SlideShare a Scribd company logo

ID Next 2013 Keynote Slides by Mike Schwartz

Download as PPT, PDF
Mike Schwartz, profile picture
Mike Schwartz

The document discusses the importance and value of identity management, focusing on concepts like access by affiliation and assurance levels. It references various identity providers and methodologies including SAML, UMA, and OpenID Connect while also outlining best practices. The content appears to be part of a presentation or discussion from the IDNet'13 event led by Michael Schwarz of Gluu.

TechnologyBusiness
1 of 18
Downloaded 12 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
OAuth2 Federation Michael Schwarz, Founder / CEO Gluu Idnet’13 event – 19-20 November 2013 #idn13 IDentity.next’11 – What’s next www.everett.nl www.everett.nl on Identity?
IDentity.next’13 – What’ is the value of your Identity? 2
IDentity.next’13 – What’ is the value of your Identity? 3
IDentity.next’13 – What’ is the value of your Identity? 4
IDentity.next’13 – What’ is the value of your Identity? 5
Identity Providers Web Sites IDentity.next’13 – What’ is the value of your Identity? 6
Access by affiliation Access by attribute Access by individual …some of the original goals of InCommon IDentity.next’13 – What’ is the value of your Identity? 7
Level Of Assurance Level Of Protection Level Of Control IDentity.next’13 – What’ is the value of your Identity? 8
Software SAML UMA OpenID Connect Best Practices Schema IDentity.next’13 – What’ is the value of your Identity? 9
XML published on public website Signed IDentity.next’13 – What’ is the value of your Identity? 10
certificate URLs for SAML endpoints IDentity.next’13 – What’ is the value of your Identity? 11
IDentity.next’13 – What’ is the value of your Identity? 12
IDentity.next’13 – What’ is the value of your Identity? 13
IDentity.next’13 – What’ is the value of your Identity? 14
UMA IDentity.next’13 – What’ is the value of your Identity? 15
IDentity.next’13 – What’ is the value of your Identity? 16
IDentity.next’13 – What’ is the value of your Identity? 17
IDentity.next’13 – What’ is the value of your Identity? 18

More Related Content

PDF
【Blockchain EXE NY】Self Sovereign Identity - Smart homes & Smart contracts
blockchainexe
 
PDF
Vlad Andrei - Tokens Deep Dive presentation
Sebastian Cochinescu
 
PDF
Self-Sovereign Identity and the MyData model from Finland - Antti 'Jogi' Poikola
SSIMeetup
 
PPTX
Blockchain smart contracts ethereum smart contract creation
Codezeros
 
PPTX
Distributed ledger technology (dlt) blockchain creation
Codezeros
 
PDF
Kantara - Digital Identity in 2018
Ubisecure
 
PPTX
What is token
OliviaJune1
 
PPTX
Smart Contract Audit Services | Smart Contracts Development Company
Codezeros
 
【Blockchain EXE NY】Self Sovereign Identity - Smart homes & Smart contracts
blockchainexe
 
Vlad Andrei - Tokens Deep Dive presentation
Sebastian Cochinescu
 
Self-Sovereign Identity and the MyData model from Finland - Antti 'Jogi' Poikola
SSIMeetup
 
Blockchain smart contracts ethereum smart contract creation
Codezeros
 
Distributed ledger technology (dlt) blockchain creation
Codezeros
 
Kantara - Digital Identity in 2018
Ubisecure
 
What is token
OliviaJune1
 
Smart Contract Audit Services | Smart Contracts Development Company
Codezeros
 

What's hot (8)

PPTX
5 major advantages of blockchain technology for engineering students
Blockchain Council
 
PDF
Sydney Identity Summit: Compound Eye: An Approach To A National Identity Ecos...
ForgeRock
 
PPTX
The legal challenges of the blockchain
Giulio Coraggio
 
PPTX
Ethereum smart contract development company
Developcoins
 
PPTX
Future of Public Key Infrastructure
Chin Wan Lim
 
PDF
Spellpoint - Securing Access for Microservices
Ubisecure
 
PPTX
Secure IoT with Blockchain: Fad or Reality? [BOF5490]
Leonardo De Moura Rocha Lima
 
PPTX
The end of the intermediaries??
Zaw Win Htun
 
5 major advantages of blockchain technology for engineering students
Blockchain Council
 
Sydney Identity Summit: Compound Eye: An Approach To A National Identity Ecos...
ForgeRock
 
The legal challenges of the blockchain
Giulio Coraggio
 
Ethereum smart contract development company
Developcoins
 
Future of Public Key Infrastructure
Chin Wan Lim
 
Spellpoint - Securing Access for Microservices
Ubisecure
 
Secure IoT with Blockchain: Fad or Reality? [BOF5490]
Leonardo De Moura Rocha Lima
 
The end of the intermediaries??
Zaw Win Htun
 
Ad

Viewers also liked (20)

PPTX
Kantara OTTO slides
Mike Schwartz
 
PDF
Trust Elevation: Implementing an OAuth2 Infrastructure using OpenID Connect &...
Mike Schwartz
 
PPTX
RSA Conference 2016: Don't Use Two-Factor Authentication... Unless You Need It!
Mike Schwartz
 
PPTX
LASCON: Three Profiels of OAuth2 for Identity and Access Management
Mike Schwartz
 
PPTX
RSA Conference 2016: Who Are You? From Meat to Electrons and Back Again
Mike Schwartz
 
PDF
SAML Protocol Overview
Mike Schwartz
 
PDF
Cloud Identity: A Recipe for Higher Education
Mike Schwartz
 
PPTX
DaaS/IaaS Forum Moscow - Najat Messaoud
Denis Gundarev
 
PPTX
RSA Europe: Future of Cloud Identity
Mike Schwartz
 
PDF
Who Are You? From Meat to Electrons - SXSW 2014
Mike Schwartz
 
PPTX
The Tools I Use
Dan Brinkmann
 
PPTX
DaaS/IaaS Forum Moscow - Ivo Murris
Denis Gundarev
 
PPTX
Briforum 2011 Chicago
Dan Brinkmann
 
PPTX
DaaS/IaaS Forum Moscow - Chris Rogers
Denis Gundarev
 
PPTX
BriForum 2013 Chicago - Citrix Troubleshooting - Denis Gundarev
Denis Gundarev
 
PPT
Mule security - saml
charan teja R
 
PPTX
RUCUG: 9. Sergey Khalyapin: Представляем XenDesktop 5
Denis Gundarev
 
PDF
Citrix Internals: Tracing, Debugging & Troubleshooting
Denis Gundarev
 
PPTX
RUCUG: 6. Fabian Kienle - NetScaler and Branch Repeater for Hyper-V
Denis Gundarev
 
PPTX
Clickjacking DevCon2011
Krishna T
 
Kantara OTTO slides
Mike Schwartz
 
Trust Elevation: Implementing an OAuth2 Infrastructure using OpenID Connect &...
Mike Schwartz
 
RSA Conference 2016: Don't Use Two-Factor Authentication... Unless You Need It!
Mike Schwartz
 
LASCON: Three Profiels of OAuth2 for Identity and Access Management
Mike Schwartz
 
RSA Conference 2016: Who Are You? From Meat to Electrons and Back Again
Mike Schwartz
 
SAML Protocol Overview
Mike Schwartz
 
Cloud Identity: A Recipe for Higher Education
Mike Schwartz
 
DaaS/IaaS Forum Moscow - Najat Messaoud
Denis Gundarev
 
RSA Europe: Future of Cloud Identity
Mike Schwartz
 
Who Are You? From Meat to Electrons - SXSW 2014
Mike Schwartz
 
The Tools I Use
Dan Brinkmann
 
DaaS/IaaS Forum Moscow - Ivo Murris
Denis Gundarev
 
Briforum 2011 Chicago
Dan Brinkmann
 
DaaS/IaaS Forum Moscow - Chris Rogers
Denis Gundarev
 
BriForum 2013 Chicago - Citrix Troubleshooting - Denis Gundarev
Denis Gundarev
 
Mule security - saml
charan teja R
 
RUCUG: 9. Sergey Khalyapin: Представляем XenDesktop 5
Denis Gundarev
 
Citrix Internals: Tracing, Debugging & Troubleshooting
Denis Gundarev
 
RUCUG: 6. Fabian Kienle - NetScaler and Branch Repeater for Hyper-V
Denis Gundarev
 
Clickjacking DevCon2011
Krishna T
 
Ad

More from Mike Schwartz (9)

PPTX
LASCON 2017: SAML v. OpenID v. Oauth
Mike Schwartz
 
PPTX
OTTO - Internet2 TechX 2017
Mike Schwartz
 
PPTX
The Client is not always right! How to secure OAuth authentication from your...
Mike Schwartz
 
PDF
OAuth2 for IoT Security: Why OpenID Connect & UMA Are They Key
Mike Schwartz
 
PDF
OpenID Connect vs. OpenID 1 & 2
Mike Schwartz
 
PPTX
Federation registry
Mike Schwartz
 
PPTX
Single Sign On 101
Mike Schwartz
 
PPTX
Requirements for Personal Clouds : Tech Ranch Talk 8/7/13
Mike Schwartz
 
PDF
Gluu EDU Webinar: Shibboleth/SAML SSO
Mike Schwartz
 
LASCON 2017: SAML v. OpenID v. Oauth
Mike Schwartz
 
OTTO - Internet2 TechX 2017
Mike Schwartz
 
The Client is not always right! How to secure OAuth authentication from your...
Mike Schwartz
 
OAuth2 for IoT Security: Why OpenID Connect & UMA Are They Key
Mike Schwartz
 
OpenID Connect vs. OpenID 1 & 2
Mike Schwartz
 
Federation registry
Mike Schwartz
 
Single Sign On 101
Mike Schwartz
 
Requirements for Personal Clouds : Tech Ranch Talk 8/7/13
Mike Schwartz
 
Gluu EDU Webinar: Shibboleth/SAML SSO
Mike Schwartz
 

Recently uploaded (20)

PDF
CIFDAQ's Market Wrap : Bears Back in Control?
CIFDAQ
 
PDF
Google I/O Extended 2025 Baku - all ppts
HusseinMalikMammadli
 
PDF
A Day in the Life of Location Data - Turning Where into How.pdf
Precisely
 
PDF
REPORT: Heating appliances market in Poland 2024
SPIUG
 
PDF
Using Anchore and DefectDojo to Stand Up Your DevSecOps Function
Anchore
 
PDF
Presentation about Hardware and Software in Computer
snehamodhawadiya
 
PDF
Unlocking the Future- AI Agents Meet Oracle Database 23ai - AIOUG Yatra 2025.pdf
Sandesh Rao
 
PPTX
AI in Daily Life: How Artificial Intelligence Helps Us Every Day
vanshrpatil7
 
PDF
Advances in Ultra High Voltage (UHV) Transmission and Distribution Systems.pdf
Nabajyoti Banik
 
PDF
Make GenAI investments go further with the Dell AI Factory
Principled Technologies
 
PPTX
What-is-the-World-Wide-Web -- Introduction
tonifi9488
 
PDF
Structs to JSON: How Go Powers REST APIs
Emily Achieng
 
PDF
NewMind AI Weekly Chronicles - July'25 - Week IV
NewMind AI
 
PDF
Economic Impact of Data Centres to the Malaysian Economy
flintglobalapac
 
PDF
SparkLabs Primer on Artificial Intelligence 2025
SparkLabs Group
 
PDF
Automating ArcGIS Content Discovery with FME: A Real World Use Case
Safe Software
 
PDF
OFFOFFBOX™ – A New Era for African Film | Startup Presentation
ambaicciwalkerbrian
 
PPTX
OA presentation.pptx OA presentation.pptx
pateldhruv002338
 
PPTX
Applied-Statistics-Mastering-Data-Driven-Decisions.pptx
parmaryashparmaryash
 
PDF
AI Unleashed - Shaping the Future -Starting Today - AIOUG Yatra 2025 - For Co...
Sandesh Rao
 
CIFDAQ's Market Wrap : Bears Back in Control?
CIFDAQ
 
Google I/O Extended 2025 Baku - all ppts
HusseinMalikMammadli
 
A Day in the Life of Location Data - Turning Where into How.pdf
Precisely
 
REPORT: Heating appliances market in Poland 2024
SPIUG
 
Using Anchore and DefectDojo to Stand Up Your DevSecOps Function
Anchore
 
Presentation about Hardware and Software in Computer
snehamodhawadiya
 
Unlocking the Future- AI Agents Meet Oracle Database 23ai - AIOUG Yatra 2025.pdf
Sandesh Rao
 
AI in Daily Life: How Artificial Intelligence Helps Us Every Day
vanshrpatil7
 
Advances in Ultra High Voltage (UHV) Transmission and Distribution Systems.pdf
Nabajyoti Banik
 
Make GenAI investments go further with the Dell AI Factory
Principled Technologies
 
What-is-the-World-Wide-Web -- Introduction
tonifi9488
 
Structs to JSON: How Go Powers REST APIs
Emily Achieng
 
NewMind AI Weekly Chronicles - July'25 - Week IV
NewMind AI
 
Economic Impact of Data Centres to the Malaysian Economy
flintglobalapac
 
SparkLabs Primer on Artificial Intelligence 2025
SparkLabs Group
 
Automating ArcGIS Content Discovery with FME: A Real World Use Case
Safe Software
 
OFFOFFBOX™ – A New Era for African Film | Startup Presentation
ambaicciwalkerbrian
 
OA presentation.pptx OA presentation.pptx
pateldhruv002338
 
Applied-Statistics-Mastering-Data-Driven-Decisions.pptx
parmaryashparmaryash
 
AI Unleashed - Shaping the Future -Starting Today - AIOUG Yatra 2025 - For Co...
Sandesh Rao
 

ID Next 2013 Keynote Slides by Mike Schwartz

Editor's Notes

  • #2: Thank you Identity Next for inviting me to speak!
  • #3: Federation is not a protocol! It is not SSO with an external web site. It’s a group of autonomous parties cooperating via a central authority. People are empowered by associating with an organization. An organization is empowered by joining a federation. Federations are empowered by joining inter-federations! No one knows more about federations than the Dutch.
  • #4: The goal of online federations is to build trust… trust enables collaboration between autonomous domains.
  • #5: The Internet is probably the world’s biggest federation… but there isn’t much trust
  • #6: Smaller groups of domains can create more trust. However, trust can also be expensive, so more efficient frameworks were sought.
  • #7: InCommon is a good example of a multi-party federation
  • #8: The federations I’m interested in built a framework for security. Still true today, these goals were articulated by RL Bob more than a decade ago. But the goals have expanded.
  • #9: Federations provide the contractual rules… Level of Assurance, Level of Protection, Level of Control
  • #10: Federations also provide the tools : Choose standard protocols, define standard jargon, certify software, publish websites…
  • #11: Federations are based on public key – private key cryptology… how are the public keys distributed? This is the trust model!
  • #12: The metadata is just a big list of the certificates for all the IDPs and SPs. It’s a handy place to publish other information about the participants.
  • #13: Only one problem… SAML is not going to be ubiquitous on the Internet… October 2012 – Final RFC OAuth2 … proliferation of Oauth2 APIs for authentication
  • #14: Enter OpenID Connect : one OAuth2 API so developers won’t have to learn one API for FB and one API for Google
  • #15: Connect defines more than authentication: discovery and client registration…
  • #16: Connect is not the only profile of OAuth2: UMA provides a profile for authorization : defining who can get to what web sites or API’s
  • #17: How to use OAuth2 for federations? Building the first bridge…
  • #18: Federations are a journey… the hardest part of the journey is the first step.
  • #19: Thank you!