TechNight #12: Cloud Identity Summit 2014 @ Monteray 概要と主要トピック
•
2 likes•669 views
OpenID TechNight Vol.12 Presentation
Recommended
More Related Content
What's hot
What's hot (20)
Viewers also liked
Viewers also liked (20)
Similar to TechNight #12: Cloud Identity Summit 2014 @ Monteray 概要と主要トピック
Similar to TechNight #12: Cloud Identity Summit 2014 @ Monteray 概要と主要トピック (20)
Recently uploaded
Recently uploaded (11)
TechNight #12: Cloud Identity Summit 2014 @ Monteray 概要と主要トピック
- 1. Cloud Identity Summit 2014 @ Monteray 概要と主要トピック Solutions Architect -‐‑‒ Japan/APAC 福家 ⼤大輔 Copyright © 2014 Ping Identity Corp. All rights reserved. 1
- 2. 開催概要 2014/7/18 ~∼ 22 @ Monteray, CA twitter hashtag: #cismcc Slideshare: http://www.slideshare.net/CloudIDSummit/ Facebook: CloudIdentitySummit Copyright © 2014 Ping Identity Corp. All rights reserved. 2
- 3. メインテーマ? Copyright © 2014 Ping Identity Corp. All rights reserved. 3
- 4. デジタルアイデンティティの課題(1) パスワード?Federation Copyright © 2014 Ping Identity Corp. All rights reserved. 4 User Identity Provider Application OpenID Connect SAML etc 認証 デバイスの変化
- 5. ユーザが所有するデバイスの変化と認証 うまく活⽤用 できないか? Copyright © 2014 Ping Identity Corp. All rights reserved. 5 認証 User パスワードの以外 の認証 • デバイスの所持 • ⽣生体情報 • 継続的な認証 デバイスの変化 • 演算能⼒力力 • センサ類 • ユーザの近く に
- 6. パスワード以外の認証 Continuous Authentication CIS14: Identifying Things (and Things Identifying Us) Paul Madsen, Ping Identity Copyright © 2014 Ping Identity Corp. All rights reserved. 6 標準化 • FIDO alliance CIS14: Continuous Authentication: Donʼ’t Even Think about It Mance Harmon, Ping Identity
- 7. IoTとアイデンティティ CIS14: Identifying Things (and Things Identifying Us) Paul Madsen, Ping Identiy Copyright © 2014 Ping Identity Corp. All rights reserved. 7 Internet of Things Machine to Machine 所有者リソースへのアクセス AuthN/AuthZ?
- 8. デジタルアイデンティティの課題(2) Application Copyright © 2014 Ping Identity Corp. All rights reserved. 8 User Identity Provider 認証 Federation スケール 1対1信頼関係の限界
- 9. スケール CIS14: Identity at Scale: Next Gen Federation Architectures Hans Zandbelt, Ping Identiy Copyright © 2014 Ping Identity Corp. All rights reserved. 9 • Trust framework • proxy • metadata service • Discovery Dynamic registration
- 10. デジタルアイデンティティの課題(3) Application Copyright © 2014 Ping Identity Corp. All rights reserved. 10 User Identity Provider 認証 Federation アプリケーションの変化 ネイティブアプリ/ API
- 11. アプリケーションの変化 CIS14: Mobile SSO using NAPPS: OpenID Connect Profile for Native Apps-‐‑‒jain Ashish Jain, VMWare Copyright © 2014 Ping Identity Corp. All rights reserved. 11 Native API AuthN/AuthZ • OpenID Connect / OAuth2 SSO • NAPPS
- 12. 認可は? 特にエンタープライズ⽤用途での、認可の集中管理理 • Attribute-‐‑‒Based Access Control (ABAC)の実現 • XACMLしか無いがイマイチ普及していない Copyright © 2014 Ping Identity Corp. All rights reserved. 12 • 複雑? • ALFA • XML/SOAP • JSON Profile/REST Profile CIS14: The Very Latest in Authorization Standards CIS14: Baking Fine-‐‑‒Grained Authorization Into Your Apps and APIs using ALFA, REST, and JSON いよいよXACML元年年か?
- 13. Thanks! Copyright © 2014 Ping Identity Corp. All rights reserved. 13