December 2015 – Gerlinde

Encryption of communication paths – it’s so easy but often not implemented

12. December 2015

In a recent meeting with a customer group on security topics, one of the attendees asked everybody else whether they had implemented system-to-system encryption behind the firewalls in their internal landscape. Only one attendee said yes. And it applied only for one system deemed extremely critical. To my astonishment nobody considered this strange or negligent. … More Encryption of communication paths – it’s so easy but often not implemented

Authorization management unsolved – or the continuos role access management inflation

2. December 2015

Authorization Management is one of the unsolved problems of IT security. The problem is not that there are no access management capabilities in regards to authorizations. On the contrary, there are too many. No unifying standard or tool has materialized which is due to the fact that technologies are different and thus the underlying authorization … More Authorization management unsolved – or the continuos role access management inflation

Gerlinde

If you don't have a challenge, you cannot advance – like in the challenge-response protocol :-)

Month: December 2015

Encryption of communication paths – it’s so easy but often not implemented

Authorization management unsolved – or the continuos role access management inflation