The document discusses using OpenID Connect (OIDC) to enable authentication for mobile and cloud applications. It outlines some challenges of moving to mobile and cloud platforms, such as how to reuse existing systems and maximize past investments. The document then presents OIDC as a solution, describing how it allows for flexible authentication of users across devices and applications through an open standard for identity federation. It provides examples of how OIDC improves upon traditional authentication methods for both service accounts and user-based access.
12. The world of reverse proxies … protected, but ...
https://www.flickr.com/photos/13748147@N02/2070083736/ via Compfight (License: https://creativecommons.org/licenses/by-nc-nd/2.0/)
13. The real world is complex and interconnected.
http://steffondavis.com/visualizing-taste-in-art-with-big-data-curation-analysis-curalytics-and-curiator/
Develop an API First - Before you build your website, web, mobile or single page application you develop an API first, then you get to work on defining the channels you will be making the API resources available on.
APIs are core to every cloud, social and mobile computing strategy.
Everything and everyone will be API enabled.
APIs are an economic imperative.
Organizations must provide their core competence through APIs.
Organizations must consume core competences of others through APIs.
Comment on Internet of Things
Over 50% of Internet connections are things. In 2011, there were over 15 billion things on the Web, with 50 billion+ intermittent connections. By 2020, there will be over 30 billion connected things, with over 200 billion with intermittent connections. Gartner Group – 2014 Trends
How cool would it be to display your daily spiritual thought on your Microwave each morning?
“Why We need to be preparing for the Future in Cloud and Mobile.
How do we design and develop solutions that meet the growth and diversity of a globally expanding Church?
How does the Church move their large enterprise solutions and systems to embrace mobile and cloud computing?
How do we maximize our past investments in technology solutions and embrace new and evolving industry technology advancements?
How do we significantly reduce costs and encourage greater reuse of core systems and services across the Church?
To meet the current and future needs of a globally diverse church we must embrace Mobile and Cloud Computing as the means to reach our world-wide audience. Mobile computing is the future – and in many ways is the only means we have to reach the world-wide population. Cloud computing distributes computing and storage services around the world in a way that wasn’t possible just a few years ago. To effectively leverage both mobile and cloud computing, Web Services (APIs) are required. APIs allow us to integrate with legacy systems, databases, and back-end enterprise systems. The Cloud Mobile Integration (CMI) Platform delivers the technologies, systems, principles, processes, patterns, and services that enable ICS and the Church to fully embrace the “Services and Component Architecture” to support Mobile and Cloud computing.
Identity answers the questions: who is the user? What is that user allowed to do?
Who the user is = authentication
What the user is allowed to do = authorization
Because of the large investment in enterprise (on-premise) systems, the need to maximize these investments requires we build web services to front-end these systems. As we build web services to expose key information and functionality, we are able to build new web services that use these existing systems while at the same time, can access public cloud systems to deliver the next generation cloud and mobile solutions.
Because of our legacy infrastructure, the CMI platform is designed to run on-premise (within our own data centers) or off-premise (in public cloud data centers). This approach provides a consistent environment of security, governance, API management, and use. The CMI platform is designed to support the Hybrid Cloud model so that solutions that run on the CMI platform can leverage both on-premise computing and off-premise computing transparently.
Maintain WAM approach, but standardizing it.
OpenID allows us to authenticate/authorize applications in a standard way (as opposed to WAM—proprietary way)
Oauth 2.0 provides the base protocol. OpenID Connect is the identity layer. And OpenAM provides our OIDC implementation.
Maintain WAM approach, but standardizing it.
OpenID allows us to authenticate/authorize applications in a standard way (as opposed to WAM—proprietary way)
OpenID Connect is a federation standard
Federated makes calls: agree upon a common language to share information
WAM: force our variables on you. Your application has to use WAM’s infrastructure
No longer protected by wall – have to protect yourself
Interoperable
Standard was to requesting to claims. Claim: Attribute or a piece of information about an entity’s identity
Scope: Short hands for predefined sets of claims
User Endpoint to Get Attributes about the user and to translate various tokens
Flexible
How do we deal with Web vs Mobile vs Web services vs …?
Identity as Services (IDaaS)
Profiles / flows
Secure
Crypto awesome
Levels of Security
Simple / mobile friendly
Don’t need harder protocols to implement
Use JSON / REST
To meet the current and future needs of a globally diverse church we must embrace Mobile and Cloud Computing as the means to reach our world-wide audience. Mobile computing is the future – and in many ways is the only means we have to reach the world-wide population. Cloud computing distributes computing and storage services around the world in a way that wasn’t possible just a few years ago. To effectively leverage both mobile and cloud computing, Web Services (APIs) are required. APIs allow us to integrate with legacy systems, databases, and back-end enterprise systems. The Cloud Mobile Integration (CMI) Platform delivers the technologies, systems, principles, processes, patterns, and services that enable ICS and the Church to fully embrace the “Services and Component Architecture” to support Mobile and Cloud computing.
Develop an API First - Before you build your website, web, mobile or single page application you develop an API first, then you get to work on defining the channels you will be making the API resources available on.
APIs are core to every cloud, social and mobile computing strategy.
Everything and everyone will be API enabled.
APIs are an economic imperative.
Organizations must provide their core competence through APIs.
Organizations must consume core competences of others through APIs.
Comment on Internet of Things
Over 50% of Internet connections are things. In 2011, there were over 15 billion things on the Web, with 50 billion+ intermittent connections. By 2020, there will be over 30 billion connected things, with over 200 billion with intermittent connections. Gartner Group – 2014 Trends
How cool would it be to display your daily spiritual thought on your Microwave each morning?