Identity & access management jonas syrstad

624 views
571 views

Published on

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
624
On SlideShare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
18
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Identity & access management jonas syrstad

  1. 1. Identity & accessmanagementTHE KEY TO THE FLEXIBLE WORKSPACEJonas Syrstad, jsy@pragma.no
  2. 2. Disclaimer Avoiding any specific implementation No deep dive into the protocols Focus on Enterprises
  3. 3. Key elements; the 4 A’s Administration Authentication Authorization Auditing
  4. 4. Administration Identity synchronization  Data flow  Ownership Premission management  Access  Rights
  5. 5. Challenges Ownership of data elements Processes Data flow
  6. 6. Authentication Trusted 3rd party Claims based identity Open standards  WS-*  SAML
  7. 7. Claims based identity A Claim is a statement that is true or false A Security token consists of one or many claims Examples of claim types  Name  Email  Gender  Group membership  Role
  8. 8. Claims based identityarchitecture Security tokens issued by a trusted 3rd party Consumed by a relying party Penetrates trust and technology boundaries
  9. 9. Claims based identityarchitecture Claims Provider (STS like ADFS) 4. Provide security token 3. Request Security token 5. Submit security token Client Relying party (Browser, 2. Demand Security token (ASP.NET, mobile app, WCF service 1. Request application) access ++)
  10. 10. Technologies WS-* Enterprise SAML 2.0 Hybrid OAuth Consumer OpenId
  11. 11. Authorization Determine what the user is allowed to do An application responsibility Device classification  What  Where  When
  12. 12. Auditing Which applications does the users have access to? How do we track a user across systems and modules  Single view of user activity  Automated actions on breaches of protocol

×