دانلود کتاب مدیریت هویت – دیدگاه تجاری

In the years since the book I coauthored, Identity Management: A Primer, was published, the identity and access management task has become significantly more complex, and an order of magnitude more important. It has become more complex because of the cloud and the necessity to support mobile devices. It has become more important because the networking solutions of yesteryear are no longer sufficient. This book seeks to assist the chief information officer (CIO), or better still the chief digital officer (CDO), in grappling with this complexity and leveraging the organization’s identity data to deploy an efficient and secure information technology (IT) environment. Organizations that can accomplish this can potentially realize significant benefits: better staff relations, more secure contractor engagement, more profitable customer relationships, and empowered business units that can finally get real-time information on inventory levels, production rates, market prices, and customer satisfaction. For those organizations that fail to address the identity management challenge, the term “digital transformation” will have a special meaning. Ten years ago, identity and access management (IAM) was nicely compartmentalized and relatively easy to understand. There were a dozen vendors in the market, and after determining a company’s size and propensity for an enterprise directory, as a consultant it was relatively easy for me to define a solution. I enjoyed visiting clients, listening to how vendors had bamboozled them, and explaining a succinct way forward to reach their IAM goals. Then the “cloud” arrived. Suddenly, it was necessary to throw out the old paradigm of enterprise directories and firewalls at the perimeter and figure out how to avoid opening up the enterprise directory to the world. At the same time, it was necessary to determine how to support software as a service (SaaS) applications without synchronizing identity data to the cloud. With the HR and identity management (IdM) systems on the internal network and the SaaS applications on the Internet, some “magic” was needed. But solutions were available, and cloud providers started supporting identity in the cloud and the SAML protocol, to varying degrees. Then came BYOD. All of a sudden, users were coming from anywhere with a wide variety of devices. They could no longer be relied upon to use the company’s standard operating environment (SOE). No longer were they inside the corporate network, and their devices could be used by anyone at any time of the day or night. But solutions have developed rapidly. There are now new ways of supporting access from anywhere by anyone at any time. The development of protocols such as OpenID Connect and OAuth and initiatives such as Fast IDentity Online (FIDO) provide solid security for external access to protected corporate systems and data. Now the Internet of Things (IoT) is upon us: how do we manage the identity of things? How do we allow secure access to corporate facilities? And what about blockchain technology? Is it appropriate for situations where components of identity can be distributed across multiple data repositories? It is important that we keep up with technological developments and extend our frameworks to understand these challenges and take advantage of the attendant opportunities.