DAC in 2 Minutes

By Sandeep Chopra.

In my last two posts on Dynamic Access Control (DAC), I described some of the limitations of traditional approaches to Authorization Management (see here) and how dynamic authorization is different (see here). It’s all about choosing the right tool for the job. more “DAC in 2 Minutes”

A Report From MS TechED 2013: Are We Moving Our Authorization Overhead to the Cloud?

By Mandy Pang.

I just got back from MS Tech Ed in New Orleans. The hot topic was obvious: Microsoft’s new cloud platform, Windows Azure.

I attended multiple sessions (such as this one), and a central message was how easy Azure makes it for IT organizations to move their resources and applications to the cloud. One reason is the flexibility Azure provides to allow organizations to choose which applications to move to the cloud, versus which ones to keep on premise. You can design an approach that works best for you, or even make the transition in strategic increments. more “A Report From MS TechED 2013: Are We Moving Our Authorization Overhead to the Cloud?”

Container-Based Controls versus Dynamic Authorization: The Difference in Windows Environments (Part 1 of 2)

By Sandeep Chopra.

If you are debating whether to upgrade to Windows Server 2012, plenty of articles describe its new security benefits (for example, see here and here). Fewer articles discuss the basic shift in Access Management this release can enable. To understand the potential benefits of one key feature, Dynamic Access Control, it’s useful to compare this approach with more well-known models of Access Management, such as ACLs and Security Groups. This blog is first in a series that compares how Access Management was handled in Windows environments prior to the 2012 release with what’s possible now. more “Container-Based Controls versus Dynamic Authorization: The Difference in Windows Environments (Part 1 of 2)”