Modern Identity: Heterogeneity and Distance (Cloud Identity Summit Keynote)

•

4 likes•879 views

Keynote from Cloud Identity Summit 2014 (July 21). Focusing on modern identity's two primary attributes: heterogeneity and distance. Discusses the requirement for adaptive and local biometric authentication in the modern identity era, with specifics on OAuth/OpenID Connect, federation, and WAM.

Software

heterogeneity and distance
Mark Diodati
modern identity:

applications
services
user constituencies
devices

self-managed
partner-managed
SaaS-managed
applications

traditional IAM
IDaaS
identity bridge
services

employees
partners
contractors
users
customers

AD-joined PC/Mac
COPE devices
devices
BYOD devices
PC/Mac
mobile devices

application support
4 things that matter

identity assurance
cost
4 things that matter

first eternal truth
identity
assurance
cost and decreased usability
your app’s assurance requirement
“sweet” spot

identity
assurance
session duration
second eternal truth

modern authentication
requires
adaptive and local biometrics

conventional
primary authentication
password
smart card
one-time
password (OTP)
SMS

device ID
•____
•____
•____
IP blacklist
•Bill pay $349
•Bill pay $610
•EFT $2,000,000
behavioral
geolocation
primary authentication

assurance over time
identity
assurance
session duration
higher
assurance

53
degree of difficulty
distance
modern adaptive

primary
adaptive
adaptive server
resources
resources
browser
adaptive: traditional

adaptive: WAM
(3) yes/no or risk score
adaptive server
(1) primary
WAM policy
enforcement point
WAM policy
decision point
browser
adaptive: WAM

(3) yes/no
service provider
identity provider
adaptive server
(1) primary
browser
adaptive: federation

resource server
OpenID Provider
authorization server
user info endpoint
client/relying party/app
API

58
client/relying party/
app
client registration (admintime)
OpenID Provider/
authorization server
token refresh (runtime)
resource server
token presentation (runtime)
frequency
adaptive: API

adaptive enhanced device ID
A
privacy
playlists

first new eternal truth
identity
assurance
cost and decreased usability
app requirement

identity
assurance
session duration
second new eternal truth
app requirement

identity
assurance
session duration
continuous: our best aspiration
continuous
app requirement

heterogeneous, distant, continuous authentication?

layer authentication techniques to raise assurance

identity assurance
password
mobile
smart card
proofing matters
proofing

Similar to Modern Identity: Heterogeneity and Distance (Cloud Identity Summit Keynote)

Automated Onboarding, Identity Verification and Strong Authentication are all needed by future-readiness businesses that demand rapid evolution for their businesses transformation and growth. These 3 features form the core in hyper volume-velocity with remote working and BYO-focused workplace for every business too. End users and employee as understand the need for efficient solid identity verification security, but they expect technology to be simple, convenient, and fast. With decreased visibility and increased complexity, IT is more challenged than ever to manage authentication across a hybrid an environment without disrupting end-user

Going beyond MFA(Multi-factor authentication)-Future demands much more

indragantiSaiHiranma

Vinod Rebello

prensacespi

Passwords, multi-factor authentication, knowledge-based questions/answers, and hard tokens are based on technologies that are now 20 years old. With organizations losing the battle against cyber attacks, it’s clearly time to move beyond these legacy technologies and adopt a modern approach in which awareness and flexibility are king. Authentication must adapt based on the level of risk, so that it can deliver strong security yet be invisible to users most of the time. Achieving that balance of strong security and appropriate user friction is the basis for modern authentication. This session will explore what modern authentication is and why using it across all users, devices, and services is vital to turning a losing battle into a winning strategy to stop cyber attacks.

Modern Authentication – Turn a Losing Battle into a Winning Strategy, Robert ...

Core Security

Authentication and MFA is no longer a one-mode-fits-all experience. Customer-centric companies need flexible intelligence models and simple, consistent login journeys across channels—web, call center, mobile—without being forced to bolt MFA on top of usernames and passwords. ForgeRock’s VP, Global Strategy and Innovation, Ben Goodman, and Trusona’s Chief Design Officer, Kevin Goldman, explain how ForgeRock combined with Trusona creates a broad range of multi-factor authentication modalities all with a consistent user experience, including primary MFA without usernames, passwords or typing whatsoever. Bonus: Trusona will reveal findings from the first-ever passwordless MFA behavioral research.

ForgeRock and Trusona - Simplifying the Multi-factor User Experience

ForgeRock

Identity as a Service

Prabath Siriwardena

Understanding how emerging standards like OAuth and OpenID Connect impact federation Federation is a critical technology for reconciling user identity across Web applications. Now that users consume the same data through cloud and mobile, federation infrastructure must adapt to enable these new channels while maintaining security and providing a consistent user experience. This webinar will examine the differences between identity federation across Web, cloud and mobile, look at API specific use cases and explore the impact of emerging federation standards. You Will Learn Best practices for federating identity across mobile and cloud How emerging identity federation standards will impact your infrastructure How to implement an identity-centric API security and management infrastructure Presenters Ehud Amiri Director, Product Management, CA Technologies Francois Lascelles Chief Architect, Layer 7

Federation Evolved: How Cloud, Mobile & APIs Change the Way We Broker Identity

CA API Management

The Human Chain and Digital Services Toolkit Introduction V3.23 27_04_2016

Tim Jefferson

IRJET-An Economical and Secured Approach for Continuous and Transparent User ...

IRJET Journal

Securing The Cloud

george.james

Identiverse - Microservices Security

Bertrand Carlier

Customer identity and kyc trends

Satish Bhatia

ISS SA le presenta IdentityGuard de Entrust

Information Security Services SA

kicking your enterprise security up a notch with adaptive authentication sa...

Sagara Gunathunga

[WSO2Con EU 2018] Kicking Your Enterprise Security Up a Notch With Adaptive A...

WSO2

Every modern organization on the planet needs to connect with external partners and customers to be successful. Come have a look at how you can create experiences to onboard your partners and customers and give them access to the apps and digital resources that they need. Use the best products, tools, and capabilities Microsoft has to offer across Office365 (Groups, Teams, SharePoint), PowerBI, VSTS, SQL; Azure, Microsoft Graph and Azure Active Directory (Azure AD B2B and B2C) to digitally transform your organization.

Working with external identities: Learn how to enable partners, suppliers and...

Microsoft Tech Community

Gamifying the User’s Journey and the CSPs Service Offering Adnan Saleem, CTO Software and Cloud Solutions Telecom operators and numerous industry verticals lack creative engagement with their digital-savvy customer base. The next-generation AI-based applications can enable operators to offer personalized experiences while driving new monetization opportunities. Gamification of user interactions in various applications can be done by ‘rewarding’ users for taking desired actions and active participation, and delivering relevant content and offers within immersive experiences are some of the unique ways to engage the users and monetize the contextual interactions. However, balancing the cost of delivering dynamically personalized services, enhancing customer experience through immersive digital engagements, and optimizing business productivity remains a crucial challenge for businesses, application developers, service providers, and system integrators. The business growth will come by integrating the right mix of technologies such as 5G, IoT, cloud edge computing, speech analytics, augmented reality, computer vision, conversational artificial intelligence, and machine learning; and an integrated ecosystem that includes partner on-boarding, logistics, promotional inventory management and behavioral analytics. Radisys has recently collaborated with the TM Forum to deliver a project, called ‘Ready Telco One’ (led by Orange Group, Orange Poland, KDDI, and solution vendors) that demonstrates how telecom operators can gamify user journeys in various applications in health and fitness, live events, education and learning, entertainment and marketing campaigns to name a few. . This presentation will focus on how Radisys was able to streamline live AR/VR multimedia interactions with a robust media server platform (User Interaction Delivery Engine) for hyper-personalized, real-time customer engagement.

Radisys Keynote, Gamifying the User’s Journey, Adnan Saleem

Alan Quayle

Presentation data security solutions certified ibm business partner for ibm...

xKinAnx

Watch our webinar and learn: -How to satisfy the existing security compliance criteria in the era of impatient customers? -Industry best practices in ensuring the highest security and improved user experience in the authentication process. -Practical steps to planning and implementing optimal authentication ecosystems without unnecessary expenses. -From OTP to push and biometry – which authentication methods will be best suited to your business needs? -How to ensure strong authentication for remote work? For more info go to https://sxs.asseco.com/

Security & Seamless CX in User Authentication: How to Achieve Both?

Ivona M

Smart Identity for the Hybrid Multicloud World

Katherine Cola

Horizon_Brochure

Omar Tarish

Similar to Modern Identity: Heterogeneity and Distance (Cloud Identity Summit Keynote) (20)

Going beyond MFA(Multi-factor authentication)-Future demands much more

Vinod Rebello

Modern Authentication – Turn a Losing Battle into a Winning Strategy, Robert ...

ForgeRock and Trusona - Simplifying the Multi-factor User Experience

Identity as a Service

Federation Evolved: How Cloud, Mobile & APIs Change the Way We Broker Identity

The Human Chain and Digital Services Toolkit Introduction V3.23 27_04_2016

IRJET-An Economical and Secured Approach for Continuous and Transparent User ...

Securing The Cloud

Identiverse - Microservices Security

Customer identity and kyc trends

ISS SA le presenta IdentityGuard de Entrust

kicking your enterprise security up a notch with adaptive authentication sa...

[WSO2Con EU 2018] Kicking Your Enterprise Security Up a Notch With Adaptive A...

Working with external identities: Learn how to enable partners, suppliers and...

Radisys Keynote, Gamifying the User’s Journey, Adnan Saleem

Presentation data security solutions certified ibm business partner for ibm...

Security & Seamless CX in User Authentication: How to Achieve Both?

Smart Identity for the Hybrid Multicloud World

Horizon_Brochure

Recently uploaded

In software engineering, the right architecture is essential for robust, scalable platforms. Wix has undergone a pivotal shift from event sourcing to a CRUD-based model for its microservices. This talk will chart the course of this pivotal journey. Event sourcing, which records state changes as immutable events, provided robust auditing and "time travel" debugging for Wix Stores' microservices. Despite its benefits, the complexity it introduced in state management slowed development. Wix responded by adopting a simpler, unified CRUD model. This talk will explore the challenges of event sourcing and the advantages of Wix's new "CRUD on steroids" approach, which streamlines API integration and domain event management while preserving data integrity and system resilience. Participants will gain valuable insights into Wix's strategies for ensuring atomicity in database updates and event production, as well as caching, materialization, and performance optimization techniques within a distributed system. Join us to discover how Wix has mastered the art of balancing simplicity and extensibility, and learn how the re-adoption of the modest CRUD has turbocharged their development velocity, resilience, and scalability in a high-growth environment.

Beyond Event Sourcing - Embracing CRUD for Wix Platform - Java.IL

Natan Silnitsky

Key takeaways: Challenges of building platforms and the benefits of platformless. Key principles of platformless, including API-first, cloud-native middleware, platform engineering, and developer experience. How Choreo enables the platformless experience. How key concepts like application architecture, domain-driven design, zero trust, and cell-based architecture are inherently a part of Choreo. Demo of an end-to-end app built and deployed on Choreo.

Accelerate Enterprise Software Engineering with Platformless

WSO2

This presentation emphasizes the importance of data security and legal compliance for Nidhi companies in India. It highlights how online Nidhi software solutions, like Vector Nidhi Software, offer advanced features tailored to these needs. Key aspects include encryption, access controls, and audit trails to ensure data security. The software complies with regulatory guidelines from the MCA and RBI and adheres to Nidhi Rules, 2014. With customizable, user-friendly interfaces and real-time features, these Nidhi software solutions enhance efficiency, support growth, and provide exceptional member services. The presentation concludes with contact information for further inquiries.

top nidhi software solution freedownload

vrstrong314

CyanicLab, an offshore custom software development company based in Sweden,India, Finland, is your go-to partner for startup development and innovative web design solutions. Our expert team specializes in crafting cutting-edge software tailored to meet the unique needs of startups and established enterprises alike. From conceptualization to execution, we offer comprehensive services including web and mobile app development, UI/UX design, and ongoing software maintenance. Ready to elevate your business? Contact CyanicLab today and let us propel your vision to success with our top-notch IT solutions.

Cyaniclab : Software Development Agency Portfolio.pdf

Cyanic lab

Les Buildpacks existent depuis plus de 10 ans ! D’abord, ils étaient utilisés pour détecter et construire une application avant de la déployer sur certains PaaS. Ensuite, nous avons pu créer des images Docker (OCI) avec leur dernière génération, les Cloud Native Buildpacks (CNCF en incubation). Sont-ils une bonne alternative au Dockerfile ? Que sont les buildpacks Paketo ? Quelles communautés les soutiennent et comment ? Venez le découvrir lors de cette session ignite

Paketo Buildpacks : la meilleure façon de construire des images OCI? DevopsDa...

Anthony Dahanne

Vitthal Shirke Microservices Resume Montevideo

Vitthal Shirke

AI/ML Infra Meetup | Perspective on Deep Learning Framework

Alluxio, Inc.

AI/ML Infra Meetup May. 23, 2024 Organized by Alluxio For more Alluxio Events: https://www.alluxio.io/events/ Speaker: - Eric Wang (Software Engineer, @Uber) Uber has numerous deep learning models, most of which are highly complex with many layers and a vast number of features. Understanding how these models work is challenging and demands significant resources to experiment with various training algorithms and feature sets. With ML explainability, the ML team aims to bring transparency to these models, helping to clarify their predictions and behavior. This transparency also assists the operations and legal teams in explaining the reasons behind specific prediction outcomes. In this talk, Eric Wang will discuss the methods Uber used for explaining deep learning models and how we integrated these methods into the Uber AI Michelangelo ecosystem to support offline explaining.

AI/ML Infra Meetup | ML explainability in Michelangelo

Alluxio, Inc.

WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation

WSO2

Experience our free, in-depth three-part Tendenci Platform Corporate Membership Management workshop series! In Session 1 on May 14th, 2024, we began with an Introduction and Setup, mastering the configuration of your Corporate Membership Module settings to establish membership types, applications, and more. Then, on May 16th, 2024, in Session 2, we focused on binding individual members to a Corporate Membership and Corporate Reps, teaching you how to add individual members and assign Corporate Representatives to manage dues, renewals, and associated members. Finally, on May 28th, 2024, in Session 3, we covered questions and concerns, addressing any queries or issues you may have. For more Tendenci AMS events, check out www.tendenci.com/events

Corporate Management | Session 3 of 3 | Tendenci AMS

Tendenci - The Open Source AMS (Association Management Software)

Advanced Flow Concepts Every Developer Should Know

Peter Caitens

Even though at surface level ‘java.lang.OutOfMemoryError’ appears as one single error; underlyingly there are 9 types of OutOfMemoryError. Each type of OutOfMemoryError has different causes, diagnosis approaches and solutions. This session equips you with the knowledge, tools, and techniques needed to troubleshoot and conquer OutOfMemoryError in all its forms, ensuring smoother, more efficient Java applications.

TROUBLESHOOTING 9 TYPES OF OUTOFMEMORYERROR

Tier1 app

Field Employee Tracking System| MiTrack App| Best Employee Tracking Solution|...

informapgpstrackings

OpenFOAM solver for Helmholtz equation, helmholtzFoam / helmholtzBubbleFoam

takuyayamamoto1800

A Comprehensive Appium Guide for Hybrid App Automation Testing.pdf

kalichargn70th171

Studiovity film pre-production and screenwriting software

info611746

Into the Box 2024 - Keynote Day 2 Slides.pdf

Ortus Solutions, Corp

AI/ML Infra Meetup May. 23, 2024 Organized by Alluxio For more Alluxio Events: https://www.alluxio.io/events/ Speaker: - Lu Qiu (Data & AI Platform Tech Lead, @Alluxio) - Siyuan Sheng (Senior Software Engineer, @Alluxio) Speed and efficiency are two requirements for the underlying infrastructure for machine learning model development. Data access can bottleneck end-to-end machine learning pipelines as training data volume grows and when large model files are more commonly used for serving. For instance, data loading can constitute nearly 80% of the total model training time, resulting in less than 30% GPU utilization. Also, loading large model files for deployment to production can be slow because of slow network or storage read operations. These challenges are prevalent when using popular frameworks like PyTorch, Ray, or HuggingFace, paired with cloud object storage solutions like S3 or GCS, or downloading models from the HuggingFace model hub. In this presentation, Lu and Siyuan will offer comprehensive insights into improving speed and GPU utilization for model training and serving. You will learn: - The data loading challenges hindering GPU utilization - The reference architecture for running PyTorch and Ray jobs while reading data from S3, with benchmark results of training ResNet50 and BERT - Real-world examples of boosting model performance and GPU utilization through optimized data access

AI/ML Infra Meetup | Improve Speed and GPU Utilization for Model Training & S...

Alluxio, Inc.

Top Mobile App Development Companies 2024

XongoLab Technologies LLP

A Python-based approach to data loading in TM1 - Using Airflow as an ETL for TM1

KnowledgeSeed

Recently uploaded (20)

Beyond Event Sourcing - Embracing CRUD for Wix Platform - Java.IL

Accelerate Enterprise Software Engineering with Platformless

top nidhi software solution freedownload

Cyaniclab : Software Development Agency Portfolio.pdf

Paketo Buildpacks : la meilleure façon de construire des images OCI? DevopsDa...

Vitthal Shirke Microservices Resume Montevideo

AI/ML Infra Meetup | Perspective on Deep Learning Framework

AI/ML Infra Meetup | ML explainability in Michelangelo

WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation

Corporate Management | Session 3 of 3 | Tendenci AMS

Advanced Flow Concepts Every Developer Should Know

TROUBLESHOOTING 9 TYPES OF OUTOFMEMORYERROR

Field Employee Tracking System| MiTrack App| Best Employee Tracking Solution|...

OpenFOAM solver for Helmholtz equation, helmholtzFoam / helmholtzBubbleFoam

A Comprehensive Appium Guide for Hybrid App Automation Testing.pdf

Studiovity film pre-production and screenwriting software

Into the Box 2024 - Keynote Day 2 Slides.pdf

AI/ML Infra Meetup | Improve Speed and GPU Utilization for Model Training & S...

Top Mobile App Development Companies 2024

A Python-based approach to data loading in TM1 - Using Airflow as an ETL for TM1

Modern Identity: Heterogeneity and Distance (Cloud Identity Summit Keynote)

1. heterogeneity and distance Mark Diodati modern identity:

2. CIS Survival Guide

3. 99 sessions

4. 48 possible workshops

5. 12 hours of workshops

6. 60 remaining sessions

7. 24 sessions

8. 12 hours of sessions

9. 2 social events

10.

11.

12.

13. caffeinate

14. hydrate

15. take your vitamins

16. get some rest

17. take good notes

18. get outside

19. make a friend

20. modern identity

21. applications services user constituencies devices

22. heterogeneity

23. distance

24. distance: span of control

25. on-premises in the cloud applications

26. self-managed partner-managed SaaS-managed applications

27. IaaS SaaS PaaS applications

28. traditional IAM IDaaS identity bridge services

29. self-managed partner-managed services

30. employees partners contractors users customers

31. AD-joined PC/Mac COPE devices devices BYOD devices PC/Mac mobile devices

32. authentication: what matters

33. application support 4 things that matter

34. identity assurance 4 things that matter

35. identity assurance cost 4 things that matter

36. $10,000 barn $5,000 horse

37. 4 things that matter usability

38. eternal truths

39. first eternal truth identity assurance cost and decreased usability your app’s assurance requirement “sweet” spot

40. costs too much

41. identity assurance session duration second eternal truth

42. not good enough

43. reset expectations?

44. my career in heavy metal music

45. wristwatch

46. modern authentication requires adaptive and local biometrics

47. die darwin

48. adaptive origins

49. conventional primary authentication password smart card one-time password (OTP) SMS

50. device ID •____ •____ •____ IP blacklist •Bill pay $349 •Bill pay $610 •EFT $2,000,000 behavioral geolocation primary authentication

51. assurance over time identity assurance session duration higher assurance

52. modern adaptive

53. 53 degree of difficulty distance modern adaptive

54. primary adaptive adaptive server resources resources browser adaptive: traditional

55. adaptive: WAM (3) yes/no or risk score adaptive server (1) primary WAM policy enforcement point WAM policy decision point browser adaptive: WAM

56. (3) yes/no service provider identity provider adaptive server (1) primary browser adaptive: federation

57. resource server OpenID Provider authorization server user info endpoint client/relying party/app API

58. 58 client/relying party/ app client registration (admintime) OpenID Provider/ authorization server token refresh (runtime) resource server token presentation (runtime) frequency adaptive: API

59. mobile biometric

60. biometric reader in every pocket

61. adaptive enhanced device ID A privacy playlists

62. eternal truths redux

63. first new eternal truth identity assurance cost and decreased usability app requirement

64. first new eternal truth identity assurance cost and decreased usability app requirement

65. identity assurance session duration second new eternal truth app requirement

66. identity assurance session duration second new eternal truth app requirement

67. identity assurance session duration continuous: our best aspiration continuous app requirement

68. heterogeneous, distant, continuous authentication?

69. monitor adaptive developments

70. layer authentication techniques to raise assurance

71. plan for multiple authentication types

72. get your proofing right

73. identity assurance password mobile smart card proofing matters proofing

74. tune your engine

Modern Identity: Heterogeneity and Distance (Cloud Identity Summit Keynote)

Recommended

Recommended

More Related Content

Similar to Modern Identity: Heterogeneity and Distance (Cloud Identity Summit Keynote)

Similar to Modern Identity: Heterogeneity and Distance (Cloud Identity Summit Keynote) (20)

Recently uploaded

Recently uploaded (20)

Modern Identity: Heterogeneity and Distance (Cloud Identity Summit Keynote)