Latest Entries

RSS Feed
  • OAuth2 for IoT?


    Today, consumers have no way to centrally manage access to all their Web stuff and IOT devices are threatening to create a whole new silo of security problems. This is one of the reasons I’ve been participating in the Open InterConnect Consortium Security Task Group. People can’t individually manage every IOT device in their house. … Read more >>

    Email
  • Keeping the lights on (or off).


    Someone famous said “If you can switch a light, you can topple an empire.” I don’t have an empire, but it still got me wondering… after IOT happens, how will I control my lights? People have a terrible track record managing the security of their digital IT infrastructure. Whether the hackers are bad guys trying … Read more >>

    Email
  • Authorization is the new Authentication


    The days are past when a single authorization point was sufficient for serious website security. Modern man-in-the-middle attacks target the browser. Once in the browser, hackers can use the cookies present to start a new browser instance in the background, already logged into whatever sites the person is using. Authentication is like the castle portcullis. … Read more >>

    Email
  • Gluu Sever 1.9 is released!


    The documentation on how to build the Gluu Server on Centos is here: http://www.gluu.co/ce-centos Notes from Mike Schwartz: The Gluu Server is an amalgamation of open source components. In the past, no one could build the Gluu Server from our open source instructions. It was just too darn hard. The only way you could get … Read more >>

    Email
  • The Gluu in an NSTIC Pilot


    Last week, there was a lot of press around the the announcement of this year’s NSTIC pilots. Here at Gluu, we are excited to participate in one of these projects, and are hopeful that it will be a nice showcase for free open source software and the power of open standards for security. The goal … Read more >>

    Email
  • PR from our recent NSTIC Pilot Award


    A complete run down of who published news about our NSTIC Pilot award, and the people on twitter who tweeted and retweeted the announcement. Learn more about Gluu’s involvement in the NSTIC Pilot. Our Award MorphoTrust and the State of North Carolina Lead Public-Private Partnership to Pilot First Secure Electronic ID: http://www.marketwatch.com/story/morphotrust-and-the-state-of-north-carolina-lead-public-private-partnership-to-pilot-first-secure-electronic-id-2014-09-17 Market Watch, September … Read more >>

    Email
  • The Gluu Server: the WordPress of IAM


    One of our goals for the Gluu Server is to replicate the success of WordPress, the popular open source content management system (CMS) used by more than 72 million domains on the Internet (including this one!). Along the way, we’ve identified many similarities between the two platforms. Just like a CMS, every domain on the … Read more >>

    Email