All the latest UK technology news, reviews and analysis

Summit: Cloud rush leads to ID overload

by Shaun Nichols

More from this author

11 Nov 2009

Be the first to comment

  • Tweet this
storage
Cloud services may not be as attractive as they first seem

Summit-box-logoThe rush to adopt online services has created the potential for even greater IT management headaches.

While both companies and industry analysts have pointed to cloud services as a way to simplify IT management, such a move is not without its complications, note experts.

VeriSign vice president of authentication Kerry Loftus told V3.co.uk that her company has noticed that vendors, consumers and enterprises are all feeling the growing pains of cloud migration.

Among the biggest problems is identity management. As companies move to new services, more and more login credentials must be created both for each service and each individual user. The result is an unprecedented jumble of credentials to manage.

"The matter of user name and password has gotten much more complicated," Loftus said.

"It used to be you would get a Windows login and a password, and you would have access to everything, but now even within VeriSign I probably have access to seven or more SaaS apps."

One solution that has been offered by vendors has been the "single sign-on" programme. Vendors such as Amazon, Facebook and Google have made efforts to introduce services that allow for a single set of credentials to work on multiple sites.

However, the single sign-on model has a major security weakness. When multiple sites use the same credentials, a breach at one business can be disastrous for the entire network.

"The value of that username and password is even larger than it was before," said Loftus.

"The weakest link in the chain can open up the biggest can of worms and potentially create complications that we have not seen in the past."

Loftus said that some vendors have sought to beef up security with two-factor systems, such as key fobs or mobile phone applications that randomly generate a new passcode each time a user logs in.

While early trials of such systems have been promising, Loftus estimates that such programmes are only in use by some five per cent of users, leaving the technology well within its "early adopter" phase.

Visit our dedicated Summit web site for more breaking news, views, analysis and video on the topic of Information Overload.

Do you agree?

 

Add your comment

We won't publish your address
By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.

Poll

IT priorities for 2012

What is the most important IT priority for your company this year?

99%

0%

1%

0%

0%

Connect with V3.co.uk

Sign up to our daily or weekly newsletters

Accurev

Top 5 software development challenges

This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes

Talend

Rubbish in, rubbish enterprise

Why good data management at all levels is essential in the modern business (video, 6mins)

Project Manager WAN SP Infrastructure M3 M4 Corridor

Prince 2 Project Management Professional, Client Facing...

solution architect

Solution Architect / Technical Project Manager / Corporate...

solution architect

Solution Architect / Technical Project Manager / Corporate...

Administrator - Global Corporate Actions

Tier 1 Investment Bank seeks an Administrator with an...

To send to more than one email address, simply separate each address with a comma.