Presentation is loading. Please wait.

Presentation is loading. Please wait.

By: Nikhil Bendre Gauri Jape.  What is Identity?  Digital Identity  Attributes  Role  Relationship.

Published byLeon Chandler Modified over 9 years ago

Similar presentations

Presentation on theme: "By: Nikhil Bendre Gauri Jape.  What is Identity?  Digital Identity  Attributes  Role  Relationship."— Presentation transcript:

1 By: Nikhil Bendre Gauri Jape

2  What is Identity?  Digital Identity  Attributes  Role  Relationship

3  Authentication ◦Who wants to access the system?  Authorization ◦Defining the rights to access  IDAM

4  Streamlines the access to resources  Reduces the wastage of time  Efficient Provisioning  Reduces Administrative Cost  Single Password  Ensures greater user productivity

5  Software Engineering  Architecture  Scalability  Need to standardize IDAM

6  Composed of ◦ Subjects ◦ Objects ◦ Access rights  Types ◦ ACL ◦ RBAC ◦ ABAC ◦ CWAC

7  Access Control List  Consists of list of subjects & objects with the access rights  Example ◦ acl(file 1) = { (process 1, {read, write, own}), (process 2 {append}) } ◦ acl(process 1) = { (process 1, {read, write, execute, own}), (process 2, {read}) }

8  Role Based Access Control  Consists of ◦ Group of users based on roles ◦ Permissions to roles  Supports revocation of access  High level specification possible

9  Attributes Based Access Control ◦ Grants access to the entities based on attributes  Context Aware Access Control ◦ Access based on surrounding context of subjects or objects  Both Support High Level Specification

10  Property of access control  Single Login In  Total Access to System  Examples ◦ One Time Password ◦ Smart Cards

11  New token structure  Conference key mechanism ◦ Secure way between service provider & identity provider  Service token mechanism for IDAM

12  IDAM  Access Control Models  Single Sign On  Sourceld Liberty

13

Download ppt "By: Nikhil Bendre Gauri Jape.  What is Identity?  Digital Identity  Attributes  Role  Relationship."

Similar presentations

Smart Certificates: Extending X.509 for Secure Attribute Service on the Web October 1999 Joon S. Park, Ph.D. Center for Computer High Assurance Systems.

Smart Certificates: Extending X.509 for Secure Attribute Service on the Web October 1999 Joon S. Park, Ph.D. Center for Computer High Assurance Systems.
Access Control Chapter 3 Part 3 Pages 209 to 227.

Access Control Chapter 3 Part 3 Pages 209 to 227.
Access Control Methodologies

Access Control Methodologies
Kerberos and PKI Cooperation Daniel Kouřil, Luděk Matyska, Michal Procházka Masaryk University AFS & Kerberos Best Practices Workshop 2006.

Kerberos and PKI Cooperation Daniel Kouřil, Luděk Matyska, Michal Procházka Masaryk University AFS & Kerberos Best Practices Workshop 2006.
May 22, 2002 Joint Operations Group Discussion Overview Describe the UC Davis Security Architecture Describe Authentication Efforts at UC Davis Current.

May 22, 2002 Joint Operations Group Discussion Overview Describe the UC Davis Security Architecture Describe Authentication Efforts at UC Davis Current.
Secure Information Sharing. Role-Based Access Control USERSROLES SESSIONS OPSOBS PRMS session_rolesuser_session User Assignment (UA) Permission Assignment.

Secure Information Sharing. Role-Based Access Control USERSROLES SESSIONS OPSOBS PRMS session_rolesuser_session User Assignment (UA) Permission Assignment.
90321011 孫國偉 Efficient Password authenticated key agreement using smart cards Author : Wen-Shenq Juang* Date : 2003.11.26 in Computers & Security.

孫國偉 Efficient Password authenticated key agreement using smart cards Author : Wen-Shenq Juang* Date : in Computers & Security.
Introduction To Windows NT ® Server And Internet Information Server.

Introduction To Windows NT ® Server And Internet Information Server.
Computer Security: Principles and Practice EECS710: Information Security Professor Hossein Saiedian Fall 2014 Chapter 4: Access Control.

Computer Security: Principles and Practice EECS710: Information Security Professor Hossein Saiedian Fall 2014 Chapter 4: Access Control.
SACMAT02-1 Security Prototype Defining a Signature Constraint.

SACMAT02-1 Security Prototype Defining a Signature Constraint.
Identity Management, what does it solve By Gautham Mudra.

Identity Management, what does it solve By Gautham Mudra.
Distributed Computer Security 8.2 Discretionary Access Control Models - Sai Phalgun Tatavarthy.

Distributed Computer Security 8.2 Discretionary Access Control Models - Sai Phalgun Tatavarthy.
Lecture slides prepared for “Computer Security: Principles and Practice”, 2/e, by William Stallings and Lawrie Brown, Chapter 4 “Overview”.

Lecture slides prepared for “Computer Security: Principles and Practice”, 2/e, by William Stallings and Lawrie Brown, Chapter 4 “Overview”.
Authentication and authorization Access control consists of two steps, authentication and authorization. Subject Do operation Reference monitor Object.

Authentication and authorization Access control consists of two steps, authentication and authorization. Subject Do operation Reference monitor Object.
Understanding Active Directory

Understanding Active Directory
Li Xiong CS573 Data Privacy and Security Access Control.

Li Xiong CS573 Data Privacy and Security Access Control.
Windows Security Mechanisms Al Bento - University of Baltimore.

Windows Security Mechanisms Al Bento - University of Baltimore.
Using Active Directory for Authorizations CSG, September 2002.

Using Active Directory for Authorizations CSG, September 2002.
Extranet Enhancements JTC Spring 2015 May 13, 2015.

Extranet Enhancements JTC Spring 2015 May 13, 2015.
SAML, XACML & the Terrorism Information Sharing Environment “Interoperable Trust Networks” XML Community of Practice February 16, 2005 Martin Smith Program.

SAML, XACML & the Terrorism Information Sharing Environment “Interoperable Trust Networks” XML Community of Practice February 16, 2005 Martin Smith Program.

Similar presentations

Ads by Google