Oasis Identity In The Cloud Technical Committee

•

0 recomendaciones•577 vistas

The Oasis Identity In The Cloud TC aims to standardize cloud identity by formalizing use cases, analyzing gaps in existing identity management standards, and creating profiles of use cases. The TC is co-chaired by Anil Saldhana of Red Hat and has members from companies like Microsoft, IBM, and SAP. Some key use cases being examined include privileged account management, consistent user account management, virtualization security identities, and cloud provisioning for government agencies. The TC works to not duplicate existing standards and maintains strong relationships with other standards bodies.

Tecnología

www.oasis-open.org

Oasis Identity In The Cloud TC
Towards standardizing Cloud Identity

Anil Saldhana (Red Hat), Co-Chair

Members
Red Hat, IBM, Microsoft, CA Technologies, Cisco
Systems, SAP, EBay, Novell, Ping Identity, Safe Net,
Symantec, Boeing Corp, US DOD, Verisign, Akamai,
Alfresco, Citrix, Cap Gemini, Google, Rackspace,
Axciom, Huawei, Symplified, Thales, Conformity,
Skyworth TTG, MIT, Jericho Systems, PrimeKey,
Aveksa, Mellanox, Vanguard Integrity Professionals,
NZ Govt ...

Charter
s Three Stages
q Use Cases Formalization
s http://docs.oasis-open.org/id-cloud/IDCloud-usecases/v
q Gap Analysis of existing IDM standards
s Feed analysis back to the WG responsible for a
standard
q Profiles of Use Cases

Charter
s Other Objectives
q Do not reinvent the wheel
q Strong liaison relationships with other working
groups internationally
q Glossary of Cloud Identity

Clouds need Accounts
s Privileged Account Management
q Use Case by SafeNet Inc (Doron Cohen)
q Strong authentication, authorization and
auditing needs
s Account Management
q Use Case by Ping Identity (Patrick Harding)
q Consistent maintenance of user accounts
q Automated CRUD of user accounts

Cloud Identities
s Virtualization Security
q Use Case by Red Hat Inc (Anil Saldhana)
q Identities managing VM, Infrastructure,
Applications
s Cloud Provisioning for Gov Agencies
q Use Case by Gov.NZ (Colin Walis)
q Employees/Contractors provision
environments for agencies

Other Topics
s Auditing
s Provisioning
s Identity Proofing
s Identity Configuration
q Metadata
s Transactions and Signatures

Resources
s Oasis TC Page
http://www.oasis-open.org/committees/id-cloud/
s Oasis TC Wiki
http://wiki.oasis-open.org/id-cloud/FrontPage
s Wiki Page with links to member
submissions
http://wiki.oasis-open.org/id-cloud/MemberSubmissions
s Q&A

www.oasis-open.org

Questions
Anil.Saldhana@redhat.com
http://anil-identity.blogspot.com

Más contenido relacionado

Destacado

Saml vs Oauth : Which one should I use?

Anil Saldanha

Briforum 2011 Chicago

Dan Brinkmann

The concept of cloud identity in higher education was recognized in November 2009 with the EDUCAUSE Catalyst Award, which honors IT-based innovations that provide groundbreaking solutions to major challenges in higher education. But what is cloud identity? The gist is that cloud identity enables a person's "user" information to be distributed on the Internet. This solves a common problem: the need to maintain a username at every website. In this paradigm shift, identity information is not stored within each website, but accessed on the wire as needed. Websites become "relying parties" (RPs) using the information of trusted "identity providers" (IdPs). Although it has taken a while, finally the recipe for federated identity seems clear.

Cloud Identity: A Recipe for Higher Education

Mike Schwartz

The Tools I Use

Dan Brinkmann

Mule security - saml

charan teja R

DaaS/IaaS Forum Moscow - Najat Messaoud

Denis Gundarev

RSA Europe: Future of Cloud Identity

Mike Schwartz

DaaS/IaaS Forum Moscow - Chris Rogers

Denis Gundarev

It’s an age old problem: how do you prove your identity? It’s the reason governments started issuing id cards. Since the advent of the Internet, identification has gotten even harder. To a website, you are a stream of electrons. Before you can transact business, the website needs to associate that stream of electrons with a person--a piece of meat. 80% of the Internet's security breaches have been traced back to bad passwords, but until recently, anything better than passwords meant expensive hardware tokens, or complex digital certificates. Luckily, authentication is experiencing a renaissance. New technologies have made it easier, more secure, and even less expensive to authenticate a person. Authentication is the front door to your network service. What device does the person have in their hands? Is your website or mobile app for customers or employees? The slides from this SXSW 2014 presentation will help you understand your options, and how to use authentication for competitive advantage.

Who Are You? From Meat to Electrons - SXSW 2014

Mike Schwartz

DaaS/IaaS Forum Moscow - Ivo Murris

Denis Gundarev

RUCUG: 9. Sergey Khalyapin: Представляем XenDesktop 5

Denis Gundarev

BriForum 2013 Chicago - Citrix Troubleshooting - Denis Gundarev

Denis Gundarev

ID Next 2013 Keynote Slides by Mike Schwartz

Mike Schwartz

RUCUG: 6. Fabian Kienle - NetScaler and Branch Repeater for Hyper-V

Denis Gundarev

Citrix Internals: Tracing, Debugging & Troubleshooting

Denis Gundarev

Open Trust Taxonomy for Federation Operators - if you are interested in new technologies to enable trust across multiple domains, you should consider joining the OTTO WG at Kantara. These slides are a quick overview of the work, with links to enable you to find out more. Mutli-party Federations help drive down the legal and techincal cost of SSO and collaboration for technologies like SAML, OAuth, and PKI. It's a trust model that makes sense when you have a reasonably sized ecosystem--not millions, but thousands.

Kantara OTTO slides

Mike Schwartz

How to Fail at VDI

Dan Brinkmann

Clickjacking DevCon2011

Krishna T

Increased trust in an online identity = increased mitigation of the risk of fraud. As an enterprise interacts with a person via the Internet, it may be prudent, for certain transactions, to have more evidence of that person’s identity. Web Access Management systems include some proprietary features to force “stepped-up authentication.” But luckily, new OAuth2 profiles like UMA and OpenID Connect offer a standards based approach to achieve inter-domain trust elevation. This slideshows includes a high level overview of the Enterprise UMA use case and some of the useful OpenID Connect features that can be leveraged to create centralized authentication policies.

Trust Elevation: Implementing an OAuth2 Infrastructure using OpenID Connect &...

Mike Schwartz

Destacado (19)

Saml vs Oauth : Which one should I use?

Briforum 2011 Chicago

Cloud Identity: A Recipe for Higher Education

The Tools I Use

Mule security - saml

DaaS/IaaS Forum Moscow - Najat Messaoud

RSA Europe: Future of Cloud Identity

DaaS/IaaS Forum Moscow - Chris Rogers

Who Are You? From Meat to Electrons - SXSW 2014

DaaS/IaaS Forum Moscow - Ivo Murris

RUCUG: 9. Sergey Khalyapin: Представляем XenDesktop 5

BriForum 2013 Chicago - Citrix Troubleshooting - Denis Gundarev

ID Next 2013 Keynote Slides by Mike Schwartz

RUCUG: 6. Fabian Kienle - NetScaler and Branch Repeater for Hyper-V

Citrix Internals: Tracing, Debugging & Troubleshooting

Kantara OTTO slides

How to Fail at VDI

Clickjacking DevCon2011

Trust Elevation: Implementing an OAuth2 Infrastructure using OpenID Connect &...

Similar a Oasis Identity In The Cloud Technical Committee

Anil saldhana oasisid_cloud

Anil Saldanha

Up 2011-ken huang

Ken Huang

A Cloud Security Ghost Story Craig Balding

craigbalding

Blockchain: the trust fabric for next generation digital identity management

Cloud Security Alliance's GRC Stack Overview

Valdez Ladd MBA, CISSP, CISA,

CloudCamp London 3 - 451 Group - William Fellows

Chris Purrington

CA Security - Deloitte IAM Summit - Vasu

Vasu Surabhi

Malay Das Sharma_2017

Malay Das Sharma

AWS Cloud Experience CA: Mejores prácticas para su Transformación hacia la Nube

Amazon Web Services LATAM

Logicalis Cloud Briefing

Logicalis Australia

In IT environments, identity is the key to governance and security. In this session, we discuss the challenges with identity in hybrid environments and some of the solutions. Topics include identity lifecycle management, single sign-on, multi-factor authentication, and dealing with multiple identity providers from different parties. We also cover the security requirements of a hybrid cloud environment: maintaining visbility, encryption, secure remote access, and compliance and auditing requirements.

Hybrid Identity Management and Security for Large Enterprises (ENT307-R2) - A...

Amazon Web Services

451 Research Client Event Nov 10

stavvmc

While the advantages of operating your workloads on AWS are attractive to many organizations, the prospect of migrating a vast legacy IT environment to the cloud may have your IT department wondering where to start. When Discovery Communications, a mass media and entertainment company, decided to migrate 20 data centers to AWS they selected Cloudreach as their trusted advisor on their journey to the cloud. Cloudreach uses a mature methodology with its roots in industry best practices and the AWS Cloud Adoption Framework to efficiently migrate large on-premises environments to the cloud. Join us for the upcoming webinar where cloud experts from Cloudreach, AWS, and Discovery discuss how Cloudreach helped Discovery Communications transform and modernize their IT infrastructure and adopt the AWS Cloud. Join us to learn: How Discovery Communications migrated 80% of their corporate IT environment to AWS. Cloudreach’s repeatable structure and methodology behind migrating large-scale workloads to AWS. How Cloudreach ensures the business goals of the migration (e.g., TCO/ROI, speed of deployment, team focus, etc.) are achieved, if not surpassed. Who Should Attend: CIO, CTO, VP or SVP Infrastructure, IT Director, Chief Architect

How Discovery Migrated 80% of Their IT to AWS with Cloudreach

Amazon Web Services

(Presented by RightScale) With the increased use of cloud services, organizations are faced with finding the most efficient way to leverage existing IT infrastructure alongside cloud-based compute, storage, and networking resources. This has resulted in the rise of hybrid infrastructure so IT teams can deliver agility and performance with visibility and control. At RightScale, we’ve implemented some of the world’s largest hybrid IT deployments. In this session, we share implementation approaches, architecture design considerations, and steps for a successful hybrid IT model. This session covers: -How to develop a strategy and framework for a successful path to hybrid IT -How to prioritize applications for public cloud versus on-premises -How to manage multiple compute resource pools through a unified management framework -Implementation and continuous improvement of a hybrid IT environment Examples of enterprise hybrid IT implementations include cloudbursting, high availability, and disaster recovery.

The Best of Both Worlds: Implementing Hybrid IT with AWS (ENT218) | AWS re:In...

Amazon Web Services

Traditionally, technology governance has required long, detailed documents and hours of work for IT managers, security or audit professionals, and administrators. Automating governance on AWS offers a better way. AWS services modernize technology governance by enshrining policy into code and embedding security guardrails at the development level, to provide reliable policy implementation and allow for continuous and real-time auditing capabilities. Leave this session with a better understanding of the benefits of automating technology governance and managing security and compliance with AWS. Presenter: John McDonald, Financial Services Compliance Specialist, AWS

Implementing Governance as Code

Amazon Web Services

Cloud security

n|u - The Open Security Community

Containers At-Risk A Review of 21,000 Cloud Environments

Lacework

Containers at risk a review of 21,000 cloud environments

dhubbard858

Because of AWS’ scale, customers inherit the robust security protocols AWS employs in their own data centers. Protecting our customers’ data is our first priority and we have architected our data centers to operate securely. We also offer numerous services so that customers running on AWS can build specific cloud-enabled solutions that improve security and can provide greater protection than on premises.

AWS FSI Symposium 2017 NYC - 9 Cloud Enabled Security Designs

Amazon Web Services

An important use-case for Vault is to provide short lived and least privileged Cloud credentials. In this webinar we will review specifically how Vault's Azure Secrets Engine can provide dynamic Azure credentials. We will cover details on how to configure the Azure Secrets Engine in Vault and use it in an application. If you are using Azure now or in the near future, join us for some patterns on maintaining a high security posture with Vault's dynamic credentials model!

Dynamic Azure Credentials for Applications and CI/CD Pipelines

Mitchell Pronschinske

Similar a Oasis Identity In The Cloud Technical Committee (20)

Anil saldhana oasisid_cloud

Up 2011-ken huang

A Cloud Security Ghost Story Craig Balding

Blockchain: the trust fabric for next generation digital identity management

Cloud Security Alliance's GRC Stack Overview

CloudCamp London 3 - 451 Group - William Fellows

CA Security - Deloitte IAM Summit - Vasu

Malay Das Sharma_2017

AWS Cloud Experience CA: Mejores prácticas para su Transformación hacia la Nube

Logicalis Cloud Briefing

Hybrid Identity Management and Security for Large Enterprises (ENT307-R2) - A...

451 Research Client Event Nov 10

How Discovery Migrated 80% of Their IT to AWS with Cloudreach

The Best of Both Worlds: Implementing Hybrid IT with AWS (ENT218) | AWS re:In...

Implementing Governance as Code

Cloud security

Containers At-Risk A Review of 21,000 Cloud Environments

Containers at risk a review of 21,000 cloud environments

AWS FSI Symposium 2017 NYC - 9 Cloud Enabled Security Designs

Dynamic Azure Credentials for Applications and CI/CD Pipelines

Último

Scaling API-first – The story of a global engineering organization

Radu Cotescu

What is a good lead in your organisation? Which leads are priority? What happens to leads? When sales and marketing give different answers to these questions, or perhaps aren't sure of the answers at all, frustrations build and opportunities are left on the table. Join us for an illuminating session with Cian McLoughlin, HubSpot Principal Customer Success Manager, as we look at that crucial piece of the customer journey in which leads are transferred from marketing to sales.

04-2024-HHUG-Sales-and-Marketing-Alignment.pptx

HampshireHUG

Imagine a world where information flows as swiftly as thought itself, making decision-making as fluid as the data driving it. Every moment is critical, and the right tools can significantly boost your organization’s performance. The power of real-time data automation through FME can turn this vision into reality. Aimed at professionals eager to leverage real-time data for enhanced decision-making and efficiency, this webinar will cover the essentials of real-time data and its significance. We’ll explore: FME’s role in real-time event processing, from data intake and analysis to transformation and reporting An overview of leveraging streams vs. automations FME’s impact across various industries highlighted by real-life case studies Live demonstrations on setting up FME workflows for real-time data Practical advice on getting started, best practices, and tips for effective implementation Join us to enhance your skills in real-time data automation with FME, and take your operational capabilities to the next level.

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

Safe Software

The 7 Things I Know About Cyber Security After 25 Years | April 2024

Rafal Los

Effective data discovery is crucial for maintaining compliance and mitigating risks in today's rapidly evolving privacy landscape. However, traditional manual approaches often struggle to keep pace with the growing volume and complexity of data. Join us for an insightful webinar where industry leaders from TrustArc and Privya will share their expertise on leveraging AI-powered solutions to revolutionize data discovery. You'll learn how to: - Effortlessly maintain a comprehensive, up-to-date data inventory - Harness code scanning insights to gain complete visibility into data flows leveraging the advantages of code scanning over DB scanning - Simplify compliance by leveraging Privya's integration with TrustArc - Implement proven strategies to mitigate third-party risks Our panel of experts will discuss real-world case studies and share practical strategies for overcoming common data discovery challenges. They'll also explore the latest trends and innovations in AI-driven data management, and how these technologies can help organizations stay ahead of the curve in an ever-changing privacy landscape.

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

TrustArc

presentation ICT roal in 21st century education

jfdjdjcjdnsjd

Histor y of HAM Radio presentation slide

vu2urc

Automating Google Workspace (GWS) & more with Apps Script

wesley chun

What are drone anti-jamming systems? The drone anti-jamming systems and anti-spoof technology protect against interference, jamming, and spoofing of the UAVs. To protect their security, countries are beginning to research drone anti-jamming systems, also known as drone strike weapons. The anti-jam and anti-spoof technology protects against interference, jamming and spoofing. A drone strike weapon is a drone attack weapon that can attack and destroy enemy drones. So what is so unique about this amazing system?

What Are The Drone Anti-jamming Systems Technology?

Antenna Manufacturer Coco

Join our latest Connector Corner webinar to discover how UiPath Integration Service revolutionizes API-centric automation in a 'Quote to Cash' process—and how that automation empowers businesses to accelerate revenue generation. A comprehensive demo will explore connecting systems, GenAI, and people, through powerful pre-built connectors designed to speed process cycle times. Speakers: James Dickson, Senior Software Engineer Charlie Greenberg, Host, Product Marketing Manager

Connector Corner: Accelerate revenue generation using UiPath API-centric busi...

DianaGray10

Abhishek Deb(1), Mr Abdul Kalam(2) M. Des (UX) , School of Design, DIT University , Dehradun. This paper explores the future potential of AI-enabled smartphone processors, aiming to investigate the advancements, capabilities, and implications of integrating artificial intelligence (AI) into smartphone technology. The research study goals consist of evaluating the development of AI in mobile phone processors, analyzing the existing state as well as abilities of AI-enabled cpus determining future patterns as well as chances together with reviewing obstacles as well as factors to consider for more growth.

Exploring the Future Potential of AI-Enabled Smartphone Processors

debabhi2

With more memory available, system performance of three Dell devices increased, which can translate to a better user experience Conclusion When your system has plenty of RAM to meet your needs, you can efficiently access the applications and data you need to finish projects and to-do lists without sacrificing time and focus. Our test results show that with more memory available, three Dell PCs delivered better performance and took less time to complete the Procyon Office Productivity benchmark. These advantages translate to users being able to complete workflows more quickly and multitask more easily. Whether you need the mobility of the Latitude 5440, the creative capabilities of the Precision 3470, or the high performance of the OptiPlex Tower Plus 7010, configuring your system with more RAM can help keep processes running smoothly, enabling you to do more without compromising performance.

Boost PC performance: How more available memory can improve productivity

Principled Technologies

Enterprise Knowledge’s Urmi Majumder, Principal Data Architecture Consultant, and Fernando Aguilar Islas, Senior Data Science Consultant, presented "Driving Behavioral Change for Information Management through Data-Driven Green Strategy" on March 27, 2024 at Enterprise Data World (EDW) in Orlando, Florida. In this presentation, Urmi and Fernando discussed a case study describing how the information management division in a large supply chain organization drove user behavior change through awareness of the carbon footprint of their duplicated and near-duplicated content, identified via advanced data analytics. Check out their presentation to gain valuable perspectives on utilizing data-driven strategies to influence positive behavioral shifts and support sustainability initiatives within your organization. In this session, participants gained answers to the following questions: - What is a Green Information Management (IM) Strategy, and why should you have one? - How can Artificial Intelligence (AI) and Machine Learning (ML) support your Green IM Strategy through content deduplication? - How can an organization use insights into their data to influence employee behavior for IM? - How can you reap additional benefits from content reduction that go beyond Green IM?

Driving Behavioral Change for Information Management through Data-Driven Gree...

Enterprise Knowledge

Real Time Object Detection Using Open CV

Khem

Building Digital Trust in a Digital Economy Veronica Tan, Director - Cyber Security Agency of Singapore Apidays Singapore 2024: Connecting Customers, Business and Technology (April 17 & 18, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

apidays

This presentation explores the impact of HTML injection attacks on web applications, detailing how attackers exploit vulnerabilities to inject malicious code into web pages. Learn about the potential consequences of such attacks and discover effective mitigation strategies to protect your web applications from HTML injection vulnerabilities. for more information visit https://bostoninstituteofanalytics.org/category/cyber-security-ethical-hacking/

HTML Injection Attacks: Impact and Mitigation Strategies

Boston Institute of Analytics

The value of a flexible API Management solution for Open Banking Steve Melan, Manager for IT Innovation and Architecture - State's and Saving's Bank of Luxembourg Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The value of a flexible API Management solution for O...

apidays

AWS Community Day CPH - Three problems of Terraform

Andrey Devyatkin

Data Cloud, More than a CDP by Matt Robison

Anna Loughnan Colquhoun

MySQL Webinar, presented on the 25th of April, 2024. Summary: MySQL solutions enable the deployment of diverse Database Architectures tailored to specific needs, including High Availability, Disaster Recovery, and Read Scale-Out. With MySQL Shell's AdminAPI, administrators can seamlessly set up, manage, and monitor these solutions, ensuring efficiency and ease of use in their administration. MySQL Router, on the other hand, provides transparent routing from the application traffic to the backend servers in the architectures, requiring minimal configuration. Completely built in-house and supported by Oracle, these solutions have been adopted by enterprises of all sizes for their business-critical applications. In this presentation, we'll delve into various database architecture solutions to help you choose the right one based on your business requirements. Focusing on technical details and the latest features to maximize the potential of these solutions.

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Miguel Araújo

Oasis Identity In The Cloud Technical Committee

1. www.oasis-open.org Oasis Identity In The Cloud TC Towards standardizing Cloud Identity Anil Saldhana (Red Hat), Co-Chair

2. Members Red Hat, IBM, Microsoft, CA Technologies, Cisco Systems, SAP, EBay, Novell, Ping Identity, Safe Net, Symantec, Boeing Corp, US DOD, Verisign, Akamai, Alfresco, Citrix, Cap Gemini, Google, Rackspace, Axciom, Huawei, Symplified, Thales, Conformity, Skyworth TTG, MIT, Jericho Systems, PrimeKey, Aveksa, Mellanox, Vanguard Integrity Professionals, NZ Govt ...

3. Charter s Three Stages q Use Cases Formalization s http://docs.oasis-open.org/id-cloud/IDCloud-usecases/v q Gap Analysis of existing IDM standards s Feed analysis back to the WG responsible for a standard q Profiles of Use Cases

4. Charter s Other Objectives q Do not reinvent the wheel q Strong liaison relationships with other working groups internationally q Glossary of Cloud Identity

5. Use Cases

6. Clouds need Accounts s Privileged Account Management q Use Case by SafeNet Inc (Doron Cohen) q Strong authentication, authorization and auditing needs s Account Management q Use Case by Ping Identity (Patrick Harding) q Consistent maintenance of user accounts q Automated CRUD of user accounts

7. Cloud Identities s Virtualization Security q Use Case by Red Hat Inc (Anil Saldhana) q Identities managing VM, Infrastructure, Applications s Cloud Provisioning for Gov Agencies q Use Case by Gov.NZ (Colin Walis) q Employees/Contractors provision environments for agencies

8. Other Topics s Auditing s Provisioning s Identity Proofing s Identity Configuration q Metadata s Transactions and Signatures

9. Resources s Oasis TC Page http://www.oasis-open.org/committees/id-cloud/ s Oasis TC Wiki http://wiki.oasis-open.org/id-cloud/FrontPage s Wiki Page with links to member submissions http://wiki.oasis-open.org/id-cloud/MemberSubmissions s Q&A

10. www.oasis-open.org Questions Anil.Saldhana@redhat.com http://anil-identity.blogspot.com

Oasis Identity In The Cloud Technical Committee

Recomendados

Recomendados

Más contenido relacionado

Destacado

Destacado (19)

Similar a Oasis Identity In The Cloud Technical Committee

Similar a Oasis Identity In The Cloud Technical Committee (20)

Último

Último (20)

Oasis Identity In The Cloud Technical Committee