CIS 2015 Deploying Strong Authentication to a Global Enterprise: A Comedy in Three Acts - Laura Hunter

•

0 recomendaciones•761 vistas

Does anybody remember seeing a big red button with the word “PANICK!” written on it? I know it was around here somewhere. Also, there’s all these cats running pell-mell around the place, can someone give me a hand in herding them? In this real-world case study, come and learn how a Fortune 100 with a diverse and extremely mobile work-force was able to turn up strong authentication protections for our critical cloud resources, and how the IT department lived to tell the tale. You’ll hear about the technical implementation of strong authentication enforcement, and how we made key design decisions in the ongoing balancing act between security and user experience, and how we managed up-and-down the chain from executive stakeholders to the boots-on-the-ground who were being asked to join us on this new security adventure.

Tecnología

Deploying Strong
Authentication to a Global
Enterprise: A Comedy in
Three Acts
Laura E. Hunter
@adfskitteh
Cards Against Identity

Act One: The Perpetual Pilot
Cards Against Identity

Microsoft IT’s Azure MFA
Deployment was in Pilot for
______ months…
Cards Against Identity

Cards Against Identity
Cards Against Identity Cards Against Identity
Cards Against Identity Cards Against Identity

Cards Against Identity
Cards Against Identity Cards Against Identity
1 month Cards Against Identity1 month Cards Against Identity

Cards Against Identity
Cards Against Identity Cards Against Identity
1 month 2 months1 month 2 months

Cards Against Identity
6 months Cards Against Identity
1 month 2 months1 month 2 months

Cards Against Identity
6 months 12 months
1 month 2 months

“Sharp Edges” in the User
Experience
Cards Against Identity

Lack of Top-Down
Organizational Messaging
Cards Against Identity

A year-long pilot was still
worthwhile, because it
allowed IT to ___________
and ___________.
Cards Against Identity

Learn How To Operate a New
Service Offering
Cards Against Identity

Act Two: The Inciting Event
Cards Against Identity

Cards Against Identity
What did Laura get for
Christmas this year?

Cards Against Identity
Cards Against Identity Cards Against Identity
1 month Cards Against IdentityA pony Cards Against Identity

Cards Against Identity
Cards Against Identity Cards Against Identity
1 month 2 monthsA pony New shoes

Cards Against Identity
Back2back Seahawks
Super Bowl victories
Cards Against Identity
1 month 2 monthsA pony New shoes

Cards Against Identity
Back2back Seahawks
Super Bowl victories
A 9:30am Christmas-
morning conference  
call with her CISO
A pony New shoes

A 9:30am Christmas-morning
conference call with her
CISO
Cards Against Identity

“Hey IT…you can roll out
strong auth to all Microsoft
users by the end of the
month, right?”
Cards Against Identity

Cards Against Identity
Cards Against Identity Cards Against Identity
1 month Cards Against Identity“Is there a hole in the
ground that I can
disappear into right
now?”
Cards Against Identity

Cards Against Identity
Cards Against Identity Cards Against Identity
1 month 2 months“Is there a hole in the
ground that I can
disappear into right
now?”
“Are you directly out of
your everloving mind?”

Cards Against Identity
“Absolutely, boss. We
can get that done.”
Cards Against Identity
1 month 2 months“Is there a hole in the
ground that I can
disappear into right
now?”
“Are you directly out of
your everloving mind?”

Cards Against Identity
“Absolutely, boss. We
can get that done.”
“Sorry, can we chat
later? I’m watching
Winter Soldier.”
“Is there a hole in the
ground that I can
disappear into right
now?”
“Are you directly out of
your everloving mind?”

“Absolutely, boss. We can
get that done.”
Cards Against Identity

So how did it go, Laura?
Cards Against Identity

Executive sponsorship…
Cards Against Identity

…including acceptance of
some rough edges…
Cards Against Identity

…led to a largely successful
deployment of strong auth to
Microsoft employees.
Cards Against Identity

Act Three: The New Normal
Cards Against Identity

What Constitutes a
Legitimate Exception to
Strong Auth Policy?
Cards Against Identity

Cards Against Identity
Cards Against Identity Cards Against Identity
1 month Cards Against Identity“I’m sitting on my sofa
with my iPad. My laptop
is on my kitchen table
and I don’t feel like
getting up to go get it.”
Cards Against Identity

Cards Against Identity
Cards Against Identity Cards Against Identity
1 month 2 months“I’m sitting on my sofa
with my iPad. My laptop
is on my kitchen table
and I don’t feel like
getting up to go get it.”
Retail employees
working the sales ﬂoor.

Cards Against Identity
“I do customer demos.” Cards Against Identity
1 month 2 months“I’m sitting on my sofa
with my iPad. My laptop
is on my kitchen table
and I don’t feel like
getting up to go get it.”
Retail employees
working the sales ﬂoor.

Cards Against Identity
“I do customer demos.” “NEIN! NEIN! NEIN! 
ZERE VIL’ BE NO
EXCEPTIONS!”
“I’m sitting on my sofa
with my iPad. My laptop
is on my kitchen table
and I don’t feel like
getting up to go get it.”
Retail employees
working the sales ﬂoor.

After a Strong Auth Rollout,
What Will IT Get Blamed For?
Cards Against Identity

Cards Against Identity
Cards Against Identity Cards Against Identity
1 month Cards Against Identity“I can’t get on wireless,
is it because of 2FA?”
Cards Against Identity

Cards Against Identity
Cards Against Identity Cards Against Identity
1 month 2 months“I can’t get on wireless,
is it because of 2FA?”
“I can’t renew my smart
card, is this because of
2FA?”

Cards Against Identity
“The MDM PIN policy
changed, is this because
of 2FA?”
Cards Against Identity
1 month 2 months“I can’t get on wireless,
is it because of 2FA?”
“I can’t renew my smart
card, is this because of
2FA?”

Cards Against Identity
“The MDM PIN policy
changed, is this because
of 2FA?”
“<%insert name of app
%> wouldn’t launch this
morning, is it because of
2FA?”
“I can’t get on wireless,
is it because of 2FA?”
“I can’t renew my smart
card, is this because of
2FA?”

“The MDM PIN policy
changed, is this because of
2FA?”
Cards Against Identity

Postlude: The Road Ahead
Cards Against Identity

THANK YOU!
Laura E. Hunter
@adfskitteh
Cards Against Identity Template design:
stuart@stuartgil.es

Más contenido relacionado

Más de CloudIDSummit

You'll laugh, you'll cry, and you might even pick up a useful nugget or two listening to a real-world enterprise IT architect share the experiences of the past year trying to support his business migrating to cloud services, and sharing the lessons learned from trying to integrate 2 hybrid enterprises into a single, streamlined company. You'll hear where the cloud came through for us, and how we often had to fall back to on-prem services such as FIM, Ping Federate, and ADFS to make the glue which binds it all together.

CIS 2015 Mergers & Acquisitions in a Cloud Enabled World - Brian Puhl

CloudIDSummit

CIS 2015 IoT and IDM in your Mobile Enterprise - Brian Katz

CloudIDSummit

CIS 2015 Practical Deployments Enterprise Cloud Access Management Platform - ...

CloudIDSummit

The IAM program needs to align behind the shift towards ITaaS, building the platform for execution and supporting transformation and migration activities. CIOs should keep informed through a relevant IAM capability roadmap in order to make calculated decisions on where investments should be made. Ongoing investments in the IAM program are crucial in order to fill capability gaps, keep up-to-date with support and license agreements and make opportunistic progress on the strategic roadmap. In this talk, Steve discusses recent experiences and lessons learned in preparing for and pitching VMware’s CIO on enterprise IAM program initiatives.

CIS 2015 What I Learned From Pitching IAM To My CIO - Steve Tout

CloudIDSummit

Companies and researchers are exploring ways to make software and hardware development easier for the masses. Soon you will be able to build your own autonomous drone, create a sensor that assess the watering needs of your plants, and develop a cat tracking device with minimal coding and hardware skills. What is the place of security and privacy in this exciting development? Are we building the next generation of Internet security vulnerabilities right now? In his talk Hannes Tschofenig will highlight challenges with Internet of Things, what role standardization plays, and what contributions ARM, a provider of microprocessor IP, is making to improve IoT security.

CIS 2015 How to secure the Internet of Things? Hannes Tschofenig

CloudIDSummit

The IDaaS (identity as a service) market segment continues to grow in popularity, and the scope of its vendor's capabilities continue to grow as well. It's still not a match for everyone, however. Join identity architect Sean Deuby for an overview of the most popular IDaaS deployment scenarios, scenarios where IDaaS has a tougher time meeting customer requirements, and whether your company is likely to find its perfect IDaaS mate.

CIS 2015 The IDaaS Dating Game - Sean Deuby

CloudIDSummit

CIS 2015 SSO for Mobile and Web Apps Ashish Jain

CloudIDSummit

The Industrial Internet, the Identity of Everything and the Industrial Enterp...

CloudIDSummit

CIS 2015 SAML-IN / SAML-OUT - Scott Tomilson & John Dasilva

CloudIDSummit

Centralized session management has long been a goal of Web Access Management systems: the idea that one session can give end users access to dozens of protected applications with a seamless SSO experience, and terminating it (either by the end user themselves, or by an administrator) cuts off access instantly. It’s a nice dream isn’t it? Turns out that while most WAM products claim they can do this, when deployment time comes around (especially in globally distributed organizations) serious security and scalability challenges emerge that make it unfeasible. In this “session”, come and learn our vision for deploying session management at scale and see how Ping Identity has implemented it in our Federated Access Management solution.

CIS 2015 Session Management at Scale - Scott Tomilson & Jamshid Khosravian

CloudIDSummit

Are you asking yourself how do I take my inhouse application and make it available to internal users, partners or customers using SSO and access management technologies? Oh, and you don't want it to be a 6 month project? No problem. Come and find out how to leverage your existing investments and move to modern standards like OpenID Connect, without having to rip and replace infrastructure. Learn the capabilities and tradeoffs you can make to deploy the right level of identity and access management infrastructure to match your security needs.

CIS 2015 So you want to SSO … Scott Tomilson & John Dasilva

CloudIDSummit

Devices need owners, people need confidence in device authenticity, data needs to persist in systems long after devices change hands, and access needs to be authorized selectively. That's a lot to ask; even if emerging web identity and security technologies are simpler than the models of yesteryear, IoT devices have complicating limitations when it comes to processing power, memory, user interface, and connectivity. But many use cases span web and IoT environments, so we must try! What are the specific requirements? What elements of web technologies can we borrow outright? What elements may need tweaking?

CIS 2015 Identity Relationship Management in the Internet of Things

CloudIDSummit

We're all more conscious than we were 2 years ago, about how much data is collected about us, and how revealing it can be. The commercial and government direction of travel is clear: more data, more mining, more monetization. And if personal data fuels the information economy, who'd want to stop that? But can we get the economic benefits, without selling our digital souls in the process? - Is there a data equivalent to the ""polluter pays"" principle? And if not, is there an alternative? - Ethical data handling sounds great in principle, but can it be practical? - How can organizations put ethical data handling into practice?

CIS 2015 The Ethics of Personal Data - Robin Wilton

CloudIDSummit

CIS 2015 What’s next? Discovery, Dynamic Registration, Mobile Connect and mor...

CloudIDSummit

CIS 2015 OpenID Connect and Mobile Applications - David Chase

CloudIDSummit

CIS 2015 OpenID Connect Workshop Part 1: Challenges for mobile - B. Allyn Fay

CloudIDSummit

How many non-employee users do you store in your on-premise, enterprise directory? In most organizations, the answer is too many. If you need a way to authenticate customers and partners to give them access to applications, but you don't want to be in the business of storing and managing those identities yourself, we have an alternative. Come learn about PingOne's directory, a user directory available to you in the PingOne IDaaS platform.

DIRECTORY CIS 2015 - Eric Fazendin

CloudIDSummit

When applying multi-factor authentication to your organization, it is highly important to cover all use cases. PingID’s set of integrations, together with PingFederate’s, PingOne’s and PingAccess’ provide you with a wider applications coverage. Come learn about the new enterprise grade VPN, Remote access and SSH integrations and see how easy it is to roll out. In addition, new user authentication methods will be introduced, both mobile App oriented and non-mobile. So all your users can be secured, the easy way.

CIS 2015 Multi-factor for All, the Easy Way - Ran Ne'man

CloudIDSummit

Want to configure SSO for your users or improve your utilization of Ping’s services and take advantage of the latest features that Ping Identity has available in our PingFederate and PingOne products? Come learn about improvements in how PingFederate and PingOne work together both in the initial setup phase and the configuration of SSO applications. Come and discover new provisioning capabilities including support for additional applications and an expanded use of SCIM. Additionally, find out about new API enablement functionality of PingOne that focuses on Employee SSO which can be used to automate the setting up of a customer’s connection to PingOne as well as a customer’s application configurations. And more.

CIS 2015 Easy Federation in Cloud and on Premises - Ian Jaffe

CloudIDSummit

As the Internet of Things grows, along with electronic health care records, the need for machine based discovery will grow substantially. One of the problems with standards based discovery today is that it can expose private information which a user might not want exposed. This talk will look at UMA protecting the webfinger discovery specification to create a discovery mechanism that provides user specified authorization policy for access to the discovery information. Issues and gaps will be identified.

CIS 2015 User Managed Access - George Fletcher

CloudIDSummit

Más de CloudIDSummit (20)

CIS 2015 Mergers & Acquisitions in a Cloud Enabled World - Brian Puhl

CIS 2015 IoT and IDM in your Mobile Enterprise - Brian Katz

CIS 2015 Practical Deployments Enterprise Cloud Access Management Platform - ...

CIS 2015 What I Learned From Pitching IAM To My CIO - Steve Tout

CIS 2015 How to secure the Internet of Things? Hannes Tschofenig

CIS 2015 The IDaaS Dating Game - Sean Deuby

CIS 2015 SSO for Mobile and Web Apps Ashish Jain

The Industrial Internet, the Identity of Everything and the Industrial Enterp...

CIS 2015 SAML-IN / SAML-OUT - Scott Tomilson & John Dasilva

CIS 2015 Session Management at Scale - Scott Tomilson & Jamshid Khosravian

CIS 2015 So you want to SSO … Scott Tomilson & John Dasilva

CIS 2015 Identity Relationship Management in the Internet of Things

CIS 2015 The Ethics of Personal Data - Robin Wilton

CIS 2015 What’s next? Discovery, Dynamic Registration, Mobile Connect and mor...

CIS 2015 OpenID Connect and Mobile Applications - David Chase

CIS 2015 OpenID Connect Workshop Part 1: Challenges for mobile - B. Allyn Fay

DIRECTORY CIS 2015 - Eric Fazendin

CIS 2015 Multi-factor for All, the Easy Way - Ran Ne'man

CIS 2015 Easy Federation in Cloud and on Premises - Ian Jaffe

CIS 2015 User Managed Access - George Fletcher

Último

AWS Community Day CPH - Three problems of Terraform

Andrey Devyatkin

Histor y of HAM Radio presentation slide

vu2urc

A Domino Admins Adventures (Engage 2024)

Gabriella Davis

GenCyber Cyber Security Day Presentation

Michael W. Hawkins

Abhishek Deb(1), Mr Abdul Kalam(2) M. Des (UX) , School of Design, DIT University , Dehradun. This paper explores the future potential of AI-enabled smartphone processors, aiming to investigate the advancements, capabilities, and implications of integrating artificial intelligence (AI) into smartphone technology. The research study goals consist of evaluating the development of AI in mobile phone processors, analyzing the existing state as well as abilities of AI-enabled cpus determining future patterns as well as chances together with reviewing obstacles as well as factors to consider for more growth.

Exploring the Future Potential of AI-Enabled Smartphone Processors

debabhi2

2024: Domino Containers - The Next Step. News from the Domino Container commu...

Martijn de Jong

Building Digital Trust in a Digital Economy Veronica Tan, Director - Cyber Security Agency of Singapore Apidays Singapore 2024: Connecting Customers, Business and Technology (April 17 & 18, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

apidays

Three things you will take away from the session: • How to run an effective tenant-to-tenant migration • Best practices for before, during, and after migration • Tips for using migration as a springboard to prepare for Copilot in Microsoft 365 Main ideas: Migration Overview: The presentation covers the current reality of cross-tenant migrations, the triggers, phases, best practices, and benefits of a successful tenant migration Considerations: When considering a migration, it is important to consider the migration scope, performance, customization, flexibility, user-friendly interface, automation, monitoring, support, training, scalability, data integrity, data security, cost, and licensing structure Next Wave: The next wave of change includes the launch of Copilot, which requires businesses to be prepared for upcoming changes related to Copilot and the cloud, and to consolidate data and tighten governance ShareGate: ShareGate can help with pre-migration analysis, configurable migration tool, and automated, end-user driven collaborative governance

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

sammart93

What is a good lead in your organisation? Which leads are priority? What happens to leads? When sales and marketing give different answers to these questions, or perhaps aren't sure of the answers at all, frustrations build and opportunities are left on the table. Join us for an illuminating session with Cian McLoughlin, HubSpot Principal Customer Success Manager, as we look at that crucial piece of the customer journey in which leads are transferred from marketing to sales.

04-2024-HHUG-Sales-and-Marketing-Alignment.pptx

HampshireHUG

ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke

Product Anonymous

Scaling API-first – The story of a global engineering organization

Radu Cotescu

With more memory available, system performance of three Dell devices increased, which can translate to a better user experience Conclusion When your system has plenty of RAM to meet your needs, you can efficiently access the applications and data you need to finish projects and to-do lists without sacrificing time and focus. Our test results show that with more memory available, three Dell PCs delivered better performance and took less time to complete the Procyon Office Productivity benchmark. These advantages translate to users being able to complete workflows more quickly and multitask more easily. Whether you need the mobility of the Latitude 5440, the creative capabilities of the Precision 3470, or the high performance of the OptiPlex Tower Plus 7010, configuring your system with more RAM can help keep processes running smoothly, enabling you to do more without compromising performance.

Boost PC performance: How more available memory can improve productivity

Principled Technologies

This presentation explores the impact of HTML injection attacks on web applications, detailing how attackers exploit vulnerabilities to inject malicious code into web pages. Learn about the potential consequences of such attacks and discover effective mitigation strategies to protect your web applications from HTML injection vulnerabilities. for more information visit https://bostoninstituteofanalytics.org/category/cyber-security-ethical-hacking/

HTML Injection Attacks: Impact and Mitigation Strategies

Boston Institute of Analytics

MySQL Webinar, presented on the 25th of April, 2024. Summary: MySQL solutions enable the deployment of diverse Database Architectures tailored to specific needs, including High Availability, Disaster Recovery, and Read Scale-Out. With MySQL Shell's AdminAPI, administrators can seamlessly set up, manage, and monitor these solutions, ensuring efficiency and ease of use in their administration. MySQL Router, on the other hand, provides transparent routing from the application traffic to the backend servers in the architectures, requiring minimal configuration. Completely built in-house and supported by Oracle, these solutions have been adopted by enterprises of all sizes for their business-critical applications. In this presentation, we'll delve into various database architecture solutions to help you choose the right one based on your business requirements. Focusing on technical details and the latest features to maximize the potential of these solutions.

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Miguel Araújo

Axa Assurance Maroc - Insurer Innovation Award 2024

The Digital Insurer

Scaling API-first – The story of a global engineering organization Ian Reasor, Senior Computer Scientist - Adobe Radu Cotescu, Senior Computer Scientist - Adobe Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

apidays

Finology Group – Insurtech Innovation Award 2024

The Digital Insurer

How to Troubleshoot Apps for the Modern Connected Worker

ThousandEyes

The 7 Things I Know About Cyber Security After 25 Years | April 2024

Rafal Los

Real Time Object Detection Using Open CV

Khem

CIS 2015 Deploying Strong Authentication to a Global Enterprise: A Comedy in Three Acts - Laura Hunter

1. Deploying Strong Authentication to a Global Enterprise: A Comedy in Three Acts Laura E. Hunter @adfskitteh Cards Against Identity

2. Act One: The Perpetual Pilot Cards Against Identity

3. Microsoft IT’s Azure MFA Deployment was in Pilot for ______ months… Cards Against Identity

4. Cards Against Identity Cards Against Identity Cards Against Identity Cards Against Identity Cards Against Identity

5. Cards Against Identity Cards Against Identity Cards Against Identity 1 month Cards Against Identity1 month Cards Against Identity

6. Cards Against Identity Cards Against Identity Cards Against Identity 1 month 2 months1 month 2 months

7. Cards Against Identity 6 months Cards Against Identity 1 month 2 months1 month 2 months

8. Cards Against Identity 6 months 12 months 1 month 2 months

9. 12 months Cards Against Identity

10. Why so long? Cards Against Identity

11. “Sharp Edges” in the User Experience Cards Against Identity

12. Lack of Top-Down Organizational Messaging Cards Against Identity

13. A year-long pilot was still worthwhile, because it allowed IT to ___________ and ___________. Cards Against Identity

14. Learn How To Operate a New Service Offering Cards Against Identity

15. Plan for Scale Cards Against Identity

16. Act Two: The Inciting Event Cards Against Identity

17. Cards Against Identity What did Laura get for Christmas this year?

18. Cards Against Identity Cards Against Identity Cards Against Identity Cards Against Identity Cards Against Identity

19. Cards Against Identity Cards Against Identity Cards Against Identity 1 month Cards Against IdentityA pony Cards Against Identity

20. Cards Against Identity Cards Against Identity Cards Against Identity 1 month 2 monthsA pony New shoes

21. Cards Against Identity Back2back Seahawks Super Bowl victories Cards Against Identity 1 month 2 monthsA pony New shoes

22. Cards Against Identity Back2back Seahawks Super Bowl victories A 9:30am Christmas- morning conference   call with her CISO A pony New shoes

23. A 9:30am Christmas-morning conference call with her CISO Cards Against Identity

24. “Hey IT…you can roll out strong auth to all Microsoft users by the end of the month, right?” Cards Against Identity

25. Cards Against Identity Cards Against Identity Cards Against Identity Cards Against Identity Cards Against Identity

26. Cards Against Identity Cards Against Identity Cards Against Identity 1 month Cards Against Identity“Is there a hole in the ground that I can disappear into right now?” Cards Against Identity

27. Cards Against Identity Cards Against Identity Cards Against Identity 1 month 2 months“Is there a hole in the ground that I can disappear into right now?” “Are you directly out of your everloving mind?”

28. Cards Against Identity “Absolutely, boss. We can get that done.” Cards Against Identity 1 month 2 months“Is there a hole in the ground that I can disappear into right now?” “Are you directly out of your everloving mind?”

29. Cards Against Identity “Absolutely, boss. We can get that done.” “Sorry, can we chat later? I’m watching Winter Soldier.” “Is there a hole in the ground that I can disappear into right now?” “Are you directly out of your everloving mind?”

30. “Absolutely, boss. We can get that done.” Cards Against Identity

31. So how did it go, Laura? Cards Against Identity

32. Executive sponsorship… Cards Against Identity

33. …including acceptance of some rough edges… Cards Against Identity

34. …led to a largely successful deployment of strong auth to Microsoft employees. Cards Against Identity

35. Act Three: The New Normal Cards Against Identity

36. What Constitutes a Legitimate Exception to Strong Auth Policy? Cards Against Identity

37. Cards Against Identity Cards Against Identity Cards Against Identity Cards Against Identity Cards Against Identity

38. Cards Against Identity Cards Against Identity Cards Against Identity 1 month Cards Against Identity“I’m sitting on my sofa with my iPad. My laptop is on my kitchen table and I don’t feel like getting up to go get it.” Cards Against Identity

39. Cards Against Identity Cards Against Identity Cards Against Identity 1 month 2 months“I’m sitting on my sofa with my iPad. My laptop is on my kitchen table and I don’t feel like getting up to go get it.” Retail employees working the sales ﬂoor.

40. Cards Against Identity “I do customer demos.” Cards Against Identity 1 month 2 months“I’m sitting on my sofa with my iPad. My laptop is on my kitchen table and I don’t feel like getting up to go get it.” Retail employees working the sales ﬂoor.

41. Cards Against Identity “I do customer demos.” “NEIN! NEIN! NEIN!  ZERE VIL’ BE NO EXCEPTIONS!” “I’m sitting on my sofa with my iPad. My laptop is on my kitchen table and I don’t feel like getting up to go get it.” Retail employees working the sales ﬂoor.

42. After a Strong Auth Rollout, What Will IT Get Blamed For? Cards Against Identity

43. Cards Against Identity Cards Against Identity Cards Against Identity Cards Against Identity Cards Against Identity

44. Cards Against Identity Cards Against Identity Cards Against Identity 1 month Cards Against Identity“I can’t get on wireless, is it because of 2FA?” Cards Against Identity

45. Cards Against Identity Cards Against Identity Cards Against Identity 1 month 2 months“I can’t get on wireless, is it because of 2FA?” “I can’t renew my smart card, is this because of 2FA?”

46. Cards Against Identity “The MDM PIN policy changed, is this because of 2FA?” Cards Against Identity 1 month 2 months“I can’t get on wireless, is it because of 2FA?” “I can’t renew my smart card, is this because of 2FA?”

47. Cards Against Identity “The MDM PIN policy changed, is this because of 2FA?” “<%insert name of app %> wouldn’t launch this morning, is it because of 2FA?” “I can’t get on wireless, is it because of 2FA?” “I can’t renew my smart card, is this because of 2FA?”

48. “The MDM PIN policy changed, is this because of 2FA?” Cards Against Identity

49. Postlude: The Road Ahead Cards Against Identity

50. THANK YOU! Laura E. Hunter @adfskitteh Cards Against Identity Template design: stuart@stuartgil.es

CIS 2015 Deploying Strong Authentication to a Global Enterprise: A Comedy in Three Acts - Laura Hunter

Recomendados

Recomendados

Más contenido relacionado

Más de CloudIDSummit

Más de CloudIDSummit (20)

Último

Último (20)

CIS 2015 Deploying Strong Authentication to a Global Enterprise: A Comedy in Three Acts - Laura Hunter