Ping Identity, profile picture
Uploaded byPing Identity
19,149 views

Hitchhikers Guide to the Identiverse - How Federated Business will Rule the World

The document discusses the emergence of the identity industry, highlighting vulnerabilities in medical devices due to password issues, as warned by various federal agencies. It introduces the concept of the 'Identiverse,' a digital world where everything has an identity and emphasizes the importance of multifactor authentication, ubiquitous APIs, and federated access. Key tenets for advancing this emerging business landscape include eliminating passwords, automating processes, and enabling self-service.

Embed presentation

Click to edit Master title style Copyright ©2013 Ping Identity Corporation.All rights reserved.1
Copyright ©2012 Ping Identity Corporation.All rights reserved.2 HOW FEDERATED BUSINESS WILL RULE THE WORLD
THE IDENTITY INDUSTRY ISABOUTTO EXPLODE
TODAY
FUTURE
Trove of medical devices found to have password problems. Surgical devices, ventilators, defibrillators, and monitors are among the equipment at risk The Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) at the Department of Homeland Security and the Food and Drug Administration (FDA) are warning that the vulnerability could allow attackers to change critical settings and modify firmware. ZDNet – 17 June 2013 http://zd.net/17j5RGY HEADLINES WE DON’T WANT TO SEE
Copyright ©2012 Ping Identity Corporation.All rights reserved.8 OURMISSION Network Applications IDENTITY 
Identiverse (i-ˈden-tə-vərs) noun The Identiverse is a more perfect digital world of people, applications, and devices that all recognize and interact with each other. When everything is identity-aware and access is ubiquitous, the Identiverse will provide superior security and freedom to realize the full potential of digital economy.
1.  Everything has an identity (apps, devices, people) 2.  Authentication is multifactor (and rarely passwords) 3.  APIs are Ubiquitous 4.  Standards are Everywhere 5.  Access is Federated 6.  Privacy is Possible SIX FUNDAMENTAL PILLARS OFTHE IDENTIVERSE
Copyright ©2012 Ping Identity Corporation.All rights reserved.11 IDENTIY IS ALWAYS ON Identity becomes portable, enabled via an identity services layer that is leveraged byALL applications… much like databases and the network are today.
EMERGING BUSINESS LANDSCAPE Federated Business Mobile Ubiquity Social Integration Internet of Things
Secure Identity Layer EMERGING BUSINESS LANDSCAPE Federated Business Mobile Ubiquity Social Integration Internet of Things
Secure Identity Layer EMERGING BUSINESS LANDSCAPE Federated Business Mobile Ubiquity Social Integration Internet of Things
Federated Business Mobile Ubiquity Social Integration Internet of Things Secure Identity Layer EMERGING BUSINESS LANDSCAPE
Federated Business Mobile Ubiquity Social Integration Internet of Things Secure Identity Layer EMERGING BUSINESS LANDSCAPE
Federated Business Mobile Ubiquity Social Integration Internet of Things Secure Identity Layer EMERGING BUSINESS LANDSCAPE
Mobile Ubiquity Social Integration Internet of Things Secure Identity Layer EMERGING BUSINESS LANDSCAPE
FUNDAMENTAL TENETS TO SCALE •  No more passwords •  Automate as much as possible –  Eliminate IT Administrative overhead –  Application registration is dynamic •  Ease of use –  Effortless self service –  Developer-friendly –  IT-friendly –  User-friendly
TODAY’S IDENTITY PROTOCOL LANDSCAPE SAML LDAP X.509
MODERN IDENTITY PROTOCOL STACK OAuth 2.0
MODERN IDENTITY PROTOCOL STACK OpenID Connect SCIM OAuth 2.0
Security for APIs API’S FOR IDENTITY OpenID Connect SCIM
Security for APIs User Authentication API API’S FOR IDENTITY SCIM
Security for APIs User Authentication API User Management API API’S FOR IDENTITY
Security for APIs User Authentication API User Management API API’S FOR IDENTITY (Not identity-enabled APIs)
WHAT IS ACTIONABLE? •  Apps and devices need a modern identity protocol stack –  Starts with Oauth 2.0, OpenID Connect and SCIM •  No more passwords –  Federated access by default •  Ease of use means automate everything –  Or enable self-service as a backup
Copyright ©2012 Ping Identity Corporation.All rights reserved.28 WHAT IS THE ANSWER TO THE ULTIMATE QUESTION OF LIFE,THE UNIVERSE AND EVERYTHING?
Click to edit Master title style Copyright ©2013 Ping Identity Corporation.All rights reserved.29 THANKYOU In the perfect digital world everything is identity-aware and access is ubiquitous. Help write the next chapter in the hitchhiker’s guide. HOW? Join Ping Identity’s hospitality suite and enjoy a Pan Galactic Gargle Blaster and use your NEW Up by Jawbone to log whether its effects are, “similar to having your brains smashed in by a slice of lemon wrapped round a large gold brick.” Tweet using hashtag #identiverse

More Related Content

PPTX
CIS 2013 Ping Identity Chalktalk
byCraig Wu
 
PPTX
Onboarding in the IoT
byPaul Madsen
 
PPTX
Connecting The Real World With The Virtual World
byPing Identity
 
PDF
Managing Mobile Business Insecurities
byPing Identity
 
PPT
You Can't Spell Enterprise Security without MFA
byPing Identity
 
PDF
Clear and Present Danger
byPing Identity
 
PPTX
Managing Identity without Boundaries
byPing Identity
 
PPT
Identity-Defined Privacay & Security for Internet of Things
byPing Identity
 
CIS 2013 Ping Identity Chalktalk
byCraig Wu
 
Onboarding in the IoT
byPaul Madsen
 
Connecting The Real World With The Virtual World
byPing Identity
 
Managing Mobile Business Insecurities
byPing Identity
 
You Can't Spell Enterprise Security without MFA
byPing Identity
 
Clear and Present Danger
byPing Identity
 
Managing Identity without Boundaries
byPing Identity
 
Identity-Defined Privacay & Security for Internet of Things
byPing Identity
 

What's hot

PPTX
Catalyst 2015: Patrick Harding
byPing Identity
 
PDF
How Aligned Are IT, Employees and Security Practices in Today's Mobile World?
byPing Identity
 
PPTX
Gartner IAM London 2017 Session - Security, Standards & User Experience: The ...
byPing Identity
 
PPTX
IDENTITY IN THE WORLD OF IOT
byForgeRock
 
PDF
The Case For Next Generation IAM
byPatrick Harding
 
PDF
Webinar: Deep Diving Into the KuppingerCole IDaaS Leadership Compass
byPing Identity
 
PPTX
Standard Based API Security, Access Control and AI Based Attack - API Days Pa...
byPing Identity
 
PPTX
Con8896 securely enabling mobile access for business transformation - final
byOracleIDM
 
PPTX
Identity's Role in a Zero Trust Strategy
byOkta-Inc
 
PDF
Webinar: Three Steps to Transform Your Mobile App into a Security Factor
byPing Identity
 
PDF
GDPR & Customer IAM: The Real Winners Won’t Stop At Compliance
byPing Identity
 
PPTX
9.35am robert humphrey
byArgyle Executive Forum
 
PDF
Hybrid IAM: Fuelling Agility in the Cloud Transformation Journey | Gartner IA...
byPing Identity
 
PDF
Get an overview of your network and relax with aruba clear pass and device in...
byXylos
 
PPTX
Internet of everything #IoE
byMatteo Masi
 
PDF
Okta Digital Enterprise Report
byOkta-Inc
 
PPTX
Criteria for Effective Modern IAM Strategies (Gartner IAM 2018)
byPing Identity
 
PDF
Security On The Edge - A New Way To Think About Securing the Internet of Things
byForgeRock
 
PDF
WP-Privacy-IoT-Era - PRODUCTION
byJohn Pinson
 
PPTX
Identity Beyond Employees: How Customer Experience Impacts Your IAM Practices
byPing Identity
 
Catalyst 2015: Patrick Harding
byPing Identity
 
How Aligned Are IT, Employees and Security Practices in Today's Mobile World?
byPing Identity
 
Gartner IAM London 2017 Session - Security, Standards & User Experience: The ...
byPing Identity
 
IDENTITY IN THE WORLD OF IOT
byForgeRock
 
The Case For Next Generation IAM
byPatrick Harding
 
Webinar: Deep Diving Into the KuppingerCole IDaaS Leadership Compass
byPing Identity
 
Standard Based API Security, Access Control and AI Based Attack - API Days Pa...
byPing Identity
 
Con8896 securely enabling mobile access for business transformation - final
byOracleIDM
 
Identity's Role in a Zero Trust Strategy
byOkta-Inc
 
Webinar: Three Steps to Transform Your Mobile App into a Security Factor
byPing Identity
 
GDPR & Customer IAM: The Real Winners Won’t Stop At Compliance
byPing Identity
 
9.35am robert humphrey
byArgyle Executive Forum
 
Hybrid IAM: Fuelling Agility in the Cloud Transformation Journey | Gartner IA...
byPing Identity
 
Get an overview of your network and relax with aruba clear pass and device in...
byXylos
 
Internet of everything #IoE
byMatteo Masi
 
Okta Digital Enterprise Report
byOkta-Inc
 
Criteria for Effective Modern IAM Strategies (Gartner IAM 2018)
byPing Identity
 
Security On The Edge - A New Way To Think About Securing the Internet of Things
byForgeRock
 
WP-Privacy-IoT-Era - PRODUCTION
byJohn Pinson
 
Identity Beyond Employees: How Customer Experience Impacts Your IAM Practices
byPing Identity
 

Similar to Hitchhikers Guide to the Identiverse - How Federated Business will Rule the World

PDF
Identity - The Cornerstone of Information Security
byBen Boyd
 
PDF
CIS 2015 Security Without Borders: Taming the Cloud and Mobile Frontier - And...
byCloudIDSummit
 
PPTX
Iot privacy vs convenience
byDon Lovett
 
PDF
CIS14: Are the Enterprises Ready for Identity of Everything?
byCloudIDSummit
 
PDF
Hope x talk
byKaliya "Identity Woman" Young
 
PPTX
The Road to Identity 2.0
byAdam Lewis
 
PDF
[WSO2Con USA 2018] Identity is Eating the World!
byWSO2
 
PDF
CIS13: Modern Identity: Automated, Discoverable & Scalable
byCloudIDSummit
 
PDF
CIS13: Identity—The Great Enabler of Next
byCloudIDSummit
 
PDF
CIS 2015- IoT? The ‘I’ needs to be ‘Identity’- Paul Madsen
byCloudIDSummit
 
PPTX
Smart Defense: Strategic Approach to fight contemporary Security, Privacy & A...
byAbhinav Biswas
 
PPTX
Identity Management: A New Key Strategic Infrastructure
byJISC Netskills
 
PPTX
unit4.pptx
byApurvSingh65
 
PDF
Identity is Eating the World!
byPrabath Siriwardena
 
PPTX
A Smarter, more Secure Internet of Things from NetIQ at Gartner IAM Summit 2015
bybmcmenemy
 
PPTX
A smarter, more secure io t gartner iam summit uk 2015 - netiq - travis greene
bybmcmenemy
 
DOCX
Protecting Intellectual Property in the Age of WikiLeaks
bySocialKwan
 
PDF
CIS13: APIs, Identity, and Securing the Enterprise
byCloudIDSummit
 
PPTX
A Smarter, More Secure Internet of Things
byNetIQ
 
PDF
Identity 101: Boot Camp for Identity North 2016
byKaliya "Identity Woman" Young
 
Identity - The Cornerstone of Information Security
byBen Boyd
 
CIS 2015 Security Without Borders: Taming the Cloud and Mobile Frontier - And...
byCloudIDSummit
 
Iot privacy vs convenience
byDon Lovett
 
CIS14: Are the Enterprises Ready for Identity of Everything?
byCloudIDSummit
 
Hope x talk
byKaliya "Identity Woman" Young
 
The Road to Identity 2.0
byAdam Lewis
 
[WSO2Con USA 2018] Identity is Eating the World!
byWSO2
 
CIS13: Modern Identity: Automated, Discoverable & Scalable
byCloudIDSummit
 
CIS13: Identity—The Great Enabler of Next
byCloudIDSummit
 
CIS 2015- IoT? The ‘I’ needs to be ‘Identity’- Paul Madsen
byCloudIDSummit
 
Smart Defense: Strategic Approach to fight contemporary Security, Privacy & A...
byAbhinav Biswas
 
Identity Management: A New Key Strategic Infrastructure
byJISC Netskills
 
unit4.pptx
byApurvSingh65
 
Identity is Eating the World!
byPrabath Siriwardena
 
A Smarter, more Secure Internet of Things from NetIQ at Gartner IAM Summit 2015
bybmcmenemy
 
A smarter, more secure io t gartner iam summit uk 2015 - netiq - travis greene
bybmcmenemy
 
Protecting Intellectual Property in the Age of WikiLeaks
bySocialKwan
 
CIS13: APIs, Identity, and Securing the Enterprise
byCloudIDSummit
 
A Smarter, More Secure Internet of Things
byNetIQ
 
Identity 101: Boot Camp for Identity North 2016
byKaliya "Identity Woman" Young
 

More from Ping Identity

PDF
Healthcare Patient Experiences Matter
byPing Identity
 
PDF
Optimize Your Zero Trust Infrastructure
byPing Identity
 
PDF
Ping’s Technology Partner Program
byPing Identity
 
PDF
Remote Work Fuels Zero Trust Growth
byPing Identity
 
PDF
Identity Verification: Who’s Really There?
byPing Identity
 
PDF
Extraordinary Financial Customer Experiences
byPing Identity
 
PDF
Extraordinary Retail Customer Experiences
byPing Identity
 
PDF
Security Practices: The Generational Gap | Infographic
byPing Identity
 
PDF
Security Concerns Around the World | Infographic
byPing Identity
 
PDF
LES ATTITUDES DES CONSOMMATEURS À L’ÈRE DES CYBERATTAQUES
byPing Identity
 
PDF
WIE TICKEN VERBRAUCHER IM ZEITALTER DER DATENSCHUTZVERLETZUNGEN?
byPing Identity
 
PDF
Consumer Attitudes in a Post-breach Era: The Geographical Gap
byPing Identity
 
PDF
ATTITUDES DES CONSOMMATEURS A L’ERE DES PIRATAGES LE CONFLIT DE GENERATIONS
byPing Identity
 
PDF
2018 Survey: Consumer Attitudes in a Post-Breach Era - The Generational Gap
byPing Identity
 
PDF
WIE TICKEN VERBRAUCHER IM ZEITALTER DER DATENSCHUTZVERLETZUNGEN? ALLES EINE F...
byPing Identity
 
PDF
API Security Needs AI Now More Than Ever
byPing Identity
 
PDF
Fishing for a CIAM Platform? 11 Question to Ask Before You Buy
byPing Identity
 
PDF
Digital Transformation and the Role of IAM
byPing Identity
 
Healthcare Patient Experiences Matter
byPing Identity
 
Optimize Your Zero Trust Infrastructure
byPing Identity
 
Ping’s Technology Partner Program
byPing Identity
 
Remote Work Fuels Zero Trust Growth
byPing Identity
 
Identity Verification: Who’s Really There?
byPing Identity
 
Extraordinary Financial Customer Experiences
byPing Identity
 
Extraordinary Retail Customer Experiences
byPing Identity
 
Security Practices: The Generational Gap | Infographic
byPing Identity
 
Security Concerns Around the World | Infographic
byPing Identity
 
LES ATTITUDES DES CONSOMMATEURS À L’ÈRE DES CYBERATTAQUES
byPing Identity
 
WIE TICKEN VERBRAUCHER IM ZEITALTER DER DATENSCHUTZVERLETZUNGEN?
byPing Identity
 
Consumer Attitudes in a Post-breach Era: The Geographical Gap
byPing Identity
 
ATTITUDES DES CONSOMMATEURS A L’ERE DES PIRATAGES LE CONFLIT DE GENERATIONS
byPing Identity
 
2018 Survey: Consumer Attitudes in a Post-Breach Era - The Generational Gap
byPing Identity
 
WIE TICKEN VERBRAUCHER IM ZEITALTER DER DATENSCHUTZVERLETZUNGEN? ALLES EINE F...
byPing Identity
 
API Security Needs AI Now More Than Ever
byPing Identity
 
Fishing for a CIAM Platform? 11 Question to Ask Before You Buy
byPing Identity
 
Digital Transformation and the Role of IAM
byPing Identity
 

Recently uploaded

PPTX
Tech Trends 2026: AI Agents, Quantum Computing, Robotics & Cybersecurity
byridwansassman
 
PDF
apidays Paris 2025 | Zero Trust By Design
byapidays
 
PDF
UiPath Automation Developer Associate Training Series 2025 - Session 4
byDianaGray10
 
PDF
20260212 Security-JAWS activity results for 2025 and activity goals for 2026
byTyphon 666
 
PDF
shayk.online - Anonymous chat with Sinatra and WebSockets
byEleanor McHugh
 
PPTX
PPTX game guess the logo with a twistppt
byAdrianAnig
 
PDF
Constraint Collapse and Fidelity Decay in Scaled Language Models
bySemantic Fidelity Lab | A. Jacobs
 
PDF
Spec-Driven Development with Kiro: Elevating Software Quality, Traceability, ...
byHaim Michael
 
PDF
Effortless Distributed Systems with Aspire.pdf
byParticular Software
 
PDF
How does MES(Manufacturing Execution System) work?
byakipii ogaoga
 
PPTX
CTO Strategy OS 2026: The Tech, AI & Cloud Playbook Boards Want
byridwansassman
 
PDF
Preserve workload integrity during cross-architecture migration
byPrincipled Technologies
 
PDF
From Hallucinations to High-Confidence AI with Data Enrichment.pdf
byPrecisely
 
PDF
final~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~.pdf
byomarbishtawi04
 
PDF
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 
PPTX
Introducing VisualSim 2610 The Next Leap in System Level Modeling
byDeepak Shankar
 
PDF
Explaining specific examples of purpose-specific BOM
byakipii ogaoga
 
PDF
Odoo Implementation Checklist: A Strategic ERP Blueprint for Business-Ready D...
byBANIBRO IT SOLUTION
 
PDF
HOW TO OVERCOME THE THREATS OF ARTIFICIAL INTELLIGENCE AGAINST HUMANITY.pdf
byFaga1939
 
PDF
Agent to agent service discovery using HashiCorp Consul and Vault
byBram Vogelaar
 
Tech Trends 2026: AI Agents, Quantum Computing, Robotics & Cybersecurity
byridwansassman
 
apidays Paris 2025 | Zero Trust By Design
byapidays
 
UiPath Automation Developer Associate Training Series 2025 - Session 4
byDianaGray10
 
20260212 Security-JAWS activity results for 2025 and activity goals for 2026
byTyphon 666
 
shayk.online - Anonymous chat with Sinatra and WebSockets
byEleanor McHugh
 
PPTX game guess the logo with a twistppt
byAdrianAnig
 
Constraint Collapse and Fidelity Decay in Scaled Language Models
bySemantic Fidelity Lab | A. Jacobs
 
Spec-Driven Development with Kiro: Elevating Software Quality, Traceability, ...
byHaim Michael
 
Effortless Distributed Systems with Aspire.pdf
byParticular Software
 
How does MES(Manufacturing Execution System) work?
byakipii ogaoga
 
CTO Strategy OS 2026: The Tech, AI & Cloud Playbook Boards Want
byridwansassman
 
Preserve workload integrity during cross-architecture migration
byPrincipled Technologies
 
From Hallucinations to High-Confidence AI with Data Enrichment.pdf
byPrecisely
 
final~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~.pdf
byomarbishtawi04
 
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 
Introducing VisualSim 2610 The Next Leap in System Level Modeling
byDeepak Shankar
 
Explaining specific examples of purpose-specific BOM
byakipii ogaoga
 
Odoo Implementation Checklist: A Strategic ERP Blueprint for Business-Ready D...
byBANIBRO IT SOLUTION
 
HOW TO OVERCOME THE THREATS OF ARTIFICIAL INTELLIGENCE AGAINST HUMANITY.pdf
byFaga1939
 
Agent to agent service discovery using HashiCorp Consul and Vault
byBram Vogelaar
 

Hitchhikers Guide to the Identiverse - How Federated Business will Rule the World

Editor's Notes

  • #3 Hitchhikers know everything exciting happens outside the lines, like cloud, mobile, social, big data and the internet of things.The challenge of navigating today’s universe is lack of portable, automated, discoverable and scalable identity management.DON’T PANIC. I’ll explain how a next-generation identity and access management layer encompassing the identity of:people and thingspassive analyticsactive feedbackand automated connections to partners, customers, and apps is the modern Hitchhiker’s Guide to the Identiverse.
  • #4 As the collision of cloud-mobile-social grows to it’s inevitable conclusion, we are facing a massive explosion of internet endpoints, and a desperate future problem of securing and coordinating them.
  • #5 Today we are at the “craftsman” stage of identity. Carefully constructed connections allow a small number of endpoints and users to be secured.
  • #6 The future isexponential growth of
  • #9 VINT CERF PUNTNEEDS TO BE HYBRID
  • #12 This will be true of enterprise applications as well as (and more importantly) consumer applications. This is the path that Ping has started upon, and continues down. Consumerization of IT will likely drive consumer identity protocols into the enterprise – OpenID Connect being an example.
  • #13 Highly dsitrbiuted nature of business – mobile, cloud, SaaS, outsorcing, PaaS, IaaSetcIdentity must become portable to drive ease of useInternet of Things - every thing has a unique identifier
  • #14 Highly dsitrbiuted nature of business – mobile, cloud, SaaS, outsorcing, PaaS, IaaSetcInternet of Things
  • #15 Highly dsitrbiuted nature of business – mobile, cloud, SaaS, outsorcing, PaaS, IaaSetcInternet of Things
  • #16 Highly dsitrbiuted nature of business – mobile, cloud, SaaS, outsorcing, PaaS, IaaSetcInternet of Things
  • #17 Highly dsitrbiuted nature of business – mobile, cloud, SaaS, outsorcing, PaaS, IaaSetcInternet of Things
  • #18 Highly dsitrbiuted nature of business – mobile, cloud, SaaS, outsorcing, PaaS, IaaSetcInternet of Things
  • #19 Highly dsitrbiuted nature of business – mobile, cloud, SaaS, outsorcing, PaaS, IaaSetcInternet of Things
  • #22 Modern Identity LandscapeTargeted at Application developersLearnt from previous attempts
  • #23 Two pillars of scalable modern identity: SCIM and OIDCOIDC is crucial for modern identity IdP discovery – important as number of IdPS increase in the modern identity era.Applicaton registration. Provides a mechanism ernidetntiy. Scale: to enable applications (be they on mobile devices or web applications) to act on behalf of the user to do things.Finally delivers SSO via ID token for native devices (pivot to OAuth).SCIMAuthorization and SSO isn’t possible without a provisioning event. aaS vendors have service level agreements that preclude the use of the enterprise identity store. The current insanity vis-à-vis proprietary provisioning won’t scale. SCIM is modern (REST-based) and is our last best hope at scalable provisioning because it delivers a standards-based approach.
  • #24 OpenID ConnectAuthentication API (also enables SSO)Developer calls GetUserInfo API EndpointReplace Login.jsp and the Password DBFederated Domain, Single Domains, whateverSCIMUser Management APICreate, Read, Update, DeleteDeveloper exposes API to Add, Change & Delete user accounts
  • #25 OpenID ConnectAuthentication API (also enables SSO)Developer calls GetUserInfo API EndpointReplace Login.jsp and the Password DBFederated Domain, Single Domains, whateverSCIMUser Management APICreate, Read, Update, DeleteDeveloper exposes API to Add, Change & Delete user accounts
  • #26 OpenID ConnectAuthentication API (also enables SSO)Developer calls GetUserInfo API EndpointReplace Login.jsp and the Password DBFederated Domain, Single Domains, whateverSCIMUser Management APICreate, Read, Update, DeleteDeveloper exposes API to Add, Change & Delete user accounts
  • #27 Two pillars of scalable modern identity: SCIM and OIDCNot Identity Enabled API’sSCIMAuthorization and SSO isn’t possible without a provisioning event. aaS vendors have service level agreements that preclude the use of the enterprise identity store. The current insanity vis-à-vis proprietary provisioning won’t scale. SCIM is modern (REST-based) and is our last best hope at scalable provisioning because it delivers a standards-based approach.OIDC is crucial for modIdP discovery – important as number of IdpS increase in the modern identity era.Client registration. Provides a mechanism ernidetntiy. Scale:to enable applications (be they on mobile devices or web applications) to act on behalf of the user to do things.Finally delivers SSO via ID token for native devices (pivot to OAuth).Interesting crossover and linkage b/w SCIM SP and OIDC user info endpoint. Different. I’ll be working in the IETF group on this (with John’s guidance). I’ll have diagrams for CIS.