 Introduction to: Claudio Sanchez | LinkedIn.com/in/ClaudioASanchez Single Sign On Evolved.

Slides:

Advertisements

Similar presentations

© 2012 SecureAuth. All rights reserved. 2-Factor Authentication and Single Sign-On in a Mobile World Thursday, December 5,

Advertisements

CLARIN AAI, Web Services Security Requirements

Authentication solutions for Outlook and Office 365 Multi-factor authentication for Office 365 Outlook client futures.

Team: SuperBad Cats MSIT 458 – Dr. Chen Authentication through Password Protection.

FIspace Security Components FIspace Security Components NetFutures 2015 FIspace project Javier Romero Negrín Javier Hitado Simarro ATOS Serdar Arslan KoçSistem.

11 steve plank (“planky”) identity architect microsoft uk.

WSO2 Identity Server Road Map

T Network Application Frameworks and XML Service Federation Sasu Tarkoma.

Microsoft Ignite /16/2017 4:55 PM

Virtual techdays INDIA │ 9-11 February 2011 virtual techdays AppFabric Futures – Access Control Service Niraj Bhatt │ Windows Azure MVP.

Identity & Access Control in the Cloud Sachin Vinod Rathi Architect Advisor, Microsoft Corporation Niraj Bhatt Enterprise Architect, Windows Azure MVP.

GRDevDay March 21, 2015 Cloud-based Identity for Applications.

Identity Management, what does it solve By Gautham Mudra.

SpeechTek West 2007 Automating Password Reset to Make Employees More Efficient Jason Groshart Director of Product Engineering Password Reset.

Clients using wide variety of devices/languages/platforms Server applications using wide variety of platforms/languages Browser Native app Server.

SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)

Prabath Siriwardena Senior Software Architect. An open source Identity & Entitlement management server.

Naam van de Auteur 7 januari 2008 Kennisnet Entree: federated authentication Pieter BruringTechnical Product Manager.

Claims Based Authentication

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.

Identity Management in Education. Welcome Scott Johnson, NetProf, Inc. Creator of OmnID Identity Management for Education

IT Unity Webinar Series September 2015 Using Azure Active Directory to Secure Your Apps.

Web Services Security Standards Overview for the Non-Specialist Hal Lockhart Office of the CTO BEA Systems.

Identity Management 20/01/2005 Abhai Chaudhary. Facts Today, many organizations routinely create and manage user identities and access privileges in 25.

Module 5 Configuring Authentication. Module Overview Lesson 1: Understanding Classic SharePoint Authentication Providers Lesson 2: Understanding Federated.

SharePoint Security Fundamentals Introduction to Claims-based Security Configuring Claims-based Security Development Opportunities.

Identity & Access Control in the Cloud Name Title Organization.

Authority of Information Technology Application National Center of Digital Signature Authentication Ninh Binh, June 25, 2010.

Single Sign-On for Professionals & Patients Phil Stradling.

Keith Brown Cofounder pluralsight.com SIA312 Outline What is identity? Challenges Federated identity How it works from a 10,000 foot view Terminology.

Windows CardSpace Martin Parry Developer Evangelist Microsoft

All Rights Reserved 2014 © CMG Consulting LLC Federated Identity Management and Access Andres Carvallo Dwight Moore CMG Consulting, LLC October

Building consumer apps with Azure AD B2C

Adxstudio Portals Training

Federated Shibboleth, OpenID, oAuth, and Multifactor | 1 Federated Shibboleth, OpenID, oAuth, and Multifactor Russell Beall Senior Programmer/Analyst University.

Linus Joyeux Valerie Alonso Managing consultantLead consultant blue-infinity (Switzerland) Active Directory Federation Services v2.

Claims-based security with Windows Identity Foundation.

Slavko Kukrika MVP Connect Windows 10 to the Cloud – Cloud Join.

Secure Mobile Development with NetIQ Access Manager

Alex Thissen | Achmea Designing and implementing a claims-based architecture Alex Thissen | Achmea Claim typeValue

Prabath Siriwardena, Director of Security, WSO2 Twitter

General Overview of Various SSO Systems: Active Directory, Google & Facebook Antti Pyykkö Mikko Malinen Oskari Miettinen.

1 Oxford Identity Summit May, 25 th 2016 CREATING A CITIZEN IDENTITY.

Demo YOURNAMESPACE /v2/mgmt/service /v2/mgmt/web /v2/wsfederation /v2/wstrust / v2/FederationMetadata/ /FederationMetadata.xml /v2/metadata/IdentityProviders.js.

Web SSO with Cloud Resources using AD Federation Services

Application Authentication using Azure AD

SharePoint Authentication and Authorization

Access Policy - Federation March 23, 2016

4/18/2018 1:15 PM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN.

A lap around Azure Active Directory Business to Consumer (B2C)

Azure Active Directory - Business 2 Consumer

OMG, Another Simple, Lightweight Authentication Service???

Solving the Identity Crisis

D-Link router tech support phone number provides the technical support for client issue concerning to d-link as there’s a team of specialist that are.

Facing issues in D-link router? No Need to get nervous, D-link Router Technical Support is available to provide the best assistance. Expert's help gives.

Call Now Yahoo mail Help Desk Number USA

Azure Active Directory

11/14/ :30 PM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN.

Windows Identity Foundation Overview

ACS Functionality.

Office 365 Identity Management

Authentication and Authorization Federation

Matthew Levy Azure AD B2B vs B2C Matthew Levy

4/15/2019 1:57 PM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN.

Caleb Baker Sr. Program Manager

NHS Identity Authentication fit for modern health and social care

STR -11 What if Saas tools work together, what would this mean for IBM #engageug.

INTEGRATIONS WITH Single Sign-On

Presentation transcript:

 Introduction to: Claudio Sanchez | LinkedIn.com/in/ClaudioASanchez Single Sign On Evolved

Realtime feedback  #CMAPCCWIF  #CMAPCC

Agenda  Application Security  Federated Identity  What problem are we trying to solve?  Case study  Current state of affairs  Identity in Real Life  Terminology  The Federated Auth dance  Code demo  Q&A

Application Security  Not Sexy  Requires specialized knowledge  Often times, depends on the environment  Never hear about it, unless it fails

Federated Identity  Organization for the Advancement of Structured Information Standards (OASIS)  WS-Federation  WS-Trust  SAML  OpenID, Oauth, Facebook Connect

The Face of WIF Vittorio Bertocci | Microsoft | Vibro.NETNOT Vittorio

LOL

What problem are we solving?  How many accounts/passwords do you currently have? “Various Gartner studies have estimated that 25% to 35% of calls made to help desks are related to password resets” “Analysts’ estimate costs at approximately $25 to $40 per call with four password reset calls per user per year ”

Case Study | Health Care Clinicians use an average of 6.4 passwords per day SSO solution can save an average of 9.51 minutes per day per clinician $2,675 per year, per clinician 1 1 Based on a $135K/Year Salary, and 250 working days. Source: The Gartner Group, 2002 & The Ponemon Institute, full-time equivalent clinicians can save more than $1.88 million per year with an SSO solution in place. 1,051 patient beds More than 1,710 full-time attending physicians $2,675 lost productivity per clinician*1,710 physicians= $4,574,250

Our apps are prisoners

Each app is an island

Identity in Real Life ?

Terminology  Claim  Anything that can be said about a user  Name, , age, role, gender, Sports Team Affiliation, etc  Security Token  Serialized collection of claims  Crypto-signed by issuer  Identity Provider (IdP)  The issuer responsible for authenticating the user  Relaying Party  An application configured to trust an IdP for authentication (Your application)

Claims Can Set Your Application Free

Multiple apps “One token to rule them all”

Code

Q & A

One last thing