K--Trust, Service and Information Continuity
Practical strategies for government identity management programsIn today’s digital age, citizens seeking greater convenience and security
in their travels and transactions are demanding more effective identity management solutions from their governments. At the same time, there is strong opposition, on privacy and civil liberties grounds, to some proposed government initiatives. We call these apparently conflicting reactions the “privacy paradox” – caused by the power of technology to on one hand empower and on the other, raise concerns among some citizens that they could be controlled. We believe it’s time for governments to recognize this paradox and, like their counterparts in the private sector, begin to respond to public demand for identity management solutions that not only deliver
improved services, but that also engender trust and confidence that personal data will be protected.
Web accessibility in European countries: level of compliance with latest international accessibility specificationsThis report presents the results of a study to provide data and analysis to support the European Commission in the identification of EU-level measures that can help to progress the achievement of greater levels of web accessibility across the Member States. A core focus of the report is on the issue of transitioning to WCAG 2.0 guidelines against the current background where Member States have, in the main, being targeting their efforts towards the earlier WCAG 1.0 guidelines.
The main methods used in generating the data and information presented in the report were: collection of information on the national situations in selected Member States (through desk research and information provided by official contacts), examination of compliance with WCAG 1.0 and 2.0 guidelines for a representative sample of websites. The aim was to provide evidence and analysis to help understand and compare the approaches followed by the European countries, with a view to identifying issues and challenges, good practices and future priorities in the web accessibility field.
Seven Key Reasons to Implement an Identity Aware NetworkIdentity aware networks provide a more effective and cost efficient method to secure critical business assets. This paper is intended to provide IT managers and corporate executives with insight into the seven key reasons why internal networks are migrating towards an identity and role based infrastructure.
One of the fundamental issues faced by IT managers today is the lack of a basic, consistent framework needed to protect intellectual property, customer data, and sensitive information. While many organizations have spent considerable funds for perimeter security to keep unwanted intruders out, the internal network communities have tended to be – by default - implicitly trusted. Therefore, the requirement to implement internal, network level access controls has been seen as an unnecessary expense. As a consequence, internal access controls within applications and software based security solutions have been the last line of defense against data compromise. This has left the soft underbelly of the network exposed to attack and has, for many organizations, proven to be an erroneous data defense strategy.
By leveraging the identity already embedded in the infrastructure - such as Microsoft’s Active Directory – identity aware network solutions can give organizations the ability to bridge-the-gap between application level and network level access controls. By controlling access at the lower layers within the network without the need for complicated firewall and router rule updates, identity provides a more consistent, finer grain policy control of resource access and enforcement.
Pre-Built Analytic Applications Versus Building a Custom WarehouseThe following project comparisons are meant to serve as a guideline for organizations involved in the selection process with Oracle, and who are considering purchasing the pre-built analytic applications (which contain pre-written ETL, data models, and metadata repositories) versus building custom datamarts or a data warehouse against operational applications from Oracle including Oracle EBS, Siebel, and PeopleSoft.
ENISA - Security Country reports 2009The main goal of the project was to provide an overview of the "state of the art" in network and information security (NIS) in each of the 30 countries defined by ENISA: the 27 European Union Member States and the 3 non-EU members of the European Economic Community. In this report we explain the methodology used for the project, give an overview of the results of the research, and present the results for each of the 30 countries. Each country chapter contains the following sections: Country General Information, Country Highlights, Key Stakeholders Overview, Detailed Stakeholders Overview, Activities, Events, Current Trends. Information collected are: Policy Development, Policy Implementation, Privacy and Data Protection, Electronic Communications, CIP/CIIP (Critical Information Infrastructure Protection), and CERT (Computer Emergency Response Team).
Global Trust Center - Enabling trust in the digital worldUnder the Global Trust Center Policy framework governments will be able to secure the starti ng point of the user’s identi ty and the authenti city of documents as they are shared in the digital world.
Global Trust Center - Presentation - GTC User-driven Policy-approachEngaging multiple stakeholders in cherishing individual user perspective. Requesting a systemic response to put in place higher level digital functionality in support of the human being. Reaffirming fundamental values of: Legality, Security, Privacy, Integrity, Accountability. Enabling trust
ENISA - Security Awareness Manageme nt in Local Governments: Approaches in ScandinaviaThis report is the result of a joint work of three members of the ENISA Awareness Raising (AR) Community. The purpose of the study has been to gain more knowledge of how regions and municipalities in the three Scandinavian countries, Denmark, Norway and Sweden, are currently working on information security management. The focus of this investigation, however, is directed towards issues related to Local Governments‘ management of users' knowledge and awareness of information security.
IBM practical strategies for government identity mangementThe digital age promises to deliver effective identity management solutions for governments, as citizens demand greater security in their travel and transactions. Yet at the same time, there is strong opposition, on privacy and civil liberties grounds, to some proposed government initiatives. This tension between the power of technology to both empower and control citizens is what we call the “Privacy Paradox.” We believe it’s time for governments to recognize this paradox and, like their counterparts in the private sector, begin responding to the public demand for identity management solutions that are both effective and engender trust and confidence that personal data is not being abused.
IBM Agenda for trusted InformationThe lack of trusted information — information that is accurate, timely and relevant— is on the minds of CEOs and senior executives around the world. The cost and complexity of managing increasing volumes of data and content, combined with the need to provide trusted information to every user for every transaction, is driving CIOs to rethink their approach to information delivery.
What is required is a paradigm shift from siloed organizational information fiefdoms to the design and deployment of an enterprisewide information infrastructure. Without it, companies will continue to struggle in reaching the ultimate goal of optimizing business through advanced use of information. CIOs now have access to a new strategy, planning and implementation approach for turning trusted information from a vision into a reality: the information agenda. An information agenda serves as both strategy and tactical roadmap, bringing together the people, processes and technology necessary to transform increasing volumes of information into a strategic, trusted business asset. This white paper defines the information agenda; describes key considerations
and best practices in creating and implementing an information agenda; and sets forth how IBM can help you to deliver trusted information enterprisewide.
IBM Identity managementEffective identity management is becoming a critical issue with governments worldwide as more and more people travel and seek access to services on a daily basis. Questions surrounding the integrity of identity documentation, as well as the lack of consistent and effective means for nations to exchange identity information, often leave gaps that can be exploited by criminals, organized crime syndicates and terrorists. Governments should move immediately to develop and implement improved identity management solutions that enable quick and accurate identity information exchange, while protecting individual privacy rights and civil liberties.