• My Kuppinger Cole Services for registered users »
• See the photos Check out our photo gallery »
• Get the presentations Download EIC 2010 presentations »

Kuppinger Cole News

• Access to EIC 2011 presentations
• Martin Kuppinger: Warum IAM inzwischen ein Thema f�r die Unternehmensf�hrung ist
• IT Security?s little ?Pulchinella Secret?
• Interview with J�rg Heuer, Deutsche Telekom Laboratories
• Interview with Fulup Ar Foll, Oracle

Managing the Operational Risks of Online Identities 23.04.2008 14:00-15:00

Managing the Operational Risks of Online Identities

Stefan Dodel, Oracle • Dr. Rob van der Staaij, Everett • Mike Davies, Verisign

The world of online business is poised to experience significant growth over the next several years. Put that alongside the ever-increasing sophistication and organization of fraudsters, and organizations are faced with the daunting task of not only translating their businesses to the online world, but doing so in a way that does not put them or users at risk. Drawing on lessons from the past, such as those hard learned in the Anti-Money Laundering (AML) arena, it will be critical that...

How to avoid internal Fraud I 23.04.2008 15:00-16:00

Rogue Trading and the changing Face of Threats

Terry Schoen, Entrust • Jaap Scheepstra, IDMpartners • Marc Hudavert, ActivIdentity • Calum MacLeod, Cyber-Ark • Jackson Shaw, Quest Software • Berthold Kerl, Deutsche Bank AG • David Ting, Imprivata

Most financial institutions nowadays have sophisticated risk management tools in place, maybe even profiling traders and their habits, searching email traffic for keywords which might be worth checking for fraudulent activities, and much more. But what sense would all that make, if authorizations and priviliges are not provisioned or, more important, de-provisioned in time, and if access to internal applications is not secured with strong authentication and even biometric identification? If...

Compliance Profiling for Finance Systems

Dr. Wolfgang Boehmer, Darmstadt University

What is necessary to track down manipulations to (financial) applications? How can regulatory compliance be audited and monitored in a cost-sensitive yet effective way? Dr. Boehmer has worked on a model for automated monitoring of the fulfillment of legal, institutional, and organizational requirements, which he calls "compliance analysis". In contrast to classic methods used for safeguarding corporate networks, which can primarily be described using first order logic calculus,...

How to avoid internal Fraud II 23.04.2008 16:30-17:30

Enforcing Segregation of Duties through Provisioning and Attestation

Dr. Martin Dehn, KOGIT GmbH • Walter Kuron, IZB Informatik-Zentrum

The ever-increasing complexity of regulatory frameworks require risks from internal fraud, data manipulation and theft of intellectual property to be managed, measured and quantified, thus pushing identity management towards governance, risk management and compliance (GRC). Currently, there is a paradigm shift visible in the management of identity risks. Traditional user provisioning solutions are dealing proactively with enforcing policies for access rights. However, the implementation of...