TechWhirl (TECHWR-L) is a resource for technical writing and technical communications professionals of all experience levels and in all industries to share their experiences and acquire information.
For two decades, technical communicators have turned to TechWhirl to ask and answer questions about the always-changing world of technical communications, such as tools, skills, career paths, methodologies, and emerging industries. The TechWhirl Archives and magazine, created for, by and about technical writers, offer a wealth of knowledge to everyone with an interest in any aspect of technical communications.
Re: Who gets the magic scepter when there are three of it?
Subject:Re: Who gets the magic scepter when there are three of it? From:Paul Goble <pgcommunication -at- gmail -dot- com> To:TECHWR-L <techwr-l -at- lists -dot- techwr-l -dot- com> Date:Fri, 1 Oct 2010 08:22:00 -0500
Another variation is to have the secretary hold the janitor's token in
a lockbox to which the janitor has a key, thus adding a layer of human
authentication for the less-than-perfectly-trusted token holder.
Of course, any such multi-factor authentication system needs to
consider what happens when the CSO and CIO are both involved in, say,
a plane crash when they violate the organization's "no two key people
in one place at one time" rule. An organization this
security-conscious needs to have enough people to hold the split
tokens, AND enough people to act as backups in any conceivable
contingency, AND a plan to activate the backups.
To bring the topic back around to tech writing... Not having worked
with a system quite this secure, I wonder who typically writes the
security policies--the system vendor or the client organization? How
does one write and convey a plan so that the backup people can step
into their roles with a minimum of confusion and delay?
--
Paul Goble
www.pgcommunication.com
> 2010/9/27 Jefe de redacción <editorialstandards -at- gmail -dot- com>
>
>> I had a nice table where I described a system of authentication tokens that
>> should normally be held by different people. We can hardly suggest that the CSO keep one split of
>> his token, give one to his secretary, one to the janitor...
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Create and publish documentation through multiple channels with Doc-To-Help.
Choose your authoring formats and get any output you may need. Try
Doc-To-Help, now with MS SharePoint integration, free for 30-days. http://www.doctohelp.com
LavaCon 2010 in San Diego Sept 29 - Oct 2 is now open for registration.
Use referral code TECHWR-L for $50 off conference tuition!
See program at: http://lavacon.org/
---
You are currently subscribed to TECHWR-L as archive -at- web -dot- techwr-l -dot- com -dot-
