SlideShare a Scribd company logo

OTIS - Our Journey to Passwordless: Secure Authn & Frictionless User Experience.pptx

Download as PPTX, PDF
F
FIDO Alliance

FIDO RSAC Presentation

Technology
1 of 13
© 2022 OTIS ELEVATOR COMPANY. Our Journey to Passwordless: Secure Authentication & Frictionless User Experience Darrell Hawkins Cybersecurity Chief Technology Officer
© 2022 OTIS ELEVATOR COMPANY. © 2022 OTIS ELEVATOR COMPANY.
© 2022 OTIS ELEVATOR COMPANY. Today’s Agenda… • Key initiatives • Our migration to passwordless MFA • Learnings & Tips • Results © 2022 OTIS ELEVATOR COMPANY.
© 2022 OTIS ELEVATOR COMPANY. Key Initiatives • Digital Transformation • Seamless Onboarding • “Access for All” • Forward Compatibility © 2022 OTIS ELEVATOR COMPANY.
© 2022 OTIS ELEVATOR COMPANY. OTIS PROPRIETARY AND CONFIDENTIAL. 5 The Challenges Drove The Journey A. Indirect worker onboarding required physically being in a local office B. Direct workers could only get into the HR tools with a local login which was frequently forgotten C. Security push to replace the logon on laptops/workstations with Passwordless authentication
© 2022 OTIS ELEVATOR COMPANY. A: The Onboarding challenge Infrastructure was stood up for basic Passwordless Authentication Pandemic greatly increased the volume of people needing access before VPN was established The HelpDesk needed to generate the magic link for the new-hire so they could VPN into the Network The tool didn’t yet have a role to generate one, so we integrated our IGA solution with the Passwordless solution using the API provided This enables us to provision that admin level to the HelpDesk and the direct supervisor Onboarding & connection went from 3 days to 30 minutes
© 2022 OTIS ELEVATOR COMPANY. B: Direct worker challenge HR Platform could only talk to 1 Identity Provider. We had 4 Azure tenants to feed into it Using our IGA and IDP solutions to round out the architecture we merged the information and tied it to our Passwordless solution Each country had different “Why’s” to encourage registration and usage Partnered with the Business and HR to provide successful support with a small team Provided access for all to the HR platform and the desktop using their phone to authenticate. No password needed Created synthetic identities for those without e-mail addresses
© 2022 OTIS ELEVATOR COMPANY. C: Security Roadmap Transition to new internal Certificate Authority 4-6 months Once certificates are pushed to all machines the MFA integration begins Passwordless Authentication to workstations complete Continue integration of applications to SSO so complete passwordless is achieved
© 2022 OTIS ELEVATOR COMPANY. Overcoming Initial Resistance © 2022OTIS ELEVATOR COMPANY. “I do not want to have yet another authentication mechanism that I have to manage/use” “I love that I can log in from my work or personal device without having to remember a password. I only need my face or my thumb print, it’s so easy!” - Sr. Director HR Operations “I do not always have cell access / I do not want to use my phone” Answer: FIDO2 keys come in many different forms, some do not require a cell phone. Offline access is also available - Identity Team “This sounds like there is going to be a big, time- consuming thing. I have a day job!” “I’m so embarrassed that I waited so long to register, it was quicker than brushing my teeth.” - Branch Manager “I do not like my personal data and biometrics floating out there” Answer: The only information about you stays on the secure enclave of your phone - Identity Team
© 2022 OTIS ELEVATOR COMPANY. Addressing Cultural Barriers and other issues © 2022 OTIS ELEVATOR COMPANY.
© 2022 OTIS ELEVATOR COMPANY. © 2022 OTIS ELEVATOR COMPANY. Transformed onboarding & password reset process Streamlined how employees interact with services Thoroughly addressed geo and cultural requirements Next level security assurance combined with excellent UX Benefits
© 2022 OTIS ELEVATOR COMPANY. Results Rapid Onboarding Passwordless Access Uncompromising Security Strategy © 2022 OTIS ELEVATOR COMPANY.
© 2022 OTIS ELEVATOR COMPANY. 13

Recommended

A passwordless enterprise journey
A passwordless enterprise journeyA passwordless enterprise journey
A passwordless enterprise journeyaccenture
 
The 10 most trusted authentication solution providers of 2021
The 10 most trusted authentication solution providers of 2021The 10 most trusted authentication solution providers of 2021
The 10 most trusted authentication solution providers of 2021CIO Look Magazine
 
truMe - Global Digital Identity and Access Management
truMe - Global Digital Identity and Access ManagementtruMe - Global Digital Identity and Access Management
truMe - Global Digital Identity and Access ManagementNeeraj Taneja
 
Case Study - Paytm
Case Study - PaytmCase Study - Paytm
Case Study - PaytmEnablex1
 
Contractor Management System (CMS) - Benefits of digitalizing contractor onbo...
Contractor Management System (CMS) - Benefits of digitalizing contractor onbo...Contractor Management System (CMS) - Benefits of digitalizing contractor onbo...
Contractor Management System (CMS) - Benefits of digitalizing contractor onbo...ASK EHS Engineering & Consultants
 
Mobilize your workforce with secure identity services
Mobilize your workforce with secure identity servicesMobilize your workforce with secure identity services
Mobilize your workforce with secure identity servicesSumana Mehta
 
Biogen Idec case study
Biogen Idec case studyBiogen Idec case study
Biogen Idec case studySymplified
 
CIS13: Beyond the Building: Secure Identity Services for Mobile and Cloud Apps
CIS13: Beyond the Building: Secure Identity Services for Mobile and Cloud AppsCIS13: Beyond the Building: Secure Identity Services for Mobile and Cloud Apps
CIS13: Beyond the Building: Secure Identity Services for Mobile and Cloud AppsCloudIDSummit
 

Recommended

A passwordless enterprise journey
A passwordless enterprise journeyA passwordless enterprise journey
A passwordless enterprise journeyaccenture
 
The 10 most trusted authentication solution providers of 2021
The 10 most trusted authentication solution providers of 2021The 10 most trusted authentication solution providers of 2021
The 10 most trusted authentication solution providers of 2021CIO Look Magazine
 
truMe - Global Digital Identity and Access Management
truMe - Global Digital Identity and Access ManagementtruMe - Global Digital Identity and Access Management
truMe - Global Digital Identity and Access ManagementNeeraj Taneja
 
Case Study - Paytm
Case Study - PaytmCase Study - Paytm
Case Study - PaytmEnablex1
 
Contractor Management System (CMS) - Benefits of digitalizing contractor onbo...
Contractor Management System (CMS) - Benefits of digitalizing contractor onbo...Contractor Management System (CMS) - Benefits of digitalizing contractor onbo...
Contractor Management System (CMS) - Benefits of digitalizing contractor onbo...ASK EHS Engineering & Consultants
 
Mobilize your workforce with secure identity services
Mobilize your workforce with secure identity servicesMobilize your workforce with secure identity services
Mobilize your workforce with secure identity servicesSumana Mehta
 
Biogen Idec case study
Biogen Idec case studyBiogen Idec case study
Biogen Idec case studySymplified
 
CIS13: Beyond the Building: Secure Identity Services for Mobile and Cloud Apps
CIS13: Beyond the Building: Secure Identity Services for Mobile and Cloud AppsCIS13: Beyond the Building: Secure Identity Services for Mobile and Cloud Apps
CIS13: Beyond the Building: Secure Identity Services for Mobile and Cloud AppsCloudIDSummit
 
Securing and Scaling SaaS
Securing and Scaling SaaSSecuring and Scaling SaaS
Securing and Scaling SaaSguest05bda0
 
Meet Evernym's SSI Platform
Meet Evernym's SSI PlatformMeet Evernym's SSI Platform
Meet Evernym's SSI PlatformEvernym
 
Saa sure
Saa sureSaa sure
Saa sureDealmaker Media
 
Implementing your APIs with zero trust
Implementing your APIs with zero trustImplementing your APIs with zero trust
Implementing your APIs with zero trustCoforge (Erstwhile WHISHWORKS)
 
Fast, Secured and Safe Online Prescribing Tool in iOS and ANDROID
Fast, Secured and Safe Online Prescribing Tool in iOS and ANDROIDFast, Secured and Safe Online Prescribing Tool in iOS and ANDROID
Fast, Secured and Safe Online Prescribing Tool in iOS and ANDROIDKalpen Shah
 
Single Sign-On: Our Path to Password Elimination
Single Sign-On: Our Path to Password EliminationSingle Sign-On: Our Path to Password Elimination
Single Sign-On: Our Path to Password EliminationSymantec
 
5 Digital Onboarding Trends To Watch In 2024.pdf
5 Digital Onboarding Trends To Watch In 2024.pdf5 Digital Onboarding Trends To Watch In 2024.pdf
5 Digital Onboarding Trends To Watch In 2024.pdfVeri5digital
 
The Future of Authentication - Verifiable Credentials / Self-Sovereign Identity
The Future of Authentication - Verifiable Credentials / Self-Sovereign IdentityThe Future of Authentication - Verifiable Credentials / Self-Sovereign Identity
The Future of Authentication - Verifiable Credentials / Self-Sovereign IdentityEvernym
 
Android Development Summer Internship in Delhi
Android Development Summer Internship in DelhiAndroid Development Summer Internship in Delhi
Android Development Summer Internship in DelhiCRAW CYBER SECURITY PVT LTD
 
Onegini Brochure
Onegini BrochureOnegini Brochure
Onegini BrochureFinTech Belgium
 
IDGate: One Solution for All EKYC Needs
IDGate: One Solution for All EKYC Needs IDGate: One Solution for All EKYC Needs
IDGate: One Solution for All EKYC Needs Nadine A. Jaafar
 
Mt26 identity management as a service
Mt26 identity management as a serviceMt26 identity management as a service
Mt26 identity management as a serviceDell World
 
E-Lock AdaptAuth.pptx
E-Lock AdaptAuth.pptxE-Lock AdaptAuth.pptx
E-Lock AdaptAuth.pptxArchana833240
 
Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610
Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610 Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610
Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610 FinTech Belgium
 
Swisscard Saves Time and Effort in Managing User Access
Swisscard Saves Time and Effort in Managing User AccessSwisscard Saves Time and Effort in Managing User Access
Swisscard Saves Time and Effort in Managing User AccessNetIQ
 
Spectrum Success Story
Spectrum Success StorySpectrum Success Story
Spectrum Success StoryImprivata
 
Building an intelligent enterprise through the Cloud | Accountex 2015
Building an intelligent enterprise through the Cloud | Accountex 2015Building an intelligent enterprise through the Cloud | Accountex 2015
Building an intelligent enterprise through the Cloud | Accountex 2015Sageukofficial
 
Build Automate and Test Strategies - BATMAN
Build Automate and Test Strategies - BATMAN Build Automate and Test Strategies - BATMAN
Build Automate and Test Strategies - BATMAN Eturnti Consulting Pvt Ltd
 
Better Do What They Told Ya
Better Do What They Told YaBetter Do What They Told Ya
Better Do What They Told YaUlisses Albuquerque
 
Better Do What They Told Ya
Better Do What They Told YaBetter Do What They Told Ya
Better Do What They Told Yaurma
 
Making FIDO Deployments Accessible to Users with Disabilities_slides.pptx
Making FIDO Deployments Accessible to Users with Disabilities_slides.pptxMaking FIDO Deployments Accessible to Users with Disabilities_slides.pptx
Making FIDO Deployments Accessible to Users with Disabilities_slides.pptxFIDO Alliance
 
Welcome and FIDO Update.pptx
Welcome and FIDO Update.pptxWelcome and FIDO Update.pptx
Welcome and FIDO Update.pptxFIDO Alliance
 

More Related Content

Similar to OTIS - Our Journey to Passwordless: Secure Authn & Frictionless User Experience.pptx

Securing and Scaling SaaS
Securing and Scaling SaaSSecuring and Scaling SaaS
Securing and Scaling SaaSguest05bda0
 
Meet Evernym's SSI Platform
Meet Evernym's SSI PlatformMeet Evernym's SSI Platform
Meet Evernym's SSI PlatformEvernym
 
Fast, Secured and Safe Online Prescribing Tool in iOS and ANDROID
Fast, Secured and Safe Online Prescribing Tool in iOS and ANDROIDFast, Secured and Safe Online Prescribing Tool in iOS and ANDROID
Fast, Secured and Safe Online Prescribing Tool in iOS and ANDROIDKalpen Shah
 
Single Sign-On: Our Path to Password Elimination
Single Sign-On: Our Path to Password EliminationSingle Sign-On: Our Path to Password Elimination
Single Sign-On: Our Path to Password EliminationSymantec
 
5 Digital Onboarding Trends To Watch In 2024.pdf
5 Digital Onboarding Trends To Watch In 2024.pdf5 Digital Onboarding Trends To Watch In 2024.pdf
5 Digital Onboarding Trends To Watch In 2024.pdfVeri5digital
 
The Future of Authentication - Verifiable Credentials / Self-Sovereign Identity
The Future of Authentication - Verifiable Credentials / Self-Sovereign IdentityThe Future of Authentication - Verifiable Credentials / Self-Sovereign Identity
The Future of Authentication - Verifiable Credentials / Self-Sovereign IdentityEvernym
 
IDGate: One Solution for All EKYC Needs
IDGate: One Solution for All EKYC Needs IDGate: One Solution for All EKYC Needs
IDGate: One Solution for All EKYC Needs Nadine A. Jaafar
 
Mt26 identity management as a service
Mt26 identity management as a serviceMt26 identity management as a service
Mt26 identity management as a serviceDell World
 
E-Lock AdaptAuth.pptx
E-Lock AdaptAuth.pptxE-Lock AdaptAuth.pptx
E-Lock AdaptAuth.pptxArchana833240
 
Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610
Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610 Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610
Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610 FinTech Belgium
 
Swisscard Saves Time and Effort in Managing User Access
Swisscard Saves Time and Effort in Managing User AccessSwisscard Saves Time and Effort in Managing User Access
Swisscard Saves Time and Effort in Managing User AccessNetIQ
 
Spectrum Success Story
Spectrum Success StorySpectrum Success Story
Spectrum Success StoryImprivata
 
Building an intelligent enterprise through the Cloud | Accountex 2015
Building an intelligent enterprise through the Cloud | Accountex 2015Building an intelligent enterprise through the Cloud | Accountex 2015
Building an intelligent enterprise through the Cloud | Accountex 2015Sageukofficial
 
Better Do What They Told Ya
Better Do What They Told YaBetter Do What They Told Ya
Better Do What They Told Yaurma
 

Similar to OTIS - Our Journey to Passwordless: Secure Authn & Frictionless User Experience.pptx (20)

Securing and Scaling SaaS
Securing and Scaling SaaSSecuring and Scaling SaaS
Securing and Scaling SaaS
 
Meet Evernym's SSI Platform
Meet Evernym's SSI PlatformMeet Evernym's SSI Platform
Meet Evernym's SSI Platform
 
Saa sure
Saa sureSaa sure
Saa sure
 
Implementing your APIs with zero trust
Implementing your APIs with zero trustImplementing your APIs with zero trust
Implementing your APIs with zero trust
 
Fast, Secured and Safe Online Prescribing Tool in iOS and ANDROID
Fast, Secured and Safe Online Prescribing Tool in iOS and ANDROIDFast, Secured and Safe Online Prescribing Tool in iOS and ANDROID
Fast, Secured and Safe Online Prescribing Tool in iOS and ANDROID
 
Single Sign-On: Our Path to Password Elimination
Single Sign-On: Our Path to Password EliminationSingle Sign-On: Our Path to Password Elimination
Single Sign-On: Our Path to Password Elimination
 
5 Digital Onboarding Trends To Watch In 2024.pdf
5 Digital Onboarding Trends To Watch In 2024.pdf5 Digital Onboarding Trends To Watch In 2024.pdf
5 Digital Onboarding Trends To Watch In 2024.pdf
 
The Future of Authentication - Verifiable Credentials / Self-Sovereign Identity
The Future of Authentication - Verifiable Credentials / Self-Sovereign IdentityThe Future of Authentication - Verifiable Credentials / Self-Sovereign Identity
The Future of Authentication - Verifiable Credentials / Self-Sovereign Identity
 
Android Development Summer Internship in Delhi
Android Development Summer Internship in DelhiAndroid Development Summer Internship in Delhi
Android Development Summer Internship in Delhi
 
Onegini Brochure
Onegini BrochureOnegini Brochure
Onegini Brochure
 
IDGate: One Solution for All EKYC Needs
IDGate: One Solution for All EKYC Needs IDGate: One Solution for All EKYC Needs
IDGate: One Solution for All EKYC Needs
 
Mt26 identity management as a service
Mt26 identity management as a serviceMt26 identity management as a service
Mt26 identity management as a service
 
E-Lock AdaptAuth.pptx
E-Lock AdaptAuth.pptxE-Lock AdaptAuth.pptx
E-Lock AdaptAuth.pptx
 
Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610
Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610 Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610
Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610
 
Swisscard Saves Time and Effort in Managing User Access
Swisscard Saves Time and Effort in Managing User AccessSwisscard Saves Time and Effort in Managing User Access
Swisscard Saves Time and Effort in Managing User Access
 
Spectrum Success Story
Spectrum Success StorySpectrum Success Story
Spectrum Success Story
 
Building an intelligent enterprise through the Cloud | Accountex 2015
Building an intelligent enterprise through the Cloud | Accountex 2015Building an intelligent enterprise through the Cloud | Accountex 2015
Building an intelligent enterprise through the Cloud | Accountex 2015
 
Build Automate and Test Strategies - BATMAN
Build Automate and Test Strategies - BATMAN Build Automate and Test Strategies - BATMAN
Build Automate and Test Strategies - BATMAN
 
Better Do What They Told Ya
Better Do What They Told YaBetter Do What They Told Ya
Better Do What They Told Ya
 
Better Do What They Told Ya
Better Do What They Told YaBetter Do What They Told Ya
Better Do What They Told Ya
 

More from FIDO Alliance

Making FIDO Deployments Accessible to Users with Disabilities_slides.pptx
Making FIDO Deployments Accessible to Users with Disabilities_slides.pptxMaking FIDO Deployments Accessible to Users with Disabilities_slides.pptx
Making FIDO Deployments Accessible to Users with Disabilities_slides.pptxFIDO Alliance
 
Welcome and FIDO Update.pptx
Welcome and FIDO Update.pptxWelcome and FIDO Update.pptx
Welcome and FIDO Update.pptxFIDO Alliance
 
CISA - More Than A Password.pptx
CISA - More Than A Password.pptxCISA - More Than A Password.pptx
CISA - More Than A Password.pptxFIDO Alliance
 
Workshop-Demo Breakdown.pptx
Workshop-Demo Breakdown.pptxWorkshop-Demo Breakdown.pptx
Workshop-Demo Breakdown.pptxFIDO Alliance
 
IBM - Hey FIDO, Meet Passkey!.pptx
IBM - Hey FIDO, Meet Passkey!.pptxIBM - Hey FIDO, Meet Passkey!.pptx
IBM - Hey FIDO, Meet Passkey!.pptxFIDO Alliance
 
Solving the IoT Challenge
Solving the IoT ChallengeSolving the IoT Challenge
Solving the IoT ChallengeFIDO Alliance
 
FIDO: The Value of Certification
FIDO: The Value of CertificationFIDO: The Value of Certification
FIDO: The Value of CertificationFIDO Alliance
 
Authenticate 2021: Welcome Address
Authenticate 2021: Welcome AddressAuthenticate 2021: Welcome Address
Authenticate 2021: Welcome AddressFIDO Alliance
 
The State of Strong Authentication
The State of Strong AuthenticationThe State of Strong Authentication
The State of Strong AuthenticationFIDO Alliance
 
Webinar: Considerations for Deploying FIDO in the Enterprise
Webinar: Considerations for Deploying FIDO in the EnterpriseWebinar: Considerations for Deploying FIDO in the Enterprise
Webinar: Considerations for Deploying FIDO in the EnterpriseFIDO Alliance
 
Webinar: Catch Up with FIDO Plus AMA Session
Webinar: Catch Up with FIDO Plus AMA SessionWebinar: Catch Up with FIDO Plus AMA Session
Webinar: Catch Up with FIDO Plus AMA SessionFIDO Alliance
 
Ask FIDO About Anything: Certification
Ask FIDO About Anything: CertificationAsk FIDO About Anything: Certification
Ask FIDO About Anything: CertificationFIDO Alliance
 

More from FIDO Alliance (13)

Making FIDO Deployments Accessible to Users with Disabilities_slides.pptx
Making FIDO Deployments Accessible to Users with Disabilities_slides.pptxMaking FIDO Deployments Accessible to Users with Disabilities_slides.pptx
Making FIDO Deployments Accessible to Users with Disabilities_slides.pptx
 
Welcome and FIDO Update.pptx
Welcome and FIDO Update.pptxWelcome and FIDO Update.pptx
Welcome and FIDO Update.pptx
 
CISA - More Than A Password.pptx
CISA - More Than A Password.pptxCISA - More Than A Password.pptx
CISA - More Than A Password.pptx
 
Workshop-Demo Breakdown.pptx
Workshop-Demo Breakdown.pptxWorkshop-Demo Breakdown.pptx
Workshop-Demo Breakdown.pptx
 
IBM - Hey FIDO, Meet Passkey!.pptx
IBM - Hey FIDO, Meet Passkey!.pptxIBM - Hey FIDO, Meet Passkey!.pptx
IBM - Hey FIDO, Meet Passkey!.pptx
 
Solving the IoT Challenge
Solving the IoT ChallengeSolving the IoT Challenge
Solving the IoT Challenge
 
FIDO Masterclass
FIDO MasterclassFIDO Masterclass
FIDO Masterclass
 
FIDO: The Value of Certification
FIDO: The Value of CertificationFIDO: The Value of Certification
FIDO: The Value of Certification
 
Authenticate 2021: Welcome Address
Authenticate 2021: Welcome AddressAuthenticate 2021: Welcome Address
Authenticate 2021: Welcome Address
 
The State of Strong Authentication
The State of Strong AuthenticationThe State of Strong Authentication
The State of Strong Authentication
 
Webinar: Considerations for Deploying FIDO in the Enterprise
Webinar: Considerations for Deploying FIDO in the EnterpriseWebinar: Considerations for Deploying FIDO in the Enterprise
Webinar: Considerations for Deploying FIDO in the Enterprise
 
Webinar: Catch Up with FIDO Plus AMA Session
Webinar: Catch Up with FIDO Plus AMA SessionWebinar: Catch Up with FIDO Plus AMA Session
Webinar: Catch Up with FIDO Plus AMA Session
 
Ask FIDO About Anything: Certification
Ask FIDO About Anything: CertificationAsk FIDO About Anything: Certification
Ask FIDO About Anything: Certification
 

Recently uploaded

"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...Fwdays
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsMark Billinghurst
 
Training state-of-the-art general text embedding
Training state-of-the-art general text embeddingTraining state-of-the-art general text embedding
Training state-of-the-art general text embeddingZilliz
 
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Wonjun Hwang
 
Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Enterprise Knowledge
 
Streamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupStreamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupFlorian Wilhelm
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticscarlostorres15106
 
Story boards and shot lists for my a level piece
Story boards and shot lists for my a level pieceStory boards and shot lists for my a level piece
Story boards and shot lists for my a level piececharlottematthew16
 
My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024The Digital Insurer
 
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machinePadma Pradeep
 
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr LapshynFwdays
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsRizwan Syed
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfAddepto
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationSlibray Presentation
 
Powerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time ClashPowerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time Clashcharlottematthew16
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Patryk Bandurski
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii SoldatenkoFwdays
 
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Mark Simos
 

Recently uploaded (20)

"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR Systems
 
Training state-of-the-art general text embedding
Training state-of-the-art general text embeddingTraining state-of-the-art general text embedding
Training state-of-the-art general text embedding
 
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
 
Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024
 
Streamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupStreamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project Setup
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
 
Story boards and shot lists for my a level piece
Story boards and shot lists for my a level pieceStory boards and shot lists for my a level piece
Story boards and shot lists for my a level piece
 
My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024
 
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machine
 
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL Certs
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdf
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck Presentation
 
Powerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time ClashPowerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time Clash
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko
 
DMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special EditionDMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special Edition
 
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
 

OTIS - Our Journey to Passwordless: Secure Authn & Frictionless User Experience.pptx

  • 1. © 2022 OTIS ELEVATOR COMPANY. Our Journey to Passwordless: Secure Authentication & Frictionless User Experience Darrell Hawkins Cybersecurity Chief Technology Officer
  • 2. © 2022 OTIS ELEVATOR COMPANY. © 2022 OTIS ELEVATOR COMPANY.
  • 3. © 2022 OTIS ELEVATOR COMPANY. Today’s Agenda… • Key initiatives • Our migration to passwordless MFA • Learnings & Tips • Results © 2022 OTIS ELEVATOR COMPANY.
  • 4. © 2022 OTIS ELEVATOR COMPANY. Key Initiatives • Digital Transformation • Seamless Onboarding • “Access for All” • Forward Compatibility © 2022 OTIS ELEVATOR COMPANY.
  • 5. © 2022 OTIS ELEVATOR COMPANY. OTIS PROPRIETARY AND CONFIDENTIAL. 5 The Challenges Drove The Journey A. Indirect worker onboarding required physically being in a local office B. Direct workers could only get into the HR tools with a local login which was frequently forgotten C. Security push to replace the logon on laptops/workstations with Passwordless authentication
  • 6. © 2022 OTIS ELEVATOR COMPANY. A: The Onboarding challenge Infrastructure was stood up for basic Passwordless Authentication Pandemic greatly increased the volume of people needing access before VPN was established The HelpDesk needed to generate the magic link for the new-hire so they could VPN into the Network The tool didn’t yet have a role to generate one, so we integrated our IGA solution with the Passwordless solution using the API provided This enables us to provision that admin level to the HelpDesk and the direct supervisor Onboarding & connection went from 3 days to 30 minutes
  • 7. © 2022 OTIS ELEVATOR COMPANY. B: Direct worker challenge HR Platform could only talk to 1 Identity Provider. We had 4 Azure tenants to feed into it Using our IGA and IDP solutions to round out the architecture we merged the information and tied it to our Passwordless solution Each country had different “Why’s” to encourage registration and usage Partnered with the Business and HR to provide successful support with a small team Provided access for all to the HR platform and the desktop using their phone to authenticate. No password needed Created synthetic identities for those without e-mail addresses
  • 8. © 2022 OTIS ELEVATOR COMPANY. C: Security Roadmap Transition to new internal Certificate Authority 4-6 months Once certificates are pushed to all machines the MFA integration begins Passwordless Authentication to workstations complete Continue integration of applications to SSO so complete passwordless is achieved
  • 9. © 2022 OTIS ELEVATOR COMPANY. Overcoming Initial Resistance © 2022OTIS ELEVATOR COMPANY. “I do not want to have yet another authentication mechanism that I have to manage/use” “I love that I can log in from my work or personal device without having to remember a password. I only need my face or my thumb print, it’s so easy!” - Sr. Director HR Operations “I do not always have cell access / I do not want to use my phone” Answer: FIDO2 keys come in many different forms, some do not require a cell phone. Offline access is also available - Identity Team “This sounds like there is going to be a big, time- consuming thing. I have a day job!” “I’m so embarrassed that I waited so long to register, it was quicker than brushing my teeth.” - Branch Manager “I do not like my personal data and biometrics floating out there” Answer: The only information about you stays on the secure enclave of your phone - Identity Team
  • 10. © 2022 OTIS ELEVATOR COMPANY. Addressing Cultural Barriers and other issues © 2022 OTIS ELEVATOR COMPANY.
  • 11. © 2022 OTIS ELEVATOR COMPANY. © 2022 OTIS ELEVATOR COMPANY. Transformed onboarding & password reset process Streamlined how employees interact with services Thoroughly addressed geo and cultural requirements Next level security assurance combined with excellent UX Benefits
  • 12. © 2022 OTIS ELEVATOR COMPANY. Results Rapid Onboarding Passwordless Access Uncompromising Security Strategy © 2022 OTIS ELEVATOR COMPANY.
  • 13. © 2022 OTIS ELEVATOR COMPANY. 13