Authentication/Authorization/ID Management
We have been going through a prioritization process over the past week. We listed all of the projects in which ITS is engaged, and scored them on factors like customer demand, management directive, and ROI. One project that has come out near the top is authentication.
By authentication I mean web authentication that includes single sign on capability for all participating applications. We have such a system now, utilizing a product called SiteMinder and the NDS tree. With the development of UMD and the continual instability of our current authentication system, the need for a new system is very apparent.
Authentication is becoming my top priority. I am beginning to pull together the resources we need to build a new authentication system that would also include provisions for centralized application authorization (what level of security within an application does a user have?) and ID management. I believe that one requirement for this system is the eventual support of single sign on for citizen-facing applications, as well as ID management. There are tremendous security implications of that, and that requirement may not be something that the enterprise should pursue, but we should at least be asking the question. I know there was some discussion about this topic at a meeting on the citizen directory earlier this week which I was not invited to. I will be digging up information, so if you are involved feel free to contact me.
8:17:24 AM 
|
