Enter your email address:

Delivered by FeedBurner

Ways to stay connected...

« The breadth and complexities of identity management | Main | Implementing Identity Management? What to ask »

September 14, 2009



Interesting thoughts here. I'm no expert on this, despite writing on occasional IT issues -- one thing that comes to mind is, isn't the technology already out there? Wouldn't it just be a matter of legally mandating companies to encrypt their pages with extended validation ssl and individuals to use some kind of personal ID system? It seems like individuals have the hardest time here (it's easy to steal a credit card number; hard to hijack a green url and padlock) and I can definitely see the need for some universal (and possibly free) form of identity management. But it seems like the tools are out there, they just aren't as prevalent as they should be.

Web Certificate

The technology is already out there. The level of security comes in terms of the bits per encryption. 128 and 256 bit are two of the most popular levels of SSL encryption. Indeed it would be a matter of federal and government legislation where it is a legal requirement for any site that engages in financial interchanges and transactions online or passing of personal data to employ SSL security by law. The internet is largely unregulated so I would imagine it's when more than if something like this will come into force.

The comments to this entry are closed.

April 2011

Sun Mon Tue Wed Thu Fri Sat
          1 2
3 4 5 6 7 8 9
10 11 12 13 14 15 16
17 18 19 20 21 22 23
24 25 26 27 28 29 30

Have a look at...

Headlines from the Security Roundtable

  • Headlines from the Information Security Blogosphere
    Add your feed to this box

    Security Catalyst

Blog powered by Typepad