More Related Content
Similar to TechNight #12: Cloud Identity Summit2014 @ Monteray 概要と主要トピック (20)
TechNight #12: Cloud Identity Summit2014 @ Monteray 概要と主要トピック
- 1. Cloud Identity Summit
2014 @ Monteray
概要と主要トピック
Solutions Architect -‐‑‒ Japan/APAC
福家 ⼤大輔
Copyright © 2014 Ping Identity Corp. All rights reserved. 1
- 2. 開催概要
2014/7/18 ~∼ 22 @ Monteray, CA
twitter hashtag: #cismcc
Slideshare: http://www.slideshare.net/CloudIDSummit/
Facebook: CloudIdentitySummit
Copyright © 2014 Ping Identity Corp. All rights reserved. 2
- 5. ユーザが所有するデバイスの変化と認証
うまく活⽤用
できないか?
Copyright © 2014 Ping Identity Corp. All rights reserved. 5
認証
User
パスワードの以外
の認証
• デバイスの所持
• ⽣生体情報
• 継続的な認証
デバイスの変化
• 演算能⼒力力
• センサ類
• ユーザの近く
に
- 6. パスワード以外の認証
Continuous Authentication
CIS14: Identifying Things (and Things Identifying
Us)
Paul Madsen, Ping Identity
Copyright © 2014 Ping Identity Corp. All rights reserved. 6
標準化
• FIDO alliance
CIS14: Continuous Authentication: Donʼ’t Even Think
about It
Mance Harmon, Ping Identity
- 7. IoTとアイデンティティ
CIS14: Identifying Things (and Things Identifying
Us)
Paul Madsen, Ping Identiy
Copyright © 2014 Ping Identity Corp. All rights reserved. 7
Internet of Things
Machine to Machine
所有者リソースへのアクセス
AuthN/AuthZ?
- 9. スケール
CIS14: Identity at Scale: Next Gen Federation
Architectures
Hans Zandbelt, Ping Identiy
Copyright © 2014 Ping Identity Corp. All rights reserved. 9
• Trust framework
• proxy
• metadata service
• Discovery Dynamic registration
- 11. アプリケーションの変化
CIS14: Mobile SSO using NAPPS: OpenID Connect
Profile for Native Apps-‐‑‒jain
Ashish Jain, VMWare
Copyright © 2014 Ping Identity Corp. All rights reserved. 11
Native API
AuthN/AuthZ
• OpenID Connect / OAuth2
SSO
• NAPPS
- 12. 認可は?
特にエンタープライズ⽤用途での、認可の集中管理理
• Attribute-‐‑‒Based Access Control (ABAC)の実現
• XACMLしか無いがイマイチ普及していない
Copyright © 2014 Ping Identity Corp. All rights reserved. 12
• 複雑?
• ALFA
• XML/SOAP
• JSON Profile/REST Profile
CIS14: The Very Latest in Authorization
Standards
CIS14: Baking Fine-‐‑‒Grained Authorization Into
Your Apps and APIs using ALFA, REST, and JSON
いよいよXACML元年年か?