- TalkBack 1 of 8:
- Next »
- Thread View
- Flat View
- A few points...
-
First off, I'm glad to see you enlightened individuals come around. I've been in this specific space for close to 5 years, I've been trying to spread the light, but to little avail - good to see it getting some real traction.
I used to claim that "authorization" was just another word for "access control" - I still think that, in a wider sense - but I just understood from this article why some would differentiate, and why the difference is important. "Access control", in your lingo, is about the perimeter - who is in and who is out, whether you can "access" the *SYSTEM*. Authorization is about what you can do when you get there.
To me, these terms are still identical, but for reasons stemming from two inaccuracies, or mistakes, in your description: that this can be done (1) at the perimeter; and (2) should be done for systems.
(1) The perimeter no longer exists, in architecture if not in fact, and is no longer relevant. The perimeter is a networking concept, controlled by firewalls, routers, proxy servers, etc. and is limited to the world of the network.
Which brings me to my second point:
(2) Access control / authorizations should be done for systems. Systems (i.e. hosts, platforms, etc) do not provide proper context for correct authorization. This should be done at the application level.
And regarding Securent, while they are very interesting (I actually took a look at them not so long ago), they don't quite get it - hence the obtuse mouthful of an imperceptive term, "entitlement management".
I can say this based on 5 years doing "entitlement management", whatever that means. Just didn't know that's what I was doing.... - Posted by: douglen@... Posted on: 11/20/06 You are currently: a Guest | Members login | Terms of Use
A few points...
douglen@... | 11/20/06
|
 
A (long) clarification...
sunilmadhu | 12/13/06
|
A few comments on authorization management
ulrichlang | 07/26/07
|
|
another brief note on 'entitlement'
ulrichlang | 07/31/07
|
|
another quick follow-up
ulrichlang | 08/07/07
|
|
Another definition from a large vendor
ulrichlang | 08/07/07
|
|
RE: Does authorization equal entitlements?
amcc | 05/07/08
|
|
Entitlement Management Case Studies
brianpasch | 01/28/09
|
What do you think?
SponsoredWhite Papers, Webcasts, and Downloads
- Why Isn't Server Virtualization Saving Us More? A Few Small Changes May Dramatically Increase Your Efficiency VMware Companies have rapidly adopted server virtualization over the past few ... Download Now
- Reducing Server Total Cost of Ownership with VMware Virtualization Software VMware VMware virtualization enables customers to reduce their server TCO and ... Download Now
- Email Security and Archiving - Clearer in the Cloud Google The time is NOW for businesses and organizations of all sizes to implement ... Download Now
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
- Save time with automated shipping solutions
-
The Business Essentials Guide provides you useful tools and templates to help grow your business and save you time with automated shipping solutions.
- Visit the UPS Business Essentials Guide
- Reduce risk. Reduce complexity. Increase reliability.
-
A simplified IT environment isn't just less complex. It's also more reliable. Standardize on a single Linux platform with SUSE Linux Enterprise from Novell, and get the world's most interoperable Linux
- Learn more >>
- New Online Dashboard for IT Leaders
-
Read about top issues IT decision-makers face every day, plus get cost-effective solutions to real-life IT problems.
- Learn more >>
- Keep Up With The Latest In Document Management with The DocuMentor.
-
Doc delivers the scoop on today's enterprise content management, printer maintenance, and all other issues related to document management. It's the DocuMentor Blog.
- Learn more >>
- Microsoft Dynamics CRM Online - Free Six-Month Trial for Eligible Organizations
-
Microsoft Dynamics CRM Online provides fast online access, simple contact management and better sales performance for a low monthly cost - the best value on the market today.
- Learn more about the free, six-month trial offer>>
Meet Doc
-
-
Here to help you with your Document Management Needs
- Doc is an enigma. Born to a Russian ballerina and a German electrical engineer, he grew up in various locations in the United States. He’s seen the insides of more brands, versions, and generations of printer and printer-related hardware than almost anyone.
- To learn more about this mysterious figure check out his blog on ZDNet and his Workspace on TechRepublic. You’ll be glad you did.
-
Produced by
ZDNet and -
