A concept called the Internet of Identities (IoI) was introduced by Mark Bowker, that differs from the more familiar Internet of Things (IoT).
The IoT is about, well, things—devices, controllers, actuators, etc. But these things will perform tasks, collect data, connect to other devices, etc. In other words, each device will have an identity with multiple attributes, and each of these attributes must be understood to enable good things to occur and block bad things from happening. Thus, the Internet of Identities.
Now as organisations add thousands or millions of new devices to their internal and cloud-based networks, identity and access management (IAM) technology will go through a massive transformation. An organisation’s IAM infrastructure will have to accommodate:
Massive scale: New IAM technologies will have to support millions of devices (and users), each with its own list of attributes. So, think of an N-by-N matrix of identity attributes. Furthermore, these users and devices may be transient—appearing and disappearing as part of some type of business or operations process. Asset auditing alone will be a massive endeavour.
Privacy and security requirements: Devices need to have hardened configurations, unique identities, multi-factor authentication capabilities, and secure communications from device-to-device. This will require new types of policy engines and enforcement controls that are tightly-integrated with existing networking, cloud, and IAM infrastructure.
Continuous intelligent monitoring: To maintain availability, high-performance, and security, the Internet of identities will require continuous monitoring. Given the emerging scale here, it is safe to say that human beings won’t be able to keep up with activities, so keeping the Internet of identity trains running on time will depend upon an infusion of artificial intelligence and machine learning algorithms that can separate normal from anomalous behaviour and then translate all of this into actionable intelligence for carbon-based life forms.
With all due respect to Microsoft, it may not be possible to manage and secure the IoT with Active Directory(AD)—a technology that was originally designed to compete with Banyan Vines and Novell, way back in the day. Think of AD and multiply it by some exponential factor.
As the IoI takes shape, Bowker expects some pretty big changes.
For example:
Organisations will centralise IAM management and procurement: IAM grew organically in the past and tended to be managed by a loosely-coupled cabal of application developers, IT operations and security folks. As the internet of identities evolves, organisations will realise that they won’t be able to use their existing IAM patchwork deployment to address Internet of identity scale or enable new business processes. At that point, many organisations will make a next-generation identity infrastructure a high priority. Firms will also create positions for chief identity officers, experienced individuals with the right business and technical chops to transform their identity infrastructure and champion a new IAM strategy.
Identity runs to the cloud: The need for massive scale, perpetual connectivity, and processing power to monitor the whole enchilada will drive large organisations to embrace cloud-based IAM services.
Security takes a bigger IAM role: According to ESG research, 66% of organisations claim that their security group is significantly or somewhat more involved with IAM policies, procedures, and technologies today than it was 2 years ago. This is just the beginning however. As the internet of identities takes hold, CISOs will be intimately involved in crafting and enforcing identity policies. Look for a much bigger focus on data privacy as well.
The IT industry has been talking about identity-based computing and identity-based networking for years but it was more of a vision than reality. As the internet of identities evolves, this vision will come true, leading to a period of confusion, innovation, and transformation.
When will this happen? We are driving toward the IoI on-ramp today, but the traffic on the highway is moving a lot faster than we think. In other words, the Internet of Identities and all that comes with it are coming soon.
IDG News Service
Subscribers 0
Fans 0
Followers 0
Followers