Your SlideShare is downloading. ×

Cloud Identity Webinar

3,075
views

Published on

Published in: Technology

0 Comments
2 Likes
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total Views
3,075
On Slideshare
0
From Embeds
0
Number of Embeds
4
Actions
Shares
0
Downloads
150
Comments
0
Likes
2
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide

Transcript

  • 1. Identity in the Cloud
  • 2. Prabath Siriwardena Security Architect & Product Manager(Identity Server), WSO2 Apache Axis2/Rampart committer 6 years industry experience
  • 3. Founded in 2005 by acknowledged leaders in XML, Web Services Technologies & Standards and Open Source Producing entire middleware platform 100% open source under Apache license Business model is to sell comprehensive support & maintenance for our products Venture funded by Intel Capital Global corporation with offices in USA, UK & Sri Lanka 80+ employees and growing
  • 4. WSO2 SOA Platform
  • 5. WSO2 Cloud Computing • Cloud virtual machines: software virtual machines – WSO2 products as Amazon EC2, VMWare & KVM images • Cloud connectors: connecting the cloud to the enterprise – Cloud Services Gateway – Service Accelerator • Cloud services: SOA software as a service – Governance as a Service – Identity as a Service • Cloud middleware: building multi-tenant services & applications
  • 6. Engagement Model • Quick Start – Combination of consulting, training and POC development in one week by WSO2 on-site team working hand-in-hand with your team • Development Support – On-going support for your engineering teams • Production Support – Full 24x7x365 enterprise support – Regular service packs and updates to keep your system secure and robust
  • 7. IDENTITY goes hand in hand with TRUST
  • 8. What makes my IDENTITY?
  • 9. My AGE is part of my IDENTITY
  • 10. My NAME is part of my IDENTITY
  • 11. My PHONE NUMBER is part of my IDENTITY
  • 12. My e-MAIL is part of my IDENTITY
  • 13. My SSN is part of my IDENTITY
  • 14. Who needs my IDENTITY?
  • 15. My HR MANAGER
  • 16. My FINANCE MANAGER
  • 17. My PROJECT MANAGER
  • 18. PARTNERS of my company
  • 19. WHO Else ?
  • 20. How do we share data related to IDENTITY ???
  • 21. Directory Services AD/LDAP
  • 22. Directory Services AD/LDAP IDENTITY attributes maintained in a central repo
  • 23. Directory Services AD/LDAP IDENTITY attributes shared across multiple applications within the same domain
  • 24. Directory Services AD/LDAP Enterprise SSO can be established within participating applications
  • 25. Directory Services AD/LDAP Directory awareness at the individual application level
  • 26. IDENTITY as a service
  • 27. IDENTITY as a service Integrates IDENTITY services into application development
  • 28. IDENTITY as a service Decouples IDENTITY related logic from individual application business logic
  • 29. IDENTITY as a service Decouples IDENTITY related logic from individual application business logic
  • 30. IDENTITY as a service User, IDENTITY related data externalized from the applications themselves
  • 31. IDENTITY as a service Adheres to SOA standards
  • 32. IDENTITY SERVICES
  • 33. IDENTITY PROVIDER Externalize IDENTITY attributes
  • 34. IDENTITY PROVIDER Information Cards
  • 35. IDENTITY PROVIDER OpenID
  • 36. IDENTITY PROVIDER Identity Governance Framework [IGF]
  • 37. Authentication User name / password
  • 38. Authentication User centric identity : Information cards/OpenID
  • 39. Authorization Manages authorization logic
  • 40. Authorization XACML
  • 41. Authorization - XACML A general purpose authorization policy language
  • 42. Provisioning Supports administration of IDENTITY & ACCESS Management
  • 43. Provisioning Provides centralized policy administration and controls
  • 44. Provisioning SPML
  • 45. Auditing Audit all IDENTITY events
  • 46. Auditing - XDAS Distribute Audit Service
  • 47. Auditing - XDAS The principle of accountability
  • 48. Auditing - XDAS Detection of security policy violations
  • 49. Identity Services
  • 50. On-premise Identity Management
  • 51. Moving to the cloud….
  • 52. Powered By
  • 53. Identit y
  • 54. Identit y
  • 55. OpenID Identit y
  • 56. OpenID Identit InfoCard y
  • 57. OpenID Identit InfoCard y STS
  • 58. OpenID Identit InfoCard y STS SAML2
  • 59. OpenID OpenID Identit InfoCard y STS SAML2
  • 60. 1 WSO2 Cloud Identity Internal user tries to login to Liferay / 1 Drupal running on intranet
  • 61. 1 2 WSO2 Cloud Identity OpenID relying party plug-in redirects the 2 user to WSO2 Cloud Identity OpenID provider for authentication
  • 62. 3 1 2 WSO2 Cloud Identity After authentication user redirected back to 3 Liferay / Drupal
  • 63. SAML 2.0 OpenID Identit InfoCard y STS SAML2
  • 64. Entitlement XACML OpenID InfoCard Entitlement STS SAML2
  • 65. http://wso2.com http://wso2.com/about/contact bizdev@wso2.com prabath@wso2.com thilinab@wso2.com Thank You…!!!