Brian Prince

IBM is pushing interoperability as a solution to enterprise identity management and authentication woes. In Version 6.2 of IBM Tivoli Federated Identity Manager, the company has integrated a number of user-focused identity management technologies and frameworks, including OpenID, Microsoft Windows CardSpace and the Eclipse Higgins identity framework. In addition, the software now supports a wide […]

Ingres has bowed to the wishes of its partners by providing an open-source version of its OpenRoad rapid application development platform as a free download, company officials said. OpenRoad is used by developers to build and deploy high-performance and high-availability business applications on a variety of platforms. With this move, the company is open-sourcing the […]

In 2006, five security, systems and networking experts with a combined 40-plus years of experience at Cisco Systems formed a network security startup and took aim at the access management market. Now, two years later, that startup-Rohati Systems-has stepped out of the shadows with a high-speed appliance that relies on user entitlements to control access […]

Enterprises may face an uphill battle to address the fallout from a recently disclosed vulnerability affecting Debian-based Linux distributions that allows hackers to brute-force their way past encryption. The flaw, which was reported May 13 by the Debian Project, rests in the random number generator, which is used to produce cryptographic keys. The vulnerability allows […]

Orphaned accounts are leaving a hole in enterprise security many companies are leaving unplugged. A new study by eMedia USA, commissioned by identity management vendor Symark, found that 27 percent of respondents had more than 20 orphaned accounts currently within their organization. More alarming, more than 38 percent of respondents said they had no way […]

The beta version of Yahoo’s SearchScan security feature has come under fire for false positives and other mistakes. SearchScan is the result of a partnership between McAfee and Yahoo to improve the security of Web searches. The feature, powered by McAfee’s SiteAdvisor, alerts users when sites contain spam, spyware, adware or other malicious software that […]

A botnet is outfitting its army of compromised computers with a SQL injection attack tool to hack Web sites, researchers at SecureWorks have discovered. According to SecureWorks, the Asprox botnet, once used solely to send out phishing e-mails, is pushing the tool out to systems in its network via a binary with the file name […]

CA has entered into a reseller agreement with software company Eurekify in an attempt to add broader role-based identity management offerings to its portfolio in a crowded market. As part of the deal, CA will resell Eurekify Enterprise Role Manager and provide support and services. The move, according to Burton Group analyst Kevin Kampman, gives […]

Microsoft made some waves in the security industry when Windows Live OneCare made its debut two years ago. Roughly six months after the release of Version 2.0, Microsoft has its eyes on the small and midsize business market and building out its anti-malware capabilities. Amy Barzdukas, senior director for Windows Live OneCare, sat down with […]

Microsoft swatted a bug in its Jet Database Engine that attackers were exploiting. Microsoft officials confirmed in March that attackers were using a flaw affecting the Jet 4.0 Database Engine to target Windows users. The company described the attacks at the time as “very limited.” Still, the patch for Jet DB will have the widest […]