GraphTalk Wien - Neue Wege zum erfolgreichen Identity & Access Management mit Graphen

•

1 like•88 views

The document discusses how graph databases like Neo4j can revolutionize identity and access management (IAM) by providing a better model for defining complex identities, access relationships, and conditional approvals compared to traditional hierarchical systems. A graph database can store IAM metadata and authorization data in a way that closely maps to conceptual relationships and allows for intuitive querying of identity information. The document provides examples of how Neo4j has been implemented for IAM by companies to improve performance, agility, and compliance over traditional IAM approaches.

Software

How Graphs Revolutionize Identity &
Access Management
Stefan Armbruster
Field Engineer

• Identity and Access Management Overview
• What is a graph database?
• Why is Neo4j a great fit for IAM?
• Great customer stories
• Links to resources and videos
2
Agenda

“Ensuring the right individuals have access to the right resources at the
right times and for the right reasons”
What do we need to do (at least)?
• Define identity
• Define the structure of an organization
3
What is Identity and Access Management?

Jane Smith the…
• Business Analyst for Customer Support at ABC Inc.
• interim Head of BI and Reporting at ABC Inc.
• line manager of Joe Brown, who’s working on a Strictly
Confidential portfolio at ABC Inc.
• employee of ABC Inc.
• and so on...
4
What is Identity?

It looks like a hierarchy...
5
So what does ABC Inc. look like?

7
What about “dotted lines”?
ABC Inc
(CEO)
IT Dept
Risk Analysis
“Security and
Compliance”

8
What about “Conditional Approvals”?
ABC Inc
(CEO)
IT Dept
General
access
“access to
sensitive data”
“Security and
Compliance”

• Distributed access across on premise and in the cloud for in-
house/custom off the shelf/SaaS applications
• De-centralized resources that are assigned to people rather
than roles
• The rise of IoT and different identities that people and services
assume in different contexts
9
Modern challenges for IAM

• Multiple and conditional approval levels
• History of approval chains / time series (eg „who approved at 5th
of July User xyc access to system abc?“)
• GDRP and Compliance
• Performance
• Intuitivity
• Agility:
• Adding new use cases as needed
• Changing hierarchies on the fly10
… other challenges for IAM

13
What is a graph database?
name: “Joe Brown”
employeeID: 456
name: “Jane
Smith”
employeeID: 123
from:
1/3/2018
Nodes
• Can have Labels to classify nodes
• Can have more than one label
Relationships
• Relate nodes by type and direction
Properties
• Attributes of Nodes &
Relationships
MANAGES
Employee Employee
from:
1/6/2017
from:
1/3/2018
name: “Business
Analyst”
Role

Design
• Authorization data model maps closely to the conceptual view
• Closer alignment to processes
Maintenance
• Easy to understand code to query and explore the data
• Pain-free to update and modify model structure as and when required
Performance
• Traversing the authorization tree is fast, providing real-time
authorization capability
14
Why Neo4j is a great fit for IAM

Three potential approaches:
• Create a graph-based repository to store identity and access
information metadata
• Integrate Neo4j with current IAM data for authorization
• Import IA data into Neo4j to perform audit
15
How can Neo4j fit into IAM approaches?

Find out more about IAM implementations in Neo4j:
• Telenor: www.youtube.com/watch?v=kM2NWM0t-2s
• ForgeRock/Nulli: www.youtube.com/watch?v=R9Vdm2ZqlpQ
Have a go with Neo4j and an IAM example:
• https://neo4j.com/graphgist/entitlements-and-access-control
20
Check it out

Search is often considered to be a magical "black box". It's like air or water: we don't recognize it as long as it works fine. But as soon as we don't get the results we expect we start complaining. In this session, Agnes is de-mystifying Search in SharePoint and Office 365. She'll explain how it works behind the scenes in a way that makes sense not only for the Search Pros but also for the end users. She'll demonstrate the basic concepts of the following things: • how content becomes searchable; • how data becomes filter (refiner), how it can be displayed on the user interface; • how to define various "search verticals" and specific search applications; • why is it important to add good metadata on the content AND empower all users to do the same; • how content metadata becomes the "soul of search"; • in classic and personalized search experiences in Office 365: why we have what we have, and how to get the most of this wide variety of search experiences; • and many more.

Sharepoint & Dynamics CRM

rujuta4radix

Creating Accessible Web Content

hannonhill

Web Performance Lessons at DDD Sydney May 2016

Jason Stangroome

First we interview the users, then we design a reporting model based on those interviews. We follow that up with mounds of ETL development to load the new model, basically keeping the user community in the dark during all that development. Does this sound familiar? This presentation will demonstrate an alternative approach using the Data Vault Data Modeling technique to build a flexible, easily-extensible “Foundation” layer in our data warehouse with an Agile, iterative methodology. Relying on the Business Model and Mapping (BMM) functionality of OBIEE, we can rapidly virtualize a dimensional reporting model using the pattern-based Data Vault Foundation layer to decrease the time, and money, it takes to get BI content in front of end users. Attendees will see a sample Data Vault model designed iteratively and deployed to the semantic model of OBIEE.

Enterprise ready: a look at Neo4j in production

Neo4j

SP Tech Con San Francisco 2014 - Real World Examples - Hybrid Office 365 Envi...

Summit 7 Systems

From SPTechCon San Francisco 2014: In this class, you’ll see real-world examples of solving problems and finding opportunities when moving part of your workload to the cloud. You’ll be introduced to designing federated searching, cloud crawling, navigation synchronization, line-of-business integration, Active Directory Synchronization, social features, and Office 365 personal sites. This will be a live-demo class and you’ll see an example solution end to end! Takeaways from this class include an examination of when user experience matters, a look at product features that can help you bridge cloud and on-premise sites, and how organizations solved the social gap between Office 365 and on premise.

SRV423 [new launch] Introducing Amazon Macie — Visibility and Security for yo...

Amazon Web Services

Identity & Access Management  Project Challenges and Recovery

Hanno Ekdahl

Presented by Hanno Ekdahl at ISACA Atlanta's #GeekWeek2017. ISACA's 10th Annual Geek Week Conference in Atlanta, GA featured speakers across a wide range of security topics from Risk Management to Penetration Testing. During the conference, policy and technical tracks provided a forum for participants to exchange experiences from the front lines of IT security, including industry best practices as well as driving both accountability and effectiveness for security programs within the organization. The week-long event included plenary and panel sessions, practical workshops and technology demonstrations. This summary presents the key themes, ideas, and considerations that emerged from our Identity Management Presentation at the conference.

Building a Data Driven Culture and AI Revolution With Gregory Little | Curren...

HostedbyConfluent

Building a Data Driven Culture and AI Revolution With Gregory Little | Current 2022 Transforming business or mission through AI/ML doesn't start with technology but with culture…and an audit. At least as much is true for the US Department of Defense (DoD), which presents significant modernization challenges because of its mission scope, expansive global footprint, and massive size - with over 2.8 million people, it is the largest employer in the world. Greg Little discusses how establishing the DoD’s annual audit became a surprising accelerator for the department’s data and analytics journey. It revealed the foundational needs for data management to run a $3 trillion in assets enterprise, and its successful implementation required breaking through deeply entrenched cultural and organizational resistance across DoD. In this session, Greg will discuss what it will take to guide the evolution of technology and culture in parallel: leadership, technology that enables rapid scale and a complete & reliable data flow, and a data driven culture.

Tech essentials for Product managers

Nitin T Bhat

Data Visualization and the Art of Self-Reliance

Inside Analysis

The Briefing Room with Robin Bloor and Tableau Software Live Webcast April 23, 2013 Classic author Ralph Waldo Emerson inspired a generation with his essays on self-reliance. The wisdom of his message still rings true today, and provides a vision for the modern information worker: trust in yourself and your ideas. Then, pull together the right data, and the right visualization of that data, to tell a compelling story. Rely on your instincts, and use information assets to your advantage. Check out the slides from this episode of The Briefing Room to hear veteran Analyst Dr. Robin Bloor provide a roadmap for enabling self-reliant knowledge workers. He'll be briefed by Suzanne Hoffman of Tableau Software, who will demonstrate how the latest version of Tableau's data visualization platform can empower information professionals from all segments of the enterprise. She'll demonstrate how anyone from a casual business user to a Data Scientist can quickly create, modify and share visualizations. Visit: http://www.insideanalysis.com

The Great Lakes: How to Approach a Big Data Implementation

Inside Analysis

The Briefing Room with Dr. Robin Bloor and Think Big, a Teradata Company Live Webcast April 7, 2015 Watch the archive: https://bloorgroup.webex.com/bloorgroup/lsr.php?RCID=4114b87441ab7b2b4c52f6b24776e5a1 The more things change in Big Data, the more they stay the same. Indeed, there are many similarities between a Hadoop-based Data Lake and today’s modern Data Warehouse. Regardless of platform, information workers must still be able to turn their assets into action quickly, without taking a hit on governance or downstream performance. Register for this episode of The Briefing Room to hear veteran Analyst Dr. Robin Bloor as he explains the challenges facing organizations who endeavor on Big Data projects. He’ll be briefed by Rick Stellwagen of Think Big, a Teradata Company, who will outline his company’s approach to handling Big Data implementations. Rick will discuss the role of the data lake, and how timely response of queries is critical for reporting and analysis. Visit InsideAnalysis.com for more information.

How to deliver a Single View in Financial Services

MongoDB

Denodo DataFest 2016: Metadata and Data: Search and Exploration

Denodo

Watch the full session: Denodo DataFest 2016 sessions: https://goo.gl/ptQMW7 What matters the most for analysts and decision makers is finding the right data within seconds. Data virtualization incorporates a rich metadata catalog and graphical interface for the self-service users In this session, you will learn: • How to discover, search, explore, curate and share trusted data assets in a governed manner • How to view and utilize the complete lineage of data assets • Ways to infer patterns in data and metadata This session is part of the Denodo DataFest 2016 event. You can also watch more Denodo DataFest sessions on demand here: https://goo.gl/VXb6M6

The Power of Data

DataWorks Summit

This presentation starts off by discussing powerful examples of The Power of Data and the benefits of Data Driven architectures. A Data Governance program is important for the success of Data Driven architectures. We then discuss the challenges of implementing a Data Governance framework on a Big Data Data Lake with open source software including DataPlane, Apache Atlas and Apache Ranger. And finally, we discuss the importance of the democratization of data and the switching to a speed of thought framework with Hive LLAP.

APIs in Enterprise

Victor Olex

Using APIs in enterprise for reporting, data science and systems integration. Originally presented at the 2015 API Strategy & Practice conference, Nov. 20, in Austin, TX. In today's high paced digital marketplace no company is entitled to their business model. The origins of web APIs are in Amazon's need to improve its operations and in particular to rationalize their internal system integration. Them being a native web business it was natural to leverage web technologies. Since then APIs took off on the web driven by pragmatic developers working on e-commerce and digital marketing solutions. This work moves fast and relatively inexpensively. Meanwhile billions of dollars are spent every year on enterprise systems integration. In this deck we are showing how to leverage resource oriented APIs to overcome data silos, multiply return on investment in databases and create web of data assets consumable not only by software developers but also business analysts, data scientists and management.

Make your Azure PaaS Deployment More Safe

Thuan Ng

Workshop - Ways of Working Within the M365 Workspace.pptx

Simon Rawson

Business analyst with project trainingFuturePoint Technologies

Solving the Disconnected Data Problem in Healthcare Using MongoDB

MongoDB

The data diversity in healthcare and life sciences is exploding and the market is fundamentally changing as a result of healthcare reform. The result is more and more data but it is compartmentalized and disconnected. At Zephyr Health, we have developed a data platform that is able to provide connectivity between thousands of healthcare data assets using an ontology driven approach storing data in MongoDB. This session will show how we break down this very challenging problem and how some of MongoDBs more recent features have been utilized to do so.

Rajiv Resume (1) (1)Rajiv Bhalerao

Atelier - Architecture d’applications de Graphes - GraphSummit Paris

Neo4j

Atelier - Architecture d’applications de Graphes Participez à cet atelier pratique animé par des experts de Neo4j qui vous guideront pour découvrir l’intelligence contextuelle. En utilisant un jeu de données réel, nous construirons étape par étape une solution de graphes ; de la construction du modèle de données de graphes à l’exécution de requêtes et à la visualisation des données. L’approche sera applicable à de multiples cas d’usages et industries.

Atelier - Innover avec l’IA Générative et les graphes de connaissances

Neo4j

Atelier - Innover avec l’IA Générative et les graphes de connaissances Allez au-delà du battage médiatique autour de l’IA et découvrez des techniques pratiques pour utiliser l’IA de manière responsable à travers les données de votre organisation. Explorez comment utiliser les graphes de connaissances pour augmenter la précision, la transparence et la capacité d’explication dans les systèmes d’IA générative. Vous partirez avec une expérience pratique combinant les relations entre les données et les LLM pour apporter du contexte spécifique à votre domaine et améliorer votre raisonnement. Amenez votre ordinateur portable et nous vous guiderons sur la mise en place de votre propre pile d’IA générative, en vous fournissant des exemples pratiques et codés pour démarrer en quelques minutes.

Similar to GraphTalk Wien - Neue Wege zum erfolgreichen Identity & Access Management mit Graphen

Neo4j GraphTalk Düsseldorf - How Graphs revolutionise Identity & Access Manag...

Neo4j

Using OBIEE and Data Vault to Virtualize Your BI Environment: An Agile Approach

Kent Graziano

Enterprise ready: a look at Neo4j in production

Neo4j

SP Tech Con San Francisco 2014 - Real World Examples - Hybrid Office 365 Envi...

Summit 7 Systems

SRV423 [new launch] Introducing Amazon Macie — Visibility and Security for yo...

Amazon Web Services

Identity & Access Management  Project Challenges and Recovery

Hanno Ekdahl

Building a Data Driven Culture and AI Revolution With Gregory Little | Curren...

HostedbyConfluent

Tech essentials for Product managers

Nitin T Bhat

Data Visualization and the Art of Self-Reliance

Inside Analysis

The Great Lakes: How to Approach a Big Data Implementation

Inside Analysis

How to deliver a Single View in Financial Services

MongoDB

Denodo DataFest 2016: Metadata and Data: Search and Exploration

Denodo

The Power of Data

DataWorks Summit

APIs in Enterprise

Victor Olex

Make your Azure PaaS Deployment More Safe

Thuan Ng

Workshop - Ways of Working Within the M365 Workspace.pptx

Simon Rawson

Business analyst with project trainingFuturePoint Technologies

Solving the Disconnected Data Problem in Healthcare Using MongoDB

MongoDB

Rajiv Resume (1) (1)Rajiv Bhalerao

Similar to GraphTalk Wien - Neue Wege zum erfolgreichen Identity & Access Management mit Graphen (20)

Neo4j GraphTalk Düsseldorf - How Graphs revolutionise Identity & Access Manag...

Using OBIEE and Data Vault to Virtualize Your BI Environment: An Agile Approach

Enterprise ready: a look at Neo4j in production

SP Tech Con San Francisco 2014 - Real World Examples - Hybrid Office 365 Envi...

SRV423 [new launch] Introducing Amazon Macie — Visibility and Security for yo...

Identity & Access Management  Project Challenges and Recovery

Building a Data Driven Culture and AI Revolution With Gregory Little | Curren...

Tech essentials for Product managers

Data Visualization and the Art of Self-Reliance

The Great Lakes: How to Approach a Big Data Implementation

How to deliver a Single View in Financial Services

Denodo DataFest 2016: Metadata and Data: Search and Exploration

The Power of Data

APIs in Enterprise

Make your Azure PaaS Deployment More Safe

Workshop - Ways of Working Within the M365 Workspace.pptx

Business analyst with project training

Solving the Disconnected Data Problem in Healthcare Using MongoDB

Rajiv Resume (1) (1)

More from Neo4j

Atelier - Architecture d’applications de Graphes - GraphSummit Paris

Neo4j

Atelier - Innover avec l’IA Générative et les graphes de connaissances

Neo4j

Neo4j - Product Vision and Knowledge Graphs - GraphSummit Paris

Neo4j

Neo4j - Product Vision and Knowledge Graphs - GraphSummit Paris

Neo4j

FLOA - Détection de Fraude - GraphSummit Paris

Neo4j

SOPRA STERIA - GraphRAG : repousser les limitations du RAG via l’utilisation ...

Neo4j

Romain CAMPOURCY – Architecte Solution, Sopra Steria Patrick MEYER – Architecte IA Groupe, Sopra Steria La Génération de Récupération Augmentée (RAG) permet la réponse à des questions d’utilisateur sur un domaine métier à l’aide de grands modèles de langage. Cette technique fonctionne correctement lorsque la documentation est simple mais trouve des limitations dès que les sources sont complexes. Au travers d’un projet que nous avons réalisé, nous vous présenterons l’approche GraphRAG, une nouvelle approche qui utilise une base Neo4j générée pour améliorer la compréhension des documents et la synthèse d’informations. Cette méthode surpasse l’approche RAG en fournissant des réponses plus holistiques et précises.

ADEO - Knowledge Graph pour le e-commerce, entre challenges et opportunités ...

Neo4j

Charles Gouwy, Business Product Leader, Adeo Services (Groupe Leroy Merlin) Alors que leur Knowledge Graph est déjà intégré sur l’ensemble des expériences d’achat de leur plateforme e-commerce depuis plus de 3 ans, nous verrons quelles sont les nouvelles opportunités et challenges qui s’ouvrent encore à eux grâce à leur utilisation d’une base de donnée de graphes et l’émergence de l’IA.

GraphSummit Paris - The art of the possible with Graph Technology

Neo4j

GraphSummit Singapore | Enhancing Changi Airport Group's Passenger Experience...

Neo4j

Dr. Sean Tan, Head of Data Science, Changi Airport Group Discover how Changi Airport Group (CAG) leverages graph technologies and generative AI to revolutionize their search capabilities. This session delves into the unique search needs of CAG’s diverse passengers and customers, showcasing how graph data structures enhance the accuracy and relevance of AI-generated search results, mitigating the risk of “hallucinations” and improving the overall customer journey.

GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...

Neo4j

Leonard Jayamohan, Partner & Generative AI Lead, Deloitte This keynote will reveal how Deloitte leverages Neo4j’s graph power for groundbreaking digital twin solutions, achieving a staggering 100x performance boost. Discover the essential role knowledge graphs play in successful generative AI implementations. Plus, get an exclusive look at an innovative Neo4j + Generative AI solution Deloitte is developing in-house.

GraphSummit Singapore | Neo4j Product Vision & Roadmap - Q2 2024

Neo4j

GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024

Neo4j

GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...

Neo4j

Sudheer Mechineni, Head of Application Frameworks, Standard Chartered Bank Discover how Standard Chartered Bank harnessed the power of Neo4j to transform complex data access challenges into a dynamic, scalable graph database solution. This keynote will cover their journey from initial adoption to deploying a fully automated, enterprise-grade causal cluster, highlighting key strategies for modelling organisational changes and ensuring robust disaster recovery. Learn how these innovations have not only enhanced Standard Chartered Bank’s data infrastructure but also positioned them as pioneers in the banking sector’s adoption of graph technology.

GraphAware - Transforming policing with graph-based intelligence analysis

Neo4j

Petr Matuska, Sales & Sales Engineering Lead, GraphAware Western Australia Police Force’s adoption of Neo4j and the GraphAware Hume graph analytics platform marks a significant advancement in data-driven policing. Facing the challenges of growing volumes of valuable data scattered in disconnected silos, the organisation successfully implemented Neo4j database and Hume, consolidating data from various sources into a dynamic knowledge graph. The result was a connected view of intelligence, making it easier for analysts to solve crime faster. The partnership between Neo4j and GraphAware in this project demonstrates the transformative impact of graph technology on law enforcement’s ability to leverage growing volumes of valuable data to prevent crime and protect communities.

GraphSummit Stockholm - Neo4j - Knowledge Graphs and Product Updates

Neo4j

KLARNA - Language Models and Knowledge Graphs: A Systems Approach

Neo4j

INGKA DIGITAL: Linked Metadata by Design

Neo4j

Your enemies use GenAI too - staying ahead of fraud with Neo4j

Neo4j

Delivered by Michael Down at Gartner Data & Analytics Summit London 2024 - Your enemies use GenAI too: Staying ahead of fraud with Neo4j. Fraudsters exploit the latest technologies like generative AI to stay undetected. Static applications can’t adapt quickly enough. Learn why you should build flexible fraud detection apps on Neo4j’s native graph database combined with advanced data science algorithms. Uncover complex fraud patterns in real-time and shut down schemes before they cause damage.

BT & Neo4j _ How Knowledge Graphs help BT deliver Digital Transformation.pptx

Neo4j

Delivered by Sreenath Gopalakrishna, Director of Software Engineering at BT, and Dr Jim Webber, Chief Scientist at Neo4j, at Gartner Data & Analytics Summit London 2024 this presentation examines how knowledge graphs and GenAI combine in real-world solutions. BT Group has used the Neo4j Graph Database to enable impressive digital transformation programs over the last 6 years. By re-imagining their operational support systems to adopt self-serve and data lead principles they have substantially reduced the number of applications and complexity of their operations. The result has been a substantial reduction in risk and costs while improving time to value, innovation, and process automation. Future innovation plans include the exploration of uses of EKG + Generative AI.

Workshop: Enabling GenAI Breakthroughs with Knowledge Graphs - GraphSummit Milan

Neo4j

More from Neo4j (20)