Gartner Blog Network

Posts from Date:   2009-5

Privacy Risks Get Real – California Privacy Laws, Octomom, and Kaiser Permanente

by Ian Glazer  |  May 15, 2009

No organization wants to be the first  to be fined because of a new regulation. Unfortunately, that’s exactly where Kaiser Permanente finds itself.  After some high profile cases of unauthorized access to celebrities’ medical records, the California legislature adopted two new privacy laws (SB 541 and AB 211);  these regulations were so swiftly enacted that they […]

Read more »

Nailing Down the Definition of “Entitlement Management”

by Ian Glazer  |  May 13, 2009

Ian Yip’s take on access management versus entitlement management can be partially summed up with this equation: Entitlement management is simply fine-grained authorisation + XACML I have four problems with this. First, definitions that include a protocol are worrisome as they can overly restrict the definition. For example, if I defined federation as authentication via SAML, […]

Read more »