Lockstep

[Skip Navigation]
  • Home
  • About Us
  • News
  • Services
  • Partners
  • Library
  • Contact Us
  • Stepwise makes the Anthill SMART 100 (again)
  • Keynote speech on Human Services delivery
  • "Public yet still private" and other new privacy articles
  • Asian SESAMES award finals
  • Daring to question Open Identity
  • Privacy opinion piece
  • IHI senate submission
  • PCI conference presentation
  • 5th Annual Smartcards Summit
  • Cybercrime hearings appearance
  • Lockstep at Tech23 Innovation Island
  • eResearch Australasia 2009
  • "In defence of silos"
  • Cybercrime inquiry
  • One of Australia's most innovative products
  • "Give PCI the bullet"
  • New blogs calling for clarity
  • OBR "Security 140" Breakfast
  • On the Digital Economy
  • Lockstep a "certified innovator"
  • New Inventors pod cast
  • New Lockstep publications
  • Lockstep judged a Top Five Security Firm in Asia
  • ID Summit
  • Tech reflections on privacy
  • Stepwise on ABC TV The New Inventors - 19 Nov
  • e-Voting presentation at AusCERT 2008
  • Privacy & Security presentation
  • Plurality of Identities
  • "Public Key Superstructure"
  • Stepwise pitch: Safety in Numbers
  • New e-voting paper
  • Lockstep a Cool Company!
  • Interview: Privacy & Technology
  • Smartcards Summit keynote presentation
  • Australian Smartcard Summit
  • New and revised Babysteps
  • National innovation award
  • Senate Committee appearance
  • "Safety in Numbers"
  • New senior consultant - health sector
  • Lockstep presenting at AusCERT 2007
  • IT competition shortlist
  • Radio National Interview
  • "Public Key Superstructure"
  • Access Card Submission
  • Lockstep speaking at Safeguarding Australia
  • Embedded PKI in China
  • Authentication shakeout
  • Lockstep at Security Summit
  • Smartcards and Medicare
  • Interoperability & PKI myths
  • Asia Pac Risk Mgt, Singapore
  • OASIS PKI Survey
  • New "Babysteps" paper
  • New series: "Babysteps"
  • Smartcard Id Mgt Seminar
  • New paper published in China
  • Interview: "The eyes have it"
  • Relationship Certs in China
  • The 3rd OASIS International PKI Survey
  • World's smallest reader
  • Two new PKI whitepapers
  • IIA Two Factor Authentication Pilot
  • New ROI paper
  • Authentication workshop
  • Lockstep developed new PKI Resources Page
  • Other news

"In defence of silos"

14 Oct 09: A new column on the pitfalls of Federated Identity.

In his latest Online Banking Review column, Stephen mounts a fresh analysis of why identity silos are so hard to break down. They're strong for very good reason! Why don't grain growers rush around trying to break open and re-connect their silos? It's because the risks would be incalculable.

The column argues that we should re-think "identity" and realise that we're really talking about relationships:

"What we call an ‘identity’ in business is really a proxy for a complex relationship between customer and service provider. An account number, for example, stands for the fact that the customer has met a set of requirements and has signed up to terms and conditions governing how they do business with an institution. If that relationship is facilitated by electronic means like a plastic card or one time password (OTP), then there will be a detailed usage agreement, which typically forbids re-use with third parties. These agreements are framed very carefully according to the risk profile of the institution and the type of business it conducts.

"Identity federation entails major changes to these sorts of agreements. In classic federation, it is proposed that existing OTPs, for instance, be used to transact with third parties having no previous relationship with the issuer. With just a moment’s reflection, we can see this is actually a very hard problem. Not only does it mean changing the usage agreement under which the OTP was issued; it means the issuer accepting that their OTPs be used in unanticipated transactions. How can anyone do a risk analysis of that?"

© 2010 Lockstep Consulting ABN 59 593 754 482
11 Minnesota Avenue Five Dock NSW 2046
Mobile: +61 (0) 414 488 851 Email Us
Terms and Conditions