Cloud Identity Webinar

3,390 views

Published on

Published in: Technology
0 Comments
3 Likes
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total views
3,390
On SlideShare
0
From Embeds
0
Number of Embeds
499
Actions
Shares
0
Downloads
160
Comments
0
Likes
3
Embeds 0
No embeds

No notes for slide

Cloud Identity Webinar

  1. 1. Identity in the Cloud
  2. 2. Prabath Siriwardena Security Architect & Product Manager(Identity Server), WSO2 Apache Axis2/Rampart committer 6 years industry experience
  3. 3. Founded in 2005 by acknowledged leaders in XML, Web Services Technologies & Standards and Open Source Producing entire middleware platform 100% open source under Apache license Business model is to sell comprehensive support & maintenance for our products Venture funded by Intel Capital Global corporation with offices in USA, UK & Sri Lanka 80+ employees and growing
  4. 4. WSO2 SOA Platform
  5. 5. WSO2 Cloud Computing • Cloud virtual machines: software virtual machines – WSO2 products as Amazon EC2, VMWare & KVM images • Cloud connectors: connecting the cloud to the enterprise – Cloud Services Gateway – Service Accelerator • Cloud services: SOA software as a service – Governance as a Service – Identity as a Service • Cloud middleware: building multi-tenant services & applications
  6. 6. Engagement Model • Quick Start – Combination of consulting, training and POC development in one week by WSO2 on-site team working hand-in-hand with your team • Development Support – On-going support for your engineering teams • Production Support – Full 24x7x365 enterprise support – Regular service packs and updates to keep your system secure and robust
  7. 7. IDENTITY goes hand in hand with TRUST
  8. 8. What makes my IDENTITY?
  9. 9. My AGE is part of my IDENTITY
  10. 10. My NAME is part of my IDENTITY
  11. 11. My PHONE NUMBER is part of my IDENTITY
  12. 12. My e-MAIL is part of my IDENTITY
  13. 13. My SSN is part of my IDENTITY
  14. 14. Who needs my IDENTITY?
  15. 15. My HR MANAGER
  16. 16. My FINANCE MANAGER
  17. 17. My PROJECT MANAGER
  18. 18. PARTNERS of my company
  19. 19. WHO Else ?
  20. 20. How do we share data related to IDENTITY ???
  21. 21. Directory Services AD/LDAP
  22. 22. Directory Services AD/LDAP IDENTITY attributes maintained in a central repo
  23. 23. Directory Services AD/LDAP IDENTITY attributes shared across multiple applications within the same domain
  24. 24. Directory Services AD/LDAP Enterprise SSO can be established within participating applications
  25. 25. Directory Services AD/LDAP Directory awareness at the individual application level
  26. 26. IDENTITY as a service
  27. 27. IDENTITY as a service Integrates IDENTITY services into application development
  28. 28. IDENTITY as a service Decouples IDENTITY related logic from individual application business logic
  29. 29. IDENTITY as a service Decouples IDENTITY related logic from individual application business logic
  30. 30. IDENTITY as a service User, IDENTITY related data externalized from the applications themselves
  31. 31. IDENTITY as a service Adheres to SOA standards
  32. 32. IDENTITY SERVICES
  33. 33. IDENTITY PROVIDER Externalize IDENTITY attributes
  34. 34. IDENTITY PROVIDER Information Cards
  35. 35. IDENTITY PROVIDER OpenID
  36. 36. IDENTITY PROVIDER Identity Governance Framework [IGF]
  37. 37. Authentication User name / password
  38. 38. Authentication User centric identity : Information cards/OpenID
  39. 39. Authorization Manages authorization logic
  40. 40. Authorization XACML
  41. 41. Authorization - XACML A general purpose authorization policy language
  42. 42. Provisioning Supports administration of IDENTITY & ACCESS Management
  43. 43. Provisioning Provides centralized policy administration and controls
  44. 44. Provisioning SPML
  45. 45. Auditing Audit all IDENTITY events
  46. 46. Auditing - XDAS Distribute Audit Service
  47. 47. Auditing - XDAS The principle of accountability
  48. 48. Auditing - XDAS Detection of security policy violations
  49. 49. Identity Services
  50. 50. On-premise Identity Management
  51. 51. Moving to the cloud….
  52. 52. Powered By
  53. 53. Identit y
  54. 54. Identit y
  55. 55. OpenID Identit y
  56. 56. OpenID Identit InfoCard y
  57. 57. OpenID Identit InfoCard y STS
  58. 58. OpenID Identit InfoCard y STS SAML2
  59. 59. OpenID OpenID Identit InfoCard y STS SAML2
  60. 60. 1 WSO2 Cloud Identity Internal user tries to login to Liferay / 1 Drupal running on intranet
  61. 61. 1 2 WSO2 Cloud Identity OpenID relying party plug-in redirects the 2 user to WSO2 Cloud Identity OpenID provider for authentication
  62. 62. 3 1 2 WSO2 Cloud Identity After authentication user redirected back to 3 Liferay / Drupal
  63. 63. SAML 2.0 OpenID Identit InfoCard y STS SAML2
  64. 64. Entitlement XACML OpenID InfoCard Entitlement STS SAML2
  65. 65. http://wso2.com http://wso2.com/about/contact bizdev@wso2.com prabath@wso2.com thilinab@wso2.com Thank You…!!!

×