Identity Management. Rolf Blom Ericsson Research
|
|
- Gervais Hutchinson
- 5 years ago
- Views:
Transcription
1 Identity Management Rolf Blom Ericsson Research
2 Identity Management Agenda What is a Digital Identity Why Identity Management Identity Management Roles and technology User attitudes User Requirements Standardization Ericsson AB (21)
3 Digital Identity What is it? Identity A set of claims someone makes about a principal(/person) (All) attributes related to a principal Digital Identity Linking real world attributes with cyber world identities Public identities Private identities Ericsson AB (21)
4 Digital Identity Types of attributes Identifiers allow us to refer to the identity Authenticators are issued by a relevant authority and allow us to determine the legitimacy of someone s claim to the identity Authorization used to establish the permission for the identity to do something. Preferences used to personalize service delivery Location, etc Example attributes Name Credit card numbers Social security number Bank ID Employee Card Smart Card / *SIM Passwords Bank services Employee authorization Drivers license Web access rights Notification preferences Entertainment preferences Location Business calendar Ericsson AB (21) 1
5 Identity Management Why User Convenience & Control Single Sign On -- Password fatigue Single Sign On Personalized services (Attributes) Limited data entry capabilities (small screens, small keypads) Privacy e-business Simple interfaces for service access and use. Controlled access to user data. Standardized business interfaces Government Trends e-government Privacy regulations Identity Theft Ericsson AB (21)
6 Identity Management Roles, SSO & Attribute sharing Circle of trust 1. Identity Provider Principal (Client) 2. n. SP SP Service SPSP Provider Attribute provider Ericsson AB (21)
7 Identity Providers and Technology mqgibefiuucrbacgdnz4hzzxwfidzwyvbchxgjv+dgxc/kei9fdp3f9ujxorz22k JFtF6n1r1+VNGYhnUlBUAgbnl1cQNSBKqVfRDSYY8kBcKHIGE+rS7WGPoKIhjGdE 7vZgZq0Bw4xWu4IEyElkEnpq3od2q/ImdEOyUNf3xSMoXsrJFI2rfdi6rwCg/TMO YwEd4hFqC8EwApb/WPKATNcD/2pwlcrTV98O2GWCYQIkRFFdFjFNHa8ZcNkJFzCW 84YAN44F+b90nsejLXr5YcB+HtbqT93nxjHlhNRvxNd8Rbu2Yx8iFtI1tmcpoujN MK9whkAyXX6adRTfKHfz612Qq9B9KEfZoZSyszT1MZX5ev9Ch5is4hqC1wbv/JG7 DFBkA/sEeqMqM0TUuS/7eszt7bS4kg7ZQWcxTBALyBcFNh1zWOE7VOXT9pCyHxzi X6VtSsUAE1Db4vYTE4zO6R/UWIU4YOTFWL8hn0IGrJHUQEBKS59yR1LghC5YWSj8 mxd9yglknm88dzpra2otyupzqhnke/4bh4dioqzmfmtx2y+mibqkum9szibcbg9t IDxyb2xmLmouYmxvbUBlcmljc3Nvbi5jb20+iFsEExECABsFAkFiuUcGCwkIBwMC AxUCAwMWAgECHgECF4AACgkQH2qQlrPcC6hCIgCgtY4JxxClKnc+yufY63hupSK7 O40An11N2UR2oJUbVJTzQ6TXsoiDC+nUuQHNBEFiuVMQBwDzol4NeFmzc4BsHhZu KcnsCTwEXJWwI/hMCaRvLAVttzhg2T9TrxBmk9h5XV8Rrjg3B1lzJVuBWF8QO9J3 gqvnv4qlmwew4sls1j1z/eleaczsy1falv69newmaffua7mjki8w+b1dw4ngnyji PAKf2orAPhlDWd2TPxiqiP9EMtpqD7iuEoOkKvJRkC7sW2gy0H1IQHDuXIf16e0N OejPVNLAdt621IB6G5zg1OsoLZroCRrREu1vNwO4aHYeZG86ov/41gbX7Ef6ZVNY KcFgKiYu4D6GcdB578ttnj10gwADBQcAhcg3Klw0Up7pkzj2HmfCvSpLDBJP715v nq+tk2e9bjuufhx0qnch2kd0f8usc347l9slyvjcav1xqflaojct4mdypfxhcigi IYgP8jQe703EnifER5A4DjJBuG1bxcROer6VItGjP1GloxxMsH+P9QZGP+Ln3JAe GrJFPVTRUegHAKS/RKu2LMIcaKxIq7hmqXlfWzYZL9wajqspnU0qtguARZJVNQbH bohphnd4kl4y2onnxriezbtxogtxgqp/ybsdfjlqnv8czmkyu+heoxhbywsli6dz 9xX04RzjvjKIRgQYEQIABgUCQWK5UwAKCRAfapCWs9wLqM0RAKDVgN8nRgf61f4H 3qxE/7enTyv9XQCfc1fBwbvOZlStvwuYDoGLRcPe/sc= Government PKI Banks PKI OTP Mobile Op. *SIM Enterprise Employees OTP Enterprise Customers PW Ericsson AB (21)
8 User attitudes An Ericsson Consumer & Enterprise Lab Investigation An investigation on user attitudes towards Digital Identity Management and different Identity Providers Ericsson AB (21)
9 One Identity Provider Mobile phone operator; Identity token in mobile phone Incorporating one s ID into the mobile. The SIM would be the ID s support, the element where all data are stored. It will be placed inside the handset, so that the phone itself serves as the container. Ericsson AB (21)
10 One Identity Provider Other identity provider; Other identity token As a necklace......or as a card. The user ID would be in a token, but it will be stored outside the phone on a necklace, or a card in one s wallet. The identity token becomes independent and loses its link with the mobile phone. Ericsson AB (21)
11 Multiple Identity Providers Independent Identity Providers; Different identities for different roles such as personal, commercial, entertainment would be stored separately in one or more identity tokens For instance, like different keys on a key chain. Ericsson AB (21)
12 User Requirements Conclusions Many identities Identity should match context Many Identity Providers Identity Provider should match context Usability Consistent appearance across contexts User control Release of attributes with minimal disclosure for defined use. Choice of Identity Provider for given service Privacy Unlinkability Anonymity Ericsson AB (21)
13 User interface Microsoft proposal Ericsson AB (21)
14 Standardization Liberty Alliance SSO, Attribute sharing User control, Privacy OASIS Web Services Security SAML (Liberty SSO) A toolbox OMA (Open Mobile Alliance) Liberty Web Services 3GPP GBA (Generic Bootstrapping Architecture) *SIM based IETF Protected OTP (EAP method) Microsoft Web Services Security Identity Meta System Ericsson AB (21)
15 The end Questions? Ericsson AB (21)
16 Ericsson AB (21)
17 The Laws of Identity User control and consent Minimal disclosure for a defined use Justifiable parties Directional Identity Pluralism of operators and technologies Human integration Consistent appearance across contexts Join the discussion at Ericsson AB (21)
Dissecting NIST Digital Identity Guidelines
Dissecting NIST 800-63 Digital Identity Guidelines KEY CONSIDERATIONS FOR SELECTING THE RIGHT MULTIFACTOR AUTHENTICATION Embracing Compliance More and more business is being conducted digitally whether
More informationIdentity Management: Setting Context
Identity Management: Setting Context Joseph Pato Trusted Systems Lab Hewlett-Packard Laboratories One Cambridge Center Cambridge, MA 02412, USA joe.pato@hp.com Identity Management is the set of processes,
More informationOATH : An Initiative for Open AuTHentication
OATH : An Initiative for Open AuTHentication Who Are You Really Doing Business With? 2 Oath Proprietary Confidential The New York Magazine, July 5, 1993, Peter Steiner, The Economic Promise of e-business
More informationISA 767, Secure Electronic Commerce Xinwen Zhang, George Mason University
Identity Management and Federated ID (Liberty Alliance) ISA 767, Secure Electronic Commerce Xinwen Zhang, xzhang6@gmu.edu George Mason University Identity Identity is the fundamental concept of uniquely
More informationSafelayer's Adaptive Authentication: Increased security through context information
1 Safelayer's Adaptive Authentication: Increased security through context information The password continues to be the most widely used credential, although awareness is growing that it provides insufficient
More informationPublic Key Infrastructure PKI. National Digital Certification Center Information Technology Authority Sultanate of Oman
Public Key Infrastructure PKI National Digital Certification Center Information Technology Authority Sultanate of Oman Agenda Objectives PKI Features etrust Components Government eservices Oman National
More informationIdentity Management as a Service
Identity Management as a Service The Challenge Today s technological landscape is one of permanent change. While connections to digital services and mobile devices grow, securing the data generated by
More informationExploring the potential of Mobile Connect: From authentication to identity and attribute sharing. Janne Jutila, Head of Business Development, GSMA
Exploring the potential of Mobile Connect: From authentication to identity and attribute sharing Janne Jutila, Head of Business Development, GSMA Fragility of passwords No matter what you tell them, users
More informationOlli Jussila Adaptive R&D TeliaSonera
Olli Jussila Adaptive R&D TeliaSonera Agenda TeliaSonera at a glance Project presentation Technical results Business model and actor benefits End user experience Dissemination activities Conclusion 23/02/07
More informationEXPERIENCE SIMPLER, STRONGER AUTHENTICATION
1 EXPERIENCE SIMPLER, STRONGER AUTHENTICATION 2 Data Breaches are out of control 3 IN 2014... 783 data breaches >1 billion records stolen since 2012 $3.5 million average cost per breach 4 We have a PASSWORD
More informationDIX BOF Digital Identity exchange. 65 th IETF, Dallas March 21 st 2006
DIX BOF Digital Identity exchange 65 th IETF, Dallas March 21 st 2006 Welcome and Introductions Chair Scott Hollenbeck, shollenbeck@verisign.com Chair John Merrells, merrells@sxip.com Wiki http://dixs.org
More informationNew Paradigms of Digital Identity:
A Telefonica White Paper New Paradigms of Digital Identity: Authentication and Authorization as a Service (AuthaaS) February 2016 1. Introduction The concept of identity has always been the key factor
More informationIdentity management. Tuomas Aura CSE-C3400 Information security. Aalto University, autumn 2014
Identity management Tuomas Aura CSE-C3400 Information security Aalto University, autumn 2014 Outline 1. Single sign-on 2. SAML and Shibboleth 3. OpenId 4. OAuth 5. (Corporate IAM) 6. Strong identity 2
More informationhidglobal.com HID ActivOne USER FRIENDLY STRONG AUTHENTICATION
HID ActivOne USER FRIENDLY STRONG AUTHENTICATION We understand IT security is one of the TOUGHEST business challenges today. HID Global is your trusted partner in the fight against data breach due to misused
More informationAuthentication. Katarina
Authentication Katarina Valalikova @KValalikova k.valalikova@evolveum.com 1 Agenda History Multi-factor, adaptive authentication SSO, SAML, OAuth, OpenID Connect Federation 2 Who am I? Ing. Katarina Valaliková
More informationTrust Services for Electronic Transactions
Trust Services for Electronic Transactions ROUMEN TRIFONOV Faculty of Computer Systems and Control Technical University of Sofia 8 st. Kliment Ohridski bul., 1000 Sofia BULGARIA r_trifonov@tu-sofia.bg
More informationFederated Identity Management and Network Virtualization
Federated Identity Management and Network Virtualization Yang Cui and Kostas Pentikousis 3rd ETSI Future Networks Workshop 10 April 2013 Sophia Antipolis, France The opinions expressed in this presentation
More informationIdentity management. Tuomas Aura T Information security technology. Aalto University, autumn 2011
Identity management Tuomas Aura T-110.4206 Information security technology Aalto University, autumn 2011 Outline 1. Single sign-on 2. OpenId 3. SAML and Shibboleth 4. Corporate IAM 5. Strong identity 2
More informationeid Interoperability for PEGS WS-Federation
eid Interoperability for PEGS WS-Federation Workshop Brussels 10 May 2007 Agenda 1 Scope 2 Category 3 Approach and description 4 Relevance for eid Interoperability 5 Pro s and Con s 6 Relationship with
More informationUser Authentication Best Practices for E-Signatures Wednesday February 25, 2015
User Authentication Best Practices for E-Signatures Wednesday February 25, 2015 Agenda E-Signature Overview Legality, Authentication & Best Practices Role of authentication in e-signing Options and applications
More informationLiberty Alliance Project
Liberty Alliance Project Federated Identity solutions to real world issues 4 October 2006 Timo Skyttä, Nokia Corporation Director, Internet and Consumer Standardization What is the Liberty Alliance? The
More informationTRUST ELEVATION WITH SAFELAYER TRUSTEDX. David Ruana, Helena Pujol 14Q4
TRUST ELEVATION WITH SAFELAYER TRUSTEDX David Ruana, Helena Pujol 14Q4 About Safelayer Providing ID technologies for Multi-factor Authentication PKI Authentication Digital Signature Since 1999 WWW.SAFELAYER.COM
More informationLusitania Savings Bank Retail Internet Banking Terms and Conditions
Retail Internet Banking Terms and Conditions Internet Banking Terms and Conditions Agreement This Agreement describes your rights and obligations as a user of the On-line Banking Service ("Service" or
More informationOdyssey Entertainment Marketing, LLC Privacy Policy
Odyssey Entertainment Marketing, LLC Privacy Policy We collect the following types of information about you: Information you provide us directly: We ask for certain information such as your username, real
More informationFirst Federal Savings Bank of Mascoutah, IL Agreement and Disclosures
Agreement and Disclosures INTERNET BANKING TERMS AND CONDITIONS AGREEMENT This Agreement describes your rights and obligations as a user of the Online Banking Service and all other services made available
More informationThe Business of Identity: Business Drivers and Use Cases of Identity Web Services
The Business of Identity: Business Drivers and Use Cases of Identity Web Services Roger Sullivan, Vice President, Liberty Alliance Vice President, Oracle Corporation Liberty s Architecture Liberty Identity
More informationINCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES
INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES Participation in InCommon Federation ( Federation ) enables the participant to use Shibboleth identity attribute sharing technologies to manage access
More informationIntegrating User Identity Management Systems with the Host Identity Protocol
Integrating User Identity Management Systems with the Host Identity Protocol Marc Barisch Institute of Communication Networks and Computer Engineering Universität Stuttgart marc.barisch@ikr.uni-stuttgart.de
More informationVirtual Machine Encryption Security & Compliance in the Cloud
Virtual Machine Encryption Security & Compliance in the Cloud Pius Graf Director Sales Switzerland 27.September 2017 Agenda Control Your Data In The Cloud Overview Virtual Machine Encryption Architecture
More informationEnhancing cloud applications by using external authentication services. 2015, 2016 IBM Corporation
Enhancing cloud applications by using external authentication services After you complete this section, you should understand: Terminology such as authentication, identity, and ID token The benefits of
More informationInteragency Advisory Board Meeting Agenda, August 25, 2009
Interagency Advisory Board Meeting Agenda, August 25, 2009 1. Opening Remarks 2. Policy, process, regulations, technology, and infrastructure to employ HSPD-12 in USDA (Owen Unangst, USDA) 3. Policy and
More informationIdentity Federation: security for multiple services in a trusted environment.
Italian Chapter of Identity Federation: security for multiple services in a trusted environment. enabling a community of interest Elio Molteni President of AIPSI info@aipsi.org Agenda Introduction to AIPSI
More information1. Federation Participant Information DRAFT
INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES [NOTE: This document should be considered a as MIT is still in the process of spinning up its participation in InCommon.] Participation in InCommon
More informationINCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES
INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES Participation in the InCommon Federation ( Federation ) enables a federation participating organization ("Participant") to use Shibboleth identity
More informationPro s and con s Why pins # s, passwords, smart cards and tokens fail
Current Authentication Methods Pro s and con s Why pins # s, passwords, smart cards and tokens fail IDENTIFYING CREDENTIALS In The Physical World Verified by Physical Inspection of the Credential by an
More informationGestión dinámica de configuraciones en dispositivos móviles en un entorno Liberty/OMA-DM
Gestión dinámica de configuraciones en dispositivos móviles en un entorno Liberty/OMA-DM 1 Device Independence Liberty and Identity in a Nutshell The Importance of Identity Principles Liberty Value Proposition
More informationIDENTITY MANAGEMENT AND FEDERATION BC.Net Conference April 25, 2006
IDENTITY MANAGEMENT AND FEDERATION BC.Net Conference April 25, 2006 Lauren Wood Senior Technical Program Manager Business Alliances, CTO Office Sun Microsystems Alex Acton Software Specialist Client Solutions
More informationBEYOND TRADITIONAL PASSWORD AUTHENTICATION: PKI & BLOCKCHAIN
SESSION ID: GPS-R09B BEYOND TRADITIONAL PASSWORD AUTHENTICATION: PKI & BLOCKCHAIN Sid Desai Head of Business Development Remme.io @skd_desai Agenda Our relationship to our digital-selves Evolution of Authentication
More informationUniversity of Pittsburgh Security Assessment Questionnaire (v1.7)
Technology Help Desk 412 624-HELP [4357] technology.pitt.edu University of Pittsburgh Security Assessment Questionnaire (v1.7) Directions and Instructions for completing this assessment The answers provided
More informationINCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES
INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES Participation in the InCommon Federation ( Federation ) enables a federation participating organization ("Participant") to use Shibboleth identity
More informationWHAT DOES THIS PRIVACY POLICY COVER?
Privacy policy DELIVER MY TUNE ("DELIVER MY TUNE ") knows that you care about how your personal information is used and shared, and we take your privacy seriously. Please read the following to learn more
More informationINCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES
INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES Participation in InCommon Federation ( Federation ) enables the participant to use Shibboleth identity attribute sharing technologies to manage access
More informationA Practical Step-by-Step Guide to Managing Cloud Access in your Organization
GUIDE BOOK 4 Steps to Cloud Access Management A Practical Step-by-Step Guide to Managing Cloud Access in your Organization Cloud Access Challenges in the Enterprise Cloud apps in the enterprise have become
More informationINCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES
INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES Participation in the InCommon Federation ( Federation ) enables a federation participating organization ("Participant") to use Shibboleth identity
More informationInCommon Federation: Participant Operational Practices
InCommon Federation: Participant Operational Practices Participation in the InCommon Federation ( Federation ) enables a federation participating organization ( Participant ) to use Shibboleth identity
More informationINCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES
INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES Participation in the InCommon Federation ( Federation ) enables a federation participating organization ("Participant") to use Shibboleth identity
More informationProject Moonshot. IETF 77, Anaheim. Sam Hartman, Painless Security LLC Josh Howlett, JANET(UK) Image Viatour Luc (
Project Moonshot IETF 77, Anaheim Sam Hartman, Painless Security LLC Josh Howlett, JANET(UK) Image Viatour Luc (http://www.lucnix.be) Use-cases 1)Support federated authentication to out-sourcing providers
More informationToday s workforce is Mobile. Cloud and SaaSbased. are being deployed and used faster than ever. Most applications are Web-based apps
Today s workforce is Mobile Most applications are Web-based apps Cloud and SaaSbased applications are being deployed and used faster than ever Hybrid Cloud is the new normal. % plan to migrate >50% of
More informationMartijn Loderus. Merritt Maxim. Principal Analyst Forrester. Director & Global Practice Partner for Advisory Consulting Janrain
Merritt Maxim Principal Analyst Forrester Martijn Loderus Director & Global Practice Partner for Advisory Consulting Janrain Merritt and Martijn will share insights on Digital Transformation & Drivers
More informationArchitecting a country
Architecting a country Andres Kütt Estonian Information System Authority / Architect 21.07.2014 Agenda Fundamental concepts Country background Problem statement: what are we solving here? E-government
More informationYubico with Centrify for Mac - Deployment Guide
CENTRIFY DEPLOYMENT GUIDE Yubico with Centrify for Mac - Deployment Guide Abstract Centrify provides mobile device management and single sign-on services that you can trust and count on as a critical component
More informationIntroduction to Identity Management Systems
Introduction to Identity Management Systems Ajay Daryanani Middleware Engineer, RedIRIS / Red.es Kopaonik, 13th March 2007 1 1 Outline 1. Reasons for IdM 2. IdM Roadmap 3. Definitions 4. Components and
More informationInnovative Authentication method for boosting Mobile Connect global roll-out
Innovative Authentication method for boosting Mobile Connect global roll-out GB Patent Pending 1803719.2 US Patent Pending 15928348 IPification solution could very well be what is missing to 2018, Shanghai
More informationINCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES
INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES Participation in the InCommon Federation ( Federation ) enables a federation participating organization ("Participant") to use Shibboleth identity
More informationTolbert Family SPADE Foundation Privacy Policy
Tolbert Family SPADE Foundation Privacy Policy We collect the following types of information about you: Information you provide us directly: We ask for certain information such as your username, real name,
More informationGaining Business Value from IoT
Gaining Business Value from IoT Digital Aviation Conference 2018 Thomas Bengs GM, Head of Biometrics EMEIA Enterprise Cybersecurity EMEIA Human Centric Innovation Co-creation for Success 0 2018 FUJITSU
More informationOur Commitment To Privacy PRIVACY POLICY. Last Modified July 26, 2018
Our Commitment To Privacy PRIVACY POLICY Last Modified July 26, 2018 Please read this Privacy Policy carefully before using this online entertainment service. Access to and use of this online entertainment
More informationIdentity Management Systems An Overview. IST Event 2004 /
IST Event 2004 / 15.11.2004 Marit Hansen / Henry Krasemann Unabhängiges Landeszentrum für Datenschutz // Independent Centre for Privacy Protection Schleswig-Holstein, Germany Overview Identity Management
More informationThe Role of PNT in Cybersecurity Location-based Authentication
The Role of PNT in Cybersecurity Location-based Authentication Dr. Michael O Connor November 14, 2013 Satelles is a Division of ikare Corporation What do we mean by Authentication? Authentication is the
More informationINCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES
INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES Participation in the InCommon Federation ( Federation ) enables a federation participating organization ("Participant") to use Shibboleth identity
More informationJeff Wilbur VP Marketing Iconix
2016 Data Protection & Breach Readiness Guide February 3, 2016 Craig Spiezle Executive Director & President Online Trust Alliance Jeff Wilbur VP Marketing Iconix 1 Who is OTA? Mission to enhance online
More informationStandardization Trends in Identity Management Technologies
Standardization Trends in Identity Management Technologies Hiroki Itoh and Teruko Miyata Abstract We introduce the latest standardization trends in identity management (IdM) technologies and schemes for
More informationIAM Security & Privacy Policies Scott Bradner
IAM Security & Privacy Policies Scott Bradner November 24, 2015 December 2, 2015 Tuesday Wednesday 9:30-10:30 a.m. 10:00-11:00 a.m. 6 Story St. CR Today s Agenda How IAM Security and Privacy Policies Complement
More informationIdentity as a Platform Service
Identity as a Platform Service Sam Hartman, Painless Security LLC. Josh Howlett, JANET(UK). April 27, 2011 Focus on Value to Applications and Users Security mechanisms are most often discussed and advocated
More information05/31/2010. Smart OpenID
05/31/2010 Smart OpenID Smart OpenID Smartcard Webserver Enabled SSO for Web 2.0 using OpenID Andreas Leicher, Andreas U. Schmidt (Novalyst IT), Inhyok Cha, Yogendra Shah (InterDigital Communications)
More informationPRIVACY POLICY. Eva CONTRACTUAL RELATIONSHIP GENERAL CHANGES COLLECTED INFORMATION. VERSION 0.01 SUMMARY Detailed privacy policy.
PRIVACY POLICY Eva VERSION 0.01 SUMMARY Detailed privacy policy. Last update Monday, October 29 th, 2018 CONTRACTUAL RELATIONSHIP The privacy policy, hereafter "policy", governs the policy policy in regard
More informationIdentity and Authentication PKI Portfolio
Identity and Authentication PKI Portfolio Gemalto offers comprehensive public key infrastructure (PKI) authentication solutions that provide optimal levels of security. Supporting a wide portfolio of IDPrime
More informationPrivacy Policy. I. How your information is used. Registration and account information. March 3,
Privacy Policy This Privacy Policy describes how and when we collect, use and share your information across our App. When using our App you consent to the collection, transfer, storage, disclosure, and
More informationEXPERIENCE SIMPLER, STRONGER AUTHENTICATION
1 EXPERIENCE SIMPLER, STRONGER AUTHENTICATION 2 Data Breaches are out of control 3 IN 2014... 708 data breaches 82 million personal records stolen $3.5 million average cost per breach 4 We have a PASSWORD
More informationEnterprise Adoption Best Practices
Enterprise Adoption Best Practices Integrating FIDO & Federation Protocols December 2017 Copyright 2013-2017 FIDO Alliance All Rights Reserved. Audience This white paper is aimed at enterprises deploying
More informationOrganization information. When you create an organization on icentrex, we collect your address (as the Organization Owner), your
Privacy policy icentrex Sweden AB Privacy Policy Updated: November 3, 2017 This privacy policy is here to help you understand what information we collect at icentrex, how we use it, and what choices you
More informationCar2Car Communication Consortium C2C-CC
Car2Car Communication Consortium C2C-CC Secure Vehicular Communication: Results and Challenges Ahead February 20th/21st 2008, Lausanne Benjamin Weyl BMW Group Research and Technology Chair C2C-CC Security
More informationSecurity Strategy for Mobile ID GSMA Mobile Connect Summit
Security Strategy for Mobile ID GSMA Mobile Connect Summit Singapore, 22 nd November 2017 G+D Mobile Security G+D Mobile Security: Managing Billions of Connected Digital Identities Today 660 million contactless
More information1.1. This User Agreement (hereinafter referred to as the Agreement) refers to the website located at
Terms of Use 1. GENERAL PROVISIONS 1.1. This User Agreement (hereinafter referred to as the Agreement) refers to the website located at www.crypterra.in. 1.2. The website www.crypterra.in (hereinafter
More informationFacilitating the Attribute Economy. David W Chadwick George Inman, Kristy Siu 2011 University of Kent
Facilitating the Attribute Economy David W Chadwick George Inman, Kristy Siu University of Kent 2011 University of Kent Internet 2 Fall 2011 Member Meeting 1 (Some) Attribute AuthzRequirements Attributes
More informationCanadian Access Federation: Trust Assertion Document (TAD)
Participant Name: McMaster University Canadian Access Federation: Trust Assertion Document (TAD) 1. Purpose A fundamental requirement of Participants in the Canadian Access Federation is that they assert
More informationStrong Authentication for Physical Access using Mobile Devices
Strong Authentication for Physical Access using Mobile Devices DoD Identity Protection and Management Conference May 15-17, 2012 Dr. Sarbari Gupta, CISSP, CISA sarbari@electrosoft-inc.com 703-437-9451
More informationAUTHENTICATION. Do You Know Who You're Dealing With? How Authentication Affects Prevention, Detection, and Response
AUTHENTICATION Do You Know Who You're Dealing With? How Authentication Affects Prevention, Detection, and Response Who we are Eric Scales Mandiant Director IR, Red Team, Strategic Services Scott Koller
More informationHans Joachim Jelena Mirkovic Ivica Milanovic Øyvind Bakkeli
Hans Joachim Jelena Mirkovic Ivica Milanovic Øyvind Bakkeli Introduction Research questions: What are most common and accepted authentication methods for mobile services? What are differences, opportunities
More informationMobile Commerce and Mobile Payments
Mobile Commerce and Mobile Payments J. Dax Hansen, Perkins Coie LLP Jofelyn A. Ceballos, Sprint Nextel Corporation June 25, 2010 18569419.ppt Mobile Commerce Business Models Bill-to-Mobile Mobile Banking
More informationMoving Digital Identity to the Cloud, a Fundamental Shift in rethinking the enterprise collaborative model.
TEG Progress Update Moving Digital Identity to the Cloud, a Fundamental Shift in rethinking the enterprise collaborative model. Fulup Ar Foll Master Architect Sun Microsystems Fulup@sun.com 1 What is the
More informationCanadian Access Federation: Trust Assertion Document (TAD)
Participant Name: Royal Society of Chemistry Canadian Access Federation: Trust Assertion Document (TAD) 1. Purpose A fundamental requirement of Participants in the Canadian Access Federation is that they
More informationIdentität und Autorisierung als Grundlage für sichere Web-Services. Dr. Hannes P. Lubich IT Security Strategist
Identität und Autorisierung als Grundlage für sichere Web-Services Dr. Hannes P. Lubich IT Security Strategist The Web Services Temptation For every $1 spent on software $3 to $5 is spent on integration
More informationKeep the Door Open for Users and Closed to Hackers
Keep the Door Open for Users and Closed to Hackers A Shift in Criminal Your Web site serves as the front door to your enterprise for many customers, but it has also become a back door for fraudsters. According
More informationDESIGN OF WEB SERVICE SINGLE SIGN-ON BASED ON TICKET AND ASSERTION
DESIGN OF WEB SERVICE SINGLE SIGN-ON BASED ON TICKET AND ASSERTION Abstract: 1 K.Maithili, 2 R.Ruhin Kouser, 3 K.Suganya, 1,2,3 Assistant Professor, Department of Computer Science Engineering Kingston
More informationArchitecture Assessment Case Study. Single Sign on Approach Document PROBLEM: Technology for a Changing World
Technology for a Changing World Architecture Assessment Case Study Single Sign on Approach Document PROBLEM: Existing portal has Sign on Capabilities based on the SQL Server database and it s not having
More informationParks Industries LLC Privacy Policy
Parks Industries LLC Privacy Policy We collect the following types of information about you: Information you provide us directly: We ask for certain information such as your username, real name, birthdate,
More informationINCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES
INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES Participation in the InCommon Federation ( Federation ) enables a federation participating organization ("Participant") to use Shibboleth identity
More informationINCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES
INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES Participation in the InCommon Federation ( Federation ) enables a federation participating organization ("Participant") to use Shibboleth identity
More informationMobile Security / Mobile Payments
Mobile Security / Mobile Payments Leslie K. Lambert CISSP, CISM, CISA, CRISC, CIPP/US, CIPP/G VP, Chief Information Security Officer Juniper Networks Professional Techniques - Session T23 MOBILE SECURITY
More informationGUESTBOOK REWARDS, INC. Privacy Policy
GUESTBOOK REWARDS, INC. Privacy Policy Welcome to The Guestbook and Gopher, the online and mobile services of Guestbook Rewards, Inc. ( The Guestbook, we, or us ). Our Privacy Policy explains how we collect,
More informationToken-based Payment in Dynamic SAML-based Federations
Token-based Payment in Dynamic SAML-based Federations David J. Lutz 1 and Burkhard Stiller 2 1 Rechenzentrum Universitaet Stuttgart Allmandring 30; 70550 Stuttgart; Germany David.Lutz@rus.uni-stuttgart.de
More informationAdvanced Client Conor P. Cahill Systems Technology Lab Intel Corporation
Advanced Client Conor P. Cahill Systems Technology Lab Intel Corporation Disclaimer This presentation discusses work-in-progress within the Liberty Alliance Technology Expert Group. The end result of the
More informationBuilding on existing security
Building on existing security infrastructures Chris Mitchell Royal Holloway, University of London http://www.isg.rhul.ac.uk/~cjm 1 Acknowledgements This is joint work with Chunhua Chen and Shaohua Tang
More informationThe Device Has Left the Building
The Device Has Left the Building Mobile Security Made Easy With Managed PKI Christian Brindley Principal Systems Engineer, Symantec Identity and Information Protection Agenda 1 2 3 Mobile Trends and Use
More informationPotentials and Areas of Application of the Windows CardSpace Technology
Potentials and Areas of Application of the Windows CardSpace Technology Seminar on Internet Technologies by Gunnar Nussbeck Faculty of Mathematics and Computer Science Institute of Computer Science Date:
More informationConfiguration Guide - Single-Sign On for OneDesk
Configuration Guide - Single-Sign On for OneDesk Introduction Single Sign On (SSO) is a user authentication process that allows a user to access different services and applications across IT systems and
More informationNext Generation Authentication
Next Generation Authentication Bring Your Own security impact Dominique Dessy Sr. Technology Consultant 1 2012 DIGITAL UNIVERSE 1.8 ZETTABYTES 1,800,000,000,000,000,000,000 2 $ 3 4 Threat Landscape 60%
More informationComplaints, compliments and suggestions
About us Complaints, compliments and suggestions 2 About us Large print format available If someone in your household needs this information in large print or as an audio recording please contact our Customer
More informationSecurity and Privacy in the Internet of Things : Antonio F. Skarmeta
Security and Privacy in the Internet of Things : Antonio F. Skarmeta University of Murcia (UMU) SPAIN Motivation Security and privacy concerns were always there but we need to move from
More information