Checklist: cross-domain identity management -- GCN

Checklist: cross-domain identity management

By Edmund X. DeJesus
Feb 23, 2009

In this report

1. What is the compelling reason for implementing cross-domain identity management? What will it allow your agency to do or do better?

2. Which other agencies do you want to allow access to your resources? What resources belonging to other agencies do you want your employees to access?

3. Can commercial products work with your applications and data?

4. Are the business processes for authentication and authorization well-defined at your agency?

5. What levels of access does your agency have, and what are the criteria for those levels?

6. What roles — as opposed to people — should have authorization to which resources at your agency?

7. What legal, political or security difficulties must your agency overcome to successfully use cross-domain identity management?

8. Do vendor products use open standards in their data exchange?

9. Can your vendor support a pilot project to demonstrate how identity management would work at your agency?

E-Mail this page

Printable Format

Are password rules just bad magic?05/18/2010
Senators look to Amsterdam for airport technology04/14/2010
Tom Davis made the connection between technology and reform10/12/2009
NIST to update guidelines for testing PIV card apps, middleware02/18/2009
Transportation ID program lacks a reliable disaster recovery plan, GAO says12/15/2009

inside gcn

Reader Comments

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Name: (Optional) Email: (Optional) Location: (Optional)

Your Comment:

Please type the letters/numbers you see above

resources

HTML - No Current Item Deck

TRENDING