Context Automation

•Download as ZIP, PDF•

0 likes•435 views

The document discusses context automation and how it connects information between websites for users. Context automation is enabled by trends like cloud computing, extensible browsers, and internet identities. It can augment websites with additional context through approaches like JavaScript, media toolbars, search tools, and context platforms. Key technologies that help enable context automation include Kynetx, which uses a rule language called KRL, and information cards, which can securely store user identity and data. Context automation provides benefits to users like a more individualized and structured browsing experience with improved privacy and security.

Technology

Context Automation
Phillip J. Windley, Ph.D.
CTO, Kynetx
www.windley.com

On the web, users connect the
dots between Web sites in
their heads

context automation
==
connecting the dots

Trends Driving Context Automation

Cloud
Computing

Trends Driving Context Automation

Cloud Extensible
Computing Browsers

Trends Driving Context Automation

Cloud Extensible
Computing Browsers

Internet
Identities

The Browser as Platform
Browsers tie Web sessions
together

The Browser as Platform
Browsers tie Web sessions
together
1B Firefox add-on
downloads since 2005*

The Browser as Platform
Browsers tie Web sessions
together
1B Firefox add-on
downloads since 2005*

That is about 17/sec*

The Browser as Platform
Browsers tie Web sessions
together
1B Firefox add-on
downloads since 2005*

That is about 17/sec*

Estimates are 2x-5x below
actual

The Identity Shift
Ad-hoc
IP Address
Machine
Cookie
Session
SSL

The Identity Shift
Ad-hoc
IP Address
Machine
Cookie
Session
SSL

Security & privacy at
the expense of
convenience

Website dependent
identity only

The Identity Shift
Ad-hoc Structured
IP Address Browser
Machine Individual
Cookie Identity
Session Relationships
SSL Reputation

Security & privacy at
the expense of
convenience

Website dependent
identity only

Information Cards
Microsoft developed standard

Information Cards
Microsoft developed standard
Information Card Foundation

Information Cards
Microsoft developed standard
Information Card Foundation
User participation

Information Cards
Microsoft developed standard
Information Card Foundation
User participation
Firm, technical foundation for
security and privacy

Information Card Types

Personal cards
Managed cards

Information Card Types

Personal cards
Managed cards
Action cards

Context automation rocks when
supported by cloud services,
browser extensions, & internet
identity

Context automation works by
augmenting Web sites with new
information for the user

The Web Augmentation Spectrum

Javascript in
the browser

The Web Augmentation Spectrum

Media
Toolbars

Javascript in
the browser

The Web Augmentation Spectrum

Media
Toolbars
Search
Context
Javascript in
the browser

The Web Augmentation Spectrum

Context
Platform
Media
Toolbars
Search
Context
Javascript in
the browser

What you get from the cloud...

Machine independence

What you get from the cloud...

Machine independence
Hassle-free updates

What you get from the cloud...

Machine independence
Hassle-free updates
Increased security

What you get from the cloud...

Machine independence
Hassle-free updates
Increased security
Auditing & analytics

What you get from identity...

Individualized

What you get from identity...

Individualized
Structured browsing

What you get from identity...

Individualized
Structured browsing
Privacy

What you get from identity...

Individualized
Structured browsing
Privacy
Security

Kynetx Rule Language (KRL)
Sometimes a layer of indirection helps...

Kynetx Rule Language (KRL)
Sometimes a layer of indirection helps...

Domain specific language

Kynetx Rule Language (KRL)
Sometimes a layer of indirection helps...

Domain specific language
Browser and platform independent

Kynetx Rule Language (KRL)
Sometimes a layer of indirection helps...

Domain specific language
Browser and platform independent
Mental leverage via abstractions

KRL Rulesets

Select page via URL class
Declare and access data sources

KRL Rulesets

Select page via URL class
Declare and access data sources
Conditionally fire action

KRL Rulesets

Select page via URL class
Declare and access data sources
Conditionally fire action
Process callbacks

Information cards advantages
Signed
Uniquely identified

Information cards advantages
Signed
Uniquely identified
Protect user data

Information cards advantages
Signed
Uniquely identified
Protect user data
Hidden security

Information cards advantages
Signed
Uniquely identified
Protect user data
Hidden security
Nice metaphor

Malicious apps can be
identified and disabled

Kynetx Developer Beta
Free (under quota)

Kynetx Developer Beta
Free (under quota)
Limited number

Kynetx Developer Beta
Free (under quota)
Limited number
See me for signup card

Cloud Extensible
Computing Browsers

Internet
Identities

Cloud Extensible
Computing Browsers

Safe
Internet
Identities

Cloud Extensible
Computing Browsers

Safe
Internet
Secure
Identities

Cloud Extensible
Computing Browsers

Safe
Internet
Secure
Identities
Individualized

Cloud Extensible
Computing Browsers

Safe
Internet
Secure
Identities
Individualized
Flexible

Cloud Extensible
Computing Browsers

Safe
Internet
Secure
Identities
Individualized
Flexible
Powerful

More information...

Read the white paper:
http://www.kynetx.com
Our developer site
http://code.kynetx.com/

Context
Automation

?
Contact info:
phil@windley.org
www.windley.com
@windley

There have been too many sites compromising personal data. There is no excuse. It is not hard to stop most, if not all hackers. All you have to do is care about your customers. This module describes how you can easily and effectively stop many hack attacks and protect your customer data on your servers. For more information, tools, and resources, visit http://free2secure.com/. If you are interested in keeping up with the latest books, articles, and tools from me at Free2Secure send me an email steve @ free2secure.com with the subject “Subscribe”. If you have any security questions, issues, or shoot me a note to steve @ free2secure.com with the subject “Help”.

New Trends in Web Security

Oliver Pfaff

My 2012 homerun in IT-security: For many years nothing happened in Web security - with respect to security-enabling the HTTP stack. This is not true anymore: game-changing innovations do emerge right now. Their impact will - likely - be pervasive. It is important to understand what exactly is being launched, why this is happening and which forces are driving this. This presentation establishes this context and elaborates on the implications.

Kerberos-PKI-Federated identity

WAFAA AL SALMAN

O Dell Secure360 Presentation5 12 10b

Bruce O'Dell

Sogeti Cloud Seminar Identity In The Clouds

Ron Moerman

Identity, Security, and XML Web Services -- The Importance of Interoperable S...

Jorgen Thelin

Abstract The use of security credentials and the concepts of single-sign-on and \"identity\" will play a big part in Web Service products as the technology matures and developers start writing true enterprise- grade line-of-business applications. The emerging XML security standards such as SAML are reviewed, along with the various \"identity\" standards such as Passport and Liberty, to provide an overview of the evolution of Web Service platform products to support these. This paper examines just how \"identity aware\" Web Service implementations need to be, and the value a Web Services platform can add in masking developers from the complexity in this area. Lessons are drawn from the experience of using EJB security technology for real-world security scenarios.

Debashis banerjee cloud_is_as_secure

debashisb

Fy09 Sask Tel Learn It Ie7 And Ie8 Joel Semeniuksim100

Session presented at the 2nd IndicThreads.com Conference on Cloud Computing held in Pune, India on 3-4 June 2011. http://CloudComputing.IndicThreads.com Abstract:As part of this session I intend to provide a technical overview of how cloud computing can be made secure across various networks architectures and deployments such as (a) Security in public cloud deployments – data and application security. This will cover methods such as data encryption, multi tenancy, data wipeout, what type of data to place in public clouds, autentication methods. (b) Security by using public/private mix hybrid cloud deployments. This will cover using hybrid clouds effectively to segregate some portions of data in the public and some in hybrid and how a request can be moved across these. It would also cover options for enterprises to make their solutions secure. (c) Security features provided by current cloud vendors. (d) How a cloud deployer can ensure the solution they are providing is secure. Key Takeaway after this session: An understanding of various security solutions that developers, deployers, architects can use when using cloud computing solutions Speaker: Debashis Banerjee is a technology professional with 12+ years of expertise in development and leading global teams in development of Cloud, Security, Internet based and Telecom products. He is currently a Senior Engineering Manager with Yahoo! India.

Two factor authentication-in_your_network_e_guideNick Owen

How Does Code Signing Works?

AboutSSL

Collaborating with Extranet Partners on SharePoint 2010 - SharePoint Connecti...Michael Noel

AzureAADTonyHotko

Using Federation to Simplify Access to SharePoint, SaaS and Partner Applications

Novell

Identity federation has become the standard method for delivering access to services across organizational boundaries. More recently, federation has become the preferred method for managing user access within Microsoft SharePoint environments. In this session, you will get an overview of the federation capabilities in Novell Access Manager. Specifically, the presenters will provide an introduction to identity federation, cover basic setup and configuration, and show you how to enable federated access to Microsoft SharePoint and Google applications. No previous knowledge of federation standards is required for this session.

Smart Cards & Devices Forum 2012 - Securing Cloud ComputingOKsystem

SSL Certificate and Code Signing

Li-Wei Yao

P hallam baker_keynoteshindeshekhar

Leveraging SharePoint for ExtranetsAvtex

FIDO Authentication Opportunities in Healthcare

FIDO Alliance

Securing online services by combining smart cards and web-based applicationsOlivier Potonniée

Authentication Concepts

Charles Southerland

Reinforcing Your Enterprise With Security Architectures

Uthaiyashankar

Planning Your Cloud Strategy

Uthaiyashankar

FIDO Technical Specifications Overview

FIDO Alliance

Certification Authority - Sergio LiettiNúcleo de Computação Científica

Identity and Access Management in the Era of Digital Transformation

Uthaiyashankar

Wayfs and Strays - Jonathan RichardsonEduserv

Security On The Edge - A New Way To Think About Securing the Internet of Things

ForgeRock

ForgeRock proposes a new approach for IoT security, where identity principles are used to ensure the authenticity of IoT devices and their communications. We call this upcoming technology, ForgeRock Edge Security. Using secure, standards-based tokens and providing comprehensive, policy-based controls for controlling access to data from devices, this is the next generation of IoT edge security. With examples from industrial and automotive IoT environments, learn how this new way of providing security “on the edge” can provide a rock solid layer of security for your IoT deployments.

How to Make Your IoT Devices Secure, Act Autonomously & Trusted Subjects

Maxim Salnikov

What's hot

Password Manager: Detailed presentation

Hitachi ID Systems, Inc.

Cloud security - The Cloud is as Secure as you want it to be! - Indicthreads ...

IndicThreads

Two factor authentication-in_your_network_e_guideNick Owen

How Does Code Signing Works?

AboutSSL

Collaborating with Extranet Partners on SharePoint 2010 - SharePoint Connecti...Michael Noel

AzureAADTonyHotko

Using Federation to Simplify Access to SharePoint, SaaS and Partner Applications

Novell

Smart Cards & Devices Forum 2012 - Securing Cloud ComputingOKsystem

SSL Certificate and Code Signing

Li-Wei Yao

P hallam baker_keynoteshindeshekhar

Leveraging SharePoint for ExtranetsAvtex

FIDO Authentication Opportunities in Healthcare

FIDO Alliance

Securing online services by combining smart cards and web-based applicationsOlivier Potonniée

Authentication Concepts

Charles Southerland

Reinforcing Your Enterprise With Security Architectures

Uthaiyashankar

Planning Your Cloud Strategy

Uthaiyashankar

FIDO Technical Specifications Overview

FIDO Alliance

Certification Authority - Sergio LiettiNúcleo de Computação Científica

Identity and Access Management in the Era of Digital Transformation

Uthaiyashankar

Wayfs and Strays - Jonathan RichardsonEduserv

What's hot (20)

Password Manager: Detailed presentation

Cloud security - The Cloud is as Secure as you want it to be! - Indicthreads ...

Two factor authentication-in_your_network_e_guide

How Does Code Signing Works?

Collaborating with Extranet Partners on SharePoint 2010 - SharePoint Connecti...

AzureAAD

Using Federation to Simplify Access to SharePoint, SaaS and Partner Applications

Smart Cards & Devices Forum 2012 - Securing Cloud Computing

SSL Certificate and Code Signing

P hallam baker_keynote

Leveraging SharePoint for Extranets

FIDO Authentication Opportunities in Healthcare

Securing online services by combining smart cards and web-based applications

Authentication Concepts

Reinforcing Your Enterprise With Security Architectures

Planning Your Cloud Strategy

FIDO Technical Specifications Overview

Certification Authority - Sergio Lietti

Identity and Access Management in the Era of Digital Transformation

Wayfs and Strays - Jonathan Richardson

Similar to Context Automation

Security On The Edge - A New Way To Think About Securing the Internet of Things

ForgeRock

How to Make Your IoT Devices Secure, Act Autonomously & Trusted Subjects

Maxim Salnikov

Building an IoT Massive Multiplayer Game in 60 Minutes - TechBash 2017

Eran Stiller

Identity Live Sydney 2017 - Daniel Raskin

ForgeRock

You still need to protect employees in the digital age, but the real opportunity for digital transformation lies in using identity not just to protect employees, but to get to know, interact with, and connect to prospects and customers across any channel–whether cloud, social, mobile, or the Internet of Things (IoT). Customer Identity Management requires going above and beyond a secure login. From a security perspective, you need continuous security that follows the user throughout their entire session. And as customers share data, from demographics to preferences to buying habits, you can use it to create authentic, engaging customer experiences that lead to lasting customer relationships. Better yet, you can earn customer trust while meeting privacy regulations like GDPR, by giving customers control over who has access to their data and for how long.

Cybersecurity Legos - We're all part of something bigger

Ben Boyd

Microsoft Insurance Solutions Keynote Presentation at the Financial Services ...

Mike Walker

CIS14: Identity Management for the Cloud

CloudIDSummit

NIC 2017 Azure AD Identity Protection and Conditional Access: Using the Micro...

Morgan Simonsen

A common trend in today’s cloud based world is identity driven security. As the name implies this makes user identity really important; user identity is now the key to unlock everything. Building the infrastructure to support this trend is very hard; you bear all the responsibilities and can rely on only your own signal data and threat detection. With Azure AD there is a better way! Come join this session to see how Azure AD Identity Protection is using signals from the global Microsoft cloud, Big Data and Machine Learning to protect your users’ accounts, and also how Azure AD Conditional Access makes it easy to enforce application access policies based on things like location and device. We will show you how to set it all up, what works and what doesn’t and how it integrates with other Microsoft protection services in the cloud, and your existing systems. Come and be safe!

Cloud Security for Startups - From A to E(xit)

Shahar Geiger Maor

Identity Live London 2017 | Daniel Raskin

ForgeRock

Blockchain Cybersecurity Development

Mobiloitte Technologies

Blockchain Cybersecurity

Mobiloitte Technologies

HAD05: Collaborating with Extranet Partners on SharePoint 2010Michael Noel

Oscon anatomy of_os_cloud_ecosystemhtdvul

CTU June 2011 - Windows Azure App FabricSpiffy

Guarding the guardian’s guard: IBM Trusteer - SEP326 - AWS re:Inforce 2019

Amazon Web Services

Risk assessment associated with digital identity is at the core of any digital business transformation. Companies strive to provide their customers with the best possible service, but at the same time, they struggle with the challenges of digital identity risk. IBM Trusteer is a SaaS solution that is meeting the challenge head-on. In this talk, we present two stories. We look at some identity proofing techniques, and we also examine some of the tools and processes that are keeping Trusteer’s cloud safe and secure. This session also explores use cases involving IBM tools that are deployed in an AWS environment.

ekey+ PresentationCreus Moreira Carlos

Ad fs

Iván Sanchez Vera

TechNet Event: August 2011 Cloud Essentials

Harold Wong

Client & Virtual User Experience Monitoring mit Splunk

Georg Knon

Similar to Context Automation (20)

Security On The Edge - A New Way To Think About Securing the Internet of Things

How to Make Your IoT Devices Secure, Act Autonomously & Trusted Subjects

Building an IoT Massive Multiplayer Game in 60 Minutes - TechBash 2017

Identity Live Sydney 2017 - Daniel Raskin

Cybersecurity Legos - We're all part of something bigger

Microsoft Insurance Solutions Keynote Presentation at the Financial Services ...

CIS14: Identity Management for the Cloud

NIC 2017 Azure AD Identity Protection and Conditional Access: Using the Micro...

Cloud Security for Startups - From A to E(xit)

Identity Live London 2017 | Daniel Raskin

Blockchain Cybersecurity Development

Blockchain Cybersecurity

HAD05: Collaborating with Extranet Partners on SharePoint 2010

Oscon anatomy of_os_cloud_ecosystem

CTU June 2011 - Windows Azure App Fabric

Guarding the guardian’s guard: IBM Trusteer - SEP326 - AWS re:Inforce 2019

ekey+ Presentation

Ad fs

TechNet Event: August 2011 Cloud Essentials

Client & Virtual User Experience Monitoring mit Splunk

More from Phil Windley

Trust, Blockchains, and Self-Soveriegn Identity

Phil Windley

This talk discusses sovereignty as a foundational model for a new kind of identity system that not only establishes all entities as peers, but also provides the means of using verifiable claims to build trustworthy relationships. A self-soversign identity system with verifiable claims provides increased privacy and control for individuals, more transparent consent, opens new opportunities for relying parties and third party claims providers, and reduces or eliminates integration costs while making systems simpler.

A University API

Phil Windley

Rule Language for IoT

Phil Windley

Events, Picos, and Microservices

Phil Windley

The Internet of Things will require a different programming model than the one we've used to build Web 2.0. This presentation discusses a proposed architecture for connecting everything based on persistent compute objects, or picos. Picos naturally supporting building microservices. The presentation makes use of a connected-car platform called Fuse (http://joinfuse.com) to illustrate the use of microservices in picos and evented systems.

Picos, CloudOS, and Connecting Things

Phil Windley

Events, Picos, and Microservices

Phil Windley

Relationships: Modeling the Vehicle Ecosystem with Fuse

Phil Windley

Fuse 2Phil Windley

Connecting Things

Phil Windley

Persistent Compute Objects and the Fabric of Cyberspace

Phil Windley

Persistent Computer Objects, or picos, give rise to a new way to build internet-based applications to separates app and user data. Users control their own picos and thus the data and processing on them. This presentation describes what picos are, the new programming model they support, and shows Fuse, a sample application built using this new model. I gave this presentation at Defragcon on November 5 2013.

Persistent Compute Objects - Picos

Phil Windley

Fuse Technical Presentation

Phil Windley

Personal Cloud Application Architectures

Phil Windley

Why Personal Clouds

Phil Windley

Personal Cloud Operating Systems

Phil Windley

Introducing Personal Event NetworksPhil Windley

The Live Web #SCITDA11 Keynote

Phil Windley

Shaping strategies and Startups

Phil Windley

Shaping Strategies and the Live Web - Kynetx Impact 2011

Phil Windley

The Evented Web Makes Users Happy

Phil Windley

More from Phil Windley (20)

Trust, Blockchains, and Self-Soveriegn Identity

A University API

Rule Language for IoT

Events, Picos, and Microservices

Picos, CloudOS, and Connecting Things

Events, Picos, and Microservices

Relationships: Modeling the Vehicle Ecosystem with Fuse

Fuse 2

Connecting Things

Persistent Compute Objects and the Fabric of Cyberspace

Persistent Compute Objects - Picos

Fuse Technical Presentation

Personal Cloud Application Architectures

Why Personal Clouds

Personal Cloud Operating Systems

Introducing Personal Event Networks

The Live Web #SCITDA11 Keynote

Shaping strategies and Startups

Shaping Strategies and the Live Web - Kynetx Impact 2011

The Evented Web Makes Users Happy

Recently uploaded

Elevating Tactical DDD Patterns Through Object Calisthenics

Dorra BARTAGUIZ

After immersing yourself in the blue book and its red counterpart, attending DDD-focused conferences, and applying tactical patterns, you're left with a crucial question: How do I ensure my design is effective? Tactical patterns within Domain-Driven Design (DDD) serve as guiding principles for creating clear and manageable domain models. However, achieving success with these patterns requires additional guidance. Interestingly, we've observed that a set of constraints initially designed for training purposes remarkably aligns with effective pattern implementation, offering a more ‘mechanical’ approach. Let's explore together how Object Calisthenics can elevate the design of your tactical DDD patterns, offering concrete help for those venturing into DDD for the first time!

GraphRAG is All You need? LLM & Knowledge Graph

Guy Korland

Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs. 1. Unifying Large Language Models and Knowledge Graphs: A Roadmap. https://arxiv.org/abs/2306.08302 2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs: https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/

The Art of the Pitch: WordPress Relationships and Sales

Laura Byrne

Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes? All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.

PHP Frameworks: I want to break free (IPC Berlin 2024)

Ralf Eggert

In this presentation, we examine the challenges and limitations of relying too heavily on PHP frameworks in web development. We discuss the history of PHP and its frameworks to understand how this dependence has evolved. The focus will be on providing concrete tips and strategies to reduce reliance on these frameworks, based on real-world examples and practical considerations. The goal is to equip developers with the skills and knowledge to create more flexible and future-proof web applications. We'll explore the importance of maintaining autonomy in a rapidly changing tech landscape and how to make informed decisions in PHP development. This talk is aimed at encouraging a more independent approach to using PHP frameworks, moving towards a more flexible and future-proof approach to PHP development.

Uni Systems Copilot event_05062024_C.Vlachos.pdf

Uni Systems S.M.S.A.

The Future of Platform Engineering

Jemma Hussein Allen

PCI PIN Basics Webinar from the Controlcase Team

ControlCase

Essentials of Automations: The Art of Triggers and Actions in FME

Safe Software

In this second installment of our Essentials of Automations webinar series, we’ll explore the landscape of triggers and actions, guiding you through the nuances of authoring and adapting workspaces for seamless automations. Gain an understanding of the full spectrum of triggers and actions available in FME, empowering you to enhance your workspaces for efficient automation. We’ll kick things off by showcasing the most commonly used event-based triggers, introducing you to various automation workflows like manual triggers, schedules, directory watchers, and more. Plus, see how these elements play out in real scenarios. Whether you’re tweaking your current setup or building from the ground up, this session will arm you with the tools and insights needed to transform your FME usage into a powerhouse of productivity. Join us to discover effective strategies that simplify complex processes, enhancing your productivity and transforming your data management practices with FME. Let’s turn complexity into clarity and make your workspaces work wonders!

DevOps and Testing slides at DASA Connect

Kari Kakkonen

GraphSummit Singapore | Enhancing Changi Airport Group's Passenger Experience...

Neo4j

Dr. Sean Tan, Head of Data Science, Changi Airport Group Discover how Changi Airport Group (CAG) leverages graph technologies and generative AI to revolutionize their search capabilities. This session delves into the unique search needs of CAG’s diverse passengers and customers, showcasing how graph data structures enhance the accuracy and relevance of AI-generated search results, mitigating the risk of “hallucinations” and improving the overall customer journey.

Encryption in Microsoft 365 - ExpertsLive Netherlands 2024

Albert Hoitingh

Video Streaming: Then, Now, and in the Future

Alpen-Adria-Universität

In his public lecture, Christian Timmerer provides insights into the fascinating history of video streaming, starting from its humble beginnings before YouTube to the groundbreaking technologies that now dominate platforms like Netflix and ORF ON. Timmerer also presents provocative contributions of his own that have significantly influenced the industry. He concludes by looking at future challenges and invites the audience to join in a discussion.

Removing Uninteresting Bytes in Software Fuzzing

Aftab Hussain

Imagine a world where software fuzzing, the process of mutating bytes in test seeds to uncover hidden and erroneous program behaviors, becomes faster and more effective. A lot depends on the initial seeds, which can significantly dictate the trajectory of a fuzzing campaign, particularly in terms of how long it takes to uncover interesting behaviour in your code. We introduce DIAR, a technique designed to speedup fuzzing campaigns by pinpointing and eliminating those uninteresting bytes in the seeds. Picture this: instead of wasting valuable resources on meaningless mutations in large, bloated seeds, DIAR removes the unnecessary bytes, streamlining the entire process. In this work, we equipped AFL, a popular fuzzer, with DIAR and examined two critical Linux libraries -- Libxml's xmllint, a tool for parsing xml documents, and Binutil's readelf, an essential debugging and security analysis command-line tool used to display detailed information about ELF (Executable and Linkable Format). Our preliminary results show that AFL+DIAR does not only discover new paths more quickly but also achieves higher coverage overall. This work thus showcases how starting with lean and optimized seeds can lead to faster, more comprehensive fuzzing campaigns -- and DIAR helps you find such seeds. - These are slides of the talk given at IEEE International Conference on Software Testing Verification and Validation Workshop, ICSTW 2022.

FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf

FIDO Alliance

Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf

Paige Cruz

Monitoring and observability aren’t traditionally found in software curriculums and many of us cobble this knowledge together from whatever vendor or ecosystem we were first introduced to and whatever is a part of your current company’s observability stack. While the dev and ops silo continues to crumble….many organizations still relegate monitoring & observability as the purview of ops, infra and SRE teams. This is a mistake - achieving a highly observable system requires collaboration up and down the stack. I, a former op, would like to extend an invitation to all application developers to join the observability party will share these foundational concepts to build on:

Secstrike : Reverse Engineering & Pwnable tools for CTF.pptx

nkrafacyberclub

A tale of scale & speed: How the US Navy is enabling software delivery from l...

sonjaschweigert1

Rapid and secure feature delivery is a goal across every application team and every branch of the DoD. The Navy’s DevSecOps platform, Party Barge, has achieved: - Reduction in onboarding time from 5 weeks to 1 day - Improved developer experience and productivity through actionable findings and reduction of false positives - Maintenance of superior security standards and inherent policy enforcement with Authorization to Operate (ATO) Development teams can ship efficiently and ensure applications are cyber ready for Navy Authorizing Officials (AOs). In this webinar, Sigma Defense and Anchore will give attendees a look behind the scenes and demo secure pipeline automation and security artifacts that speed up application ATO and time to production. We will cover: - How to remove silos in DevSecOps - How to build efficient development pipeline roles and component templates - How to deliver security artifacts that matter for ATO’s (SBOMs, vulnerability reports, and policy evidence) - How to streamline operations with automated policy checks on container images

Microsoft - Power Platform_G.Aspiotis.pdf

Uni Systems S.M.S.A.

Communications Mining Series - Zero to Hero - Session 1

DianaGray10

This session provides introduction to UiPath Communication Mining, importance and platform overview. You will acquire a good understand of the phases in Communication Mining as we go over the platform with you. Topics covered: • Communication Mining Overview • Why is it important? • How can it help today’s business and the benefits • Phases in Communication Mining • Demo on Platform overview • Q/A

GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...

James Anderson

Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management. The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM). Speakers: Bob Boule Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle. Gopinath Rebala Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.

Recently uploaded (20)

Elevating Tactical DDD Patterns Through Object Calisthenics

GraphRAG is All You need? LLM & Knowledge Graph

The Art of the Pitch: WordPress Relationships and Sales

PHP Frameworks: I want to break free (IPC Berlin 2024)

Uni Systems Copilot event_05062024_C.Vlachos.pdf

The Future of Platform Engineering

PCI PIN Basics Webinar from the Controlcase Team

Essentials of Automations: The Art of Triggers and Actions in FME

DevOps and Testing slides at DASA Connect

GraphSummit Singapore | Enhancing Changi Airport Group's Passenger Experience...

Encryption in Microsoft 365 - ExpertsLive Netherlands 2024

Video Streaming: Then, Now, and in the Future

Removing Uninteresting Bytes in Software Fuzzing

FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf

Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf

Secstrike : Reverse Engineering & Pwnable tools for CTF.pptx

A tale of scale & speed: How the US Navy is enabling software delivery from l...

Microsoft - Power Platform_G.Aspiotis.pdf

Communications Mining Series - Zero to Hero - Session 1

GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...

Context Automation

1. Context Automation Phillip J. Windley, Ph.D. CTO, Kynetx www.windley.com

2. What is it?

3. Connecting the dots

4. On the web, users connect the dots between Web sites in their heads

5. context automation == connecting the dots

6. Context is state

7. Context Examples

8. Intra-site Context

9. Single Purpose Context

10. Context with Data

11. Amazon and Your Local Library

12. Trends Driving Context Automation

13. Trends Driving Context Automation Cloud Computing

14. Trends Driving Context Automation Cloud Extensible Computing Browsers

15. Trends Driving Context Automation Cloud Extensible Computing Browsers Internet Identities

16. Trends Driving Context Automation Cloud Extensible Computing Browsers Internet Identities

17. The Browser as Platform Browsers tie Web sessions together

18. The Browser as Platform Browsers tie Web sessions together 1B Firefox add-on downloads since 2005*

19. The Browser as Platform Browsers tie Web sessions together 1B Firefox add-on downloads since 2005* That is about 17/sec*

20. The Browser as Platform Browsers tie Web sessions together 1B Firefox add-on downloads since 2005* That is about 17/sec* Estimates are 2x-5x below actual

21. The Browser as Platform Browsers tie Web sessions together 1B Firefox add-on downloads since 2005* That is about 17/sec* Estimates are 2x-5x below actual *Justin Scott, Mozilla

22. The Identity Shift

23. The Identity Shift Ad-hoc IP Address Machine Cookie Session SSL

24. The Identity Shift Ad-hoc IP Address Machine Cookie Session SSL Security & privacy at the expense of convenience Website dependent identity only

25. The Identity Shift Ad-hoc Structured IP Address Browser Machine Individual Cookie Identity Session Relationships SSL Reputation Security & privacy at the expense of convenience Website dependent identity only

26. The Identity Shift Ad-hoc Structured IP Address Browser Machine Individual Cookie Identity Session Relationships SSL Reputation Security & privacy at Convenience with the expense of privacy, security & convenience relationships Website dependent Consistent website identity only independent identity

27. Information Cards

28. Information Cards Microsoft developed standard

29. Information Cards Microsoft developed standard Information Card Foundation

30. Information Cards Microsoft developed standard Information Card Foundation User participation

31. Information Cards Microsoft developed standard Information Card Foundation User participation Firm, technical foundation for security and privacy

32. Information Card Types

33. Information Card Types Personal cards

34. Information Card Types Personal cards Managed cards

35. Information Card Types Personal cards Managed cards Action cards

36. The Information Card Selector

37. Context automation rocks when supported by cloud services, browser extensions, & internet identity

38. Context automation works by augmenting Web sites with new information for the user

39. The Web Augmentation Spectrum Javascript in the browser

40. The Web Augmentation Spectrum Media Toolbars Javascript in the browser

41. The Web Augmentation Spectrum Media Toolbars Search Context Javascript in the browser

42. The Web Augmentation Spectrum Context Platform Media Toolbars Search Context Javascript in the browser

43. What you get from the cloud...

44. What you get from the cloud... Machine independence

45. What you get from the cloud... Machine independence Hassle-free updates

46. What you get from the cloud... Machine independence Hassle-free updates Increased security

47. What you get from the cloud... Machine independence Hassle-free updates Increased security Auditing & analytics

48. What you get from identity...

49. What you get from identity... Individualized

50. What you get from identity... Individualized Structured browsing

51. What you get from identity... Individualized Structured browsing Privacy

52. What you get from identity... Individualized Structured browsing Privacy Security

53. Kynetx & Context Automation

54. How Kynetx Works

55. 1 How Kynetx Works

56. 1 2 How Kynetx Works

57. 1 2 3 How Kynetx Works

58. 4 1 2 3 How Kynetx Works

59. Kynetx Rule Language (KRL) Sometimes a layer of indirection helps...

60. Kynetx Rule Language (KRL) Sometimes a layer of indirection helps... Domain specific language

61. Kynetx Rule Language (KRL) Sometimes a layer of indirection helps... Domain specific language Browser and platform independent

62. Kynetx Rule Language (KRL) Sometimes a layer of indirection helps... Domain specific language Browser and platform independent Mental leverage via abstractions

63. KRL Rulesets

64. KRL Rulesets Select page via URL class

65. KRL Rulesets Select page via URL class Declare and access data sources

66. KRL Rulesets Select page via URL class Declare and access data sources Conditionally fire action

67. KRL Rulesets Select page via URL class Declare and access data sources Conditionally fire action Process callbacks

68. KRL for Library Lookup

69. KRL for Library Lookup

70. KRL for Library Lookup

71. KRL for Library Lookup

72. KRL for Library Lookup

73. KRL for Library Lookup

74. KRL for Library Lookup

75. KRL for Library Lookup

76. KRL for Library Lookup

77. Information cards advantages

78. Information cards advantages Signed

79. Information cards advantages Signed Uniquely identified

80. Information cards advantages Signed Uniquely identified Protect user data

81. Information cards advantages Signed Uniquely identified Protect user data Hidden security

82. Information cards advantages Signed Uniquely identified Protect user data Hidden security Nice metaphor

83. Can we hack a card?

84. Can we hack a card?

85.

86. RE JEC T ED !!

87. Malicious apps can be identified and disabled

88.

89. Kynetx Developer Beta

90. Kynetx Developer Beta

91. Kynetx Developer Beta Free (under quota)

92. Kynetx Developer Beta Free (under quota) Limited number

93. Kynetx Developer Beta Free (under quota) Limited number See me for signup card

94. Cloud Extensible Computing Browsers Internet Identities

95. Cloud Extensible Computing Browsers Internet Identities

96. Cloud Extensible Computing Browsers Safe Internet Identities

97. Cloud Extensible Computing Browsers Safe Internet Secure Identities

98. Cloud Extensible Computing Browsers Safe Internet Secure Identities Individualized

99. Cloud Extensible Computing Browsers Safe Internet Secure Identities Individualized Flexible

100. Cloud Extensible Computing Browsers Safe Internet Secure Identities Individualized Flexible Powerful

101. More information... Read the white paper: http://www.kynetx.com Our developer site http://code.kynetx.com/

102. Context Automation ? Contact info: phil@windley.org www.windley.com @windley

Editor's Notes

imagine that the dots are Web sites and the user is going from web site to web site to accomplish some task.
existing browsers offer little help with this task Nearly everything we do only involves multiple Web sites, but there’s no help in connecting them.
context is: - relevant data to the Web task - links multiple sites - what the user cares about CA generates a browsing experience that links together formerly disconnected experiences and ven modifies individual sites.
Cookies and sessions are a way of creating context within a single site HTTP is designed to be stateless. Each page stands alone.
Single sign on is an example of cross-site context - single purpose: authentication context - still not leveraging this as we could. Having a single login that works on multiple sites isn’t the same as having a single authentication context for a given Web episode.
TrustWatch is a browser extension that provides a security context for users that uses a could-based service for site verification.
FF and IE have discovered that others will create interesting add-ons to their browsers. They encourage third party developers to build extensions to their platforms. Still some work to do here. Safari not very open. Especially on iPhone.
FF and IE have discovered that others will create interesting add-ons to their browsers. They encourage third party developers to build extensions to their platforms. Still some work to do here. Safari not very open. Especially on iPhone.
FF and IE have discovered that others will create interesting add-ons to their browsers. They encourage third party developers to build extensions to their platforms. Still some work to do here. Safari not very open. Especially on iPhone.
FF and IE have discovered that others will create interesting add-ons to their browsers. They encourage third party developers to build extensions to their platforms. Still some work to do here. Safari not very open. Especially on iPhone.
- Web 2.0 has made moves toward this individualization, but is stuck in the ad hoc rule. Web 2.0 drives the need for context.
- Web 2.0 has made moves toward this individualization, but is stuck in the ad hoc rule. Web 2.0 drives the need for context.
- Web 2.0 has made moves toward this individualization, but is stuck in the ad hoc rule. Web 2.0 drives the need for context.
- Web 2.0 has made moves toward this individualization, but is stuck in the ad hoc rule. Web 2.0 drives the need for context.
Fundamentally different than other solutions like OpenID. Cryptographically sound. Deep use cases, not shallow.
Fundamentally different than other solutions like OpenID. Cryptographically sound. Deep use cases, not shallow.
Fundamentally different than other solutions like OpenID. Cryptographically sound. Deep use cases, not shallow.
Fundamentally different than other solutions like OpenID. Cryptographically sound. Deep use cases, not shallow.
Greasemonkey - scripts on the browser not the cloud
Greasemonkey - scripts on the browser not the cloud
Greasemonkey - scripts on the browser not the cloud
Structure browsing - connects the dots and threads the experience opt-in, user controlled
Structure browsing - connects the dots and threads the experience opt-in, user controlled
Structure browsing - connects the dots and threads the experience opt-in, user controlled
Structure browsing - connects the dots and threads the experience opt-in, user controlled
No one’s ever surprised me with a GUI
No one’s ever surprised me with a GUI
No one’s ever surprised me with a GUI
The combination of browser as platform, cloud-based functionality, & strong identity yield an architecture for generating browsing experiences that are ...
The combination of browser as platform, cloud-based functionality, & strong identity yield an architecture for generating browsing experiences that are ...
The combination of browser as platform, cloud-based functionality, & strong identity yield an architecture for generating browsing experiences that are ...
The combination of browser as platform, cloud-based functionality, & strong identity yield an architecture for generating browsing experiences that are ...
The combination of browser as platform, cloud-based functionality, & strong identity yield an architecture for generating browsing experiences that are ...
The combination of browser as platform, cloud-based functionality, & strong identity yield an architecture for generating browsing experiences that are ...

Context Automation

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to Context Automation

Similar to Context Automation (20)

More from Phil Windley

More from Phil Windley (20)

Recently uploaded

Recently uploaded (20)

Context Automation

Editor's Notes