So the Internet wants to link "some", but never "all" whereas the Enterprise wants to link "all", but inevitably only ends up with "some".
From my standpoint they both look like partial strings of identities, the only difference is that one camp is happy about it :)
Seriously, I think the main differentiator between user-centric and enterprise-centric is "who has the control" (think PGP vs PKI).
|
Does Verizon's Voyager stack up to the iPhone? |
|
|
5 IT skills that won't boost your salary 
[1,407]
Women 4 times more likely than men to cough up personal info [589]
Japan's 10 funniest tech-related commercials [Videos] [407]
Throwing away a promo CD is "unauthorized distribution"? [1,265]
Adults too quick to dismiss educational video games [682]
Attack of the iPhone clones [Slideshow] [578]
10 things IT needs to know about AJAX [1,258]
This Year's 25 Geekiest 25th Anniversaries [Slideshow] [409]
|
|
Identity Model - Enterprise AND User Centric?
I've been wondering if the model we're building (see http://identityhappens.blogspot.com/) applies to both, and I think it does. But of course I'd like to hear your views.
I think the lower layers (an Entity with multiple Contexts) are user-centric. Within a Context, I think Enterprise-centric concerns are addressed. Are there any types of service providers that do not have Enterprise-centric concerns? Any service provider that keeps any records about its users is effectively managing Digital Personas. I think.
Enterprise and user centric identity models
The two don't have to be necessarily mutually exclusive (at least from my perspective). I've blogged about what I call the 'theory of identity relativity' which is the idea that the resource only invokes the attributes or credentials it needs for authentication, access and authorization. The more sensitive the resource, the more identity data is invoked. With the user-centric model, the user gets to define what can be exposed to an incoming request in order to ensure that their privacy is not compromised, but at some point the application requires confidential information to fulfill a transaction. I can see some cross-pollination at some point in the area of exchange of directory information across domains where an application has a diverse set of users, such as an ordering or invoicing application.
http://blogs.the451group.com/security/2008/07/24/the-theory-of-identity-relativity/
I've been thinking more on this...
I've been thinking more on this. I'm wondering if there's not a private and public identity with different but potentially related uses. I've put some thoughts here: http://idm-thoughtplace.blogspot.com/2008/09/centric-identity.html
Post new comment