog
26.07.2010 17:51
Facebook authentication support
READ 
Sachar Paulus
19.07.2010 10:11
Impressions from the IT-Analyst Event in London
READ 
Tim Cole
29.06.2010 19:03
No more Mr. Nice Guy
READ 
Sebastian Rohr
08.04.2010 11:36
Gemalto invests in Strong Auth Tokens
READ 
Felix Gaehtgens
19.02.2010 17:40
Gerry Gebel joins Axiomatics
READ 
Joerg Resch
17.02.2010 11:15
Identity Management is key to Smart Grid Security
READ 
Links
 Kuppinger Cole News

 Kuppinger Cole Podcasts

 Kuppinger Cole on Facebook

 Kuppinger Cole on Twitter

 Visit us at Xing

 IAM-Wiki

 GenericIAM
Imprint Terms and conditions Privacy policy
© 2003-2010 Kuppinger Cole