Building a Secure Cloud with Identity Management

<Insert Picture Here>Building a Secure Cloud with Identity ManagementMarc Chanliau, Director of Product Management, OracleBrian Baird, CTO for SaskTel Identity Management Center of Excellence, SaskTel

This document is for informational purposes. It is not a commitmentto deliver any material, code, or functionality, and should not be reliedupon in making purchasing decisions. The development, release,and timing of any features or functionality described in this documentremains at the sole discretion of Oracle. This document in any form,software or printed matter, contains proprietary information that is theexclusive property of Oracle. This document and informationcontained herein may not be disclosed, copied, reproduced ordistributed to anyone outside Oracle without prior written consent ofOracle. This document is not part of your license agreement nor canit be incorporated into any contractual agreement with Oracle or itssubsidiaries or affiliates.

Agenda• Barriers to Cloud Adoption• Security Gaps Between Enterprise and Cloud• Oracle Identity Management• Summary

Security is the #1 Barrier to Cloud Adoption 87% Security main barrier to cloud adoption Source: IDC Enterprise Panel, 3Q09 52% Concerned with trusting an outside 3rd party Source: IDC Cloud Security Survey 2011` 41% Fear a security breach from use of security SaaS Source: IDC Cloud Security Survey, 2011Cloud Computing saves costs butreduces control, visibility and trust 40% Compliance concerns prevent use of SaaS Source: IDC Cloud Security Survey, 2011

The Cloud Security ContinuumHIGHMED-HIGH Public Cloud RISK Private Hosted CloudMED-LOW Private In House Cloud Cloud computing increasesLOW risk and decreases control Enterprise CONTROL HIGH LOW 1990 1995 2000 2005 2008

Risk and Fragmentation Increase Latency • Security silos result in policy fragmentation • Multiple points of failure • Security gaps increase vulnerabilityLATENCY to breaches • Poor response to threats RISK • Latency increases with fragmentation • Inability to develop and deploy applications and users FRAGMENTATION

Identity Management And The Cloud Custom  Standardized Solutions• Customer Benefits Private Managed Hybrid Utility • Reduce Capital Expenses With Subscription Pricing • Reduce Management Costs And Simplify Upgrading • Leverage Elastic Scalability Services SaaS • Enable Hybrid Cloud Computing Cloud• Natural Maturation Of The IT Industry • Customers Want Fully Integrated Industry-vertical Outsourced Business Solutions • Cost To Integrate & Deploy Is A Major Inhibitor To Idm’s Success; Far Exceeds Cost To Acquire & Manage On-Premise • In The End Very Few Customers Will Want “Parts” Past  Future

Dimensions of Cloud Identity Management Are you building Do you need IdM but don’tAre you using cloud want to maintain it? apps? c cloud apps? c Identity as a Identity as a Identity Hosted asBridge to Cloud Foundation for Cloud a Cloud Service

Authentication and SSO • Access anytime, anywhere from any device • Mobile authentication, SSO and access control • Connect Internet and Social identities to enterprise identity • Seamless integration and control with enterprise

Federated Standards • Multiple standard support for authentication to multiple clouds • SAMLEmployees/Con Social Networks • OAuth tractors • OpenID • WS-Fed • Accelerated on boarding of partners and service providers Partners/ SaaS Subsidiaries Applications

Authorization • Centralized Policy Centralized Policy Enforcement Administration • Distributed Real-time Policy Execution • Standards-based policies: XACML, RBAC, ABAC, JAA SEvaluate Policies and Policy Enforcement for Enforce Access Apps, Middleware and Databases

Context-Aware Security and Fraud Prevention User: Jdoe • Location aware Paswd:1happycat$ User: Jdoe • Device aware Paswd:1happycat$Entitlement Policy • Entitlements based User: Jdoe • Enterprise control Paswd:1happycat$ • Full audit Filtered Private Data Trust but Verify: Limit Access by Policy

User Provisioning and Role Management • User lifecycle management for on- premise and SaaS applications • Self-service provisioning and Users Apps Roles, Entitlements request mgmt • Flexible – Roles, rules and policies Managers

Audit and Compliance • Access certification • Risk scoring • Privileged access control • Workflow remediation • Business views Audit ReportingActionable Intelligence

Oracle Identity Management powered bySaskTel Identity Management Centre of Excellence Do you need IdM but don’t want to maintain it? Enterprise • Identity Administration and Provisioning • Secure Authentication & Token Services • Directory and Federation • Access Administration and Review • Governance and Visibility • Shared runtime to maximize efficiency • Oracle product, delivery and support expertise • Binding shared risk model to ensure success Identity Management Centre of Excellence

Business Drivers for Identity Cloud Adoption SaskTel Identity Management Centre of Excellence• Same Day vs. Weeks • 5 yr savings up to 75% Binding SLA• Stay business focused • No Capital $ required Shared Risk• Program Orientation • Operational $ minimized

Multi-tenant vs. Private Identity Cloud Options SaskTel Identity Management Centre of ExcellenceMulti-tenant Instance Private Instance• Maximize cost savings • More configuration & control• Maximize Time to Value • Deploy specific components• Minimize administration • Secure DMZ termination with optional appliance on premise• Integrated OIM 11g Suite Plus • Dual private MPLS VPN option• Secure DMZ termination • Active / Active redundancy• Encrypted VPN connectivity available• Active / Passive redundancy

Why consider SaskTel for Cloud Computing? SaskTel Identity Management Centre of Excellence• Very strong financial stability• Complete, Open and Integrated• Committed to Oracle Identity portfolio• Innovative, Scalable and Modernized• Proven ability to manage secure and• Identity Management for Enterprise. complex carrier grade environments Cloud, Mobile and Social environments• Global Oracle Technology partnership• Simplified, Actionable Compliance• Efficient and successful Identity Program execution is all we do!

Get Started!SaskTel Identity Management Centre of Excellence ① Contact your Oracle License rep ② Define your success Criteria ③ Execute Proof of Concept using SaskTel Identity Management Cloud ④ Delivery business value quickly ⑤ Evolve your Identity Management Program with Oracle and SaskTel

Oracle Identity Management PlatformBridges the Gap Adaptive Access Fraud Identity Admin and Administration • DetectionRisk Context / Governance Aware Reduces risk and • Role Mgmt Access Consolidates user • Provisioning • latency bydetection Anomaly Access roles and preventing fraud in Management • Identity Analytics • real timecertification Directory Access Scalable Repository • Single-sign on entitlements and Services Overcomes security reduces risk • Identity Synch Reduces latency silos by centralizing • Certification • Password policy • and fragmentation Identity and consolidating • Authorization Risk Management Virtualization by consolidating security policies. Audit • identity data Reporting Administration AuthN and AuthZ Identity Tools Point Solutions Platform Intelligence

Oracle Identity Management Platform Reduces Cost Oracle IAM Suite Benefits Advantage48% Cost Savings Increased End- User Productivity Reduced Risk • Emergency Access • End-user Self Service • 11% faster • 30% faster • Suspend/revoke/de- • 46% faster46% More Responsive Enhanced Agility provision end user access • Integrate a new app faster with the IAM infrastructure • 64% faster • Integrate a new end user • 73% faster35% Fewer Audit Deficiencies Enhanced role faster into the solution • Reduces unauthorized • 14% fewer Security and access Compliance • 35% fewer • Reduces audit deficiencies Reduced Total • Reduces total cost of IAM • 48% lower Cost initiatives Source: Aberdeen “Analyzing point solutions vs. platform” 2011

Oracle Identity Management Summary• Complete, Open and Integrated• Innovative, Scalable and Modernized SaaS PaaS• Identity Management for Enterprise. IaaS Cloud, Mobile and Social environments• Simplified, Actionable Compliance

Learn More Join the Oracle IDM Contact Community • www.oracle.com/identity• Your Oracle Representative • twitter.com/OracleIDM• Call 1-800-672-2537 • facebook.com/OracleIDM • Blogs.oracle.com/OracleIDM

http://blogs.oracle.com	518
http://www.hanrss.com	6
http://www.petefinnigan.com	4
http://www.schuirink.net	2
http://open.dapper.net	2
http://prsync.com	2
http://www.5z5.com	1
http://flavors.me	1

Building a Secure Cloud with Identity Management

by OracleIDM on Jan 25, 2012

Accessibility

Categories

Upload Details

Usage Rights

8 Embeds 536

Statistics

Building a Secure Cloud with Identity Management Presentation Transcript