digital identity as a basis for internet security
play

Digital Identity as a Basis for Internet Security Infrastructure - PowerPoint PPT Presentation

Nov 11, 2023 •201 likes •337 views

Digital Identity as a Basis for Internet Security Infrastructure Ing. Radovan Semank Business Global Systems Agenda Introduction Unified User Management Public Key Infrastructure Digital Identity Conclusion Introduction

  1. Digital Identity as a Basis for Internet Security Infrastructure Ing. Radovan Semančík Business Global Systems

  2. Agenda  Introduction  Unified User Management  Public Key Infrastructure  Digital Identity  Conclusion

  3. Introduction  Traditional Internet Security Systems:  Passwords (ad-hoc)  Kerberos  Commercial: NIS, NIS+, LanMan, SecureID,...  Authentication/Single Sign-On only  Need to change  Cross-domain SSO  B2B interactions  Web Services

  4. Unified User Management “Directory” Server

  5. Unified User Management  Directories (LDAP), Meta-directories, User provisioning systems, ...  Good for isolated (enterprise) environment  Mostly LDAP-based solutions  LDAP does not maintain long-term user session  Limited support for dynamic attributes and services  Limited Internet-size scalability  Global directory (“X.500” model) infeasible

  6. Public Key Infrastructure  Based on public key cryptography  In common use on the Internet  X.509, SSL/TLS, IPsec (IKE), S/MIME  Naming problem  X.509 originally extension to X.500 – global directory service assumed  Privacy problem  What attributes to include in the certificate?  Complexity problem  User-side processing makes deployments difficult

  7. Digital Identity  On-line security server model  Based on Security Assertion Markup Language (SAML) – OASIS Standard  User profile manager: Identity Provider Authentication Identity Provider User Profile SAML Service Provider Access

  8. Digital Identity on the Internet  Global Internet environment  No global ID  No single provider  Privacy  Pseudonyms (user handles)  User profile split among different identity providers  Different trust levels

  9. Digital Identity on the Internet Organization Boundaries User Identity Profile Provider Auth. Service Provider Identity Provider Service User Provider Profile

  10. Conclusion  Traditional security systems no longer feasible  Unified User Management good in enterprise  Public Key Infrastructure as a support system  Digital Identity services  Simplified Sign-On  User profiles  Web applications security framework  Web Services security

  11. Questions?

  12. B u s i n e s s G l o b a l S y s t e m s , a . s . Thank you ... Ing. Radovan Semančík Business Global Systems, a.s. Pluhová 2 83248 Bratislava semancik@bgs.sk C o m p l e x n e t w o r k i n g s o l u t i o n s

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Internet Identity Initiatives Internet Identity Initiatives RL Bob Morgan University of

Internet Identity Initiatives Internet Identity Initiatives RL Bob Morgan University of

Internet Identity Initiatives Internet Identity Initiatives RL Bob Morgan University of Washington and Internet2 EMC2 Mlaga, S pain October 2006 Topics Topics Internet identity buzzwords/ proj ects: user-centric, sxip, dix,

395 views • 18 slides
Internet Identity and Access Control Dr Ken Klingenstein, Director, Middleware and Security,

Internet Identity and Access Control Dr Ken Klingenstein, Director, Middleware and Security,

Internet Identity and Access Control Dr Ken Klingenstein, Director, Middleware and Security, Internet2 Topics Whats happening/ impacts See lunch talk The Research Angle Researchers as users Security Researchers New

499 views • 10 slides
Private Digital Identity on Blockchain Tom Hamer, Kerry Taylor, Kee Siong Ng, Alwen Tiu The

Private Digital Identity on Blockchain Tom Hamer, Kerry Taylor, Kee Siong Ng, Alwen Tiu The

Private Digital Identity on Blockchain Tom Hamer, Kerry Taylor, Kee Siong Ng, Alwen Tiu The Global Identity Crisis In order to access critical services such as finance and social security, people need to have an identity 1.5 billion

857 views • 24 slides
Digital identity, anonymity, pseudonymity and law in India Rowena E Rodrigues University of

Digital identity, anonymity, pseudonymity and law in India Rowena E Rodrigues University of

Digital identity, anonymity, pseudonymity and law in India Rowena E Rodrigues University of Edinburgh Digital India Increase in Internet usage and penetration Cyber cafs Telecentres Home Use Other applications

477 views • 15 slides
Delivery of digital initiatives Case study: Deployment of Indias Biometric Digital Identity

Delivery of digital initiatives Case study: Deployment of Indias Biometric Digital Identity

Delivery of digital initiatives Case study: Deployment of Indias Biometric Digital Identity Platform Regis Bauchiere GM Identity Solutions, Australia Post Digital identity initiatives Learning from global experiences Chile

705 views • 19 slides
Trust, Identity Management and GENI Dr. Ken Klingenstein, Senior Director, Middleware and

Trust, Identity Management and GENI Dr. Ken Klingenstein, Senior Director, Middleware and

Trust, Identity Management and GENI Dr. Ken Klingenstein, Senior Director, Middleware and Security, Internet2 Technologist, University of Colorado at Boulder Topics Internet identity update Technology updates ISOC, IETF Identity,

601 views • 23 slides
Hardware-Intrinsic Identity for IP Protection John Ross Wallrabenstein Sypris Research Sypris

Hardware-Intrinsic Identity for IP Protection John Ross Wallrabenstein Sypris Research Sypris

Hardware-Intrinsic Identity for IP Protection John Ross Wallrabenstein Sypris Research Sypris Electronics Digital Supply Chain Security How is digital information shared securely? Digital Supply Chain Security How is digital

443 views • 25 slides
Larry Clinton President/CEO Internet Security Alliance lclinton@eia.org 703-907-7028

Larry Clinton President/CEO Internet Security Alliance lclinton@eia.org 703-907-7028

Larry Clinton President/CEO Internet Security Alliance lclinton@eia.org 703-907-7028 202-236-0001 Digital Growth? Sure Companies have built into their business models the efficiencies of digital technologies such as real time tracking

570 views • 11 slides
DIGITAL IDENTITY Ben Livshits, Microsoft Research Overview of Todays Lecture 2 Brief

DIGITAL IDENTITY Ben Livshits, Microsoft Research Overview of Todays Lecture 2 Brief

DIGITAL IDENTITY Ben Livshits, Microsoft Research Overview of Todays Lecture 2 Brief history of user Popular identity identities protocols SAML Single sign-on OpenID InfoCard and CardSpace Federated identity

786 views • 66 slides
The Internet Security Alliance The Internet Security Alliance is a collaborative effort with

The Internet Security Alliance The Internet Security Alliance is a collaborative effort with

The Internet Security Alliance The Internet Security Alliance is a collaborative effort with Carnegie Mellon University. It is a cross-sector, internationally- based trade association devoted to cyber security. ISA has individual corporate

349 views • 30 slides
Digital Identity Scotland Attribute Strategy Discussion Friday 22 November 2019 Welcome Colin

Digital Identity Scotland Attribute Strategy Discussion Friday 22 November 2019 Welcome Colin

Digital Identity Scotland Attribute Strategy Discussion Friday 22 November 2019 Welcome Colin Cook Director Digital Scottish Government What we will cover 1. Brief overview; Digital Identity the story so far 2. Opportunities from an

604 views • 34 slides
IT Security Evaluation Why do we need security evaluation To provide a basis for specifying

IT Security Evaluation Why do we need security evaluation To provide a basis for specifying

IT Security Evaluation Why do we need security evaluation To provide a basis for specifying security expectations To verify that a computer product/system fulfills the requirements imposed on it To establish a metric for the degree

535 views • 19 slides
Identity and Access Management Using Identity Management and Identity Governance to increase

Identity and Access Management Using Identity Management and Identity Governance to increase

Identity and Access Management Using Identity Management and Identity Governance to increase Automation and Security. Identity Management (IAM, IdM) defining and managing the roles and access privileges of individual network users, and the

2.89k views • 13 slides
Internet Identity Workshop IIW 2008b Introduction Johannes Ernst NetMesh Inc.

Internet Identity Workshop IIW 2008b Introduction Johannes Ernst NetMesh Inc.

Internet Identity Workshop IIW 2008b Introduction Johannes Ernst NetMesh Inc. http://netmesh.info/jernst Johannes Ernst Modern Identity History Facebook Proprietary et al. Yadis URL-based Age of identity Card-based interop

1.01k views • 24 slides
Communication security over the Internet The big picture Me Internet Resource Internet

Communication security over the Internet The big picture Me Internet Resource Internet

Communication security over the Internet The big picture Me Internet Resource Internet Server Client Attack vectors MAN DNS LAN Client Internet Back Bone Router Networking WWW overview MITM (Man In The Middle) 3 2 4 5 LAN

244 views • 23 slides
Why do we need security evaluation To provide a basis for specifying security expectations

Why do we need security evaluation To provide a basis for specifying security expectations

Why do we need security evaluation To provide a basis for specifying security expectations IT Security Evaluation To verify that a computer product/system fulfills the requirements imposed on it To establish a metric for the degree

70 views • 4 slides
XML Extensible Markup Language Generic format for structured representation of data. DD1335

XML Extensible Markup Language Generic format for structured representation of data. DD1335

XML XML Extensible Markup Language Generic format for structured representation of data. DD1335 (Lecture 9) Basic Internet Programming Spring 2010 1 / 34 XML XML Extensible Markup Language Generic format for structured

1.29k views • 117 slides
Computer Security: Computer Security: Principles and Practice Principles and Practice Chapter

Computer Security: Computer Security: Principles and Practice Principles and Practice Chapter

Computer Security: Computer Security: Principles and Practice Principles and Practice Chapter 22 Internet Authentication Internet Authentication Chapter 22 Applications Applications First Edition First Edition by William

344 views • 19 slides
Ohio Latino Affairs Advise. Connect. Build. About Us The Commission on Hispanic-Latino Affairs

Ohio Latino Affairs Advise. Connect. Build. About Us The Commission on Hispanic-Latino Affairs

Ohio Latino Affairs Advise. Connect. Build. About Us The Commission on Hispanic-Latino Affairs exists to act as a liaison between government and the community. This role means that the Commission helps the community bring issues, concerns

272 views • 16 slides
WHAT IS THE SERVICE DIRECTORY? USING THE DIRECTORY Simple format- search by Service Name (if

WHAT IS THE SERVICE DIRECTORY? USING THE DIRECTORY Simple format- search by Service Name (if

A one-stop shop , district and borough-wide register of local services , events and other assets Professional directory- the information on it is not made available to the wider public. Users can see at a glance what the service can do

294 views • 11 slides
within eduGAIN Research Project: 2 Supervisor: Brook Schofield GANT Marcel den Reijer

within eduGAIN Research Project: 2 Supervisor: Brook Schofield GANT Marcel den Reijer

Calculating metadata propagation time within eduGAIN Research Project: 2 Supervisor: Brook Schofield GANT Marcel den Reijer Thursday July 4, 2019 UvA System & Network Engineering 1 of 18 In Introduction eduGAIN

389 views • 19 slides
Software Integration of Medical Devices An Important Issue in Modern Health Technology D IRK T

Software Integration of Medical Devices An Important Issue in Modern Health Technology D IRK T

Software Integration of Medical Devices An Important Issue in Modern Health Technology D IRK T IMMERMANN F RANK G OLATOWSKI I NSTITUTE OF A PPLIED M ICROELECTRONICS UND C OMPUTER E NGINEERING U NIVERSITY OF R OSTOCK Topics Motivation Why

207 views • 19 slides
Google<-SAML->Zscaler Integration Agenda n What is SAML? n AAA, Testing,

Google<-SAML->Zscaler Integration Agenda n What is SAML? n AAA, Testing,

Summer Webinar Series Google<-SAML->Zscaler Integration Dianne Dunlap (ddunlap@mcnc.org, 919-248-8439) Client Network Engineering Webinar Links: www.mcnc.org/cne-webinars Google<-SAML->Zscaler Integration Agenda n What is

899 views • 63 slides
E-nvisioning the participation of European construction SMEs in a future e-Business scenario

E-nvisioning the participation of European construction SMEs in a future e-Business scenario

E-nvisioning the participation of European construction SMEs in a future e-Business scenario Iaki Angulo, Eduardo Garca, Nieves Pea, Valentn Snchez LABEIN Technological Center, Bizkaia, SPAIN (angulo, egarcia, npena, valen@labein.es)

331 views • 8 slides

More recommend