Presentation is loading. Please wait.

Presentation is loading. Please wait.

Cloud Security Julian Lovelock VP, Product Marketing, HID Global.

Published byStuart Blankenship Modified over 9 years ago

Similar presentations

Presentation on theme: "Cloud Security Julian Lovelock VP, Product Marketing, HID Global."— Presentation transcript:

1 Cloud Security Julian Lovelock VP, Product Marketing, HID Global

2 Which part are we talking about? Cloud Security Don’t loose it Don’t get it stolen Secure infrastructure Secure operations Close back doors Enterprise Identity Management User Access management for the cloud This part Cloud access from mobile devices Enterprise BYOD strategy

3 Things to think about Avoid more user account silos. Secure access over the internet.

4 Authenticate Device What’s needed? A Layered Approach with Versatile Authentication An ASSA ABLOY Group brand PROPRIETARY INFORMATION. © 2011 HID Global Corporation. All rights reserved. An ASSA ABLOY Group brand PROPRIETARY INFORMATION. © 2011 HID Global Corporation. All rights reserved. Authenticate user Authenticate to the Cloud Determine Risk Authenticate from anywhere, anytime Risk Based Authentication Layer 3Pattern-based intelligence OOB Verification KBA Layer 2End-point Authentication Device identification and Profiling Proxy Detection Geo-location and velocity check Layer 1User Authentication (Multifactor) Something you know (passwords) Something you have (token or tokenless) Something you are (biometrics, Behaviormetrics)

5 User Access Management for the cloud Options Open Access Accessible on the public internet. Username / password, per cloud application.

6 Open Access Behind the VPN Remote users must first authenticate to the VPN, then enter username & password. User Access Management for the cloud Options

7 Open Access Behind the VPN Federated Identity Mngment User authenticates to central portal, through which he/she gains access to multiple cloud / internal applications User Access Management for the cloud Options

8 Open Access Behind the VPN Federated Identity mngmt Native strong auth Strong authentication to the individual cloud software application User Access Management for the cloud Options

9 User Access Management for the cloud Selection criteria External threats Open Access Behind the VPN Federated Identity mngmt Native strong auth Protection against attacks lauched over the internet, such as APTs, ad hoc hacking attempts and ex- employees

10 External threats Internal Threats Open Access Behind the VPN Federated Identity provider Native strong auth Protection against fraud from internal employees User Access Management for the cloud Selection criteria

11 External threats Internal Threats BYOD Open Access Behind the VPN Federated Identity mngmt Native strong auth Suitability to access from personal mobile devices User Access Management for the cloud Selection criteria

12 External threats Internal Threats BYODUser Convenience Open Access Behind the VPN Federated Identity mngmt Native strong auth Ease of access for legitimate users User Access Management for the cloud Selection criteria

13 External threats Internal Threats BYODUser Convenience Audit & Compliance Open Access Behind the VPN Federated Identity mngmt Native strong auth Retention of a centralized record of user access across different applications. Application of access policy User Access Management for the cloud Selection criteria

14 External threats Internal Threats BYODUser Convenience Audit & Compliance Open Access Behind the VPN Federated Identity mngmt Native strong auth -

15 External threats Internal Threats BYODUser Convenience Audit & Compliance Open Access Behind the VPN Federated Identity mngmt Native strong auth - -

16 External threats Internal Threats BYODUser Convenience Audit & Compliance Open Access Behind the VPN Federated Identity mngmt Native strong auth - -

17 External threats Internal Threats BYODUser Convenience Audit & Compliance Open Access Behind the VPN Federated Identity mngmt Native strong auth - -

18 Federated Identity Management Solution IdP Product (e.g. 4TRESS) Manage user credentials Authenticate users Apply policy Assert Identity to service provider Authentication for VPN & internal applications

19

20 Thank You Questions

Download ppt "Cloud Security Julian Lovelock VP, Product Marketing, HID Global."

Similar presentations

!! Are we under attack !! Consumer devices continue to invade *Corporate enterprise – just wanting to plug in* Mobile Device Management.

!! Are we under attack !! Consumer devices continue to invade *Corporate enterprise – just wanting to plug in* Mobile Device Management.
George Tubin Senior Analyst Consumer Banking © 2005 The Tower Group, Inc. May not be reproduced by any means without express permission. All rights reserved.

George Tubin Senior Analyst Consumer Banking © 2005 The Tower Group, Inc. May not be reproduced by any means without express permission. All rights reserved.
1 © Copyright 2013 EMC Corporation. All rights reserved. Online File Synchronization and Sharing for the Enterprise.

1 © Copyright 2013 EMC Corporation. All rights reserved. Online File Synchronization and Sharing for the Enterprise.
Security that is... Ergonomic, Economical and Efficient! In every way! Stonesoft SSL VPN SSL VPN.

Security that is... Ergonomic, Economical and Efficient! In every way! Stonesoft SSL VPN SSL VPN.
Information Security Confidential Two-Factor Authentication Solution Overview Shawn Fulton January 15th, 2015.

Information Security Confidential Two-Factor Authentication Solution Overview Shawn Fulton January 15th, 2015.
Sessions about to start – Get your rig on!. Notes from the field – Implement Hybrid Search and OneDrive for Business Chris Zhong - Microsoft Aaron Dinnage.

Sessions about to start – Get your rig on!. Notes from the field – Implement Hybrid Search and OneDrive for Business Chris Zhong - Microsoft Aaron Dinnage.
Empower Enterprise Mobility. of employees use personal devices for work purposes.* of employees that typically work on employer premises, also frequently.

Empower Enterprise Mobility. of employees use personal devices for work purposes.* of employees that typically work on employer premises, also frequently.
Introduction to VertX EVO Hardware. EVO V1000 Controller An ASSA ABLOY Group brand PROPRIETARY INFORMATION. © 2010 HID Global Corporation. All rights.

Introduction to VertX EVO Hardware. EVO V1000 Controller An ASSA ABLOY Group brand PROPRIETARY INFORMATION. © 2010 HID Global Corporation. All rights.
© 2014 Level 3 Communications, LLC. All Rights Reserved. Proprietary and Confidential. Polycom event Security Briefing 12/03/14 Level 3 Managed Security.

© 2014 Level 3 Communications, LLC. All Rights Reserved. Proprietary and Confidential. Polycom event Security Briefing 12/03/14 Level 3 Managed Security.
Windows Server 2012 R2 Capabilities for BYOD Scenario Yuri Diogenes Senior Knowledge Engineer Data Center, Devices & Enterprise Client – CSI Team’s Page:

Windows Server 2012 R2 Capabilities for BYOD Scenario Yuri Diogenes Senior Knowledge Engineer Data Center, Devices & Enterprise Client – CSI Team’s Page:
© 2004-2014. Centrify Corporation. All Rights Reserved. Unified Identity Management across Data Center, Cloud and Mobile.

© Centrify Corporation. All Rights Reserved. Unified Identity Management across Data Center, Cloud and Mobile.
Mobility Without Vulnerability: Secure and Enable Your Mobile Users, Apps, and Devices David Clapp – Intuitive.

Mobility Without Vulnerability: Secure and Enable Your Mobile Users, Apps, and Devices David Clapp – Intuitive.
Dr. John P. Abraham Professor UTPA.  Particularly attacks university computers  Primarily originating from Korea, China, India, Japan, Iran and Taiwan.

Dr. John P. Abraham Professor UTPA.  Particularly attacks university computers  Primarily originating from Korea, China, India, Japan, Iran and Taiwan.
Wireless Password: 9166703926. ONLINE GAMING / GAMBLING KNOW - YOUR - CUSTOMER AND RISK MANAGEMENT.

Wireless Password: ONLINE GAMING / GAMBLING KNOW - YOUR - CUSTOMER AND RISK MANAGEMENT.
Market Trends Enterprise Web Applications Cloud Computing SaaS Applications BYOD Data Compliance Regulations 30 Second Elevator Pitch Web browsers have.

Market Trends Enterprise Web Applications Cloud Computing SaaS Applications BYOD Data Compliance Regulations 30 Second Elevator Pitch Web browsers have.
Chapter 20 20-1 © 2012 Pearson Education, Inc. Publishing as Prentice Hall.

Chapter © 2012 Pearson Education, Inc. Publishing as Prentice Hall.
The Cloud Identity Security Leader. © 2012 Ping Identity Corporation Nair the twain shall meet Enterprise Social Mobile.

The Cloud Identity Security Leader. © 2012 Ping Identity Corporation Nair the twain shall meet Enterprise Social Mobile.
FIVE STEPS TO REDUCE THE RISK OF CYBERCRIME TO YOUR BUSINESS.

FIVE STEPS TO REDUCE THE RISK OF CYBERCRIME TO YOUR BUSINESS.
Dell Connected Security Solutions Simplify & unify.

Dell Connected Security Solutions Simplify & unify.
Security considerations for mobile devices in GoRTT

Security considerations for mobile devices in GoRTT

Similar presentations

Ads by Google