Obama Passport Breach

I was reading the news yesterday and this morning on the case of certain contractors accessing Obama's passport records and the firing of certain individuals involved. What was really interesting to me, as we consider the case as it has been reported, is that the individuals involved had the correct access levels to get this information. So in technical parlance they had been authenticated to the system, they were authorized to access passport records, but it was a business policy that was violated -- no data access for non-official business. 

I wonder how many businesses have not even considered this a potential risk and compliance issue? The good news is that with Sun identity offerings and our latest product Sun Role Manager we can help customers address these needs.

 Update: Now it seems that it is all candidates... I wonder what else these contractors were doing? Mmmm...

-Mark

Posted at 09:36AM Mar 21, 2008 by Mark Herring in Application Infrastructure  |  Comments[0]  |  | |