Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

CIS 2017 参加報告 @ OpenID BizDay 10

0 views

Published on

CIS 2017 参加報告 @ OpenID BizDay 10

Published in: Technology
  • Be the first to comment

  • Be the first to like this

CIS 2017 参加報告 @ OpenID BizDay 10

  1. 1. bit.ly/go-to-cis2017
  2. 2. Cloud Identity Summit ❖ Andre Durand (Ping Identity CEO) ❖ Focusing on ❖ Enterprise Identity ❖ Biz than Tech ❖ Trends in 2017 ❖ GDPR ❖ PSD2 ❖ UK Open Banking Standard twitter.com/CloudIDSummit
  3. 3. https://www.flickr.com/photos/brian-d-campbell/albums/72157682720196143
  4. 4. “CIS 2017 Chicago” @ YouTube youtu.be/Ug8c-ScVF-w
  5. 5. GDPR & PSD2 Sessions ❖ Day1 ❖ New era Trust Frameworks for digital identity and personal data under GDPR @ Kantara Workshop ❖ Higher Grade API Protection for Banks and Beyond ❖ Day2 ❖ GDPR and PSD2: Challenges and opportunities for IAM ❖ GDPR, PSD2 & Open Banking: Regulations Driving Banks to become Identity Providers? ❖ Crafting an OpenBanking Ecosystem ❖ The EU General Data Protection Regulation Processor and Cloud Requirements – Can They be Met?
  6. 6. Other Financial Identity Sessions ❖ Day1 ❖ Identity in Financial Services: Realising the Opportunity ❖ Financial institutions: ideal high-assurance identity providers ❖ Financial Services, Digital Identity and Customers: Paths to Success? ❖ Day2 ❖ The curious incident of Financial Identity on the Blockchain ❖ Proving pedigree of attributes with PKI ❖ Balancing Security and Convenience at ADP
  7. 7. idpro.org/join
  8. 8. https://www.flickr.com/photos/brian-d-campbell/albums/72157682720196143
  9. 9. pages.nist.gov/800-63-3
  10. 10. bit.ly/sp800-63-3-ja & bit.ly/sp800-63-3-ja-slides
  11. 11. identiverse.com
  12. 12. Kantara Workshop (Day1) ❖ Consent Receipt ❖ Actionable “receipt” of consent ❖ JSON schema : general schema + regulation-specific schema (e.g. GDPR schema) ❖ Identity Assurance Assessment Program ❖ Requirements for Credential Service Provider ❖ Credential Management, Identity Proofing & Verification, Credential Authentication ❖ Service Assessment Criteria for Assessor ❖ Proof of NIST SP 800-63 Compliant ❖ Accredited by US Federal Government Federated Identity, Credential and Access Management Program
  13. 13. エンタープライズの視点から FIDOとFederationのビジネスを考える NOV & Kura
  14. 14. IdPRP(App)End-User UserInfo Endpoint Authorization Code (Redirect) Login (Authentication) Token Request Access Token / Refresh Token / ID Token Resource Access Resource Start OpenID Connect Authentication Request (Redirect) FIDO
  15. 15. https://www.slideshare.net/Identiverse/fido-workshop-mon-becoming-unphisable-grant-dasher-google-cis-2017
  16. 16. https://www.slideshare.net/Identiverse/open-banking-technical-architecture-cis-2017
  17. 17. https://www.scribd.com/doc/298569302/The-Open-Banking-Standard
  18. 18. openbanking.org.uk/developers
  19. 19. https://www.slideshare.net/Identiverse/beyond-bearer-token-binding-as-the-foundation-for-a-more-secure-web-cis-2017
  20. 20. https://www.slideshare.net/Identiverse/mobile-connect-impacts-on-user-experience-cis-2017
  21. 21. John Bradley “Mobile Connect should works fine even in roaming”
  22. 22. https://www.flickr.com/photos/brian-d-campbell/albums/72157682720196143
  23. 23. https://www.flickr.com/photos/brian-d-campbell/albums/72157682720196143
  24. 24. Kids Panel ❖ Amazon Echo 持ってる人∼ ❖ はーい #全員 ❖ よく遊んでるおもちゃは? ❖ スマホはおもちゃに入りますか?Alexa は? ❖ 大人たちに伝えたいことは? ❖ もっと子供を信頼して。 ❖ ルーターんとこで監視してるのは知ってるし、回避方法も知ってるよ。
  25. 25. 金融分野向けまとめ (1/2) ❖ UK の銀行 API は素の OAuth 2.0 は使わない ❖ 現状の OAuth 2.0 ライブラリはほとんど対応できないが、そこまでして 金融用 Profile を使うモチベーションとは? ❖ 素の OAuth 2.0 を使った場合の問題点を把握しよう (FAPI WG in JP?) ❖ OpenID Conformance Test for FAPI と OpenBanking Trust Framework ❖ OTP よりは FIDO U2F? ❖ オンラインバンキングでの OTP 生成ハードウェアトークンの UX は…?
  26. 26. 金融分野向けまとめ (2/2) ❖ Mobile Connect のような枠組みは金融でも起こるか? ❖ Mobile Connect のモチベーション ❖ 1事業者では FAMGA (FB, Apple, MS, Google, Amazon) に勝ち目なし ❖ 事業者が束になって1つの巨大 IdP を作らないと勝負にならない ❖ 日本の (というか世界中の) 銀行は EU のキャリアと似ているのでは? ❖ 1事業者では VISA / Master / AMEX / JCB に.. (ry

×