Your SlideShare is downloading. ×
0
First Look at New Technology (#3): VMWare Project Horizon<br />Developers<br />Liam Yu: VMware<br />
Disclaimer<br />This session may contain product features that are currently under development.<br />This session/overview...
VMware End User Computing<br />Management<br />Security<br />Compliance<br /><ul><li>Secure
Manageable
Open</li></ul>VMware Cloud Application Platform<br />Management<br />Security<br />Compliance<br />VMware Cloud Infrastruc...
End User Computing: What Do Users Demand Today?<br />Diverse Apps<br />Diverse Devices<br />Diverse<br />Access<br />
Project Horizon Vision: Admin Control for End User Services<br />Cross-Platform Portal<br />SaaS Applications<br />Mobilit...
VMware End User Computing Journey to the Cloud<br />
Project Horizon: SaaS App Management <br />
Challenges<br />SaaS identity silos<br />No compliance & access controls<br />Damage and loss from passwords<br />95% of a...
Project Horizon: Enterprise AD federation to SaaS<br />Email<br />SharePoint<br />AD<br />HR App<br />horizon<br />Secure ...
Project Horizon: Enterprise SaaS Federation<br />Challenges<br />Horizon Features:<br />Federation & Enterprise connector<...
Project Horizon: On-Prem Components<br />Features<br />Lightweight software-based enterprise connector that integrates wit...
Project Horizon: Usage of SAML<br />SAML provides high security<br /><ul><li>No passwords so eliminates phishing opportuni...
SAML tokens are digitally signed so cannot be tampered
Provide a Time To Live duration to prevent replay attacks</li></ul>SAML is an open standard supported by major SaaS vendor...
Project Horizon: Usage of HTTP Unity<br />What about apps that do not support SAML?<br /><ul><li>HTTP Unity
Mechanism for exchanging user identity data, SSO and authentication between multiple federated security domains.
No changes to application
Horizon service stores app credentials in secured “ID Vault” & provides them to app based on user’s authentication to IDP
Single Sign On for User</li></li></ul><li>Project Horizon: Multi-Factor Authentication Support<br /><ul><li>Flexible Authe...
Upcoming SlideShare
Loading in...5
×

Df10062 carroll

611

Published on

0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
611
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
12
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Transcript of "Df10062 carroll"

  1. 1. First Look at New Technology (#3): VMWare Project Horizon<br />Developers<br />Liam Yu: VMware<br />
  2. 2. Disclaimer<br />This session may contain product features that are currently under development.<br />This session/overview of the new technology represents no commitment from VMware to deliver these features in any generally available product.<br />Features are subject to change, and must not be included in contracts, purchase orders, or sales agreements of any kind.<br />Technical feasibility and market demand will affect final delivery.<br />Pricing and packaging for any new technologies or features discussed or presented have not been determined.<br />“THESE FEATURES ARE REPRESENTATIVE OF FEATURE AREAS UNDER DEVELOPMENT. FEATURE COMMITMENTS ARE SUBJECT TO CHANGE, AND MUST NOT BE INCLUDED IN CONTRACTS, PURCHASE ORDERS,OR SALES AGREEMENTS OF ANY KIND. TECHNICAL FEASIBILITY AND MARKET DEMAND WILL AFFECT FINAL.”<br />
  3. 3. VMware End User Computing<br />Management<br />Security<br />Compliance<br /><ul><li>Secure
  4. 4. Manageable
  5. 5. Open</li></ul>VMware Cloud Application Platform<br />Management<br />Security<br />Compliance<br />VMware Cloud Infrastructure and Management<br />Management<br />Security<br />Compliance<br />VMware Solutions for IT as a Service<br />
  6. 6. End User Computing: What Do Users Demand Today?<br />Diverse Apps<br />Diverse Devices<br />Diverse<br />Access<br />
  7. 7. Project Horizon Vision: Admin Control for End User Services<br />Cross-Platform Portal<br />SaaS Applications<br />Mobility and Offline <br />Enterprise App Store<br />Virtual Desktops<br />View<br />(VDI) <br />End User Workspace<br />ThinApp<br />App Management<br />horizon<br />App Publishing<br />Admin Console <br />AD<br />Directory Federation<br />User Data Mgmt<br />Collaborative Workspace<br />License Tracking<br />Access Management<br />
  8. 8. VMware End User Computing Journey to the Cloud<br />
  9. 9. Project Horizon: SaaS App Management <br />
  10. 10. Challenges<br />SaaS identity silos<br />No compliance & access controls<br />Damage and loss from passwords<br />95% of apps use User ID and Password - not federated<br />Options<br />Extend LAN IDM System – Expensive!<br />Develop, Test, and Certify Individual Connectors to each SaaS app<br />Email<br />SharePoint<br />AD<br />Enterprise SaaS Application Management Challenges<br />HR App<br />Hosted <br />SharePoint<br />Workday<br />Salesforce.com<br />
  11. 11. Project Horizon: Enterprise AD federation to SaaS<br />Email<br />SharePoint<br />AD<br />HR App<br />horizon<br />Secure STS<br />Hosted <br />SharePoint<br />Workday<br />Future<br />SaaS Apps<br />Salesforce<br />
  12. 12. Project Horizon: Enterprise SaaS Federation<br />Challenges<br />Horizon Features:<br />Federation & Enterprise connector<br />SaaS identity silos<br />Audited Role Based Access<br />No compliance &access controls<br />Never-compromised credential withSplit-key Technology<br />Password exposure:damage, loss<br />Horizon Federation Network<br />Costly managingpartner access<br />
  13. 13. Project Horizon: On-Prem Components<br />Features<br />Lightweight software-based enterprise connector that integrates with AD/LDAP<br />Unified Enterprise identity – extend enterprise identity to SaaS<br />One place to manage users – your enterprise directory<br />Real-time integration, option with no directory sync required<br />Administrative Selections to Poll AD for Users / Groups <br />Easy integration with internal desktop login (Kerberos/NTLM) for SSO <br />Customizable Branding<br />horizon sts<br />Virtual<br />Appliance<br />Microsoft IIS <br />Service<br />
  14. 14. Project Horizon: Usage of SAML<br />SAML provides high security<br /><ul><li>No passwords so eliminates phishing opportunities
  15. 15. SAML tokens are digitally signed so cannot be tampered
  16. 16. Provide a Time To Live duration to prevent replay attacks</li></ul>SAML is an open standard supported by major SaaS vendors like Google, Salesforce.com, Webex, etc<br />1<br />2<br />3<br />App User DB<br />User<br />Service Provider<br />Identity Provider, <br />e.g. AD<br />
  17. 17. Project Horizon: Usage of HTTP Unity<br />What about apps that do not support SAML?<br /><ul><li>HTTP Unity
  18. 18. Mechanism for exchanging user identity data, SSO and authentication between multiple federated security domains.
  19. 19. No changes to application
  20. 20. Horizon service stores app credentials in secured “ID Vault” & provides them to app based on user’s authentication to IDP
  21. 21. Single Sign On for User</li></li></ul><li>Project Horizon: Multi-Factor Authentication Support<br /><ul><li>Flexible Authentication Options
  22. 22. 2nd factor browser cookie
  23. 23. Mutual Authentication: Confidence image/text
  24. 24. SMS
  25. 25. VIP Token</li></ul>14<br />
  26. 26. Horizon: Securely Bridging to the Cloud<br />horizon<br />Salesforce<br />Google Apps<br />Workday<br />1<br />Active Directory<br />(Users and Groups)<br />SaaS Applications<br />Horizon STS<br />(Secure DS Extender)<br />Horizon SaaS<br />Adapters<br />3<br />File<br />Servers<br />DMZ<br />End User<br />Computers<br />Horizon Agents<br />Horizon On-Prem<br />Connector<br />2<br />Manage the User Locally, but Extend Identity to the Cloud<br />
  27. 27. Screen Shots<br />
  28. 28. Project Horizon<br />Cloud-Ready Application Management for your traditional, virtualized and SaaS applications<br /><ul><li> Complete application visibility: Deploy, manage and report
  29. 29. Seamless access to applications across different device platforms
  30. 30. A single solution for your traditional and virtualized desktops</li></ul> . . . delivered as a service from the cloud.<br />
  31. 31. First Look at New Technology (#3): VMWareProject Horizon<br />Stop by our booth for more details<br />
  32. 32. Visit the Developer Training and Support Booth in Force.com Zone<br />D I S C O V E R<br />Developer training, certification and support resources <br />that help you achieve<br />S U C C E S S<br />Find us in the Partner Demo Area of <br />Force.com Zone 2nd Floor Moscone West<br />Learn about Developer Certifications<br />Discover Developer Learning Paths<br />
  33. 33. Remember. . .<br /><ul><li>Check Chatter for additional session information
  34. 34. Get your developer Workbooks and Cheat Sheets in the Force.com Zone
  35. 35. Visit for more information related to this topic</li></ul>Don’t forget the survey!<br />
  36. 36. How Could Dreamforce Be Better? Tell Us!<br />Log in to the Dreamforce app to submit<br />surveys for the sessions you attended<br />Use the Dreamforce Mobile app to submit surveys<br />OR<br />Every session survey you submit is a chance to win an iPod nano!<br />
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.

×