OIDF Workshop at European Identity Conference 2019 -- 5/14/2019 -- OpenID Cer...OpenIDFoundation
Michael Jones with Microsoft provided an update on the OpenID Certification Program at the OIDF Workshop at the 2019 European Identity Conference on Tuesday, May 14, 2019 in Munich.
OpenID Foundation FastFed Working Group Update - 2017-10-16MikeLeszcz
The Fast Federation Working Group aims to increase adoption of federated identity by making it easier to configure single sign-on between applications. It proposes new metadata files and user experience flows to simplify the registration process for administrators. The goals are to solve problems like attribute mapping and endpoint discovery by pushing complexity onto identity providers and advocating for administrators through standards that reduce integration work for service providers.
OpenID Foundation Workshop at EIC 2018 - MODRNA Working Group UpdateMikeLeszcz
OpenID Foundation MODRNA Working Group update presented by Bjorn Hjelm (Verizon) and John Bradley (Yubico) at the OIDF Workshop at EIC 2018 on May 15, 2018 in Munich.
OpenID Foundation Connect Working Group Update - October 22, 2018OpenIDFoundation
OpenID Foundation Connect Working Group update presented by Michael Jones (Microsoft) at the OpenID Foundation Workshop at VMware on Monday, October 22, 2018.
OIDF Workshop at Verizon Media -- 9/30/2019 -- Continuous Access Evaluation P...OpenIDFoundation
Atul Tulshibagwale with Google provided an an overview of the Continuous Access Evaluation Protocol (CAEP) at the OIDF Workshop at Verizon Media on Monday, September 30, 2019 in Sunnyvale, CA.
OIDF Workshop at Verizon Media -- 9/30/2019 -- OpenID Certification Program U...OpenIDFoundation
Michael Jones with Microsoft provided an update on the OpenID Certification Program at the OIDF Workshop at Verizon Media on Monday, September 30, 2019 in Sunnyvale, CA.
OIDF Workshop at European Identity Conference 2019 -- 5/14/2019 -- OpenID Cer...OpenIDFoundation
Michael Jones with Microsoft provided an update on the OpenID Certification Program at the OIDF Workshop at the 2019 European Identity Conference on Tuesday, May 14, 2019 in Munich.
OpenID Foundation FastFed Working Group Update - 2017-10-16MikeLeszcz
The Fast Federation Working Group aims to increase adoption of federated identity by making it easier to configure single sign-on between applications. It proposes new metadata files and user experience flows to simplify the registration process for administrators. The goals are to solve problems like attribute mapping and endpoint discovery by pushing complexity onto identity providers and advocating for administrators through standards that reduce integration work for service providers.
OpenID Foundation Workshop at EIC 2018 - MODRNA Working Group UpdateMikeLeszcz
OpenID Foundation MODRNA Working Group update presented by Bjorn Hjelm (Verizon) and John Bradley (Yubico) at the OIDF Workshop at EIC 2018 on May 15, 2018 in Munich.
OpenID Foundation Connect Working Group Update - October 22, 2018OpenIDFoundation
OpenID Foundation Connect Working Group update presented by Michael Jones (Microsoft) at the OpenID Foundation Workshop at VMware on Monday, October 22, 2018.
OIDF Workshop at Verizon Media -- 9/30/2019 -- Continuous Access Evaluation P...OpenIDFoundation
Atul Tulshibagwale with Google provided an an overview of the Continuous Access Evaluation Protocol (CAEP) at the OIDF Workshop at Verizon Media on Monday, September 30, 2019 in Sunnyvale, CA.
OIDF Workshop at Verizon Media -- 9/30/2019 -- OpenID Certification Program U...OpenIDFoundation
Michael Jones with Microsoft provided an update on the OpenID Certification Program at the OIDF Workshop at Verizon Media on Monday, September 30, 2019 in Sunnyvale, CA.
OIDF Workshop at Verizon Media -- 9/30/2019 -- FastFed Working Group UpdateOpenIDFoundation
OpenID Foundation Fast Federation (FastFed) Working Group update presented by Darin McAdams (Amazon) at the OIDF Workshop at Verizon Media on Monday, September 30, 2019 in Sunnyvale, CA.
OpenID Certification Program Update - 2018-04-02MikeLeszcz
The document discusses OpenID Certification, which allows OpenID Connect implementations to be certified as meeting defined technical profiles through testing. Certification provides value by helping ensure technical interoperability and enhancing organizations' reputations. Current certifiable profiles include basic, implicit, hybrid, and dynamic profiles for OpenID providers and relying parties. The certification process uses self-certification where organizations test their own implementations against public test suites. Certified implementations can use the "OpenID Certified" logo. The international certification effort aims to promote further adoption and make interoperable OpenID Connect implementations commonplace.
OIDF Workshop at Verizon Media -- 9/30/2019 -- OpenID Connect Federation UpdateOpenIDFoundation
Roland Hedberg with Catalogix and the OpenID Foudation provided an update on OpenID Connect Federation at the OIDF Workshop at Verizon Media on Monday, September 30, 2019 in Sunnyvale, CA.
OpenID Foundation iGov Working Group Update - October 22, 2018OpenIDFoundation
OpenID Foundation iGov Working Group update presented by Paul Grassi (Easy Dynamics) and Bjorn Hjelm (Verizon) at the OpenID Foundation Workshop at VMware on Monday, October 22, 2018.
OIDF Workshop at Verizon Media -- 9/30/2019 -- Browser Changes Impacting Iden...OpenIDFoundation
George Fletcher presented Browser Changes Impacting Identity Flows at the OIDF Workshop at Verizon Media on Monday, September 30, 2019 in Sunnyvale, CA.
OIDF Workshop at Verizon Media -- 9/30/2019 -- OpenID Connect for Identity As...OpenIDFoundation
Torsten Lodderstedt with yes.com provided an overview of a proposed OpenID Foundation working group focused on identity assurance at the OIDF Workshop at Verizon Media on Monday, September 30, 2019 in Sunnyvale, CA.
OIDF Workshop at European Identity Conference 2019 -- 5/14/2019 -- FAPI Certi...OpenIDFoundation
Joseph Heenan is part of the OpenID Certification Program team provided an update on the Financial-grade API (FAPI) at the OIDF Workshop at the 2019 European Identity Conference on Tuesday, May 14, 2019 in Munich.
Kermit Co. is upgrading its identity management system to address several problems: 1) employees need single sign-on across internal and cloud applications using different protocols; 2) strengthening security by adding multi-factor authentication; 3) managing external identities at scale including social logins and just-in-time provisioning; 4) exposing APIs securely and automating provisioning using rules. The WSO2 Identity Server provides an enterprise identity bus to federate identities across systems using various protocols while allowing management of internal and external identities at different assurance levels through APIs.
CIS 2015 Easy Federation in Cloud and on Premises - Ian JaffeCloudIDSummit
Want to configure SSO for your users or improve your utilization of Ping’s services and take advantage of the latest features that Ping Identity has available in our PingFederate and PingOne products? Come learn about improvements in how PingFederate and PingOne work together both in the initial setup phase and the configuration of SSO applications. Come and discover new provisioning capabilities including support for additional applications and an expanded use of SCIM. Additionally, find out about new API enablement functionality of PingOne that focuses on Employee SSO which can be used to automate the setting up of a customer’s connection to PingOne as well as a customer’s application configurations. And more.
The cloud is rapidly becoming the de-facto standard for deploying enterprise applications. Microservices are at the core of building cloud-native applications due to its proven advantages such as granularity, cloud-native deployment, and scalability. With the exponential growth of the consumer base of these service offerings, enforcing microservice/API security has become one of the biggest challenges to overcome.
In this deck, we discuss:
- The need for API/Microservices Security
- The importance of delegating security enforcement to an API Gateway
- API Authentication and Authorization methodologies
- OAuth2 - The de-facto standard of API Authentication
- Protection against cyber attacks and anomalies
- Security aspects to consider when designing Single Page Applications (SPAs)
Watch the webinar on-demand here - https://wso2.com/library/webinars/2019/11/api-security-in-a-cloud-native-era/
Security architecture best practices for saas applicationskanimozhin
This document discusses security best practices for Software as a Service (SaaS) applications. It recommends adopting a holistic governance framework to manage operational risks, using standards like COBIT 5. Key aspects covered include tenant data isolation, role-based access control, preventing common web attacks, and implementing robust security auditing of events, transactions, and user actions. The goal is to establish trust with customers by providing protection of information, access controls, data security, and audit capabilities.
1) The document discusses Oracle Identity Governance and Access Management projects for several clients, including integrating numerous applications with OIM and implementing ESSO.
2) It provides an overview of integrating applications with OIM using connectors and protecting web applications using OAM with WebGates deployed.
3) Finally, it outlines different deployment approaches for OAM including agent-based, agent-less, using a terminal server as a gateway, and a hybrid approach combining methods.
The document discusses Keycloak and its capabilities for satisfying the Financial-grade API (FAPI) security profile. It introduces Keycloak and describes how the proposed "Client Policy" feature allows Keycloak to easily meet the FAPI requirements by applying security profiles to client applications based on configurable conditions and executors. It also outlines other efforts like the FAPI-SIG group and implementation of FAPI requirements in the 3scale API gateway to help build fully FAPI-compliant systems.
The industry move towards wearables is all the rage and taking advantage of these new devices doesn’t have to mean learning a whole new platform. For example the Microsoft Band is a multi-function wearable device that works with your smart phone to help you track heart rate, steps, calorie burn, sleep quality and be productive with email and calendar alerts and more. While you can quickly and easily build an app for the Band in just a few minutes how can you be sure the back end is up to the scale you’d need to support potential massive growth if it were to take off? Enter the cloud and tools available that we can use to load test and explore the performance characteristics of the solution. In this session we’ll take a look at what’s possible and walk thru the scenario to see first hand how it is done.
The document discusses implementing security and availability requirements for a banking API system using open source software. It describes using the 3scale API management platform and Keycloak identity management software together to meet authentication, authorization, access control, availability, and standards compliance requirements. Patches were submitted to these open source projects to enhance their features and better support the banking use case.
OIDF Workshop at Verizon Media -- 9/30/2019 -- OpenID Connect Working Group U...OpenIDFoundation
Michael Jones with Microsoft provided an update on the OpenID Connect Working Group at the OIDF Workshop at Verizon Media on Monday, September 30, 2019 in Sunnyvale, CA.
OpenID Connect "101" Introduction -- October 23, 2018OpenIDFoundation
This document provides an introduction to OpenID Connect and summarizes its key aspects:
1) OpenID Connect is an identity layer built on top of OAuth 2.0 that allows clients to verify the identity of users and obtain basic profile information through RESTful APIs and JSON.
2) Many major companies have already implemented OpenID Connect in their applications and websites.
3) OpenID Connect specifications cover a wide range of use cases from non-sensitive to highly secure information as well as different levels of sophistication in claims usage. Implementations can build only the required pieces.
OIDF Workshop at Verizon Media -- 9/30/2019 -- FastFed Working Group UpdateOpenIDFoundation
OpenID Foundation Fast Federation (FastFed) Working Group update presented by Darin McAdams (Amazon) at the OIDF Workshop at Verizon Media on Monday, September 30, 2019 in Sunnyvale, CA.
OpenID Certification Program Update - 2018-04-02MikeLeszcz
The document discusses OpenID Certification, which allows OpenID Connect implementations to be certified as meeting defined technical profiles through testing. Certification provides value by helping ensure technical interoperability and enhancing organizations' reputations. Current certifiable profiles include basic, implicit, hybrid, and dynamic profiles for OpenID providers and relying parties. The certification process uses self-certification where organizations test their own implementations against public test suites. Certified implementations can use the "OpenID Certified" logo. The international certification effort aims to promote further adoption and make interoperable OpenID Connect implementations commonplace.
OIDF Workshop at Verizon Media -- 9/30/2019 -- OpenID Connect Federation UpdateOpenIDFoundation
Roland Hedberg with Catalogix and the OpenID Foudation provided an update on OpenID Connect Federation at the OIDF Workshop at Verizon Media on Monday, September 30, 2019 in Sunnyvale, CA.
OpenID Foundation iGov Working Group Update - October 22, 2018OpenIDFoundation
OpenID Foundation iGov Working Group update presented by Paul Grassi (Easy Dynamics) and Bjorn Hjelm (Verizon) at the OpenID Foundation Workshop at VMware on Monday, October 22, 2018.
OIDF Workshop at Verizon Media -- 9/30/2019 -- Browser Changes Impacting Iden...OpenIDFoundation
George Fletcher presented Browser Changes Impacting Identity Flows at the OIDF Workshop at Verizon Media on Monday, September 30, 2019 in Sunnyvale, CA.
OIDF Workshop at Verizon Media -- 9/30/2019 -- OpenID Connect for Identity As...OpenIDFoundation
Torsten Lodderstedt with yes.com provided an overview of a proposed OpenID Foundation working group focused on identity assurance at the OIDF Workshop at Verizon Media on Monday, September 30, 2019 in Sunnyvale, CA.
OIDF Workshop at European Identity Conference 2019 -- 5/14/2019 -- FAPI Certi...OpenIDFoundation
Joseph Heenan is part of the OpenID Certification Program team provided an update on the Financial-grade API (FAPI) at the OIDF Workshop at the 2019 European Identity Conference on Tuesday, May 14, 2019 in Munich.
Kermit Co. is upgrading its identity management system to address several problems: 1) employees need single sign-on across internal and cloud applications using different protocols; 2) strengthening security by adding multi-factor authentication; 3) managing external identities at scale including social logins and just-in-time provisioning; 4) exposing APIs securely and automating provisioning using rules. The WSO2 Identity Server provides an enterprise identity bus to federate identities across systems using various protocols while allowing management of internal and external identities at different assurance levels through APIs.
CIS 2015 Easy Federation in Cloud and on Premises - Ian JaffeCloudIDSummit
Want to configure SSO for your users or improve your utilization of Ping’s services and take advantage of the latest features that Ping Identity has available in our PingFederate and PingOne products? Come learn about improvements in how PingFederate and PingOne work together both in the initial setup phase and the configuration of SSO applications. Come and discover new provisioning capabilities including support for additional applications and an expanded use of SCIM. Additionally, find out about new API enablement functionality of PingOne that focuses on Employee SSO which can be used to automate the setting up of a customer’s connection to PingOne as well as a customer’s application configurations. And more.
The cloud is rapidly becoming the de-facto standard for deploying enterprise applications. Microservices are at the core of building cloud-native applications due to its proven advantages such as granularity, cloud-native deployment, and scalability. With the exponential growth of the consumer base of these service offerings, enforcing microservice/API security has become one of the biggest challenges to overcome.
In this deck, we discuss:
- The need for API/Microservices Security
- The importance of delegating security enforcement to an API Gateway
- API Authentication and Authorization methodologies
- OAuth2 - The de-facto standard of API Authentication
- Protection against cyber attacks and anomalies
- Security aspects to consider when designing Single Page Applications (SPAs)
Watch the webinar on-demand here - https://wso2.com/library/webinars/2019/11/api-security-in-a-cloud-native-era/
Security architecture best practices for saas applicationskanimozhin
This document discusses security best practices for Software as a Service (SaaS) applications. It recommends adopting a holistic governance framework to manage operational risks, using standards like COBIT 5. Key aspects covered include tenant data isolation, role-based access control, preventing common web attacks, and implementing robust security auditing of events, transactions, and user actions. The goal is to establish trust with customers by providing protection of information, access controls, data security, and audit capabilities.
1) The document discusses Oracle Identity Governance and Access Management projects for several clients, including integrating numerous applications with OIM and implementing ESSO.
2) It provides an overview of integrating applications with OIM using connectors and protecting web applications using OAM with WebGates deployed.
3) Finally, it outlines different deployment approaches for OAM including agent-based, agent-less, using a terminal server as a gateway, and a hybrid approach combining methods.
The document discusses Keycloak and its capabilities for satisfying the Financial-grade API (FAPI) security profile. It introduces Keycloak and describes how the proposed "Client Policy" feature allows Keycloak to easily meet the FAPI requirements by applying security profiles to client applications based on configurable conditions and executors. It also outlines other efforts like the FAPI-SIG group and implementation of FAPI requirements in the 3scale API gateway to help build fully FAPI-compliant systems.
The industry move towards wearables is all the rage and taking advantage of these new devices doesn’t have to mean learning a whole new platform. For example the Microsoft Band is a multi-function wearable device that works with your smart phone to help you track heart rate, steps, calorie burn, sleep quality and be productive with email and calendar alerts and more. While you can quickly and easily build an app for the Band in just a few minutes how can you be sure the back end is up to the scale you’d need to support potential massive growth if it were to take off? Enter the cloud and tools available that we can use to load test and explore the performance characteristics of the solution. In this session we’ll take a look at what’s possible and walk thru the scenario to see first hand how it is done.
The document discusses implementing security and availability requirements for a banking API system using open source software. It describes using the 3scale API management platform and Keycloak identity management software together to meet authentication, authorization, access control, availability, and standards compliance requirements. Patches were submitted to these open source projects to enhance their features and better support the banking use case.
OIDF Workshop at Verizon Media -- 9/30/2019 -- OpenID Connect Working Group U...OpenIDFoundation
Michael Jones with Microsoft provided an update on the OpenID Connect Working Group at the OIDF Workshop at Verizon Media on Monday, September 30, 2019 in Sunnyvale, CA.
OpenID Connect "101" Introduction -- October 23, 2018OpenIDFoundation
This document provides an introduction to OpenID Connect and summarizes its key aspects:
1) OpenID Connect is an identity layer built on top of OAuth 2.0 that allows clients to verify the identity of users and obtain basic profile information through RESTful APIs and JSON.
2) Many major companies have already implemented OpenID Connect in their applications and websites.
3) OpenID Connect specifications cover a wide range of use cases from non-sensitive to highly secure information as well as different levels of sophistication in claims usage. Implementations can build only the required pieces.
OAuth2 for IoT Security: Why OpenID Connect & UMA Are They KeyMike Schwartz
This document discusses OAuth2 profiles like OpenID Connect and UMA and why they should be adopted for IoT. OpenID Connect provides identity while UMA provides access control. Both standards have been in development for 10 years based on prior experience. They are a perfect fit for IoT use cases as they standardize interfaces without assuming cloud, are proven usable by developers, are small, scale well, and have industry consensus with Google and Microsoft supporting OpenID Connect. UMA 1.0 will be announced in April 2015.
Spec Update - OpenID Retail Summit at PayPalAshish Jain
The document provides an update on ongoing work to extend the OpenID specifications to support new use cases like mobile phones and social login functionality. It discusses the OpenID Artifact Binding working group's progress in developing specifications based on OAuth 2.0, JSON Web Tokens, and other standards. The working group aims to complete draft specifications by May 2011 to allow for testing and further refinement.
These slides provide detailed step by step deployment of the 9.0.1 IBM Notes/Domino OpenSocial Component, Integration with IBM Connections, and Troubleshooting steps.
OpenID Connect is a simple identity layer that allows clients like mobile or web apps to verify user identities based on an authentication performed by an authorization server, as well as obtain basic profile information about users. It is built on OAuth 2.0 and defined by the OpenID Foundation. The specification defines core features as well as optional discovery, dynamic registration, session management, and OAuth 2.0 response types. Major companies like Google, Salesforce, and Microsoft have implemented or are deploying OpenID Connect to provide single sign-on for web and mobile clients.
Implementing a language based solution to mediate between disparate identity protocols such as SAML, OIDC and between disparate identity providers such as Google, Facebook and Salesforce.
Tim Sedlack and Anders Askasen, both Senior Product Managers for OpenIDM, presenting: OpenIDM 3.1: Extending the Enterprise with SaaS and Social JIT Provisioning
Smart Device Link Integration into Linux systems by Jeremiah FosterLuxoft
This document discusses integrating Smart Device Link (SDL), which allows connecting smartphones to in-vehicle infotainment systems running Linux, into Linux systems. SDL provides a standardized way to connect iOS and Android devices and control apps using steering wheel buttons or text-to-speech. The SDL consortium manages SDL as an open source project using permissive licenses. Integrating SDL into automotive Linux distributions like GENIVI and AGL could improve adoption by providing a common recipe and increasing collaboration opportunities across projects.
EduID Mobile App - Use-Cases, Concepts and ImplementationChristian Glahn
This presentation describes the token-agent implementation for openID Connect for authenticating native mobile apps provided by third parties. It presents a standards-based working solution for integrating loosely coupled native apps into a trust federation using. This allows for deeper integrated authentication services on Android and iOS without violating app-store policies.
This presentation has been part of the EduID Mobile App workshop at SWITCH on 25 Apr. 2017.
Thanks to Christoph Graf (SWITCH), Riccardo Mazza (USI), Michael Hausherr (FHNW), Goran Josic (USI), and Yann Cuttaz (USI).
WSO2 produces open source identity and access management software. Through Google Summer of Code, WSO2 has mentored 11 projects implementing key identity standards like UMA, SAML, and OAuth. These standards, developed by organizations like OASIS and IETF, provide frameworks for identity federation, SSO, provisioning, and access control. Formats include SAML for SSO, SCIM for provisioning using REST, and XACML for fine-grained authorization control. WSO2 contributes implementations of these standards to help users manage identity and access securely across domains.
Enabling IoT Devices’ Hardware and Software Interoperability, IPSO Alliance (...Open Mobile Alliance
Presentation delivered during the Internet of Things World, Santa Clara pre-event workshop by Christian Legare - IPSO Alliance Chairman, Chief of Software Engineering, Micrium (Part of Silicon Labs)
Internet Protocol for Smart Objects (IPSO) is an alliance that, among other things, defines a data model to represent sensor values and attributes. OMA uses IPSO Smart Objects v1.0 as its resource model to expose sensor information to a remote LwM2M Server. From the speaker from IPSO Alliance, you will learn:
● What is an IPSO Smart Object data model
● What do these Objects and Resources look like
● How to create and register your own resources
● What is next for IPSO Alliance
Travis Cox from Inductive Automation will go over the important questions you should ask when planning an enterprise solution. His presentation will help you start and maintain a smoother development process that results in an open, interoperable, standards-based, and secure enterprise solution.
Travis Cox from Inductive Automation will go over the important questions you should ask when planning an enterprise solution. His presentation will help you start and maintain a smoother development process that results in an open, interoperable, standards-based, and secure enterprise solution.
Similar to OpenID Foundation Workshop at EIC 2018 - OpenID Connect Working Group Update (20)
OpenID Foundation Workshop at EIC 2018 - Introduction to the FAPI Read & Writ...MikeLeszcz
Introduction to the FAPI Read & Write OAuth Profile presentation given by Nat Sakimura, OpenID Foundation Chairman, at the OpenID Foundation Workshop at EIC 2018 on May 15, 2018 in Munich.
OpenID Foundation Workshop at EIC 2018 - OpenID Enhanced Authentication Profi...MikeLeszcz
OpenID Foundation Enhanced Authentication Profile (EAP) Working Group update presented by Dr. Michael B. Jones (Microsoft) at the OIDF Workshop at EIC 2018 on May 15, 2018 in Munich.
OpenID Foundation Workshop at EIC 2018 - HEART Working Group UpdateMikeLeszcz
The HEART working group aims to enable patient-mediated health data exchange through RESTful and privacy-sensitive methods. HEART profiles OAuth, OpenID Connect, UMA, and FHIR to allow individuals to gather and share their health data how and when they choose, including giving and revoking data access permission. HEART involves health experts, technology implementers, and is led by co-chairs from HHS and ForgeRock. Current work products specify security mechanisms for the FHIR API and consider patient control over de-identified data sharing.
Client Initiated Backchannel Authentication Profile Overview presented by Dave Tonge with moneyhub. This was presented on Wednesday, March 21, 2018 at the OpenID Foundation/Open Banking Workshop hosted by Microsoft in London.
OpenID Foundation's Risk Incident and Sharing Communication (RISC) Work Group...MikeLeszcz
Presentation from the OpenID Foundation's Risk Incident and Sharing Communication (RISC) Work Group Data Sharing Agreement Workshop on January 31, 2018.
OpenID Foundation/Open Banking Workshop - OpenID Foundation OverviewMikeLeszcz
The OpenID Foundation and the Open Identity Exchange co-hosted an Open Banking Workshop on Tuesday, January 30, 2018 in London. This presentation is an and overview of the OpenID Foundation and provides updates on the OpenID Connect standard and OpenID Certification Program that was presented by Mike Jones (Microsoft), OpenID Foundation Secretary.
OpenID Foundation/Open Banking Workshop - Open Banking UpdateMikeLeszcz
The OpenID Foundation and the Open Identity Exchange co-hosted an Open Banking Workshop on Tuesday, January 30, 2018 in London. This presentation is an update on the Open Banking initiative that was presented by members of the Open Banking Implementation Entity (OBIE).
Banking is Now More Open: Open Banking UpdateMikeLeszcz
This document discusses Open Banking in the UK and provides an overview of its goals and implementation. Open Banking aims to give customers more control over their financial data through application programming interfaces (APIs) that allow secure data sharing and payments between banks and third parties. The Open Banking Implementation Entity (OBIE) was established to develop API standards and a security architecture for Open Banking, with the first APIs for account information and payments going live in January 2018. The document outlines the benefits of Open Banking for customers, businesses, banks and the financial technology industry.
HCL Notes and Domino License Cost Reduction in the World of DLAUpanagenda
Webinar Recording: https://www.panagenda.com/webinars/hcl-notes-and-domino-license-cost-reduction-in-the-world-of-dlau/
The introduction of DLAU and the CCB & CCX licensing model caused quite a stir in the HCL community. As a Notes and Domino customer, you may have faced challenges with unexpected user counts and license costs. You probably have questions on how this new licensing approach works and how to benefit from it. Most importantly, you likely have budget constraints and want to save money where possible. Don’t worry, we can help with all of this!
We’ll show you how to fix common misconfigurations that cause higher-than-expected user counts, and how to identify accounts which you can deactivate to save money. There are also frequent patterns that can cause unnecessary cost, like using a person document instead of a mail-in for shared mailboxes. We’ll provide examples and solutions for those as well. And naturally we’ll explain the new licensing model.
Join HCL Ambassador Marc Thomas in this webinar with a special guest appearance from Franz Walder. It will give you the tools and know-how to stay on top of what is going on with Domino licensing. You will be able lower your cost through an optimized configuration and keep it low going forward.
These topics will be covered
- Reducing license cost by finding and fixing misconfigurations and superfluous accounts
- How do CCB and CCX licenses really work?
- Understanding the DLAU tool and how to best utilize it
- Tips for common problem areas, like team mailboxes, functional/test users, etc
- Practical examples and best practices to implement right away
GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...Neo4j
Leonard Jayamohan, Partner & Generative AI Lead, Deloitte
This keynote will reveal how Deloitte leverages Neo4j’s graph power for groundbreaking digital twin solutions, achieving a staggering 100x performance boost. Discover the essential role knowledge graphs play in successful generative AI implementations. Plus, get an exclusive look at an innovative Neo4j + Generative AI solution Deloitte is developing in-house.
GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024Neo4j
Neha Bajwa, Vice President of Product Marketing, Neo4j
Join us as we explore breakthrough innovations enabled by interconnected data and AI. Discover firsthand how organizations use relationships in data to uncover contextual insights and solve our most pressing challenges – from optimizing supply chains, detecting fraud, and improving customer experiences to accelerating drug discoveries.
Goodbye Windows 11: Make Way for Nitrux Linux 3.5.0!SOFTTECHHUB
As the digital landscape continually evolves, operating systems play a critical role in shaping user experiences and productivity. The launch of Nitrux Linux 3.5.0 marks a significant milestone, offering a robust alternative to traditional systems such as Windows 11. This article delves into the essence of Nitrux Linux 3.5.0, exploring its unique features, advantages, and how it stands as a compelling choice for both casual users and tech enthusiasts.
Programming Foundation Models with DSPy - Meetup SlidesZilliz
Prompting language models is hard, while programming language models is easy. In this talk, I will discuss the state-of-the-art framework DSPy for programming foundation models with its powerful optimizers and runtime constraint system.
Sudheer Mechineni, Head of Application Frameworks, Standard Chartered Bank
Discover how Standard Chartered Bank harnessed the power of Neo4j to transform complex data access challenges into a dynamic, scalable graph database solution. This keynote will cover their journey from initial adoption to deploying a fully automated, enterprise-grade causal cluster, highlighting key strategies for modelling organisational changes and ensuring robust disaster recovery. Learn how these innovations have not only enhanced Standard Chartered Bank’s data infrastructure but also positioned them as pioneers in the banking sector’s adoption of graph technology.
Maruthi Prithivirajan, Head of ASEAN & IN Solution Architecture, Neo4j
Get an inside look at the latest Neo4j innovations that enable relationship-driven intelligence at scale. Learn more about the newest cloud integrations and product enhancements that make Neo4j an essential choice for developers building apps with interconnected data and generative AI.
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slackshyamraj55
Discover the seamless integration of RPA (Robotic Process Automation), COMPOSER, and APM with AWS IDP enhanced with Slack notifications. Explore how these technologies converge to streamline workflows, optimize performance, and ensure secure access, all while leveraging the power of AWS IDP and real-time communication via Slack notifications.
Cosa hanno in comune un mattoncino Lego e la backdoor XZ?Speck&Tech
ABSTRACT: A prima vista, un mattoncino Lego e la backdoor XZ potrebbero avere in comune il fatto di essere entrambi blocchi di costruzione, o dipendenze di progetti creativi e software. La realtà è che un mattoncino Lego e il caso della backdoor XZ hanno molto di più di tutto ciò in comune.
Partecipate alla presentazione per immergervi in una storia di interoperabilità, standard e formati aperti, per poi discutere del ruolo importante che i contributori hanno in una comunità open source sostenibile.
BIO: Sostenitrice del software libero e dei formati standard e aperti. È stata un membro attivo dei progetti Fedora e openSUSE e ha co-fondato l'Associazione LibreItalia dove è stata coinvolta in diversi eventi, migrazioni e formazione relativi a LibreOffice. In precedenza ha lavorato a migrazioni e corsi di formazione su LibreOffice per diverse amministrazioni pubbliche e privati. Da gennaio 2020 lavora in SUSE come Software Release Engineer per Uyuni e SUSE Manager e quando non segue la sua passione per i computer e per Geeko coltiva la sua curiosità per l'astronomia (da cui deriva il suo nickname deneb_alpha).
GraphRAG for Life Science to increase LLM accuracyTomaz Bratanic
GraphRAG for life science domain, where you retriever information from biomedical knowledge graphs using LLMs to increase the accuracy and performance of generated answers
Full-RAG: A modern architecture for hyper-personalizationZilliz
Mike Del Balso, CEO & Co-Founder at Tecton, presents "Full RAG," a novel approach to AI recommendation systems, aiming to push beyond the limitations of traditional models through a deep integration of contextual insights and real-time data, leveraging the Retrieval-Augmented Generation architecture. This talk will outline Full RAG's potential to significantly enhance personalization, address engineering challenges such as data management and model training, and introduce data enrichment with reranking as a key solution. Attendees will gain crucial insights into the importance of hyperpersonalization in AI, the capabilities of Full RAG for advanced personalization, and strategies for managing complex data integrations for deploying cutting-edge AI solutions.
AI 101: An Introduction to the Basics and Impact of Artificial IntelligenceIndexBug
Imagine a world where machines not only perform tasks but also learn, adapt, and make decisions. This is the promise of Artificial Intelligence (AI), a technology that's not just enhancing our lives but revolutionizing entire industries.
3. What is OpenID Connect?
• Simple identity layer on top of OAuth 2.0
• Enables RPs to verify identity of end-user
• Enables RPs to obtain basic profile info
• REST/JSON interfaces → low barrier to entry
• Described at http://openid.net/connect/
4. You’re Probably Already Using OpenID Connect!
• If you have an Android phone or log in at AOL, Deutsche
Telekom, Google, Microsoft, NEC, NTT, Salesforce, Softbank,
Symantec, Verizon, or Yahoo! Japan, you’re already using
OpenID Connect
– Many other sites and apps large and small also use OpenID Connect
5. OpenID Connect Range
• Spans use cases, scenarios
– Internet, Enterprise, Mobile, Cloud
• Spans security & privacy requirements
– From non-sensitive information to highly secure
• Spans sophistication of claims usage
– From basic default claims to specific requested claims to collecting claims
from multiple sources
• Maximizes simplicity of implementations
– Uses existing IETF specs: OAuth 2.0, JWT, etc.
– Lets you build only the pieces you need
6. Numerous Awards
• OpenID Connect won 2012 European Identity
Award for Best Innovation/New Standard
– http://openid.net/2012/04/18/openid-connect-
wins-2012-european-identity-and-cloud-award/
• OAuth 2.0 won in 2013
• JSON Web Token (JWT) & JOSE won in 2014
• OpenID Certification program won
2018 Identity Innovation Award
– http://openid.net/2018/03/29/openid-certification-
program-wins-2018-identity-innovation-award/
8. OAuth 2.0 Form Post Response Mode
(additional Final Specification)
• Defines how to return OAuth 2.0 Authorization Response
parameters (including OpenID Connect Authentication Response
parameters) using HTML form values auto-submitted by the User
Agent using HTTP POST
• A “form post” binding, like SAML and WS-Federation
– An alternative to fragment encoding
• http://openid.net/specs/oauth-v2-form-post-response-mode-
1_0.html
• Completed April 2015
• In production use by Microsoft, Ping Identity
9. OpenID 2.0 to OpenID Connect Migration
(additional Final Specification)
• Defines how to migrate from OpenID 2.0 to OpenID Connect
– Has OpenID Connect identity provider also return OpenID 2.0
identifier, enabling account migration
• http://openid.net/specs/openid-connect-migration-1_0.html
• Completed April 2015
• Google shut down OpenID 2.0 support in April 2015
• Yahoo, AOL, others also plan to replace OpenID 2.0 with
OpenID Connect
10. Current Work
• Federation Specification
• Session Management / Logout
• Second Errata Set
• Current Related Work
• OpenID Connect Certification
11. Session Management / Logout
(work in progress)
• Three approaches being pursued by the working group:
– Session Management
• http://openid.net/specs/openid-connect-session-1_0.html
• Uses HTML5 postMessage to communicate state change messages between OP and RP iframes
– Front-Channel Logout
• http://openid.net/specs/openid-connect-frontchannel-1_0.html
• Uses HTTP GET to load image or iframe, triggering logout (similar to SAML, WS-Federation)
– Back-Channel Logout
• http://openid.net/specs/openid-connect-backchannel-1_0.html
• Server-to-communication not using the browser
• Can be used by native applications, which have no active browser
• Unfortunately, no one approach best for all use cases
– Can be used separately or in combination
• Became Implementer’s Drafts in March 2017
– Recent decision made that it’s time for them to become Final Specifications
12. Federation Specification
(work in progress)
• Roland Hedberg created OpenID Connect Federation
specification
– http://openid.net/specs/openid-connect-federation-1_0.html
• Enables establishment and maintenance of multi-party
federations using OpenID Connect
• Defines hierarchical JSON-based metadata structures for
federation participants
• Prototype implementations being interop tested w/ each other
• Recent decision to progress it to an Implementer’s Draft
13. Second Errata Set
(work in progress)
• Errata process corrects typos, etc. discovered
– Makes no normative changes
• Edits under way for second errata set
• See http://openid.net/specs/openid-connect-core-1_0-23.html for
current Core errata draft
• Waiting for OAuth AS metadata spec draft-ietf-oauth-discovery to
be final
– So we can register OpenID Discovery metadata values
– Now in the hands of the RFC Editor
• Expect to see request for review of errata changes shortly
14. Current Related Work
• International Government Profile (iGov) Working Group
– Developing OpenID Connect profile for government & high-value
commercial applications
• Enhanced Authentication Profile (EAP) Working Group
– Enables Token Bound ID Tokens
– Enables integration with FIDO and other phishing-resistant
authentication solutions
15. OpenID Certification
• OpenID Certification enables OpenID Connect implementations to
be certified as meeting requirements of defined conformance
profiles
• Now OP and RP certification profiles for:
– Basic OP and Basic RP
– Implicit OP and Implicit RP
– Hybrid OP and Hybrid RP
– OP Publishing and RP Using Configuration Information
– Dynamic OP and Dynamic RP
• See http://openid.net/certification/
– And accompanying certification presentation!
16. Open Conversation
• How are you using OpenID Connect?
• What would you like the working group to know and do?
17. OpenID Connect Resources
• OpenID Connect
– http://openid.net/connect/
• Frequently Asked Questions
– http://openid.net/connect/faq/
• Working Group Mailing List
– http://lists.openid.net/mailman/listinfo/openid-specs-ab
• OpenID Certification Program
– http://openid.net/certification/
• Certified OpenID Connect Implementations Featured for Developers
– http://openid.net/developers/certified/
• Mike Jones’ Blog
– http://self-issued.info/
• Nat Sakimura’s Blog
– http://nat.sakimura.org/
• John Bradley’s Blog
– http://www.thread-safe.com/