Lack of Identity Data Security Practices

If you and/or your tools (i.e. laptop, usb, network share, backup tapes, paper reports, etc) are a conduit for identity data, understand that there is no excuse for allowing this data to be exposed, accidentally or otherwise.
- Take a strategic, layered approach to data security, rather than focusing solely on one or two exposure points.
- Encrypt sensitive data on laptops.
- Adopt and enforce levels (secret, classified, sensitive, general, etc) of data classification and don't allow employees to transfer defined levels of data to unmanaged systems or PCs.
- Consider using end-point activity enforcement products to restrict USB transfers.
- Use a content-filtering technology along with enforced policies that can monitor and restrict transferring of sensitive data over networks
- Deploy two-factor authentication for all users to access data.
- Audit authentication.

inames - an Internet identity assertion

Here! Here! Finally the long awaited identity service that will move us past managing identities inside the enterprise in a silo, beyond federation. Project Higgins and soon to be integrated Project Bandit will give a whole new meaning to "doing business with others" over the internet. I will be watching the official inames launch in June.
The smart guys, along with a maturing technology, has created the ability to take a collection of attributes to create a structure of your identity that will be used in the process of authorization and authentication of who, what, when, where, and how you are.