CIS 2015 So you want to SSO … Scott Tomilson & John Dasilva

•

1 gostou•815 visualizações

Are you asking yourself how do I take my inhouse application and make it available to internal users, partners or customers using SSO and access management technologies? Oh, and you don't want it to be a 6 month project? No problem. Come and find out how to leverage your existing investments and move to modern standards like OpenID Connect, without having to rip and replace infrastructure. Learn the capabilities and tradeoffs you can make to deploy the right level of identity and access management infrastructure to match your security needs.

Tecnologia

So you want to SSO …
Scott Tomilson
John DaSilva

You’ve waited long enough …
Copyright © 2015 Cloud Identity Summit. All rights reserved. 2
Mobile AppsWeb Apps SaaS Apps
username
password
username
password
username
password
username
password
username
password
username
password
username
password
username
password
username
password

Copyright © 2015 Cloud Identity Summit .All rights reserved. 3

Copyright © 2015 Cloud Identity Summit .All rights reserved. 4
Integration
Kits

It’s time for SSO …
… what do you mean by SSO?
App Enablement?Session Management? Access Control?
Auditing?Authentication Policy?
“One Username & Password
(or some other form of authentication)
just One Time”

It’s time for SSO …
… and how will we get SSO?
Open Standards?On-Premise ? IdaaS?
Agents vs Gateway?App Changes?
“Eliminate Unnecessary Passwords”
(yes, some work will be needed –
but you want to do this the right way)

Copyright © 2015 Cloud Identity Summit .All rights reserved. 7
Access Management
ENTERPRISE
Federated Identity Management

SSOfor
Web Applications
Copyright © 2015 Cloud Identity Summit. All rights reserved. 8

“First Mile” / “Last Mile” Integration
Federation
Server
Identity
Store
Federation
Server
Target
App
Identity Provider (IdP) Service Provider (SP)
“First Mile” “Last Mile”

“First Mile” Integration
•  If you’re using a Federation Server – hopefully this is
just a configuration exercise:
•  ADconnect (Active Directory)
•  PingFederate (Complex AD, LDAP, WAM, etc.)
•  PingOne Cloud Directory (IdaaS user/group dir.)
•  Worst case – there are Libraries & APIs to help you
integrate a custom portal or user store
Copyright © 2015 Cloud Identity Summit. All rights reserved. 10

“Last Mile” Integration
Here’s where things get interesting …
Copyright © 2015 Cloud Identity Summit. All rights reserved. 11

“Last Mile” Integration
Question #1:
Does your application support Web
(federated) SSO standards?
(i.e.: SAML, WS-Federation, OpenID Connect)
Copyright © 2015 Cloud Identity Summit. All rights reserved. 12

“Last Mile” Integration – with Standards
Copyright © 2015 Cloud Identity Summit. All rights reserved. 13
Federation
Server
Identity
Store
Target
App
Identity Provider (IdP) Service Provider (SP)
SAML

Copyright © 2015 Cloud Identity Summit. All rights reserved. 14
“Last Mile” Integration – with Standards
Your Apps
Your Identity Stores /
Partners
Acme
Beta
Com
SAML
SAML
SAML
Federation
Hub

“Last Mile” Integration – with Standards
Copyright © 2015 Cloud Identity Summit. All rights reserved. 15
Does your app
Web SSO standards?
(SAML/WS-Fed/OIDC)
Do you prefer
IdaaS?
No
Yes
Yes
No

“Last Mile” Integration
Question #2:
Does your application support HTTP
header-based SSO?
Copyright © 2015 Cloud Identity Summit. All rights reserved. 16

“Last Mile” Integration – with HTTP Headers
Federation
Server
Identity
Store
Federation
Server
Target
App
Identity Provider (IdP) Service Provider (SP)
SAML
Agent /
Gateway
HTTP Headers
User: joe
Email: joe@co.co
Group: Sales

“Last Mile” Integration – with HTTP Headers
•  Federated SSO
•  PingFederate Integration Kits:
•  Apache & IIS
•  WAM Features (Session Management, URL Authorization & Auditing)
•  Gateway (Reverse Proxy)
•  Agents: Apache & IIS
Copyright © 2015 Cloud Identity Summit. All rights reserved. 18

“Last Mile” Integration – with Standards
Copyright © 2015 Cloud Identity Summit. All rights reserved. 19
Does your app
support HTTP header
based SSO?
Do you want
WAM features?
No
Yes
Yes
No

“Last Mile” Integration
Question #3:
Can you modify the application?
Copyright © 2015 Cloud Identity Summit. All rights reserved. 20

“Last Mile” Integration – with App Changes
Copyright © 2015 Cloud Identity Summit. All rights reserved. 21
Features Approach Effort Level Product(s)
Federated SSO Implement SAML
L n/a
Implement OpenID Connect
S n/a
HTTP Headers
XS PingFederate
REST API
S PingFederate
PingOne
SSO Integration Kit SDK Library
(Java, .NET) S PingFederate
WAM Features
(Session Management,
URL Authorization &
Auditing)
HTTP Headers
XS PingAccess

“Last Mile” Integration
Question #4:
Did you reach here with 3 NO’s?
Copyright © 2015 Cloud Identity Summit. All rights reserved. 22

“Last Mile” Integration – “I’m out of options…”
•  PingFederate Integration Kits
•  Basic SSO (Password Vaulting)
Copyright © 2015 Cloud Identity Summit. All rights reserved. 23
… still lost?
Talk to us!

SSOfor
Mobile Applications
Copyright © 2015 Cloud Identity Summit. All rights reserved. 24

Copyright © 2015 Cloud Identity Summit .All rights reserved. 25
Get Your Time Machines Ready …

SSO for Mobile Applications
•  Are multiple logins (with the same creds) OK?
•  User experience could be mitigated with long lived
refresh tokens
•  Shared refresh tokens? (Multiple apps – same dev. signer)
•  Shared browser session?
•  Centralized broker of OAuth Access Tokens
•  Napps – http://openid.net/wg/napps/
•  PingOne Mobile – Early Napps draft support
compatible with both PingFederate and PingOneCopyright © 2015 Cloud Identity Summit. All rights reserved. 26

In Closing …
Copyright © 2015 Cloud Identity Summit. All rights reserved. 27

Copyright © 2015 Cloud Identity Summit .All rights reserved. 28

Mais conteúdo relacionado

Mais procurados

Ping Identity Principal Technical Architect, Pam Dingle’s slides on how organisations can meet PSD2 and Open Banking Standard requirements while delivering excellent customer experiences in today’s challenging digital business environments. Using software that’s based on the OAuth family of standards, organisations are protecting RESTful APIs, combining a critical blend of intuitive user interactions, highly scalable certification of clients and interoperability. A Modern Identity Architecture for the Digital Enterprise: http://bit.ly/2lPNiCM

Gartner IAM London 2017 Session - Security, Standards & User Experience: The ...

Ping Identity

Trust No One: The New Security Model for Web APIs - SecTor talk by Greg Kliew...

CA API Management

The IAM program needs to align behind the shift towards ITaaS, building the platform for execution and supporting transformation and migration activities. CIOs should keep informed through a relevant IAM capability roadmap in order to make calculated decisions on where investments should be made. Ongoing investments in the IAM program are crucial in order to fill capability gaps, keep up-to-date with support and license agreements and make opportunistic progress on the strategic roadmap. In this talk, Steve discusses recent experiences and lessons learned in preparing for and pitching VMware’s CIO on enterprise IAM program initiatives.

CIS 2015 What I Learned From Pitching IAM To My CIO - Steve Tout

CloudIDSummit

The IDaaS (identity as a service) market segment continues to grow in popularity, and the scope of its vendor's capabilities continue to grow as well. It's still not a match for everyone, however. Join identity architect Sean Deuby for an overview of the most popular IDaaS deployment scenarios, scenarios where IDaaS has a tougher time meeting customer requirements, and whether your company is likely to find its perfect IDaaS mate.

CIS 2015 The IDaaS Dating Game - Sean Deuby

CloudIDSummit

Presenter: Loren Russon, Ping Identity VP of Products Management and Design. Managing digital identities and access control for users, applications and things remains one of the greatest challenges facing cloud computing today. This has led to a new cloud security service paradigm that requires your organization to reevaluate the criteria for designing and implementing identity and access management (IAM) services across data centers, and private and public cloud infrastructure. This new criteria addresses the continued transformation to the cloud, mobile and internet of things (IoT), and the increased demand for open business balanced by user data security found in initiatives such as GDPR, Open Banking and PSD2. In this session, you will learn about key requirements and design principles required for modern IAM systems, and how to effectively drive digital transformation, address user data security regulations and ensure you successfully manage your company’s transformation to the cloud.

Criteria for Effective Modern IAM Strategies (Gartner IAM 2018)

Ping Identity

CIS14: PingAccess in Action

CloudIDSummit

While enterprises move to the cloud, they are pressured to keep security in mind without hindering user productivity with a cumbersome sign-on process. One solution that delivers both a secure and seamless experience for users with one-click access to SaaS applications is single sign-on (SSO). Many enterprises cannot simply rip and replace, so finding a solution provider that creates a hybrid environment between cloud and existing on-premise infrastructures is vital. The 2017 KuppingerCole Leadership Compass is the industry leading recourse that deep dives into this market, rating identity-as-a-service (IDaaS) solution providers in areas like SSO cloud services for users including employees, business partners and customers. Get the report: http://www.ow.ly/Rhht30eLbbD Join Ping Identity’s Product Marketing Manager, Alex Babar, as he looks at the KuppingerCole Leadership Compass for IDaaS and at the capabilities they consider. He will also review Ping Identity product features focusing on core factors that led KuppingerCole to name Ping a leader in their Leadership Compass, such as outbound federation and single sign-on, authentication support, and access management. Get the replay: http://bit.ly/2eK0I66

Webinar: Deep Diving Into the KuppingerCole IDaaS Leadership Compass

Ping Identity

ForgeRock CTO TECHNOLOGY PREVIEW

ForgeRock

NEW INNOVATIONS IN CONSENT, PRIVACY, AND USER-MANAGED ACCESS

ForgeRock

I this presentation enterprises will get a practical overview of what they need to know when approaching APIs and technologies like OAuth. Mobile and Cloud initiatives are driving enterprises to expose data and applications to the outside world. Whether SOAP, REST or JSON, these APIs give enterprises an efficient way to open up information to services running in the Cloud and apps running on mobile devices like the iPad. However, securing and governing the lifecycle and operation of these APIs is not straightforward. It requires new approaches to access, protection and management. This invariably requires adoption of new technologies such as OAuth, which are not yet well understood.

API Security and OAuth for the Enterprise

CA API Management

Customer identity and access management (CIAM) is a high-priority imperative in the age of the customer. If your customers can’t register or log in for service, and can’t conduct transactions in an easily usable manner, it really doesn’t much matter how your website, mobile app, or phone channel is architected; they may move on to your competition.Learn how customer experience influences IAM and security and what actions you can take to meet both sets of goals.

Identity Beyond Employees: How Customer Experience Impacts Your IAM Practices

Ping Identity

CA Single Sign-On (CA SSO) is constantly evolving, incorporating the latest technologies in secure Web access management. In order to stay secure and competitive, CA SSO makes greater use of the CA Access Gateway (formerly CA SiteMinder Secure Proxy Server). This presentation provides a comprehensive overview of the new features in CA Single Sign On. For more information on CA Security solutions, please visit: http://bit.ly/10WHYDm

Leveraging New Features in CA Single-Sign on to Enable Web Services, Social S...

CA Technologies

apidays LIVE India - 10 steps to secure your API by Pabitra Kumar Sahoo, Qual...

apidays

Who’s Knocking? Identity for APIs, Web and Mobile

Nordic APIs

Do we have a round wheel? Thoughts on Identity standards

Ian Glazer

API Security Webinar : Security Guidelines for Providing and Consuming APIs

DevOps Indonesia

Red Hat Summit - OpenShift Identity Management and Compliance

Marc Boorshtein

The Kong community is very familiar with using Kong as an ingress gateway, but what about as an egress gateway? Checkr, a Kong open source user, managed to migrate 90 percent of its egress traffic using Kong. In this session, Software Engineer Zhuojie Zhou will cover the benefits of building out an egress gateway pattern, how Kong supports egress, and how he and his team built a solution of efficient HTTP auditing through the egress gateway.

[Kong summit 2019] Egress Gateway Pattern - Zhuojie Zhou

00zzj

Inbound Federation and Zero Sign On (ZSO) by Ranjan Jain at Ping Identity Wor...

Ranjan Jain

You still need to protect employees in the digital age, but the real opportunity for digital transformation lies in using identity not just to protect employees, but to get to know, interact with, and connect to prospects and customers across any channel–whether cloud, social, mobile, or the Internet of Things (IoT). Customer Identity Management requires going above and beyond a secure login. From a security perspective, you need continuous security that follows the user throughout their entire session. And as customers share data, from demographics to preferences to buying habits, you can use it to create authentic, engaging customer experiences that lead to lasting customer relationships. Better yet, you can earn customer trust while meeting privacy regulations like GDPR, by giving customers control over who has access to their data and for how long.

Identity Live London 2017 | Daniel Raskin

ForgeRock

Mais procurados (20)

Gartner IAM London 2017 Session - Security, Standards & User Experience: The ...

Trust No One: The New Security Model for Web APIs - SecTor talk by Greg Kliew...

CIS 2015 What I Learned From Pitching IAM To My CIO - Steve Tout

CIS 2015 The IDaaS Dating Game - Sean Deuby

Criteria for Effective Modern IAM Strategies (Gartner IAM 2018)

CIS14: PingAccess in Action

Webinar: Deep Diving Into the KuppingerCole IDaaS Leadership Compass

ForgeRock CTO TECHNOLOGY PREVIEW

NEW INNOVATIONS IN CONSENT, PRIVACY, AND USER-MANAGED ACCESS

API Security and OAuth for the Enterprise

Identity Beyond Employees: How Customer Experience Impacts Your IAM Practices

Leveraging New Features in CA Single-Sign on to Enable Web Services, Social S...

apidays LIVE India - 10 steps to secure your API by Pabitra Kumar Sahoo, Qual...

Who’s Knocking? Identity for APIs, Web and Mobile

Do we have a round wheel? Thoughts on Identity standards

API Security Webinar : Security Guidelines for Providing and Consuming APIs

Red Hat Summit - OpenShift Identity Management and Compliance

[Kong summit 2019] Egress Gateway Pattern - Zhuojie Zhou

Inbound Federation and Zero Sign On (ZSO) by Ranjan Jain at Ping Identity Wor...

Identity Live London 2017 | Daniel Raskin

Destaque

The SCIM (System for Cross-Domain Identity Management) specification is beginning to gain real-world traction for both cloud and on-premises applications. In this workshop you will learn about SCIM, how it is being used in the real world, and why many consider SCIM to be a foundational piece of any identity architecture. We will also discuss how participants can help SCIM’s adoption with their organization and across the industry.

CIS 2015 SCIM in the Real World - Kelly Grizzle

CloudIDSummit

Today’s enterprises are required to provide access to increasingly sensitive information to a broader set of users types, including employees, partners, and customers. With a mix of cloud and SaaS applications and file sharing, alongside traditional legacy applications and data, the oversight and management is a challenge. Providing a seamless access experience is a critical business enabler. Providing inappropriate access can be a business disaster. This session will explore how organizations can enhance traditional governance and provisioning with continuous monitoring, analytics, and intelligence and take a risk-aware approach to identify privileged access, inappropriate access, and vulnerabilities.

CIS 2015- Assessing the Risk of Identity and Access- Venkat Rajaji

CloudIDSummit

CIS 2015 Modernize IAM with UnboundID and Ping Identity - Terry Sigle & B. Al...

CloudIDSummit

Mobile Persuasion

Bryan Rieger

Ctrl-Shift, a recognised authority in the emerging personal information economy, ran the Personal Information Economy 2014 event on March 20 in central London. As trusted Personal information management is fast becoming a critical component of business strategy for consumer facing brands, organisations and their suppliers we are delighted to be involved in an event which explores this important topic.

Identity assurance & the market for verified attributes

James Varga

Project Management is the Catalyst to transform India into a Global Leader in...

VSR *

Digital Rights Management

NextLabs, Inc.

Taste of Failure is Key for Sustainable Success

VSR *

Responsible Global Spend - Sample Program and Timeline

Bill Kohnen

AGLEA SAP Security Analyzer SoD Remediation SoX authorization

Massimo Manara

Cloud & Mobility Goldmines

VSR *

TechNight #12: Cloud Identity Summit2014 @ Monteray 概要と主要トピック

Daisuke Fuke

CIS13: Next Generation Privileged Identity Management: A Market Overview

CloudIDSummit

Advanced Authorization for SAP Global Deployments Part III of III

NextLabs, Inc.

OpenID TechNight - Ping Identity 製品紹介

Daisuke Fuke

OpenID Connect Demo at OpenID Tech Night

Daisuke Fuke

SharePoint Business Track Part 1 of 2

NextLabs, Inc.

Digital in store for dummies

Paolo Maioli

Colin Glynn, Rolls-Royce plc Presentation

Amy Jacobs MA BA Hons

Kurt Johnson, Vice President of Strategy and Corporate Development, Courion Through the years we’ve seen an evolution of the overall identity and access management market, from operations/efficiency-driven solutions for better administration, to compliance/governance-driven solutions in response to audit pressure. But security breaches continue to rise, and threats from inappropriate access and user activity are pushing us into the next generation of IAM needs. This session will explore this evolution and how organizations need to examine an intelligence-driven solution to combat identity and access threats and risks.

CIS13: Intelligence-Driven IAM: The Next Generation of Identity and Access Go...

CloudIDSummit

Destaque (20)

CIS 2015 SCIM in the Real World - Kelly Grizzle

CIS 2015- Assessing the Risk of Identity and Access- Venkat Rajaji

CIS 2015 Modernize IAM with UnboundID and Ping Identity - Terry Sigle & B. Al...

Mobile Persuasion

Identity assurance & the market for verified attributes

Project Management is the Catalyst to transform India into a Global Leader in...

Digital Rights Management

Taste of Failure is Key for Sustainable Success

Responsible Global Spend - Sample Program and Timeline

AGLEA SAP Security Analyzer SoD Remediation SoX authorization

Cloud & Mobility Goldmines

TechNight #12: Cloud Identity Summit2014 @ Monteray 概要と主要トピック

CIS13: Next Generation Privileged Identity Management: A Market Overview

Advanced Authorization for SAP Global Deployments Part III of III

OpenID TechNight - Ping Identity 製品紹介

OpenID Connect Demo at OpenID Tech Night

SharePoint Business Track Part 1 of 2

Digital in store for dummies

Colin Glynn, Rolls-Royce plc Presentation

CIS13: Intelligence-Driven IAM: The Next Generation of Identity and Access Go...

Semelhante a CIS 2015 So you want to SSO … Scott Tomilson & John Dasilva

This session explores common challenges and solutions associated with Identity and Access Management for SaaS, including topics such as federation vs form fill for single sign on, identity lifecycle management best practices and retaining data when de-provisioning. It also covers what to look for as a SaaS consumer and what to build as a SaaS inventor. Seating is limited and available first come-first served. For more information, please visit http://cainc.to/Nv2VOe

Common Challenges of Identity Management and Federated Single Sign-On in a Sa...

CA Technologies

Oracle mobile cloud service

shravan kumar chelika

Entreprises are deploying more applications to workers phones and tablets. These applications are currently all using separate authentications to establish user identity and authorization. This session will look at how the Native Application profile of OpenID Connect creates a local token broker on the device to centralize authentication for multiple enterprise and SaaS applications on a device. This can be used to increase security by enabling additional authentication factors and a enhanced view of device posture, as well as increasing usability, bu reducing the number of unnecessary authentications that interrupt the users work flow every day.

CIS 2015 Extreme OpenID Connect - John Bradley

CloudIDSummit

La tecnologia Serverless sembra essere perfetta per startup. Il modello di pricing “pay-per-use” e l’infrastruttura che non genera alcun costo in mancanza di traffico rende la struttura di costi estremamente economica ed efficiente per le startup. Inoltre, le architetture Serverless sono pienamente gestite e scalano automaticamente, per questo i team non devono preoccuparsi di improvvise crescite del traffico che, per esempio, possono derivare da campagne marketing di successo. Questi sono solo alcuni dei motivi per cui molte startup hanno deciso di costruire architetture Serverless a supporto del proprio business. Durante il webinar, approfondiremo i servizi Serverless di AWS e come le startup possono utilizzarli per aumentare agilità e innovazione. Approfondiremo il servizio AWS Lambda che permette di eseguire codice per qualunque tipologia di applicazione, senza alcun lavoro di “amministrazione”. Durante la sessione, condivideremo inoltre casi d’uso di startup che hanno implementato con successo la tecnologia Serverless.

AWS Serverless per startup: come innovare senza preoccuparsi dei server

Amazon Web Services

OUGN 2018 - Chatbot and the need to integrate

Jon Petter Hjulstad

In this webinar from November 2015, John Barco (VP of Product Management) and Tim Sedlack (Sr. Product Manager) take you on a journey: A long time ago in a technology sector far, far away, organizations were promised a unified platform for centralizing identity and integrating it into resources everywhere. But this promise was never realized. Instead, organizations were forced down a dark path to implement a piecemeal identity infrastructure that was painful, with massive integration costs. Finally, the wait is over. In this webinar, we will provide an overview of ForgeRock's unified platform and highlight all the common services provided across the end-to-end solution to make your life easier. Learn more about ForgeRock Access Management: https://www.forgerock.com/platform/access-management/ Learn more about ForgeRock Identity Management: https://www.forgerock.com/platform/identity-management/

Webinar: Identity Wars: The Unified Platform Awakens

ForgeRock

OData External Data Integration Strategies for SaaS

Sumit Sarkar

IBM API management Philip Little

Valeri Illescas

Platforms as a service were historically treated as a black box. This view has changed significantly as Cloud Foundry has instrumented the full application stack. In partnership with AppDynamics, application performance metrics from the AppDynamics agent can be combined with system, host and container metrics from the Cloud Foundry firehose for full stack visibility. This deck was originally presented at AppSphere 2015.

AppSphere 15 - Monitoring Cloud Native Apps on Pivotal Cloud Foundry with App...

AppDynamics

SharePoint 2013 App Provisioning Models

Shailen Sukul

Presentation by MobileFirst Developer Advocate, Marek Sadowski. In this hands-on talk IBM approach to architecting apps and delivering framework of mobile backend as a service will be covered. Building cognitive mobile apps becomes easy with IBM Bluemix. Building an app that connects with StrongLoop, synchronizes offline datastore with Cloudant and leverage Presence Insights for location based services will be covered. Get inspired by adding Watson API for cognitive tweaks to spice up your app functionality. Finally it will be shown to give a final touch in creating better apps while monitoring its user sentiment in the app stores.

Unlocking the universe of microservices for next gen cognitive apps

Dev_Events

Mobile Cloud Demo

Mee Nam Lee

In the last 10yrs, our Industry has done a great job defining standards and protocols on federating identities across boundaries. However, at cloud scale, there are still some gaps for distributed and multi-tenant applications. In this presentation, Praerit will explore the current situation with the audience; explore some of the more complex problems around use of identities within applications; and provide insight into some of the work being done in AWS to address these gaps.

CIS 2015- Beyond Federation Protocols- Praerit Garg

CloudIDSummit

SOACS-Overview.pdf

SlavikGimelbrand

Gae4 b for_atlanta_gtug (2)

charliec0llins

Meet up slides_mumbai_21032020_final

Akshata Sawant

IBM Connect 2014 session, Serdar Basegmez and Graham Acres. Absract: You probably have heard about the Social Business Toolkit SDK but do you know what it is and what it's really about? Yes, it's XPages, it's JavaScript, and it's Java, and it works with Domino, Connections and SmartCloud, but what about the other apps that your users are asking for? What about Dropbox, Twitter and other platforms? This session will give developers a strong foundation to build on. You will learn the tools to use and invest in, the place to start and the roadblocks to avoid when building your skills. You will leave with practical examples and code samples to show you how easy it is to extend your apps and bring the power of Social Business to your organization.

BP 308 - The Journey to Becoming a Social Application Developer

Serdar Basegmez

Scala dayssrinivas v3

ragss

Marketing in the Age of Mobile

Adobe Experience Cloud

Design patterns talk_node_summit

Shubhra Kar

Semelhante a CIS 2015 So you want to SSO … Scott Tomilson & John Dasilva (20)

Common Challenges of Identity Management and Federated Single Sign-On in a Sa...

Oracle mobile cloud service

CIS 2015 Extreme OpenID Connect - John Bradley

AWS Serverless per startup: come innovare senza preoccuparsi dei server

OUGN 2018 - Chatbot and the need to integrate

Webinar: Identity Wars: The Unified Platform Awakens

OData External Data Integration Strategies for SaaS

IBM API management Philip Little

AppSphere 15 - Monitoring Cloud Native Apps on Pivotal Cloud Foundry with App...

SharePoint 2013 App Provisioning Models

Unlocking the universe of microservices for next gen cognitive apps

Mobile Cloud Demo

CIS 2015- Beyond Federation Protocols- Praerit Garg

SOACS-Overview.pdf

Gae4 b for_atlanta_gtug (2)

Meet up slides_mumbai_21032020_final

BP 308 - The Journey to Becoming a Social Application Developer

Scala dayssrinivas v3

Marketing in the Age of Mobile

Design patterns talk_node_summit

Mais de CloudIDSummit

CIS 2016 Content Highlights

CloudIDSummit

The Cloud Identity Summit was founded by Ping Identity with support from industry leaders in 2010 to bring together the brightest minds across the identity and security industry. Today the event is recognized as the world’s premier identity industry conference and includes tracks from industry thought leaders, CIOs and practitioners. Cloud Identity Summit serves as a multi-year roadmap to deploy solutions that are here today but built for the future. For more info, go to www.cloudidentitysummit.com. Be apart of the convo on Twitter: @CloudIDSummit + #CISNOLA

Top 6 Reasons You Should Attend Cloud Identity Summit 2016

CloudIDSummit

CIS 2015 Security Without Borders: Taming the Cloud and Mobile Frontier - And...

CloudIDSummit

Mobile security, identity & authentication reasons for optimism 20150607 v2

CloudIDSummit

In an ever interconnected and inter-reliant world, the state of security has been a cause for deep pessimism. In the midst of all the gloom, there is good cause for optimism. With some fits and starts, the building blocks for transforming mobile security are taking shape at every level from the processor, to the chipset to special purpose hardware to operating systems and protocols that address use cases from device integrity to user authentication to payments. How do we think about security, privacy, identity and authentication in this world? This talk will provide a rapid overview of some selected building blocks and some practical examples that are now deployed at scale to illustrate the coming wave and how you as a practitioner or customer can participate and position yourself for maximum benefit.

CIS 2015 Mobile Security, Identity & Authentication: Reasons for Optimism - R...

CloudIDSummit

CIS 2015 Virtual Identity: The Vision, Challenges and Experiences in Driving ...

CloudIDSummit

Does anybody remember seeing a big red button with the word “PANICK!” written on it? I know it was around here somewhere. Also, there’s all these cats running pell-mell around the place, can someone give me a hand in herding them? In this real-world case study, come and learn how a Fortune 100 with a diverse and extremely mobile work-force was able to turn up strong authentication protections for our critical cloud resources, and how the IT department lived to tell the tale. You’ll hear about the technical implementation of strong authentication enforcement, and how we made key design decisions in the ongoing balancing act between security and user experience, and how we managed up-and-down the chain from executive stakeholders to the boots-on-the-ground who were being asked to join us on this new security adventure.

CIS 2015 Deploying Strong Authentication to a Global Enterprise: A Comedy in ...

CloudIDSummit

CIS 2015 Without Great Security, Digital Identity is Not Worth the Electrons ...

CloudIDSummit

You'll laugh, you'll cry, and you might even pick up a useful nugget or two listening to a real-world enterprise IT architect share the experiences of the past year trying to support his business migrating to cloud services, and sharing the lessons learned from trying to integrate 2 hybrid enterprises into a single, streamlined company. You'll hear where the cloud came through for us, and how we often had to fall back to on-prem services such as FIM, Ping Federate, and ADFS to make the glue which binds it all together.

CIS 2015 Mergers & Acquisitions in a Cloud Enabled World - Brian Puhl

CloudIDSummit

CIS 2015 IoT and IDM in your Mobile Enterprise - Brian Katz

CloudIDSummit

CIS 2015 Practical Deployments Enterprise Cloud Access Management Platform - ...

CloudIDSummit

Companies and researchers are exploring ways to make software and hardware development easier for the masses. Soon you will be able to build your own autonomous drone, create a sensor that assess the watering needs of your plants, and develop a cat tracking device with minimal coding and hardware skills. What is the place of security and privacy in this exciting development? Are we building the next generation of Internet security vulnerabilities right now? In his talk Hannes Tschofenig will highlight challenges with Internet of Things, what role standardization plays, and what contributions ARM, a provider of microprocessor IP, is making to improve IoT security.

CIS 2015 How to secure the Internet of Things? Hannes Tschofenig

CloudIDSummit

The Industrial Internet, the Identity of Everything and the Industrial Enterp...

CloudIDSummit

Devices need owners, people need confidence in device authenticity, data needs to persist in systems long after devices change hands, and access needs to be authorized selectively. That's a lot to ask; even if emerging web identity and security technologies are simpler than the models of yesteryear, IoT devices have complicating limitations when it comes to processing power, memory, user interface, and connectivity. But many use cases span web and IoT environments, so we must try! What are the specific requirements? What elements of web technologies can we borrow outright? What elements may need tweaking?

CIS 2015 Identity Relationship Management in the Internet of Things

CloudIDSummit

We're all more conscious than we were 2 years ago, about how much data is collected about us, and how revealing it can be. The commercial and government direction of travel is clear: more data, more mining, more monetization. And if personal data fuels the information economy, who'd want to stop that? But can we get the economic benefits, without selling our digital souls in the process? - Is there a data equivalent to the ""polluter pays"" principle? And if not, is there an alternative? - Ethical data handling sounds great in principle, but can it be practical? - How can organizations put ethical data handling into practice?

CIS 2015 The Ethics of Personal Data - Robin Wilton

CloudIDSummit

CIS 2015 What’s next? Discovery, Dynamic Registration, Mobile Connect and mor...

CloudIDSummit

CIS 2015 OpenID Connect and Mobile Applications - David Chase

CloudIDSummit

CIS 2015 OpenID Connect Workshop Part 1: Challenges for mobile - B. Allyn Fay

CloudIDSummit

How many non-employee users do you store in your on-premise, enterprise directory? In most organizations, the answer is too many. If you need a way to authenticate customers and partners to give them access to applications, but you don't want to be in the business of storing and managing those identities yourself, we have an alternative. Come learn about PingOne's directory, a user directory available to you in the PingOne IDaaS platform.

DIRECTORY CIS 2015 - Eric Fazendin

CloudIDSummit

When applying multi-factor authentication to your organization, it is highly important to cover all use cases. PingID’s set of integrations, together with PingFederate’s, PingOne’s and PingAccess’ provide you with a wider applications coverage. Come learn about the new enterprise grade VPN, Remote access and SSH integrations and see how easy it is to roll out. In addition, new user authentication methods will be introduced, both mobile App oriented and non-mobile. So all your users can be secured, the easy way.

CIS 2015 Multi-factor for All, the Easy Way - Ran Ne'man

CloudIDSummit

Mais de CloudIDSummit (20)

CIS 2016 Content Highlights

Top 6 Reasons You Should Attend Cloud Identity Summit 2016

CIS 2015 Security Without Borders: Taming the Cloud and Mobile Frontier - And...

Mobile security, identity & authentication reasons for optimism 20150607 v2

CIS 2015 Mobile Security, Identity & Authentication: Reasons for Optimism - R...

CIS 2015 Virtual Identity: The Vision, Challenges and Experiences in Driving ...

CIS 2015 Deploying Strong Authentication to a Global Enterprise: A Comedy in ...

CIS 2015 Without Great Security, Digital Identity is Not Worth the Electrons ...

CIS 2015 Mergers & Acquisitions in a Cloud Enabled World - Brian Puhl

CIS 2015 IoT and IDM in your Mobile Enterprise - Brian Katz

CIS 2015 Practical Deployments Enterprise Cloud Access Management Platform - ...

CIS 2015 How to secure the Internet of Things? Hannes Tschofenig

The Industrial Internet, the Identity of Everything and the Industrial Enterp...

CIS 2015 Identity Relationship Management in the Internet of Things

CIS 2015 The Ethics of Personal Data - Robin Wilton

CIS 2015 What’s next? Discovery, Dynamic Registration, Mobile Connect and mor...

CIS 2015 OpenID Connect and Mobile Applications - David Chase

CIS 2015 OpenID Connect Workshop Part 1: Challenges for mobile - B. Allyn Fay

DIRECTORY CIS 2015 - Eric Fazendin

CIS 2015 Multi-factor for All, the Easy Way - Ran Ne'man

Último

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Edi Saputra

MINDCTI Revenue Release Quarter One 2024

MIND CTI

Real Time Object Detection Using Open CV

Khem

💉💊+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHABI}}+971581248768 +971581248768 Mtp-Kit (500MG) Prices » Dubai [(+971581248768**)] Abortion Pills For Sale In Dubai, UAE, Mifepristone and Misoprostol Tablets Available In Dubai, UAE CONTACT DR.Maya Whatsapp +971581248768 We Have Abortion Pills / Cytotec Tablets /Mifegest Kit Available in Dubai, Sharjah, Abudhabi, Ajman, Alain, Fujairah, Ras Al Khaimah, Umm Al Quwain, UAE, Buy cytotec in Dubai +971581248768''''Abortion Pills near me DUBAI | ABU DHABI|UAE. Price of Misoprostol, Cytotec” +971581248768' Dr.DEEM ''BUY ABORTION PILLS MIFEGEST KIT, MISOPROTONE, CYTOTEC PILLS IN DUBAI, ABU DHABI,UAE'' Contact me now via What's App…… abortion Pills Cytotec also available Oman Qatar Doha Saudi Arabia Bahrain Above all, Cytotec Abortion Pills are Available In Dubai / UAE, you will be very happy to do abortion in Dubai we are providing cytotec 200mg abortion pill in Dubai, UAE. Medication abortion offers an alternative to Surgical Abortion for women in the early weeks of pregnancy. We only offer abortion pills from 1 week-6 Months. We then advise you to use surgery if its beyond 6 months. Our Abu Dhabi, Ajman, Al Ain, Dubai, Fujairah, Ras Al Khaimah (RAK), Sharjah, Umm Al Quwain (UAQ) United Arab Emirates Abortion Clinic provides the safest and most advanced techniques for providing non-surgical, medical and surgical abortion methods for early through late second trimester, including the Abortion By Pill Procedure (RU 486, Mifeprex, Mifepristone, early options French Abortion Pill), Tamoxifen, Methotrexate and Cytotec (Misoprostol). The Abu Dhabi, United Arab Emirates Abortion Clinic performs Same Day Abortion Procedure using medications that are taken on the first day of the office visit and will cause the abortion to occur generally within 4 to 6 hours (as early as 30 minutes) for patients who are 3 to 12 weeks pregnant. When Mifepristone and Misoprostol are used, 50% of patients complete in 4 to 6 hours; 75% to 80% in 12 hours; and 90% in 24 hours. We use a regimen that allows for completion without the need for surgery 99% of the time. All advanced second trimester and late term pregnancies at our Tampa clinic (17 to 24 weeks or greater) can be completed within 24 hours or less 99% of the time without the need surgery. The procedure is completed with minimal to no complications. Our Women's Health Center located in Abu Dhabi, United Arab Emirates, uses the latest medications for medical abortions (RU-486, Mifeprex, Mifegyne, Mifepristone, early options French abortion pill), Methotrexate and Cytotec (Misoprostol). The safety standards of our Abu Dhabi, United Arab Emirates Abortion Doctors remain unparalleled. They consistently maintain the lowest complication rates throughout the nation. Our Physicians and staff are always available to answer questions and care for women in one of the most difficult times in their lives. The decision to have an abortion at the Abortion Cl

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...

?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@

Strategies for Landing an Oracle DBA Job as a Fresher

Remote DBA Services

GenAI Risks & Security Meetup 01052024.pdf

lior mazor

Building Digital Trust in a Digital Economy Veronica Tan, Director - Cyber Security Agency of Singapore Apidays Singapore 2024: Connecting Customers, Business and Technology (April 17 & 18, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

apidays

The 7 Things I Know About Cyber Security After 25 Years | April 2024

Rafal Los

Following the popularity of "Cloud Revolution: Exploring the New Wave of Serverless Spatial Data," we're thrilled to announce this much-anticipated encore webinar. In this sequel, we'll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you're building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

MySQL Webinar, presented on the 25th of April, 2024. Summary: MySQL solutions enable the deployment of diverse Database Architectures tailored to specific needs, including High Availability, Disaster Recovery, and Read Scale-Out. With MySQL Shell's AdminAPI, administrators can seamlessly set up, manage, and monitor these solutions, ensuring efficiency and ease of use in their administration. MySQL Router, on the other hand, provides transparent routing from the application traffic to the backend servers in the architectures, requiring minimal configuration. Completely built in-house and supported by Oracle, these solutions have been adopted by enterprises of all sizes for their business-critical applications. In this presentation, we'll delve into various database architecture solutions to help you choose the right one based on your business requirements. Focusing on technical details and the latest features to maximize the potential of these solutions.

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Miguel Araújo

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

The Digital Insurer

As privacy and data protection regulations evolve rapidly, organizations operating in multiple jurisdictions face mounting challenges to ensure compliance and safeguard customer data. With state-specific privacy laws coming up in multiple states this year, it is essential to understand what their unique data protection regulations will require clearly. How will data privacy evolve in the US in 2024? How to stay compliant? Our panellists will guide you through the intricacies of these states' specific data privacy laws, clarifying complex legal frameworks and compliance requirements. This webinar will review: - The essential aspects of each state's privacy landscape and the latest updates - Common compliance challenges faced by organizations operating in multiple states and best practices to achieve regulatory adherence - Valuable insights into potential changes to existing regulations and prepare your organization for the evolving landscape

TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments

TrustArc

2024: Domino Containers - The Next Step. News from the Domino Container commu...

Martijn de Jong

Webinar Recording: https://www.panagenda.com/webinars/why-teams-call-analytics-is-critical-to-your-entire-business Nothing is as frustrating and noticeable as being in an important call and being unable to see or hear the other person. Not surprising then, that issues with Teams calls are among the most common problems users call their helpdesk for. Having in depth insight into everything relevant going on at the user’s device, local network, ISP and Microsoft itself during the call is crucial for good Microsoft Teams Call quality support. To ensure a quick and adequate solution and to ensure your users get the most out of their Microsoft 365. But did you know that ‘bad calls’ are also an excellent indicator of other problems arising? Precisely because it is so noticeable!? Like the canary in the mine, bad calls can be early indicators of problems. Problems that might otherwise not have been noticed for a while but can have a big impact on productivity and satisfaction. Join this session by Christoph Adler to learn how true Microsoft Teams call quality analytics helped other organizations troubleshoot bad calls and identify and fix problems that impacted Teams calls or the use of Microsoft365 in general. See what it can do to keep your users happy and productive! In this session we will cover - Why CQD data alone is not enough to troubleshoot call problems - The importance of attributing call problems to the right call participant - What call quality analytics can do to help you quickly find, fix-, and prevent problems - Why having retrospective detailed insights matters - Real life examples of how others have used Microsoft Teams call quality monitoring to problem shoot problems with their ISP, network, device health and more.

Why Teams call analytics are critical to your entire business

panagenda

Abhishek Deb(1), Mr Abdul Kalam(2) M. Des (UX) , School of Design, DIT University , Dehradun. This paper explores the future potential of AI-enabled smartphone processors, aiming to investigate the advancements, capabilities, and implications of integrating artificial intelligence (AI) into smartphone technology. The research study goals consist of evaluating the development of AI in mobile phone processors, analyzing the existing state as well as abilities of AI-enabled cpus determining future patterns as well as chances together with reviewing obstacles as well as factors to consider for more growth.

Exploring the Future Potential of AI-Enabled Smartphone Processors

debabhi2

Scaling API-first – The story of a global engineering organization Ian Reasor, Senior Computer Scientist - Adobe Radu Cotescu, Senior Computer Scientist - Adobe Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

apidays

Increase engagement and revenue with Muvi Live Paywall! In this presentation, we will explore the five key benefits of using Muvi Live Paywall to monetize your live streams. You'll learn how Muvi Live Paywall can help you: Monetize your live content easily: Set up pay-per-view access to your live streams and start generating revenue from your content. Increase audience engagement: Provide exclusive, premium content behind the paywall to keep your viewers engaged. Gain valuable viewer insights: Track viewer data and analytics to better understand your audience and tailor your content accordingly. Reduce content piracy: Muvi Live Paywall's security features help protect your content from unauthorized distribution. Streamline your workflow: The all-in-one platform simplifies the process of managing and monetizing your live streams. With Muvi Live Paywall, you can take control of your live stream monetization and create a sustainable business model for your content. Learn more about Muvi Live Paywall and start generating revenue from your live streams today!

Top 5 Benefits OF Using Muvi Live Paywall For Live Streams

Roshan Dwivedi

With more memory available, system performance of three Dell devices increased, which can translate to a better user experience Conclusion When your system has plenty of RAM to meet your needs, you can efficiently access the applications and data you need to finish projects and to-do lists without sacrificing time and focus. Our test results show that with more memory available, three Dell PCs delivered better performance and took less time to complete the Procyon Office Productivity benchmark. These advantages translate to users being able to complete workflows more quickly and multitask more easily. Whether you need the mobility of the Latitude 5440, the creative capabilities of the Precision 3470, or the high performance of the OptiPlex Tower Plus 7010, configuring your system with more RAM can help keep processes running smoothly, enabling you to do more without compromising performance.

Boost PC performance: How more available memory can improve productivity

Principled Technologies

Axa Assurance Maroc - Insurer Innovation Award 2024

The Digital Insurer

Automating Google Workspace (GWS) & more with Apps Script

wesley chun

CIS 2015 So you want to SSO … Scott Tomilson & John Dasilva

1. So you want to SSO … Scott Tomilson John DaSilva

2. You’ve waited long enough … Copyright © 2015 Cloud Identity Summit. All rights reserved. 2 Mobile AppsWeb Apps SaaS Apps username password username password username password username password username password username password username password username password username password

5. It’s time for SSO … … what do you mean by SSO? App Enablement?Session Management? Access Control? Auditing?Authentication Policy? “One Username & Password (or some other form of authentication) just One Time”

6. It’s time for SSO … … and how will we get SSO? Open Standards?On-Premise ? IdaaS? Agents vs Gateway?App Changes? “Eliminate Unnecessary Passwords” (yes, some work will be needed – but you want to do this the right way)

9. “First Mile” / “Last Mile” Integration Federation Server Identity Store Federation Server Target App Identity Provider (IdP) Service Provider (SP) “First Mile” “Last Mile”

10. “First Mile” Integration •  If you’re using a Federation Server – hopefully this is just a configuration exercise: •  ADconnect (Active Directory) •  PingFederate (Complex AD, LDAP, WAM, etc.) •  PingOne Cloud Directory (IdaaS user/group dir.) •  Worst case – there are Libraries & APIs to help you integrate a custom portal or user store Copyright © 2015 Cloud Identity Summit. All rights reserved. 10

12. “Last Mile” Integration Question #1: Does your application support Web (federated) SSO standards? (i.e.: SAML, WS-Federation, OpenID Connect) Copyright © 2015 Cloud Identity Summit. All rights reserved. 12

13. “Last Mile” Integration – with Standards Copyright © 2015 Cloud Identity Summit. All rights reserved. 13 Federation Server Identity Store Target App Identity Provider (IdP) Service Provider (SP) SAML

17. “Last Mile” Integration – with HTTP Headers Federation Server Identity Store Federation Server Target App Identity Provider (IdP) Service Provider (SP) SAML Agent / Gateway HTTP Headers User: joe Email: joe@co.co Group: Sales

18. “Last Mile” Integration – with HTTP Headers •  Federated SSO •  PingFederate Integration Kits: •  Apache & IIS •  WAM Features (Session Management, URL Authorization & Auditing) •  Gateway (Reverse Proxy) •  Agents: Apache & IIS Copyright © 2015 Cloud Identity Summit. All rights reserved. 18

21. “Last Mile” Integration – with App Changes Copyright © 2015 Cloud Identity Summit. All rights reserved. 21 Features Approach Effort Level Product(s) Federated SSO Implement SAML L n/a Implement OpenID Connect S n/a HTTP Headers XS PingFederate REST API S PingFederate PingOne SSO Integration Kit SDK Library (Java, .NET) S PingFederate WAM Features (Session Management, URL Authorization & Auditing) HTTP Headers XS PingAccess

23. “Last Mile” Integration – “I’m out of options…” •  PingFederate Integration Kits •  Basic SSO (Password Vaulting) Copyright © 2015 Cloud Identity Summit. All rights reserved. 23 … still lost? Talk to us!

26. SSO for Mobile Applications •  Are multiple logins (with the same creds) OK? •  User experience could be mitigated with long lived refresh tokens •  Shared refresh tokens? (Multiple apps – same dev. signer) •  Shared browser session? •  Centralized broker of OAuth Access Tokens •  Napps – http://openid.net/wg/napps/ •  PingOne Mobile – Early Napps draft support compatible with both PingFederate and PingOneCopyright © 2015 Cloud Identity Summit. All rights reserved. 26

CIS 2015 So you want to SSO … Scott Tomilson & John Dasilva

Recomendados

Recomendados

Mais conteúdo relacionado

Mais procurados

Mais procurados (20)

Destaque

Destaque (20)

Semelhante a CIS 2015 So you want to SSO … Scott Tomilson & John Dasilva

Semelhante a CIS 2015 So you want to SSO … Scott Tomilson & John Dasilva (20)

Mais de CloudIDSummit

Mais de CloudIDSummit (20)

Último

Último (20)

CIS 2015 So you want to SSO … Scott Tomilson & John Dasilva