NETWORK WORLD NEWSLETTER: DAVE KEARNS ON IDENTITY MANAGEMENT 11/17/04 Today's focus: A new-school way of monitoring identity management
Dear [EMAIL PROTECTED], In this issue: * What links healthcare with identity management? * Links related to Identity Management * Featured reader resource _______________________________________________________________ This newsletter is sponsored by Intel IT Productivity; Increasing ROI Learn how to effectively measure employee productivity, manage IT investments and reduce the Total Cost of Ownership in enterprise data management. Visit Intel's IT Productivity center. Click here to download white papers, books and IDC Research. http://www.fattail.com/redir/redirect.asp?CID=88368 _______________________________________________________________ DOWNLOAD INDUSTRY WHITE PAPERS NOW NW Fusion's White Paper Library is your source for the latest industry white papers. Recent additions to the library include white papers on WLAN Security; IT Documentation; protecting the internal network from worms, Trojan horses, and other malware threats; measuring employee productivity and more. Click here to download: http://www.fattail.com/redir/redirect.asp?CID=88296 _______________________________________________________________ Today's focus: A new-school way of monitoring identity management By Dave Kearns We're looking at possibilities for standardizing the management of typical audit log data especially in the areas of authorization and authentication. It's a scheme that was suggested to me by Deloitte & Touche's Mark Ford in a conversation with me last month at the Digital ID World conference (see link below). Ford broached the idea of a Simple Network Management Protocol (SNMP) for identity. Last issue, I present an idea from Ranjeet Vidwans of Thor Technologies who described a standard SNMP Management Information Base (MIB) for provisioning apps that could feed into existing SNMP monitors and consoles. It has the benefit of not needing modifications to either the identity stores or the applications and services that are provisioned while using the very mature technology of SNMP monitoring tools. Tentatively, we'll call this the "old school" approach. That implies, of course, that there's a "new school" approach - and there is. The Healthcare Information and Management Systems Society (HIMSS) is the sponsor (along with the Radiological Society of North America and the American College of Cardiology) of Integrating the Healthcare Enterprise (IHE). IHE is a multi-year initiative that creates the framework for passing vital health information seamlessly - from application to application, system to system, and setting to setting - across the entire healthcare enterprise. IHE does not create new standards, but rather drives the adoption of standards to address specific clinical needs. According to initiative member John Moehrke, "This year we profiled the need for Security Audit Logs to have a standardized format, well understood triggers, and centralized analysis. We were not satisfied with any standards in use at the time, so we had to encourage some standards work. In the end we produce an XML schema that describes the security event and published it as an RFC (RFC 3881)." That's right - an IETF Request for Comment (RFC) - one of the oldest methods of establishing a computer standard, but using XML, one of the lynchpins of the ultra-modern "Web services" technology. Not a bad combination. RFC 3881 uses the syslog protocol to transmit event-notification messages. As Moehrke sums it up: "In the end we end up with coded messages that can be centrally analyzed by people who do that for a living. Thus allowing us healthcare vendors to get back to saving lives." I wondered why I hadn't heard of this initiative before this, and Moehrke admitted that there was a bit of push back from the more entrenched syslog community. Seems they feel that syslog should be short text lines suitable to be displayed directly to the user. Acording to Moehrke, "They don't like our coded XML message, and don't like its size. We have tried to get them to recognize that SYSLOG MTU limitations are unreasonable and unnecessary (a problem SNMP has as well)." If you're at all interested in a standardized way to monitor identity management, especially in terms of authorization and authentication for regulatory compliance issues, you should read RFC 3881. This might be something that an OASIS working group could be inspired by, or that any group working with Web services, SOAP and XML might consider adapting. As always, let me know your thoughts and I'll try to facilitate the conversation. RELATED EDITORIAL LINKS Are we looking for network management for identity? Network World Identity Management Newsletter, 11/03/04 http://www.nwfusion.com/newsletters/dir/2004/1101id2.html RFC 3881 http://www.faqs.org/rfcs/rfc3881.html Network World Fusion Encyclopedia: Syslog http://www.nwfusion.com/details/551.html?def _______________________________________________________________ To contact: Dave Kearns Dave Kearns is a writer and consultant in Silicon Valley. He's written a number of books including the (sadly) now out of print "Peter Norton's Complete Guide to Networks." His musings can be found at Virtual Quill <http://www.vquill.com/>. Kearns is the author of three Network World Newsletters: Windows Networking Tips, Novell NetWare Tips, and Identity Management. Comments about these newsletters should be sent to him at these respective addresses: <mailto:[EMAIL PROTECTED]>, <mailto:[EMAIL PROTECTED]>, <mailto:[EMAIL PROTECTED]>. Kearns provides content services to network vendors: books, manuals, white papers, lectures and seminars, marketing, technical marketing and support documents. Virtual Quill provides "words to sell by..." Find out more by e-mail at <mailto:[EMAIL PROTECTED]> _______________________________________________________________ This newsletter is sponsored by Intel IT Productivity; Increasing ROI Learn how to effectively measure employee productivity, manage IT investments and reduce the Total Cost of Ownership in enterprise data management. Visit Intel's IT Productivity center. Click here to download white papers, books and IDC Research. http://www.fattail.com/redir/redirect.asp?CID=88360 _______________________________________________________________ ARCHIVE LINKS Breaking identity management news from Network World, updated daily: http://www.nwfusion.com/topics/directories.html Archive of the Identity Management newsletter: http://www.nwfusion.com/newsletters/dir/index.html _______________________________________________________________ FEATURED READER RESOURCE NEW! Website dedicated to Networking for Small Business now available The editors of NW Fusion and PC World have combined all their expert advice, authority, and know-how into a powerful new tool for small businesses, the new Networking for Small Business website. Get news, how-to's, product reviews, and expert advice specifically tailored to your small business needs. Find help with Security, Broadband, Networking, Hardware, Software, and Wireless & Mobile technology at: <http://www.networkingsmallbusiness.com/> _______________________________________________________________ May We Send You a Free Print Subscription? You've got the technology snapshot of your choice delivered at your fingertips each day. Now, extend your knowledge by receiving 51 FREE issues to our print publication. Apply today at http://www.subscribenw.com/nl2 International subscribers click here: http://nww1.com/go/circ_promo.html _______________________________________________________________ SUBSCRIPTION SERVICES To subscribe or unsubscribe to any Network World e-mail newsletters, go to: <http://www.nwwsubscribe.com/Changes.aspx> To unsubscribe from promotional e-mail go to: <http://www.nwwsubscribe.com/Preferences.aspx> To change your e-mail address, go to: <http://www.nwwsubscribe.com/ChangeMail.aspx> Subscription questions? Contact Customer Service by replying to this message. This message was sent to: [EMAIL PROTECTED] Please use this address when modifying your subscription. _______________________________________________________________ Have editorial comments? Write Jeff Caruso, Newsletter Editor, at: <mailto:[EMAIL PROTECTED]> Inquiries to: NL Customer Service, Network World, Inc., 118 Turnpike Road, Southborough, MA 01772 For advertising information, write Kevin Normandeau, V.P. of Online Development, at: <mailto:[EMAIL PROTECTED]> Copyright Network World, Inc., 2004 ------------------------ This message was sent to: [EMAIL PROTECTED]
