Digital Identity (Paperback)

~ Phillip J Windley PH.D. (Author)
Key Phrases: digital identity infrastructure, business function matrix, technical position statements, Bank of America, State of Utah, Interoperability Standards (more...)

Editorial Reviews

Review

"Highly recommended" - Greg Matthews, news@UK, March 2006

Product Description

The rise of network-based, automated services in the past decade has definitely changed the way businesses operate, but not always for the better. Offering services, conducting transactions and moving data on the Web opens new opportunities, but many CTOs and CIOs are more concerned with the risks. Like the rulers of medieval cities, they've adopted a siege mentality, building walls to keep the bad guys out. It makes for a secure perimeter, but hampers the flow of commerce.

Fortunately, some corporations are beginning to rethink how they provide security, so that interactions with customers, employees, partners, and suppliers will be richer and more flexible. "Digital Identity" explains how to go about it. This book details an important concept known as "identity management architecture" (IMA): a method to provide ample protection while giving good guys access to vital information and systems. In today's service-oriented economy, digital identity is everything. IMA is a coherent, enterprise-wide set of standards, policies, certifications and management activities that enable companies like yours to manage digital identity effectively--not just as a security check, but as a way to extend services and pinpoint the needs of customers.

Author Phil Windley likens IMA to good city planning. Cities define uses and design standards to ensure that buildings and city services are consistent and workable. Within that context, individual buildings--or system architectures--function as part of the overall plan. With Windley's experience as VP of product development for Excite@Home.com and CIO of Governor Michael Leavitt's administration in Utah, he provides a rich, real-world view ofthe concepts, issues, and technologies behind identity management architecture.

How does digital identity increase business opportunity? Windley's favorite example is the ATM machine. With ATMs, banks can now offer around-the-clock service, serve more customers simultaneously, and do it in a variety of new locations. This fascinating book shows CIOs, other IT professionals, product managers, and programmers how security planning can support business goals and opportunities, rather than holding them at bay.

See all Editorial Reviews

---

Product Details Paperback: 234 pages Publisher: O'Reilly Media; illustrated edition edition (August 1, 2005) Language: English ISBN-10: 0596008783 ISBN-13: 978-0596008789 Product Dimensions: 9.1 x 6.9 x 0.7 inches Shipping Weight: 14.9 ounces (View shipping rates and policies) Average Customer Review: 4.4 out of 5 stars  See all reviews (12 customer reviews) Amazon.com Sales Rank: #353,266 in Books (See Bestsellers in Books)

---

More About the Author

Discover books, learn about writers, read author blogs, and more.

› Visit Amazon's Phillip J. Windley Page

Front Cover | Table of Contents | First Pages | Index | Back Cover | Surprise Me!

Search Inside This Book:

---

Inside This Book (learn more)

Key Phrases - Statistically Improbable Phrases (SIPs): (learn more)
digital identity infrastructure, business function matrix, technical position statements, identity management architecture, identity management lifecycle, identity management practices, policy suite, infrastructure blueprint, identity infrastructures, authorization assertions, identity data, interoperability framework, identity lifecycle, authentication factors, identity management strategy, management maturity model, federated identity, challenge phrase, identity federation, identity records, identity policies, identity credentials, identity network

Key Phrases - Capitalized Phrases (CAPs): (learn more)
Bank of America, State of Utah, Interoperability Standards, Area Characteristics Business, Apply Functionld, Three Federation Patterns, Identity Management Reference Architectures, Authentication Authentication, San Francisco, Data Security, Brigham Young University, Department of Defense, Federation Federation, Approved Annually, Federating Identity, Provisioning Server

Browse Sample Pages:
Front Cover | Table of Contents | First Pages | Index | Back Cover | Surprise Me!

Search Inside This Book:

---

What Do Customers Ultimately Buy After Viewing This Item?

	77% buy the item featured on this page: Digital Identity 4.4 out of 5 stars (12) $23.07
	7% buy Mechanics of User Identification and Authentication: Fundamentals of Identity Management 4.0 out of 5 stars (4) $56.66
	7% buy IAM Success Tips: Identity And Access Management Success Strategies 5.0 out of 5 stars (5) $91.91
	6% buy LDAP System Administration 3.7 out of 5 stars (21) $26.37

Explore similar items

---

Tags Customers Associate with This Product  (What's this?) Click on a tag to find related items, discussions, and people. Check the boxes next to the tags you consider relevant or enter your own tags in the field below.  idm(2) soa(1) Your tags: Add your first tag

Search Products Tagged with   See most popular tags

---

 

Customer Reviews

12 Reviews 5 star:  (8) 4 star:  (2) 3 star:  (1) 2 star:  (1) 1 star:    (0)           Average Customer Review 4.4 out of 5 stars (12 customer reviews)		Share your thoughts with other customers:
Most Helpful Customer Reviews 10 of 10 people found the following review helpful: 5.0 out of 5 stars Excellent architectural overview of identity management, September 29, 2005 By  Jack D. Herrington "engineer and author" (Silicon Valley, CA) - See all my reviews (TOP 500 REVIEWER)    (REAL NAME)       If you are looking for an architectural level book on tracking and maintaining identity in distributed systems this book is for you. If you are looking for something about managing your personal digital identity, there is nothing here for you. In addition those looking for code samples beware. There are some XML code fragments but this is an architectural level book, which means, no code. The writing is great, and the illustrations are used well to cut through what are often some complex interactions between multiple digital authorities. Definitely worth the look if you know what you are getting. 12 of 14 people found the following review helpful: 4.0 out of 5 stars Very Good Discussion of IT Governance and Digital Identity, August 29, 2005 By  Christopher Byrne "The Business Controls Caddy" (Atlanta, GA USA) - See all my reviews (REAL NAME)    When I received Digital Identity (234 Pages, O'Reilly, 2005, ISBN 0596008783) for review, I was fully expecting I would be slogging through a deep technical dive into identity management architectures (IMA). Boy, was I wrong. What I got was a extremely thorough discussion of identity management architectures within the context of information systems (IS) governance processes. This is the first time I have read a book that so thoroughly weaves technical discussions (at an appropriate level for the intended audience) with a full discussion of the IS governance frameworks that are essential to success when implementing an IMA. There is only one place where Phillip Windley, former CIO of the State of Utah, falls short in this book. Windley is up front in stating that management of digital identities is fundamental to success in information technology. He also makes it clear that the purpose of the book is not to show how to design and implement an IMA. It is about understanding IMAs in a business context. Windley also does an excellent job at showing why critics of digital rights management (DRM) (as enforced by the movie and record industries), are doing more of a disservice by framing the DRM dialog in the wrong context. A such, people are predisposed in their opinions whenever the discussion comes up in any context. Stating this up front, the reader of the book will walk through an explanation of what digital identity is, the concept of trust, the lifecycle of digital identity, and the business reasons for it. After laying the groundwork, as well as covering interoperability and federation of identity, the authors covers what really should be the best practices for any organization. By pulling from his own experiences he is able to substantiate that what he is saying is not just "theory". It is based on real experience. This is, however, the point where I feel the author's lack of full disclosure keeps the book from being even stronger than it is. In his struggle to bring strong IS governance to the state of Utah. You see the reality is that if you come into an organization like a bull in the china shop, you are going to make enemies. From what he is written in this book, this seems to be the style he employed when trying to unify the Utah information infrastructure. The result of this, that is not covered in the book, is that he was forced to resign as CIO under the cloud of an investigation of improper hiring practices. I believe that if he had included this information in the book, along with lessons learned, the book would have been truly outstanding. Because it wasn't, I have to knock it down to 4.5 stars out of 5. Note: In an e-mail exchange with the author, he indicated that although he strongly disagreed with what was in that report, his office never published a response to that report either formally or informally. Who Should Read This Book This is usually where I write a list of specific job types who should read this book, but this time I want to approach it from a different angle. This book should be read by any IT professional that wants to expand their knowledge and expertise beyond wires, pliers, and lines of code. It is this type book that will allow them to do so without totally stepping outside of their comfort zone. At the same time, it should also be read by anyone involved in IT Audit and/or governance issues. Worried that there will not be enough technical content for you? Don't. Technical matter is covered at an appropriate level to get a broad understanding, but in a way not to loose a nontechnical reader. The Scorecard Birdie on a Long Par 5 5 of 6 people found the following review helpful: 4.0 out of 5 stars Good introduction to IMA, November 15, 2005 By  Ben Rothke "Author of 'Computer Security: 20 ... (USA) - See all my reviews (TOP 1000 REVIEWER)    (REAL NAME)    Many people who review their credit report for the first time are shocked to learn how many identities are linked to them. Even when there is no problem of identity theft, it is not uncommon for people to have 10 or more names linked to their credit reports due to various errors, including permutation of their name. Just as it is difficult to maintain and manage identities in the real world, it is difficult to maintain and manage digital identities. As the digital economy is becoming more ubiquitous, the need for a single federated identity is becoming more critical. In Digital Identity, Phillip Windley details the steps needed to develop an identity management architecture (IMA). Identity management has become a pressing need in the past few years. This has come about because networks and systems are no longer geared around a single infrastructure, and businesses have become increasingly virtual and decentralized. In previous years, there were simply internal users. Today, systems have internal users, along with external users such as consultants, contractors, third-parties, customers, collaborators, and many more. Such requirements necessitate a well-designed and planned IMA. So what is this thing called IMA? Windley defines an IMA as the coherent, enterprise-wide set of standards, policies, certifications, and management activities that enable an organization to effectively manage digital identities. IMA is also known as federated identity. The book notes that the real challenge in developing a federated identity infrastructure is dealing with the various different hardware and software platforms where user accounts reside, and working with different organizations and departments, including the ever-increasing amount of outsourcing. When all of that is put together, a single federated identity is not easy to come by if there is not an IMA in place. The beauty of an IMA is that it allows an organization to securely link and exchange identity information across partner, supplier, and customer organizations, while having a single architecture. This makes identity management seamless. The first 11 chapters of Digital Identity do a good job of introducing the underlying concepts of an IMA, including security, trust, authentication, access control, and names and directories. Without an effective security infrastructure in place, any IMA deployed will not be fully effective. One oddity, though, is that in Chapter 6, the author defines cryptography as the science of making the cost of discovery of hidden information greater than the value of the information itself. This is the author's own characterization of cryptography and while interesting, is not how it is used in mainstream security. Chapter 12 starts to get into the internals of federated identities. This and the rest of the chapters do not deal with the deep technical details of an IMA, rather it shows how to design and deploy the IMA in a context of a corporate environment under a single set of policies and procedures. Windley emphasizes that an IMA is not so much a technical issue, but rather a business issue that must be deployed in a business context. This idea of a business context is manifest in Chapter 18, which deals with identity policies. The book creates what it calls an IMA policy stack, which is the interoperability framework for the IMA. The stack includes all of the elements necessary for the IMA, and comprises an identity management architecture, framework, and set of standards. The standards include all protocols and applications, from SSL, XML, LDAP, DNS, and much more. The framework includes policy issues such as naming, passwords, encryption, provisioning, and more. Finally, the architecture details the specific high-level controls (procurement, contracts, licensing, etc.) around the IMA. The book itself is worth it solely for the information in this chapter. Anyone attempting to deploy an IMA without first getting a handle on the issues details in Chapter 18 will find that their IMA will likely be seriously deficient. The only negatives to the book are a few too many editing mistakes that should have been caught during the editing process. Also, the author frequently discusses his own trials and tribulations of using an IMA during his short stint as CIO of the State of Utah and with previous employers. Depending on the readers' specific tastes, some my find the heavy use of the first-person anecdotes to be a negative. Overall, Digital Identity provides the reader with a good introduction to the various areas necessary to develop a productive identity management infrastructure. Anyone planning to deploy an IMA or any sort of federated identity solution in a corporate environment will find Digital Identity a valuable reference.		Ad feedback   Most Recent Customer Reviews 2.0 out of 5 stars Poorly written high-level content. In my opinion, this book is really feeding the buzzwords frenzy of Identity management domain . It certainly "talks the talk", but can it "walk the talk"? Read more Published 21 months ago by Craig Anderson 5.0 out of 5 stars Excellent book on Identity Management Identity Management is my day to day job as our company heavily focuses on various IAM initiatives.I was always looking for a book that can give enough material on how to go about... Read more Published on July 26, 2007 by Ramnath Krishnamurthi 5.0 out of 5 stars Practical and Informative A great book, cover to cover - and exceptionally well organized. The subject matter is covered in a methodical, clear manner, and is applicable to both the expert and the neophyte... Read more Published on June 25, 2007 by Joseph L. Hardin 3.0 out of 5 stars high-level concepts but no practical guidance This book gives a hello world introduction about digital identity concepts and nothing beyond. The book absolutely fails and falls short on explaning the identity management... Read more Published on March 21, 2007 by Prasad Reddy 5.0 out of 5 stars Short but useful intro to identity management This book is designed to familiarize CIOs, IT managers, and other IT professionals with the language, concepts, and technology of digital identity. Read more Published on January 4, 2007 by calvinnme 5.0 out of 5 stars Clear and comprehensive Ever noticed how many of the most useful books are really short? Kernighan and Ritchie on C Programming and Kent Beck on Extreme Programming come to mind, well now we have a... Read more Published on November 24, 2006 by Gunnar Peterson 5.0 out of 5 stars Typical O'Reilly Poduct - Perfection If you want to learn about IDM, this is a great book. It is worth the time and money. Published on June 21, 2006 by Bruce Levis 5.0 out of 5 stars If you want to know IDM and do not know whwere to start! One of the best coverings of the Identity Management space and I am sure that Phillip could have written several thousand more pages on the subject. Read more Published on May 3, 2006 by James S. Willeke 5.0 out of 5 stars Covers all the bases and then some Very well written and organized, this book can save you a lot of grief. Author is absolutely correct, Identity Management is a far less technical subject than it is political... Read more Published on April 7, 2006 by Eclectic Enthusiast Search Customer Reviews Only search this product's reviews

---

Customer Discussions

This product's forum Discussion Replies Latest Post No discussions yet Ask questions, Share opinions, Gain insight Start a new discussion Topic: First post: Receive e-mail when new posts are made Prompts for sign-in   Guidelines Active discussions in related forums Discussion Replies Latest Post networking Wireless solution for a wired device 9 1 day ago networking Wireless routers-which one is the best? 10 5 days ago networking Range booster 28 14 days ago networking Wireless to wireless....... 3 17 days ago Search Customer Discussions Search all Amazon discussions

The Security community Latest activity 18 minutes ago 2,123 customers have contributed 1,506 products, 89 lists & guides and more... › Explore the community The Java community Latest activity 1 day ago 1,389 customers have contributed 884 products, 76 lists & guides and more... › Explore the community Related forums java (1 discussion) networking (73 discussions) oreilly books (2 discussions) security (3 discussions) Explore more › See all Customer Communities › Your communities

---

Listmania!

Towards GGG, Web 2.0 / 3.0 , the Semantic Web, SOA and beyond...: A list by Peter Stomenhoff "Practice Manager -- Oracle Identity Management, GRC, GGG and Security -- License & Solution Sales Lead Architect"   Digital Identity Management (IAM, IdM), LDAP, Federated ID: A list by Peter Stomenhoff "Practice Manager -- Oracle Identity Management, GRC, GGG and Security -- License & Solution Sales Lead Architect"   My Non-fiction Bookshelf: A list by Simon Create a Listmania! list

Search Listmania!

---

So You'd Like to...

Become a Computer Security Expert: A guide by GuitarPlayer Create a guide

Search Guides

---

Product Information from the Amapedia Community

Beta (What's this?)

Digital Identity

Phil Windley is also blogging at www.windley.com

(Report this)

Created on Nov 24, 2005, last edited on Nov 24, 2005.

› Explore and Edit at Amapedia.com

---

Look for Similar Items by Category

• Books > Computers & Internet > Business & Culture > Privacy
• Books > Computers & Internet > Computer Science > Software Engineering > Information Systems
• Books > Computers & Internet > Hardware
• Books > Computers & Internet > Networking > Network Security
• Books > Computers & Internet > Programming
• Books > Computers & Internet > Web Development > Security & Encryption > Encryption

---

Look for Similar Items by Subject

Search Books by subject:
Computer networks - Security measures
Computers - Computer Security
Computers / General
Computers / Internet / Security
Computers / Security / General
Computers / Social Aspects / General
Security - General
Computing & information technology
Data encryption
Data security & data encryption
Computers
Computer Books: General
Computer networks
Computer security
Security measures
Computing: Professional & Programming


i.e., each book must be in subject 1 AND subject 2 AND ...

Ad feedback

 

Feedback If you need help or have a question for Customer Service, contact us.  Would you like to update product info or give feedback on images? Is there any other feedback you would like to provide? Your comments can help make our site better for everyone. Please note that we are unable to respond directly to all feedback submitted via this form, but we'll ask you to sign in so we can contact you if needed.

Your Recent History

 (What's this?)

After viewing product detail pages or search results, look here to find an easy way to navigate back to pages you are interested in.

› View and edit your browsing history

Get to Know Us Careers Investor Relations Press Releases Amazon and Our Planet Make Money with Us Sell on Amazon Join Associates Self-publish with Us › See all Let Us Help You Shipping Rates & Policies Amazon Prime Returns Help

Canada | China | France | Germany | Japan | United Kingdom  And don't forget: Amazon Windowshop | AmazonWireless | Askville | Audible | DPReview | Endless | IMDb | Shopbop | SoundUnwound | Warehouse Deals by Amazon | Zappos Conditions of Use | Privacy Notice  © 1996-2009, Amazon.com, Inc. or its affiliates

Product Details

• Paperback: 234 pages
• Publisher: O'Reilly Media; illustrated edition edition (August 1, 2005)
• Language: English
• ISBN-10: 0596008783
• ISBN-13: 978-0596008789
• Product Dimensions: 9.1 x 6.9 x 0.7 inches
• Shipping Weight: 14.9 ounces (View shipping rates and policies)
• Average Customer Review: 4.4 out of 5 stars  See all reviews (12 customer reviews)
• Amazon.com Sales Rank: #353,266 in Books (See Bestsellers in Books)

Customer Reviews

Most Helpful Customer Reviews

10 of 10 people found the following review helpful:

5.0 out of 5 stars Excellent architectural overview of identity management, September 29, 2005

By	Jack D. Herrington "engineer and author" (Silicon Valley, CA) - See all my reviews (TOP 500 REVIEWER)    (REAL NAME)

If you are looking for an architectural level book on tracking and maintaining identity in distributed systems this book is for you. If you are looking for something about managing your personal digital identity, there is nothing here for you. In addition those looking for code samples beware. There are some XML code fragments but this is an architectural level book, which means, no code.

The writing is great, and the illustrations are used well to cut through what are often some complex interactions between multiple digital authorities. Definitely worth the look if you know what you are getting.

12 of 14 people found the following review helpful:

4.0 out of 5 stars Very Good Discussion of IT Governance and Digital Identity, August 29, 2005

By	Christopher Byrne "The Business Controls Caddy" (Atlanta, GA USA) - See all my reviews (REAL NAME)

When I received Digital Identity (234 Pages, O'Reilly, 2005, ISBN 0596008783) for review, I was fully expecting I would be slogging through a deep technical dive into identity management architectures (IMA). Boy, was I wrong. What I got was a extremely thorough discussion of identity management architectures within the context of information systems (IS) governance processes. This is the first time I have read a book that so thoroughly weaves technical discussions (at an appropriate level for the intended audience) with a full discussion of the IS governance frameworks that are essential to success when implementing an IMA. There is only one place where Phillip Windley, former CIO of the State of Utah, falls short in this book.

Windley is up front in stating that management of digital identities is fundamental to success in information technology. He also makes it clear that the purpose of the book is not to show how to design and implement an IMA. It is about understanding IMAs in a business context. Windley also does an excellent job at showing why critics of digital rights management (DRM) (as enforced by the movie and record industries), are doing more of a disservice by framing the DRM dialog in the wrong context. A such, people are predisposed in their opinions whenever the discussion comes up in any context.

Stating this up front, the reader of the book will walk through an explanation of what digital identity is, the concept of trust, the lifecycle of digital identity, and the business reasons for it. After laying the groundwork, as well as covering interoperability and federation of identity, the authors covers what really should be the best practices for any organization. By pulling from his own experiences he is able to substantiate that what he is saying is not just "theory". It is based on real experience.

This is, however, the point where I feel the author's lack of full disclosure keeps the book from being even stronger than it is. In his struggle to bring strong IS governance to the state of Utah. You see the reality is that if you come into an organization like a bull in the china shop, you are going to make enemies. From what he is written in this book, this seems to be the style he employed when trying to unify the Utah information infrastructure. The result of this, that is not covered in the book, is that he was forced to resign as CIO under the cloud of an investigation of improper hiring practices. I believe that if he had included this information in the book, along with lessons learned, the book would have been truly outstanding. Because it wasn't, I have to knock it down to 4.5 stars out of 5.

Note: In an e-mail exchange with the author, he indicated that although he strongly disagreed with what was in that report, his office never published a response to that report either formally or informally.

Who Should Read This Book

This is usually where I write a list of specific job types who should read this book, but this time I want to approach it from a different angle. This book should be read by any IT professional that wants to expand their knowledge and expertise beyond wires, pliers, and lines of code. It is this type book that will allow them to do so without totally stepping outside of their comfort zone. At the same time, it should also be read by anyone involved in IT Audit and/or governance issues. Worried that there will not be enough technical content for you? Don't. Technical matter is covered at an appropriate level to get a broad understanding, but in a way not to loose a nontechnical reader.

The Scorecard

Birdie on a Long Par 5

5 of 6 people found the following review helpful:

4.0 out of 5 stars Good introduction to IMA, November 15, 2005

By	Ben Rothke "Author of 'Computer Security: 20 ... (USA) - See all my reviews (TOP 1000 REVIEWER)    (REAL NAME)

Many people who review their credit report for the first time are shocked to learn how many identities are linked to them. Even when there is no problem of identity theft, it is not uncommon for people to have 10 or more names linked to their credit reports due to various errors, including permutation of their name.

Just as it is difficult to maintain and manage identities in the real world, it is difficult to maintain and manage digital identities. As the digital economy is becoming more ubiquitous, the need for a single federated identity is becoming more critical. In Digital Identity, Phillip Windley details the steps needed to develop an identity management architecture (IMA).

Identity management has become a pressing need in the past few years. This has come about because networks and systems are no longer geared around a single infrastructure, and businesses have become increasingly virtual and decentralized. In previous years, there were simply internal users. Today, systems have internal users, along with external users such as consultants, contractors, third-parties, customers, collaborators, and many more. Such requirements necessitate a well-designed and planned IMA.

So what is this thing called IMA? Windley defines an IMA as the coherent, enterprise-wide set of standards, policies, certifications, and management activities that enable an organization to effectively manage digital identities.

IMA is also known as federated identity. The book notes that the real challenge in developing a federated identity infrastructure is dealing with the various different hardware and software platforms where user accounts reside, and working with different organizations and departments, including the ever-increasing amount of outsourcing. When all of that is put together, a single federated identity is not easy to come by if there is not an IMA in place.

The beauty of an IMA is that it allows an organization to securely link and exchange identity information across partner, supplier, and customer organizations, while having a single architecture. This makes identity management seamless.

The first 11 chapters of Digital Identity do a good job of introducing the underlying concepts of an IMA, including security, trust, authentication, access control, and names and directories. Without an effective security infrastructure in place, any IMA deployed will not be fully effective.

One oddity, though, is that in Chapter 6, the author defines cryptography as the science of making the cost of discovery of hidden information greater than the value of the information itself. This is the author's own characterization of cryptography and while interesting, is not how it is used in mainstream security.

Chapter 12 starts to get into the internals of federated identities. This and the rest of the chapters do not deal with the deep technical details of an IMA, rather it shows how to design and deploy the IMA in a context of a corporate environment under a single set of policies and procedures. Windley emphasizes that an IMA is not so much a technical issue, but rather a business issue that must be deployed in a business context.

This idea of a business context is manifest in Chapter 18, which deals with identity policies. The book creates what it calls an IMA policy stack, which is the interoperability framework for the IMA. The stack includes all of the elements necessary for the IMA, and comprises an identity management architecture, framework, and set of standards. The standards include all protocols and applications, from SSL, XML, LDAP, DNS, and much more. The framework includes policy issues such as naming, passwords, encryption, provisioning, and more. Finally, the architecture details the specific high-level controls (procurement, contracts, licensing, etc.) around the IMA.

The book itself is worth it solely for the information in this chapter. Anyone attempting to deploy an IMA without first getting a handle on the issues details in Chapter 18 will find that their IMA will likely be seriously deficient.

The only negatives to the book are a few too many editing mistakes that should have been caught during the editing process. Also, the author frequently discusses his own trials and tribulations of using an IMA during his short stint as CIO of the State of Utah and with previous employers. Depending on the readers' specific tastes, some my find the heavy use of the first-person anecdotes to be a negative.

Overall, Digital Identity provides the reader with a good introduction to the various areas necessary to develop a productive identity management infrastructure. Anyone planning to deploy an IMA or any sort of federated identity solution in a corporate environment will find Digital Identity a valuable reference.