Presentation is loading. Please wait.

Presentation is loading. Please wait.

 Introduction to: Claudio Sanchez | LinkedIn.com/in/ClaudioASanchez Single Sign On Evolved.

Published byCarmella Bishop Modified over 9 years ago

Similar presentations

Presentation on theme: " Introduction to: Claudio Sanchez | LinkedIn.com/in/ClaudioASanchez Single Sign On Evolved."— Presentation transcript:

1  Introduction to: Claudio Sanchez | LinkedIn.com/in/ClaudioASanchez | @ClaudioASanchez Single Sign On Evolved

2 Realtime feedback  @ClaudioASanchez  #CMAPCCWIF  #CMAPCC

3 Agenda  Application Security  Federated Identity  What problem are we trying to solve?  Case study  Current state of affairs  Identity in Real Life  Terminology  The Federated Auth dance  Code demo  Q&A

4 Application Security  Not Sexy  Requires specialized knowledge  Often times, depends on the environment  Never hear about it, unless it fails

5 Federated Identity  Organization for the Advancement of Structured Information Standards (OASIS)  WS-Federation  WS-Trust  SAML  OpenID, Oauth, Facebook Connect

6 The Face of WIF Vittorio Bertocci | Microsoft | Vibro.NETNOT Vittorio

7 LOL

8 What problem are we solving?  How many accounts/passwords do you currently have? “Various Gartner studies have estimated that 25% to 35% of calls made to help desks are related to password resets” “Analysts’ estimate costs at approximately $25 to $40 per call with four password reset calls per user per year ”

9 Case Study | Health Care Clinicians use an average of 6.4 passwords per day SSO solution can save an average of 9.51 minutes per day per clinician $2,675 per year, per clinician 1 1 Based on a $135K/Year Salary, and 250 working days. Source: The Gartner Group, 2002 & The Ponemon Institute, 2010 700 full-time equivalent clinicians can save more than $1.88 million per year with an SSO solution in place. 1,051 patient beds More than 1,710 full-time attending physicians $2,675 lost productivity per clinician*1,710 physicians= $4,574,250

10 Our apps are prisoners

11 Each app is an island

12 Identity in Real Life ?

13 Terminology  Claim  Anything that can be said about a user  Name, email, age, role, gender, Sports Team Affiliation, etc  Security Token  Serialized collection of claims  Crypto-signed by issuer  Identity Provider (IdP)  The issuer responsible for authenticating the user  Relaying Party  An application configured to trust an IdP for authentication (Your application)

14 Claims Can Set Your Application Free

15 Multiple apps “One token to rule them all”

16 Code

17 Q & A

18 One last thing

19 LinkedIn.com/in/ClaudioASanchez @ClaudioASanchez http://ClaudioASanchez.blogspot.com

Download ppt " Introduction to: Claudio Sanchez | LinkedIn.com/in/ClaudioASanchez Single Sign On Evolved."

Similar presentations

© 2012 SecureAuth. All rights reserved. 2-Factor Authentication and Single Sign-On in a Mobile World Thursday, December 5, 2013 www.secureauth.com.

© 2012 SecureAuth. All rights reserved. 2-Factor Authentication and Single Sign-On in a Mobile World Thursday, December 5,
CLARIN AAI, Web Services Security Requirements

CLARIN AAI, Web Services Security Requirements
Authentication solutions for Outlook and Office 365 Multi-factor authentication for Office 365 Outlook client futures.

Authentication solutions for Outlook and Office 365 Multi-factor authentication for Office 365 Outlook client futures.
Team: SuperBad Cats MSIT 458 – Dr. Chen Authentication through Password Protection.

Team: SuperBad Cats MSIT 458 – Dr. Chen Authentication through Password Protection.
FIspace Security Components FIspace Security Components NetFutures 2015 FIspace project Javier Romero Negrín Javier Hitado Simarro ATOS Serdar Arslan KoçSistem.

FIspace Security Components FIspace Security Components NetFutures 2015 FIspace project Javier Romero Negrín Javier Hitado Simarro ATOS Serdar Arslan KoçSistem.
11 steve plank (“planky”) identity architect microsoft uk.

11 steve plank (“planky”) identity architect microsoft uk.
WSO2 Identity Server Road Map

WSO2 Identity Server Road Map
T-110.5140 Network Application Frameworks and XML Service Federation 30.04.2007 Sasu Tarkoma.

T Network Application Frameworks and XML Service Federation Sasu Tarkoma.
Microsoft Ignite /16/2017 4:55 PM

Microsoft Ignite /16/2017 4:55 PM
Virtual techdays INDIA │ 9-11 February 2011 virtual techdays AppFabric Futures – Access Control Service Niraj Bhatt │ Windows Azure MVP.

Virtual techdays INDIA │ 9-11 February 2011 virtual techdays AppFabric Futures – Access Control Service Niraj Bhatt │ Windows Azure MVP.
Identity & Access Control in the Cloud Sachin Vinod Rathi Architect Advisor, Microsoft Corporation Niraj Bhatt Enterprise Architect, Windows Azure MVP.

Identity & Access Control in the Cloud Sachin Vinod Rathi Architect Advisor, Microsoft Corporation Niraj Bhatt Enterprise Architect, Windows Azure MVP.
GRDevDay March 21, 2015 Cloud-based Identity for Applications.

GRDevDay March 21, 2015 Cloud-based Identity for Applications.
Identity Management, what does it solve By Gautham Mudra.

Identity Management, what does it solve By Gautham Mudra.
SpeechTek West 2007 Automating Password Reset to Make Employees More Efficient Jason Groshart Director of Product Engineering Password Reset.

SpeechTek West 2007 Automating Password Reset to Make Employees More Efficient Jason Groshart Director of Product Engineering Password Reset.
Clients using wide variety of devices/languages/platforms Server applications using wide variety of platforms/languages Browser Native app Server.

Clients using wide variety of devices/languages/platforms Server applications using wide variety of platforms/languages Browser Native app Server.
SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)

SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)
Prabath Siriwardena Senior Software Architect. An open source Identity & Entitlement management server.

Prabath Siriwardena Senior Software Architect. An open source Identity & Entitlement management server.
Www.kennisnet.nl Naam van de Auteur 7 januari 2008 Kennisnet Entree: federated authentication Pieter BruringTechnical Product Manager.

Naam van de Auteur 7 januari 2008 Kennisnet Entree: federated authentication Pieter BruringTechnical Product Manager.
Claims Based Authentication

Claims Based Authentication
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.

Similar presentations

Ads by Google