TechNight #12: Cloud Identity Summit 2014 @ Monteray 概要と主要トピック
?
2 likes?669 views
OpenID TechNight Vol.12 Presentation
TechNight #12: Cloud Identity Summit 2014 @ Monteray 概要と主要トピック
- 1. Cloud Identity Summit 2014 @ Monteray 概要と主要トピック Solutions Architect -‐?? Japan/APAC 福家 ?大輔 Copyright ? 2014 Ping Identity Corp. All rights reserved. 1
- 2. 開催概要 2014/7/18 ~~ 22 @ Monteray, CA twitter hashtag: #cismcc 狠狠撸share: http://www.slideshare.net/CloudIDSummit/ Facebook: CloudIdentitySummit Copyright ? 2014 Ping Identity Corp. All rights reserved. 2
- 3. メインテーマ? Copyright ? 2014 Ping Identity Corp. All rights reserved. 3
- 4. デジタルアイデンティティの課題(1) パスワード?Federation Copyright ? 2014 Ping Identity Corp. All rights reserved. 4 User Identity Provider Application OpenID Connect SAML etc 認証 デバイスの変化
- 5. ユーザが所有するデバイスの変化と認証 うまく活?用 できないか? Copyright ? 2014 Ping Identity Corp. All rights reserved. 5 認証 User パスワードの以外 の認証 ? デバイスの所持 ? ?生体情報 ? 継続的な認証 デバイスの変化 ? 演算能?力力 ? センサ類 ? ユーザの近く に
- 6. パスワード以外の認証 Continuous Authentication CIS14: Identifying Things (and Things Identifying Us) Paul Madsen, Ping Identity Copyright ? 2014 Ping Identity Corp. All rights reserved. 6 標準化 ? FIDO alliance CIS14: Continuous Authentication: Don?’t Even Think about It Mance Harmon, Ping Identity
- 7. IoTとアイデンティティ CIS14: Identifying Things (and Things Identifying Us) Paul Madsen, Ping Identiy Copyright ? 2014 Ping Identity Corp. All rights reserved. 7 Internet of Things Machine to Machine 所有者リソースへのアクセス AuthN/AuthZ?
- 8. デジタルアイデンティティの課題(2) Application Copyright ? 2014 Ping Identity Corp. All rights reserved. 8 User Identity Provider 認証 Federation スケール 1対1信頼関係の限界
- 9. スケール CIS14: Identity at Scale: Next Gen Federation Architectures Hans Zandbelt, Ping Identiy Copyright ? 2014 Ping Identity Corp. All rights reserved. 9 ? Trust framework ? proxy ? metadata service ? Discovery Dynamic registration
- 10. デジタルアイデンティティの課題(3) Application Copyright ? 2014 Ping Identity Corp. All rights reserved. 10 User Identity Provider 認証 Federation アプリケーションの変化 ネイティブアプリ/ API
- 11. アプリケーションの変化 CIS14: Mobile SSO using NAPPS: OpenID Connect Profile for Native Apps-‐??jain Ashish Jain, VMWare Copyright ? 2014 Ping Identity Corp. All rights reserved. 11 Native API AuthN/AuthZ ? OpenID Connect / OAuth2 SSO ? NAPPS
- 12. 認可は? 特にエンタープライズ?用途での、認可の集中管理理 ? Attribute-‐??Based Access Control (ABAC)の実現 ? XACMLしか無いがイマイチ普及していない Copyright ? 2014 Ping Identity Corp. All rights reserved. 12 ? 複雑? ? ALFA ? XML/SOAP ? JSON Profile/REST Profile CIS14: The Very Latest in Authorization Standards CIS14: Baking Fine-‐??Grained Authorization Into Your Apps and APIs using ALFA, REST, and JSON いよいよXACML元年年か?
- 13. Thanks! Copyright ? 2014 Ping Identity Corp. All rights reserved. 13