ifip fidis s ummer s chool 2007 enterprise identity
play

IFIP FIDIS S ummer S chool 2007: Enterprise Identity - PowerPoint PPT Presentation

Sep 21, 2023 •483 likes •718 views

IFIP FIDIS S ummer S chool 2007: Enterprise Identity Management What s in it for Organisations? Denis Royer Johann Wolfgang Goethe University Frankfurt Chair for Mobile Business and Multilateral S ecurity ... ...

  1. …… …… IFIP FIDIS S ummer S chool 2007: Enterprise Identity Management – What’ s in it for Organisations? Denis Royer Johann Wolfgang Goethe University Frankfurt Chair for Mobile Business and Multilateral S ecurity ... ...

  2. …… …… Agenda � Introduction � The Need for IdM in Organisations � Driving Factors for IDM � The Cost S ide of IdM � Evaluation of IdM � Prerequisites � The Evaluation Process � Conclusion / Discussion ... ... Denis Royer @ IFIP/ FIDIS S ummer S chool 2007 2

  3. …… …… Goals and Obj ective � S ecurity related technologies often lack strategic focus for the decision makers. � Decision makers will not invest into security technologies and infrastructures without analysing the costs and benefits. � Evaluation schemes are needed to help identifying potentials and support the decision making process. � A generic approach how to tackle these issues is presented. ... ... Denis Royer @ IFIP/ FIDIS S ummer S chool 2007 3

  4. …… …… Enterprise Identity Management ... ... Denis Royer @ IFIP/ FIDIS S ummer S chool 2007 [Flynn] 4

  5. …… …… Identity lifecycle � Enrolment - Creation of accounts for new employees: issuance of the credentials and setting of the access permissions. � Management - Maintenance of accounts: in a changing working environment (promotions, change of departments, etc,) the user and access management needs to handle the access permission (e.g. for minimising liabilities). � Support - Password management: issue new passwords or reset passwords that are “ lost” . � Deletion - End of lifecycle: revoke or freeze accounts or entitlements. ... ... Denis Royer @ IFIP/ FIDIS S ummer S chool 2007 5

  6. …… …… (Enterprise) Identity Management � Organisational: S oftware systems that help to facilitate one or more of the 4 As: Authorisation, Authentication, Administration, and Audit � Technological: Cluster of different technologies: � S ingle S ign-On (S S O) � Meta Directories � PKI Infrastructures � Access Management S ystems � ... � Therefore, IdM is a framework of different technologies, not a specific product. ... ... Denis Royer @ IFIP/ FIDIS S ummer S chool 2007 6

  7. …… …… Problems of IT S ecurity Investments � Many problems inherited from general IT investments. � Also additional problems: � “ How can the arguments be overcome that security investments do not generate any revenue? ” � “ How can an IT security investment be established as cost-effective, when the best that could happen is that “ nothing” happens? ” � “ How can the optimal level of the total IT security investments be determined? ” ... ... Denis Royer @ IFIP/ FIDIS S ummer S chool 2007 7

  8. …… …… Driving Factors for IdM � Amongst a variety of driving factors for introducing IdM into an organisation, the most prerelevant appear to be: � Risk management / IT security soals � Value creation goals (e.g. efficiency, cost reduction) � Compliance goals � The goals itself are not mutually exclusive - However there are overlaps. ... ... Denis Royer @ IFIP/ FIDIS S ummer S chool 2007 8

  9. …… …… Example: The CIO and Compliance � Legislative mandates � S arbanes-Oxley � Basel 2 � Goals: � Goals: accountability, fraud prevention, & reporting � Instruments needed to build up infrastructures and to control them � Otherwise risk of serving “ jail time jail time ” for the CIO. ... ... Denis Royer @ IFIP/ FIDIS S ummer S chool 2007 9 [Berghal]

  10. …… …… The cost side � IdM is not a purely technology driven topic, as it intervenes with the infrastructure and the processes in an organisation. � The nature of the proj ects differ considerably, depending on the inherent requirements. � The lifecycle costs (e.g. introduction, running costs, etc.) need to be integrated as well. Bottom line: There are high saving potentials, Bottom line: bundled with high costs. ... ... Denis Royer @ IFIP/ FIDIS S ummer S chool 2007 10

  11. …… …… The Paradox of the Return on IdM Investment � Need for a holistic approach, since IdM has a high impact on the organisational structure. � However, organisations tend to fail to see the big picture and cannot achieve the return [Dos S antos] aimed at. � Solution: build cross-functional teams � Enable strategic thinking � Better estimate costs and benefits � Overcome possible “ language” barriers ... ... Denis Royer @ IFIP/ FIDIS S ummer S chool 2007 11

  12. …… …… IdM S takeholders Management Management IT Department IT Department Management IT Department Cross- Cross - • Make decisions Cross- • Implement solutions • Set policies functional functional • Support users functional • Develop strategies and management Team Team • Risk assessment Team Users Users Users • Knowledge of processes ... ... Denis Royer @ IFIP/ FIDIS S ummer S chool 2007 12

  13. …… …… Agenda � Introduction � The Need for IdM in Organisations � Driving Factors for IDM � The Cost S ide of IdM � Evaluation of IdM � Prerequisites � The Evaluation Process � Conclusion / Discussion ... ... Denis Royer @ IFIP/ FIDIS S ummer S chool 2007 13

  14. …… …… Prerequisites for the Analysis � Underlying assumptions need to be realistic (e.g. by using reference/ benchmark proj ects). � Complete view on costs � Impact of the different factors on each other � Usage of finance-mathematical methods � Usage of scenarios to cope with uncertainty � For decision support: � It is not possible to gather all data in an acceptable timeframe � S ome degree of compromise is needed � Results only need to be sufficiently accurate for decision making ... ... Denis Royer @ IFIP/ FIDIS S ummer S chool 2007 14

  15. …… …… Operationalisation 1 2 Build Holistic Build Holistic Analyse Goals & Analyse Goals & Build Holistic Analyse Goals & View of the Environment View of the Environment View of the Environment Organisation Organisation Organisation Divide plan Divide plan Divide plan 3 based on strategy based on strategy based on strategy S trategic Planning Phase 1. Assessment of org. view and strategic goals Definition Definition 2. Define and document scope Zur Anzeige wird der QuickTime™ Dekompressor „“ benötigt. 4 Z ur wir ge ei Anz kT ic der Qu d i me™ D b eko mpr es sor enö ti gt. „“ 3. Define Costs Zur Anzeige wird der QuickTime™ Dekompressor „“ benötigt. 4. te E sti ma tan be ble gi fit ne s Assessment Assessment Evaluate Evaluate Evaluate 5. D ocu me nt be int an gib le nef its 6. Document risks Calculation Calculation 7. C alc ul ate po tur te nti al re n 5 Sequence of Execution Sequence of Execution Sequence of Execution ... ... Denis Royer @ IFIP/ FIDIS S ummer S chool 2007 15

  16. …… …… Evaluation Process 1. Assessment of org. view and strategic goals 1. Assessment of org. view and strategic goals Definition Definition 2. Define and document scope 2. Define and document scope 3. Define Costs 3. Define Costs 4. Estimate tangible benefits 4. Estimate tangible benefits Assessment Assessment 5. Document intangible benefits 5. Document intangible benefits 6. Document risks 6. Document risks Calculation Calculation 7. Calculate potential return 7. Calculate potential return ... ... Denis Royer @ IFIP/ FIDIS S ummer S chool 2007 16

  17. …… …… Lifecycle View Planning Implementation Running Upgrading Decommission Planning Implementation Running Upgrading Decommission Economical Proj ect Planning & Control Evaluation Controlling [t] Process & Role Models Best Practice S teering Methodologies ... ... Denis Royer @ IFIP/ FIDIS S ummer S chool 2007 17

  18. …… …… Agenda � Introduction � The Need for IdM in Organisations � Driving Factors for IDM � The Cost S ide of IdM � Evaluation of IdM � Prerequisites � The Evaluation Process � Conclusion / Discussion ... ... Denis Royer @ IFIP/ FIDIS S ummer S chool 2007 18

  19. …… …… Conclusion � The proposed evaluation process should help to assess costs and benefits in a formalised way. � Associated risks � Facilitate the decision process � More transparent assessment of introduction � Cross-functional team � Planning of IdM strategy ... ... Denis Royer @ IFIP/ FIDIS S ummer S chool 2007 19

  20. …… …… How to Proceed? � Build a complete evaluation and steering scheme as a decision support tool for organisations � Based on ROS I? � Based on a specific IT S ecurity Balanced S corecard? � ... [Kaplan & Norton] ... ... Denis Royer @ IFIP/ FIDIS S ummer S chool 2007 20

  21. …… …… Thank you for your attention! Any Questions? denis.royer@ m-chair.net ... ... Denis Royer @ IFIP/ FIDIS S ummer S chool 2007 21

  22. …… …… � Decision support instruments � Return on S ecurity Investment (ROS I) � More holistic approach to make evaluations comparable in the way they are conducted. ... ... Denis Royer @ IFIP/ FIDIS S ummer S chool 2007 22

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

FIDIS FIDIS Future of Identity in the Future of Identity in the Information Society

FIDIS FIDIS Future of Identity in the Future of Identity in the Information Society

FIDIS FIDIS Future of Identity in the Future of Identity in the Information Society Information Society An FP6 Network of Excellence An FP6 Network of Excellence Johann Wolfgang Goethe University Frankfurt Kai Rannenberg, Denis Royer

640 views • 22 slides
IFIP Summer Summer School School 2007 2007 IFIP Leveraging New New Business Business Models

IFIP Summer Summer School School 2007 2007 IFIP Leveraging New New Business Business Models

IFIP Summer Summer School School 2007 2007 IFIP Leveraging New New Business Business Models Models with with Identity Identity Management Management Leveraging An e e- -learning learning case case study study An Jos M. del

421 views • 25 slides
OpenID Connect & OAuth 2.0 Server for the Enterprise Your enterprise server for single

OpenID Connect & OAuth 2.0 Server for the Enterprise Your enterprise server for single

OpenID Connect & OAuth 2.0 Server for the Enterprise Your enterprise server for single identity sign-on provision identity API access federation management The four Connect2id server pillars Based on the latest standards OpenID

580 views • 26 slides
all at once with Azure Active Directory Etan Basseri Senior Program Manager Identity Engineering

all at once with Azure Active Directory Etan Basseri Senior Program Manager Identity Engineering

Identity, Security and Collaboration, all at once with Azure Active Directory Etan Basseri Senior Program Manager Identity Engineering Microsoft 365 Enterprise Office 365 Windows 10 Enterprise Mobility Enterprise Enterprise + Security

503 views • 7 slides
RFID Technologies: Emerging Issues, Challenges, Policy Options A study by TNO and Telecom Italia

RFID Technologies: Emerging Issues, Challenges, Policy Options A study by TNO and Telecom Italia

RFID Technologies: Emerging Issues, Challenges, Policy Options A study by TNO and Telecom Italia for IPTS IFIP/FIDIS Summerschool Karlstad - 2007 Overview RFID Technologies RFID Markets RFID Privacy issues Conclusions 2

734 views • 19 slides
IACS What is EIDM? CMS has established the Enterprise Identity Management (EIDM) website to

IACS What is EIDM? CMS has established the Enterprise Identity Management (EIDM) website to

Tammy McNeil, RHIA, CPHIT, CPEHR Quality Improvement Advisors EIDM Migration from IACS What is EIDM? CMS has established the Enterprise Identity Management (EIDM) website to provide business partners with a means to apply for, obtain

551 views • 26 slides
Skidmore College F ACULTY S TUDENT S UMMER R ESEARCH P ROGRAM S UMMER 2015 F INAL P RESENTATIONS A

Skidmore College F ACULTY S TUDENT S UMMER R ESEARCH P ROGRAM S UMMER 2015 F INAL P RESENTATIONS A

Skidmore College F ACULTY S TUDENT S UMMER R ESEARCH P ROGRAM S UMMER 2015 F INAL P RESENTATIONS A UGUST 6, 2015 Faculty Student Summer Research Program Summer 2015 Index Alumni, Parents, Friends, and Foundation Support

741 views • 28 slides
Skidmore College F ACULTY S TUDENT S UMMER R ESEARCH P ROGRAM S UMMER 2014 F INAL P RESENTATIONS J

Skidmore College F ACULTY S TUDENT S UMMER R ESEARCH P ROGRAM S UMMER 2014 F INAL P RESENTATIONS J

Skidmore College F ACULTY S TUDENT S UMMER R ESEARCH P ROGRAM S UMMER 2014 F INAL P RESENTATIONS J ULY 31, 2014 Faculty Student Summer Research Program Summer 2014 Index Alumni, Parents, Friends, and Foundation Support

665 views • 38 slides
Oracle Buys Enterprise Role Management Leader Bridgestream Strengthens the Industrys Most

Oracle Buys Enterprise Role Management Leader Bridgestream Strengthens the Industrys Most

Oracle Buys Enterprise Role Management Leader Bridgestream Strengthens the Industrys Most Comprehensive and Feature-Rich Identity Management Solution September 5, 2007 The following is intended to outline our general product direction. It is

319 views • 18 slides
Adit Enterprise. Adit Enterprise. Adit Enterprise. Adit Enterprise. ADIT Enterprise is a

Adit Enterprise. Adit Enterprise. Adit Enterprise. Adit Enterprise. ADIT Enterprise is a

Adit Enterprise. Adit Enterprise. Adit Enterprise. Adit Enterprise. ADIT Enterprise is a wholesale distribution business providing complete range of Electronic Security Systems Kamlesh 093232 51184 Adit Enterprise Adit Enterprise Adit

619 views • 29 slides
A Survey on Untransferable Anonymous Credentials 1 Sebastian Pape, Databases and Interactive

A Survey on Untransferable Anonymous Credentials 1 Sebastian Pape, Databases and Interactive

FIDIS / IFIP Summerschool Workshop 2: Privacy Issues Sebastian Pape A Survey on Untransferable Anonymous Credentials 1 Sebastian Pape, Databases and Interactive Systems Research Group Overview Anonymous Credentials Approaches to

382 views • 23 slides
T HE N EED IN I OWA - 2002 27 School Districts at >40% T HE N EED IN I OWA - 2014 153

T HE N EED IN I OWA - 2002 27 School Districts at >40% T HE N EED IN I OWA - 2014 153

2/18/2016 Carrie Scheidel, MPH The webinar will begin at 1:30pm.. S UMMER F OOD S ERVICE P ROGRAM H UNGER D OESN T T AKE A S UMMER V ACATION S TEPHANIE D ROSS SFSP C ONSULTANT B ACKGROUND Ensure children could continue to receive

392 views • 15 slides
a Teaching Experience Report Prof. Dr. Robert Buchmann, Lect. Dr. Ana-Maria Ghiran University

a Teaching Experience Report Prof. Dr. Robert Buchmann, Lect. Dr. Ana-Maria Ghiran University

10th IFIP WG 8.1 Practice of Enterprise Modelling Conference Workshop on Practicing Open Enterprise Modelling within OMiLAB (PROSE) Nov. 22th-24th, 2017, Leuven, Belgium Engineering the Cooking Recipe Modelling Method: a Teaching Experience

213 views • 18 slides
Don't Lose Sight of the Extended Enterprise Rod Rasmussen President/CTO Internet Identity

Don't Lose Sight of the Extended Enterprise Rod Rasmussen President/CTO Internet Identity

Don't Lose Sight of the Extended Enterprise Rod Rasmussen President/CTO Internet Identity 2011 Annual FIRST Conference Vienna, Austria Presenter: Rod Rasmussen Rod.Rasmussen<at>InternetIdentity.com President & CTO

704 views • 44 slides
Automatic Privacy Policy Clustering ... applicable privacy preferences settings to formalise the

Automatic Privacy Policy Clustering ... applicable privacy preferences settings to formalise the

Automatic Privacy Policy Clustering ... applicable privacy preferences settings to formalise the data disclosure decisions and for visualization IFIP Summer School on Identity Management Karlstad, Sweden August, 6 th -10 th 2007

338 views • 15 slides
Enterprise Services Enterprise Services for Defense Transformation for Defense Transformation

Enterprise Services Enterprise Services for Defense Transformation for Defense Transformation

Enterprise Services Enterprise Services for Defense Transformation for Defense Transformation Prof. Paul A. Strassmann George Mason University, February 19, 2007 1 Prof. Strassmann, GMU, February 2007 Lecture, REPRODUCED BY PERMISSION Case

405 views • 39 slides
Piecewise Holistic Autotuning of Compiler and Runtime Parameters Mihail Popov, Chadi Akel,

Piecewise Holistic Autotuning of Compiler and Runtime Parameters Mihail Popov, Chadi Akel,

Piecewise Holistic Autotuning of Compiler and Runtime Parameters Mihail Popov, Chadi Akel, William Jalby, Pablo de Oliveira Castro University of Versailles Exascale Computing Research August 2016 C E R E Context Architecture, system,

388 views • 24 slides
METIS II overview Dr Magnus Frodigh Dr Magnus Frodigh Director, Wireless Access Networks,

METIS II overview Dr Magnus Frodigh Dr Magnus Frodigh Director, Wireless Access Networks,

METIS II overview Dr Magnus Frodigh Dr Magnus Frodigh Director, Wireless Access Networks, Ericsson Research Director, Wireless Access Networks, Ericsson Research METIS-II objectives Develop the overall 5G radio access network design 1

466 views • 15 slides
Meet the Parents Primary 3 Briefing Session 24 Jan 2015 PERI Holistic Assessment English

Meet the Parents Primary 3 Briefing Session 24 Jan 2015 PERI Holistic Assessment English

Meet the Parents Primary 3 Briefing Session 24 Jan 2015 PERI Holistic Assessment English ENGLISH BRIEFING OUTLINE P3 EL Curriculum P3 English Holistic Assessment Plan Suggested EL activities for parent and child inspir

899 views • 56 slides
Probabilistic Mission Defense and Assurance NATO STO IST-148 Symposium on Cyber Defence Situation

Probabilistic Mission Defense and Assurance NATO STO IST-148 Symposium on Cyber Defence Situation

INSTITUTE OF INFORMATION SYSTEMS Probabilistic Mission Defense and Assurance NATO STO IST-148 Symposium on Cyber Defence Situation Awareness Alexander Motzek Ralf Mller Universitt zu Lbeck Institute of Information Systems

605 views • 28 slides
OctopusDB Towards a one-size-fits-all Architecture for Database Systems Alekh Jindal Supervisor:

OctopusDB Towards a one-size-fits-all Architecture for Database Systems Alekh Jindal Supervisor:

Information Systems Group OctopusDB Towards a one-size-fits-all Architecture for Database Systems Alekh Jindal Supervisor: Prof. Dr. Jens Dittrich May 31, 2010 Database Landscape Information Systems Group OLAP Streaming Archival System

1.24k views • 39 slides
Three Approaches to Assessment in the Quantitative Reasoning Classroom Dr. Maura Mast

Three Approaches to Assessment in the Quantitative Reasoning Classroom Dr. Maura Mast

Three Approaches to Assessment in the Quantitative Reasoning Classroom Dr. Maura Mast University of Massachusetts Boston Joint Mathematics Meetings, Baltimore 15 January 2014 Quantitative Reasoning at UMass Boston | May 1, 2012 The

277 views • 17 slides
Trust More, Serverless SysTor2019 Stefan Brenner, June 3rd, 2019 Technische Universitt

Trust More, Serverless SysTor2019 Stefan Brenner, June 3rd, 2019 Technische Universitt

Institute of Operating Systems and Computer Networks Trust More, Serverless SysTor2019 Stefan Brenner, June 3rd, 2019 Technische Universitt Braunschweig, Institute of Operating Systems and Computer Networks Introduction Background

691 views • 29 slides
Matching Tree Patterns on Partial-trees Optimizing Tree-Pattern Matching Shachar Harussi

Matching Tree Patterns on Partial-trees Optimizing Tree-Pattern Matching Shachar Harussi

Outline Motivation: Graph querying Background: tree patterns Partial trees - holistic divide and concur Matching Tree Patterns on Partial-trees Optimizing Tree-Pattern Matching Shachar Harussi Supervision of Prof. Amir Averbuch September 1,

1.07k views • 78 slides

More recommend