1 / 11

APS (Keystone) Security “dial tone”

APS (Keystone) Security “dial tone”. Doron Grinstein Chief Architect. October 2012 | Version 0.2 | Confidential . Authentication Single Sign On (SSO) Federation Session Management Delegated Administration Fine-Grained Authorization Audit Trail (e.g. who granted access to the user?)

dena
Download Presentation

APS (Keystone) Security “dial tone”

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. APS (Keystone)Security “dial tone” Doron Grinstein Chief Architect October 2012 | Version 0.2 | Confidential

  2. Authentication Single Sign On (SSO) Federation Session Management Delegated Administration Fine-Grained Authorization Audit Trail (e.g. who granted access to the user?) Reporting (e.g. what can Mike Smith do?) Segregation of Duties Enforcement (SOD) Security?

  3. Elements in enterprise settings • COTS (commercial off the shelf) Applications • ERP, CRM, Collaboration (SharePoint, etc.) • Web Applications • Mobile Applications • Mainframe Application • Web Services • Rich Client • Custom Applications • Web, Rich Client, Mobile, Web Services • Java, .NET,RUBY, PHP, Delphi, COM, C, C++, F#, Power Builder, Cold Fusion, etc.

  4. Application Security Today

  5. Security should be as simple as this:

  6. But in reality you’re faced with this CAS Kerberos Card Spaces SAML 2.0 RADIUS SAML 1.1 WS-Trust XACML 2.0 OAuth DSML SPML SAMLP Siteminder OpenID XACML 3.0 WIF OpenAuth Shibboleth LiveID ADFS WS-Federation WRAP

  7. What is needed is a Universal Adapter of IdM!

  8. How does it work?

  9. Thank you

  10. APS becomes the Dell Identity Glue™

  11. APS and Q1IM providecoreservices • Workflow • Assessment • SoD • Attestation • Recertification • Orchestration • Compliance • Governance • Entitlement Mgmt • Role Mgmt • Policy Mgmt • Self Service • IT Shop • Delegation • Identity Admin • Log Service • Log Analysis • Heuristics • Fraud Detection • Reporting • Real Time Alerts • Monitoring Quest One Core Services • Data Access • Context • PIP • Unified Namespace • Provisioning / Sync • Data Connectors • Virtual Directory • Authorization • Policy Decision • Policy Enforcement • File • SharePoint • Web • Data • Code • Authentication • User Authentication • Two Factor Authn • IDP/STS • SSO APS Q1IM

More Related