SlideShare una empresa de Scribd logo

Bechtel On OpenID and OAuth from Cloud Identity Summit

Matterport
Matterport

Christian Reilly, Manager of Global Systems Engineering and Brian Ward, Manager of Integration Services make a good case for how to use OpenID and OAuth in an extended enterprise environment. Bechtel is a $30B business with 44,000 employees. See slide 13 for a description of Identity 2.0, and BYOI (Bring Your Own Identity) provided by Janrain Engage: www.janrain.com

Empresariales
1 de 20
Descargar para leer sin conexión
Identity in the Bechtel Cloud Why and how one of the most successful Engineering & Construction companies rebuilt their digital world….. Christian Reilly – Manager of Global Systems Engineering Brian D Ward – Manager of Integration Services
Information Evolution & Business Change Introducing the Project Services Network
Our business model is evolving to be more complex and distributed. GRAY Our two main challenges are related to:   Geography Our projects are executed in ZONE many and distributed locations   People Our resource model includes permanent and temporary employees, as well as vendors, customers, partners, and competitors
Current Position
Square pegs and round holes…. How much pain would you like?
  Active Directory – separate internal and external forests   Integrated Authentication, Kerberos Constrained Delegation, Reverse Proxy   Complex trust models & ICC’s   Application mix from Bechtel, Client, Partner, Competitor   Wide variety of application architectures
Core Apps: TimeCard, SAP, Intranet File Shares Mail Printers Desktop SaaS Bridge SaaS Internet Access AD Other apps (long tail)
  High degree of operational complexity   Poor visibility into what people are accessing what resource   Inflexible model slows down deployment of services and applications to projects   Difficult to accommodate new user communities (which change daily)   Not readily adaptable to SaaS offerings
Why is it so easy in The Cloud? And yet so hard in the Enterprise?
  Realizations –  “Castle and Moat” approach to security is dead –  Our Windows-centric approach has significant technical and operational constraints –  Authentication/Authorization are the key problems to solve   Resolutions –  We need a completely new approach –  Make all applications/services SaaS –  Make Bechtel a SaaS Provider (wow) –  Replace, not augment, the current model
  Identity “2.0” –  A new identity model – identities for life –  BYOI with OpenID (Janrain), Federation –  Anyone can have an account –  Self Registration based on relationships   Authorization –  Integrated into SAP –  Attribute store – single source of truth, replacement for groups –  Coarse grained authz performed by Ping  –  Fine grained done in apps for now, centrally later
  Integration –  SAML / OpenToken integration for all deployed applications –  Citrix integration with credential translation for legacy application support –  Two-legged OAuth STS for web services   Services –  New application stacks (SaaS-style) –  File / Print / Internet Access authentication replacement –  New desktop model – BYOD
Core Apps: TimeCard, SAP, Intranet File Shares Mail Printers Browser SaaS Identity Internet Access Array Other apps (long tail)
  Simplicity –  Built for the “Internet” not for the “Enterprise” –  No “internal” vs. “external” architectural constraints –  Moving away from managing every user account   Agility –  Modular framework of security, UI and services –  Applications decoupled from infrastructure –  No vendor lock in via open standards/open source –  Able to accommodate SaaS and new identity pools natively (with added hope for Geneva)
  Affordability –  Lower overall operational cost –  “B3” approach allows greater flexibility in cost management –  New vendors embrace new commercial models   Security –  Standards based security –  Single point of entry & logging –  Secured by policy not by topology (secure the data and not the device) –  Easily allow any user access to any data in a controlled life cycle
Why can’t we just buy this…hint, hint ? Unraveling years of LAN / WAN based legacy is, well, damn hard.
  Facts –  SaaS integration quickly becoming a commodity –  Federation and/or OpenID fills in the moat –  SaaS moves you out of the castle in the “Metro”   Key Questions –  What does the enterprise have left? –  How long is the tail for traditional enterprises?   Challenges –  Authorization is THE game to win –  Push provisioning is, at best, an interim solution –  A central model with standards-based interfaces is desperately needed
Questions & Answers Or if you’re too shy, grab one of us later….

Recomendados

Keynote- SOA & Beyond : Future Computing
Keynote- SOA & Beyond : Future ComputingKeynote- SOA & Beyond : Future Computing
Keynote- SOA & Beyond : Future Computing
WSO2
 
2013.07.05 [IBM] Cloud Ecosystem Forum - Atelier Directions Techniques
2013.07.05 [IBM] Cloud Ecosystem Forum - Atelier Directions Techniques2013.07.05 [IBM] Cloud Ecosystem Forum - Atelier Directions Techniques
2013.07.05 [IBM] Cloud Ecosystem Forum - Atelier Directions Techniques
Club Cloud des Partenaires
 
NetSuite's Quicktake on SAP Business ByDesign
NetSuite's Quicktake on SAP Business ByDesignNetSuite's Quicktake on SAP Business ByDesign
NetSuite's Quicktake on SAP Business ByDesign
Ben Kepes
 
Chapter 06: cloud computing trends
Chapter 06: cloud computing trendsChapter 06: cloud computing trends
Chapter 06: cloud computing trends
SsendiSamuel
 
Advanced Concepts in Software as a Service / Service Oriented Architecture
Advanced Concepts in Software as a Service / Service Oriented ArchitectureAdvanced Concepts in Software as a Service / Service Oriented Architecture
Advanced Concepts in Software as a Service / Service Oriented Architecture
Damon Carr
 
Raleigh Kafka Meetup - DDD, ES, and CQRS
Raleigh Kafka Meetup - DDD, ES, and CQRSRaleigh Kafka Meetup - DDD, ES, and CQRS
Raleigh Kafka Meetup - DDD, ES, and CQRS
Jeff Dutton
 
Developer Conference 2.1 - (Cloud) First Steps to the Cloud
Developer Conference 2.1 - (Cloud) First Steps to the CloudDeveloper Conference 2.1 - (Cloud) First Steps to the Cloud
Developer Conference 2.1 - (Cloud) First Steps to the Cloud
Micro Focus
 
Finding The Intersection Of Soa And Cloud Computing
Finding The Intersection Of Soa And Cloud ComputingFinding The Intersection Of Soa And Cloud Computing
Finding The Intersection Of Soa And Cloud Computing
David Linthicum
 

Recomendados

Keynote- SOA & Beyond : Future Computing
Keynote- SOA & Beyond : Future ComputingKeynote- SOA & Beyond : Future Computing
Keynote- SOA & Beyond : Future Computing
WSO2
 
2013.07.05 [IBM] Cloud Ecosystem Forum - Atelier Directions Techniques
2013.07.05 [IBM] Cloud Ecosystem Forum - Atelier Directions Techniques2013.07.05 [IBM] Cloud Ecosystem Forum - Atelier Directions Techniques
2013.07.05 [IBM] Cloud Ecosystem Forum - Atelier Directions Techniques
Club Cloud des Partenaires
 
NetSuite's Quicktake on SAP Business ByDesign
NetSuite's Quicktake on SAP Business ByDesignNetSuite's Quicktake on SAP Business ByDesign
NetSuite's Quicktake on SAP Business ByDesign
Ben Kepes
 
Chapter 06: cloud computing trends
Chapter 06: cloud computing trendsChapter 06: cloud computing trends
Chapter 06: cloud computing trends
SsendiSamuel
 
Advanced Concepts in Software as a Service / Service Oriented Architecture
Advanced Concepts in Software as a Service / Service Oriented ArchitectureAdvanced Concepts in Software as a Service / Service Oriented Architecture
Advanced Concepts in Software as a Service / Service Oriented Architecture
Damon Carr
 
Raleigh Kafka Meetup - DDD, ES, and CQRS
Raleigh Kafka Meetup - DDD, ES, and CQRSRaleigh Kafka Meetup - DDD, ES, and CQRS
Raleigh Kafka Meetup - DDD, ES, and CQRS
Jeff Dutton
 
Developer Conference 2.1 - (Cloud) First Steps to the Cloud
Developer Conference 2.1 - (Cloud) First Steps to the CloudDeveloper Conference 2.1 - (Cloud) First Steps to the Cloud
Developer Conference 2.1 - (Cloud) First Steps to the Cloud
Micro Focus
 
Finding The Intersection Of Soa And Cloud Computing
Finding The Intersection Of Soa And Cloud ComputingFinding The Intersection Of Soa And Cloud Computing
Finding The Intersection Of Soa And Cloud Computing
David Linthicum
 
Npc presentation clexo
Npc presentation clexoNpc presentation clexo
Npc presentation clexo
GovCloud Network
 
Cloud Computing Model with Service Oriented Architecture
Cloud Computing Model with Service Oriented ArchitectureCloud Computing Model with Service Oriented Architecture
Cloud Computing Model with Service Oriented Architecture
Yan Zhao
 
IdM Reference Architecture
IdM Reference ArchitectureIdM Reference Architecture
IdM Reference Architecture
Hannu Kasanen
 
IDC: Selecting the Optimal Path to Private Cloud
IDC: Selecting the Optimal Path to Private CloudIDC: Selecting the Optimal Path to Private Cloud
IDC: Selecting the Optimal Path to Private Cloud
EMC
 
Cloud computing and_saas
Cloud computing and_saasCloud computing and_saas
Cloud computing and_saas
Rahul Parmar
 
Cloud computing and_saas
Cloud computing and_saasCloud computing and_saas
Cloud computing and_saas
kavinalli
 
Cloud agility-gap-whitepaper 9595
Cloud agility-gap-whitepaper 9595Cloud agility-gap-whitepaper 9595
Cloud agility-gap-whitepaper 9595
Accenture
 
SOA And Cloud Computing
SOA And Cloud ComputingSOA And Cloud Computing
SOA And Cloud Computing
David Chou
 
Cloud Computing and SOA from Enterprise Perspective
Cloud Computing and SOA from Enterprise PerspectiveCloud Computing and SOA from Enterprise Perspective
Cloud Computing and SOA from Enterprise Perspective
Yan Zhao
 
Citrix synergy 2012 debrief
Citrix synergy 2012 debriefCitrix synergy 2012 debrief
Citrix synergy 2012 debrief
Jason Poyner
 
OreDev 2008: Software + Services
OreDev 2008: Software + ServicesOreDev 2008: Software + Services
OreDev 2008: Software + Services
ukdpe
 
Microsoft System Center 2012 Overview
Microsoft System Center 2012 OverviewMicrosoft System Center 2012 Overview
Microsoft System Center 2012 Overview
Motty Ben Atia
 
Software defined infrastructure
Software defined infrastructureSoftware defined infrastructure
Software defined infrastructure
mdscomputers
 
IBM WebSphere Appliance Overview
IBM WebSphere Appliance OverviewIBM WebSphere Appliance Overview
IBM WebSphere Appliance Overview
Adam Loffredo
 
Enterprise Integration Patterns Revisited (again) for the Era of Big Data, In...
Enterprise Integration Patterns Revisited (again) for the Era of Big Data, In...Enterprise Integration Patterns Revisited (again) for the Era of Big Data, In...
Enterprise Integration Patterns Revisited (again) for the Era of Big Data, In...
Kai Wähner
 
MT100 How we secure Big Data and protect our digital assets
MT100 How we secure Big Data and protect our digital assetsMT100 How we secure Big Data and protect our digital assets
MT100 How we secure Big Data and protect our digital assets
Dell EMC World
 
Architecting SaaS: Doing It Right the First Time
Architecting SaaS: Doing It Right the First TimeArchitecting SaaS: Doing It Right the First Time
Architecting SaaS: Doing It Right the First Time
Serhiy (Serge) Haziyev
 
Cloud Computing In Banking And Finance Industry
Cloud Computing In Banking And Finance IndustryCloud Computing In Banking And Finance Industry
Cloud Computing In Banking And Finance Industry
Tyrone Systems
 
Cloud computing notes unit I as per RGPV syllabus
Cloud computing notes unit I as per RGPV syllabusCloud computing notes unit I as per RGPV syllabus
Cloud computing notes unit I as per RGPV syllabus
NANDINI SHARMA
 
Stanford GSB Portland Alumni - Leveraging Social Media for Customer Engagement
Stanford GSB Portland Alumni - Leveraging Social Media for Customer EngagementStanford GSB Portland Alumni - Leveraging Social Media for Customer Engagement
Stanford GSB Portland Alumni - Leveraging Social Media for Customer Engagement
Matterport
 
Social Media for Online Retailers
Social Media for Online RetailersSocial Media for Online Retailers
Social Media for Online Retailers
Matterport
 
DEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagement
DEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagementDEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagement
DEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagement
Matterport
 

Más contenido relacionado

La actualidad más candente

Cloud Computing Model with Service Oriented Architecture
Cloud Computing Model with Service Oriented ArchitectureCloud Computing Model with Service Oriented Architecture
Cloud Computing Model with Service Oriented Architecture
Yan Zhao
 
Cloud computing and_saas
Cloud computing and_saasCloud computing and_saas
Cloud computing and_saas
kavinalli
 
Cloud agility-gap-whitepaper 9595
Cloud agility-gap-whitepaper 9595Cloud agility-gap-whitepaper 9595
Cloud agility-gap-whitepaper 9595
Accenture
 
Cloud Computing and SOA from Enterprise Perspective
Cloud Computing and SOA from Enterprise PerspectiveCloud Computing and SOA from Enterprise Perspective
Cloud Computing and SOA from Enterprise Perspective
Yan Zhao
 

La actualidad más candente (19)

Npc presentation clexo
Npc presentation clexoNpc presentation clexo
Npc presentation clexo
 
Cloud Computing Model with Service Oriented Architecture
Cloud Computing Model with Service Oriented ArchitectureCloud Computing Model with Service Oriented Architecture
Cloud Computing Model with Service Oriented Architecture
 
IdM Reference Architecture
IdM Reference ArchitectureIdM Reference Architecture
IdM Reference Architecture
 
IDC: Selecting the Optimal Path to Private Cloud
IDC: Selecting the Optimal Path to Private CloudIDC: Selecting the Optimal Path to Private Cloud
IDC: Selecting the Optimal Path to Private Cloud
 
Cloud computing and_saas
Cloud computing and_saasCloud computing and_saas
Cloud computing and_saas
 
Cloud computing and_saas
Cloud computing and_saasCloud computing and_saas
Cloud computing and_saas
 
Cloud agility-gap-whitepaper 9595
Cloud agility-gap-whitepaper 9595Cloud agility-gap-whitepaper 9595
Cloud agility-gap-whitepaper 9595
 
SOA And Cloud Computing
SOA And Cloud ComputingSOA And Cloud Computing
SOA And Cloud Computing
 
Cloud Computing and SOA from Enterprise Perspective
Cloud Computing and SOA from Enterprise PerspectiveCloud Computing and SOA from Enterprise Perspective
Cloud Computing and SOA from Enterprise Perspective
 
Citrix synergy 2012 debrief
Citrix synergy 2012 debriefCitrix synergy 2012 debrief
Citrix synergy 2012 debrief
 
OreDev 2008: Software + Services
OreDev 2008: Software + ServicesOreDev 2008: Software + Services
OreDev 2008: Software + Services
 
Microsoft System Center 2012 Overview
Microsoft System Center 2012 OverviewMicrosoft System Center 2012 Overview
Microsoft System Center 2012 Overview
 
Software defined infrastructure
Software defined infrastructureSoftware defined infrastructure
Software defined infrastructure
 
IBM WebSphere Appliance Overview
IBM WebSphere Appliance OverviewIBM WebSphere Appliance Overview
IBM WebSphere Appliance Overview
 
Enterprise Integration Patterns Revisited (again) for the Era of Big Data, In...
Enterprise Integration Patterns Revisited (again) for the Era of Big Data, In...Enterprise Integration Patterns Revisited (again) for the Era of Big Data, In...
Enterprise Integration Patterns Revisited (again) for the Era of Big Data, In...
 
MT100 How we secure Big Data and protect our digital assets
MT100 How we secure Big Data and protect our digital assetsMT100 How we secure Big Data and protect our digital assets
MT100 How we secure Big Data and protect our digital assets
 
Architecting SaaS: Doing It Right the First Time
Architecting SaaS: Doing It Right the First TimeArchitecting SaaS: Doing It Right the First Time
Architecting SaaS: Doing It Right the First Time
 
Cloud Computing In Banking And Finance Industry
Cloud Computing In Banking And Finance IndustryCloud Computing In Banking And Finance Industry
Cloud Computing In Banking And Finance Industry
 
Cloud computing notes unit I as per RGPV syllabus
Cloud computing notes unit I as per RGPV syllabusCloud computing notes unit I as per RGPV syllabus
Cloud computing notes unit I as per RGPV syllabus
 

Destacado

DEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagement
DEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagementDEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagement
DEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagement
Matterport
 
Building a community of practice around higher ed for sustainabiltiy in asia ...
Building a community of practice around higher ed for sustainabiltiy in asia ...Building a community of practice around higher ed for sustainabiltiy in asia ...
Building a community of practice around higher ed for sustainabiltiy in asia ...
Michelle Merrill
 
1257103560 X Mp Lantand Iso15926 Oct2009
1257103560 X Mp Lantand Iso15926 Oct20091257103560 X Mp Lantand Iso15926 Oct2009
1257103560 X Mp Lantand Iso15926 Oct2009
Giorgio Amici
 
Lean roots to grow, wings to fly!
Lean roots to grow, wings to fly!Lean roots to grow, wings to fly!
Lean roots to grow, wings to fly!
Nitin Ramrakhyani
 

Destacado (20)

Stanford GSB Portland Alumni - Leveraging Social Media for Customer Engagement
Stanford GSB Portland Alumni - Leveraging Social Media for Customer EngagementStanford GSB Portland Alumni - Leveraging Social Media for Customer Engagement
Stanford GSB Portland Alumni - Leveraging Social Media for Customer Engagement
 
Social Media for Online Retailers
Social Media for Online RetailersSocial Media for Online Retailers
Social Media for Online Retailers
 
DEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagement
DEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagementDEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagement
DEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagement
 
Dealing with Darwin
Dealing with DarwinDealing with Darwin
Dealing with Darwin
 
DJP_Asset+information
DJP_Asset+informationDJP_Asset+information
DJP_Asset+information
 
Building a community of practice around higher ed for sustainabiltiy in asia ...
Building a community of practice around higher ed for sustainabiltiy in asia ...Building a community of practice around higher ed for sustainabiltiy in asia ...
Building a community of practice around higher ed for sustainabiltiy in asia ...
 
1257103560 X Mp Lantand Iso15926 Oct2009
1257103560 X Mp Lantand Iso15926 Oct20091257103560 X Mp Lantand Iso15926 Oct2009
1257103560 X Mp Lantand Iso15926 Oct2009
 
Bechtel Customer Presentation
Bechtel Customer PresentationBechtel Customer Presentation
Bechtel Customer Presentation
 
Product Innovation is a Habit
Product Innovation is a HabitProduct Innovation is a Habit
Product Innovation is a Habit
 
Demystifying 11 japanese jargons from tps lean
Demystifying 11 japanese jargons from tps leanDemystifying 11 japanese jargons from tps lean
Demystifying 11 japanese jargons from tps lean
 
Beyond Apartheid and Democracy
Beyond Apartheid and DemocracyBeyond Apartheid and Democracy
Beyond Apartheid and Democracy
 
Lean roots to grow, wings to fly!
Lean roots to grow, wings to fly!Lean roots to grow, wings to fly!
Lean roots to grow, wings to fly!
 
Yet another building metaphor
Yet another building metaphorYet another building metaphor
Yet another building metaphor
 
Take Product Ownership To Next Level !!
Take Product Ownership To Next Level !!Take Product Ownership To Next Level !!
Take Product Ownership To Next Level !!
 
How to get open data into the hands of activists
How to get open data into the hands of activistsHow to get open data into the hands of activists
How to get open data into the hands of activists
 
Scale hurts
Scale hurtsScale hurts
Scale hurts
 
Agile 2012 inside out leading change from the middle
Agile 2012 inside out leading change from the middleAgile 2012 inside out leading change from the middle
Agile 2012 inside out leading change from the middle
 
Systems Thinking
Systems ThinkingSystems Thinking
Systems Thinking
 
Innovation is a habit
Innovation is a habitInnovation is a habit
Innovation is a habit
 
Speed2 innovation agile noida
Speed2 innovation agile noidaSpeed2 innovation agile noida
Speed2 innovation agile noida
 

Similar a Bechtel On OpenID and OAuth from Cloud Identity Summit

Azure Overview Csco
Azure Overview CscoAzure Overview Csco
Azure Overview Csco
rajramab
 
How Financial Institutions Are Leveraging Data Virtualization to Overcome the...
How Financial Institutions Are Leveraging Data Virtualization to Overcome the...How Financial Institutions Are Leveraging Data Virtualization to Overcome the...
How Financial Institutions Are Leveraging Data Virtualization to Overcome the...
Denodo
 
Basics of cloud computing & salesforce.com
Basics of cloud computing & salesforce.comBasics of cloud computing & salesforce.com
Basics of cloud computing & salesforce.com
Deepu S Nath
 
Is10 innovative technology 8
Is10 innovative technology 8Is10 innovative technology 8
Is10 innovative technology 8
hicksonj
 
Zarafa SummerCamp 2012 - Keynote Peter Ganten
Zarafa SummerCamp 2012 - Keynote Peter GantenZarafa SummerCamp 2012 - Keynote Peter Ganten
Zarafa SummerCamp 2012 - Keynote Peter Ganten
Zarafa
 
Digital Reinvention by NRB
Digital Reinvention by NRBDigital Reinvention by NRB
Digital Reinvention by NRB
William Poos
 
Avner Algom IGT Opening HP Seminar
Avner Algom IGT Opening HP SeminarAvner Algom IGT Opening HP Seminar
Avner Algom IGT Opening HP Seminar
Avner Algom
 
Data Virtualization: Introduction and Business Value (UK)
Data Virtualization: Introduction and Business Value (UK)Data Virtualization: Introduction and Business Value (UK)
Data Virtualization: Introduction and Business Value (UK)
Denodo
 
IBM INTEGRATION BUS (IIB V10)—DATA ROUTING AND TRANSFORMATION
IBM INTEGRATION BUS (IIB V10)—DATA ROUTING AND TRANSFORMATIONIBM INTEGRATION BUS (IIB V10)—DATA ROUTING AND TRANSFORMATION
IBM INTEGRATION BUS (IIB V10)—DATA ROUTING AND TRANSFORMATION
Kellton Tech Solutions Ltd
 

Similar a Bechtel On OpenID and OAuth from Cloud Identity Summit (20)

4.4.2013 Software, System, & IT Architecture - Good Design is Good Business:...
4.4.2013 Software, System, & IT Architecture - Good Design is Good Business:...4.4.2013 Software, System, & IT Architecture - Good Design is Good Business:...
4.4.2013 Software, System, & IT Architecture - Good Design is Good Business:...
 
Azure Overview Csco
Azure Overview CscoAzure Overview Csco
Azure Overview Csco
 
Star storage m cloud week
Star storage m cloud weekStar storage m cloud week
Star storage m cloud week
 
How Financial Institutions Are Leveraging Data Virtualization to Overcome the...
How Financial Institutions Are Leveraging Data Virtualization to Overcome the...How Financial Institutions Are Leveraging Data Virtualization to Overcome the...
How Financial Institutions Are Leveraging Data Virtualization to Overcome the...
 
Basics of cloud computing & salesforce.com
Basics of cloud computing & salesforce.comBasics of cloud computing & salesforce.com
Basics of cloud computing & salesforce.com
 
Introduction To Cloud Computing By Beant Singh Duggal
Introduction To Cloud Computing By Beant Singh DuggalIntroduction To Cloud Computing By Beant Singh Duggal
Introduction To Cloud Computing By Beant Singh Duggal
 
Soa12c launch 1 overview cr
Soa12c launch 1 overview crSoa12c launch 1 overview cr
Soa12c launch 1 overview cr
 
Cloud computing boi fair 9jan2012
Cloud computing boi fair 9jan2012Cloud computing boi fair 9jan2012
Cloud computing boi fair 9jan2012
 
Is10 innovative technology 8
Is10 innovative technology 8Is10 innovative technology 8
Is10 innovative technology 8
 
Zarafa SummerCamp 2012 - Keynote Peter Ganten
Zarafa SummerCamp 2012 - Keynote Peter GantenZarafa SummerCamp 2012 - Keynote Peter Ganten
Zarafa SummerCamp 2012 - Keynote Peter Ganten
 
Business and Online Services - Ben Kepes
Business and Online Services - Ben KepesBusiness and Online Services - Ben Kepes
Business and Online Services - Ben Kepes
 
Digital Reinvention by NRB
Digital Reinvention by NRBDigital Reinvention by NRB
Digital Reinvention by NRB
 
Avner Algom IGT Opening HP Seminar
Avner Algom IGT Opening HP SeminarAvner Algom IGT Opening HP Seminar
Avner Algom IGT Opening HP Seminar
 
Data Virtualization: Introduction and Business Value (UK)
Data Virtualization: Introduction and Business Value (UK)Data Virtualization: Introduction and Business Value (UK)
Data Virtualization: Introduction and Business Value (UK)
 
Cloud Computing
Cloud ComputingCloud Computing
Cloud Computing
 
Cloud Computing By Pankaj Sharma
Cloud Computing By Pankaj SharmaCloud Computing By Pankaj Sharma
Cloud Computing By Pankaj Sharma
 
Φάννυ Κοφινά, 7th Digital Banking Forum
Φάννυ Κοφινά, 7th Digital Banking ForumΦάννυ Κοφινά, 7th Digital Banking Forum
Φάννυ Κοφινά, 7th Digital Banking Forum
 
IBM INTEGRATION BUS (IIB V10)—DATA ROUTING AND TRANSFORMATION
IBM INTEGRATION BUS (IIB V10)—DATA ROUTING AND TRANSFORMATIONIBM INTEGRATION BUS (IIB V10)—DATA ROUTING AND TRANSFORMATION
IBM INTEGRATION BUS (IIB V10)—DATA ROUTING AND TRANSFORMATION
 
ON event - May 2010
ON event - May 2010ON event - May 2010
ON event - May 2010
 
Analyst field reports on top 15 MDM solutions - Aaron Zornes (NYC 2021)
Analyst field reports on top 15 MDM solutions - Aaron Zornes (NYC 2021)Analyst field reports on top 15 MDM solutions - Aaron Zornes (NYC 2021)
Analyst field reports on top 15 MDM solutions - Aaron Zornes (NYC 2021)
 

Último

The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai KuwaitThe Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
daisycvs
 
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan CytotecJual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec
ZurliaSoop
 
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
daisycvs
 
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabiunwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
Abortion pills in Kuwait Cytotec pills in Kuwait
 
Pre Engineered Building Manufacturers Hyderabad.pptx
Pre Engineered Building Manufacturers Hyderabad.pptxPre Engineered Building Manufacturers Hyderabad.pptx
Pre Engineered Building Manufacturers Hyderabad.pptx
Roofing Contractor
 

Último (20)

The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai KuwaitThe Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
 
Falcon Invoice Discounting: The best investment platform in india for investors
Falcon Invoice Discounting: The best investment platform in india for investorsFalcon Invoice Discounting: The best investment platform in india for investors
Falcon Invoice Discounting: The best investment platform in india for investors
 
TVB_The Vietnam Believer Newsletter_May 6th, 2024_ENVol. 006.pdf
TVB_The Vietnam Believer Newsletter_May 6th, 2024_ENVol. 006.pdfTVB_The Vietnam Believer Newsletter_May 6th, 2024_ENVol. 006.pdf
TVB_The Vietnam Believer Newsletter_May 6th, 2024_ENVol. 006.pdf
 
Putting the SPARK into Virtual Training.pptx
Putting the SPARK into Virtual Training.pptxPutting the SPARK into Virtual Training.pptx
Putting the SPARK into Virtual Training.pptx
 
Lucknow Housewife Escorts by Sexy Bhabhi Service 8250092165
Lucknow Housewife Escorts by Sexy Bhabhi Service 8250092165Lucknow Housewife Escorts by Sexy Bhabhi Service 8250092165
Lucknow Housewife Escorts by Sexy Bhabhi Service 8250092165
 
Getting Real with AI - Columbus DAW - May 2024 - Nick Woo from AlignAI
Getting Real with AI - Columbus DAW - May 2024 - Nick Woo from AlignAIGetting Real with AI - Columbus DAW - May 2024 - Nick Woo from AlignAI
Getting Real with AI - Columbus DAW - May 2024 - Nick Woo from AlignAI
 
Dr. Admir Softic_ presentation_Green Club_ENG.pdf
Dr. Admir Softic_ presentation_Green Club_ENG.pdfDr. Admir Softic_ presentation_Green Club_ENG.pdf
Dr. Admir Softic_ presentation_Green Club_ENG.pdf
 
Escorts in Nungambakkam Phone 8250092165 Enjoy 24/7 Escort Service Enjoy Your...
Escorts in Nungambakkam Phone 8250092165 Enjoy 24/7 Escort Service Enjoy Your...Escorts in Nungambakkam Phone 8250092165 Enjoy 24/7 Escort Service Enjoy Your...
Escorts in Nungambakkam Phone 8250092165 Enjoy 24/7 Escort Service Enjoy Your...
 
Phases of Negotiation .pptx
Phases of Negotiation .pptx Phases of Negotiation .pptx
Phases of Negotiation .pptx
 
Buy gmail accounts.pdf buy Old Gmail Accounts
Buy gmail accounts.pdf buy Old Gmail AccountsBuy gmail accounts.pdf buy Old Gmail Accounts
Buy gmail accounts.pdf buy Old Gmail Accounts
 
New 2024 Cannabis Edibles Investor Pitch Deck Template
New 2024 Cannabis Edibles Investor Pitch Deck TemplateNew 2024 Cannabis Edibles Investor Pitch Deck Template
New 2024 Cannabis Edibles Investor Pitch Deck Template
 
Organizational Transformation Lead with Culture
Organizational Transformation Lead with CultureOrganizational Transformation Lead with Culture
Organizational Transformation Lead with Culture
 
Falcon Invoice Discounting: Unlock Your Business Potential
Falcon Invoice Discounting: Unlock Your Business PotentialFalcon Invoice Discounting: Unlock Your Business Potential
Falcon Invoice Discounting: Unlock Your Business Potential
 
HomeRoots Pitch Deck | Investor Insights | April 2024
HomeRoots Pitch Deck | Investor Insights | April 2024HomeRoots Pitch Deck | Investor Insights | April 2024
HomeRoots Pitch Deck | Investor Insights | April 2024
 
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan CytotecJual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec
 
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
 
joint cost.pptx COST ACCOUNTING Sixteenth Edition ...
joint cost.pptx COST ACCOUNTING Sixteenth Edition ...joint cost.pptx COST ACCOUNTING Sixteenth Edition ...
joint cost.pptx COST ACCOUNTING Sixteenth Edition ...
 
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabiunwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
 
Over the Top (OTT) Market Size & Growth Outlook 2024-2030
Over the Top (OTT) Market Size & Growth Outlook 2024-2030Over the Top (OTT) Market Size & Growth Outlook 2024-2030
Over the Top (OTT) Market Size & Growth Outlook 2024-2030
 
Pre Engineered Building Manufacturers Hyderabad.pptx
Pre Engineered Building Manufacturers Hyderabad.pptxPre Engineered Building Manufacturers Hyderabad.pptx
Pre Engineered Building Manufacturers Hyderabad.pptx
 

Bechtel On OpenID and OAuth from Cloud Identity Summit

  • 1. Identity in the Bechtel Cloud Why and how one of the most successful Engineering & Construction companies rebuilt their digital world….. Christian Reilly – Manager of Global Systems Engineering Brian D Ward – Manager of Integration Services
  • 2.
  • 3. Information Evolution & Business Change Introducing the Project Services Network
  • 4.
  • 5. Our business model is evolving to be more complex and distributed. GRAY Our two main challenges are related to:   Geography Our projects are executed in ZONE many and distributed locations   People Our resource model includes permanent and temporary employees, as well as vendors, customers, partners, and competitors
  • 7. Square pegs and round holes…. How much pain would you like?
  • 8.   Active Directory – separate internal and external forests   Integrated Authentication, Kerberos Constrained Delegation, Reverse Proxy   Complex trust models & ICC’s   Application mix from Bechtel, Client, Partner, Competitor   Wide variety of application architectures
  • 9. Core Apps: TimeCard, SAP, Intranet File Shares Mail Printers Desktop SaaS Bridge SaaS Internet Access AD Other apps (long tail)
  • 10.   High degree of operational complexity   Poor visibility into what people are accessing what resource   Inflexible model slows down deployment of services and applications to projects   Difficult to accommodate new user communities (which change daily)   Not readily adaptable to SaaS offerings
  • 11. Why is it so easy in The Cloud? And yet so hard in the Enterprise?
  • 12.   Realizations –  “Castle and Moat” approach to security is dead –  Our Windows-centric approach has significant technical and operational constraints –  Authentication/Authorization are the key problems to solve   Resolutions –  We need a completely new approach –  Make all applications/services SaaS –  Make Bechtel a SaaS Provider (wow) –  Replace, not augment, the current model
  • 13.   Identity “2.0” –  A new identity model – identities for life –  BYOI with OpenID (Janrain), Federation –  Anyone can have an account –  Self Registration based on relationships   Authorization –  Integrated into SAP –  Attribute store – single source of truth, replacement for groups –  Coarse grained authz performed by Ping  –  Fine grained done in apps for now, centrally later
  • 14.   Integration –  SAML / OpenToken integration for all deployed applications –  Citrix integration with credential translation for legacy application support –  Two-legged OAuth STS for web services   Services –  New application stacks (SaaS-style) –  File / Print / Internet Access authentication replacement –  New desktop model – BYOD
  • 15. Core Apps: TimeCard, SAP, Intranet File Shares Mail Printers Browser SaaS Identity Internet Access Array Other apps (long tail)
  • 16.   Simplicity –  Built for the “Internet” not for the “Enterprise” –  No “internal” vs. “external” architectural constraints –  Moving away from managing every user account   Agility –  Modular framework of security, UI and services –  Applications decoupled from infrastructure –  No vendor lock in via open standards/open source –  Able to accommodate SaaS and new identity pools natively (with added hope for Geneva)
  • 17.   Affordability –  Lower overall operational cost –  “B3” approach allows greater flexibility in cost management –  New vendors embrace new commercial models   Security –  Standards based security –  Single point of entry & logging –  Secured by policy not by topology (secure the data and not the device) –  Easily allow any user access to any data in a controlled life cycle
  • 18. Why can’t we just buy this…hint, hint ? Unraveling years of LAN / WAN based legacy is, well, damn hard.
  • 19.   Facts –  SaaS integration quickly becoming a commodity –  Federation and/or OpenID fills in the moat –  SaaS moves you out of the castle in the “Metro”   Key Questions –  What does the enterprise have left? –  How long is the tail for traditional enterprises?   Challenges –  Authorization is THE game to win –  Push provisioning is, at best, an interim solution –  A central model with standards-based interfaces is desperately needed
  • 20. Questions & Answers Or if you’re too shy, grab one of us later….