SlideShare une entreprise Scribd logo

Canberra Executive Breakfast - A Citizen-Centric Approach to Identity

Télécharger en tant que PPT, PDF
ForgeRock
ForgeRock

The document discusses ForgeRock's approach to identity and access management. It highlights trends toward citizen-centric identity management and relationship management rather than just identity access management. This allows linking identities across contexts and channels to provide a unified citizen experience. ForgeRock proposes the concept of contextual security and identity to improve authentication, authorization, and consent on mobile and cloud platforms. The document also discusses challenges of scaling identity services and portability across cloud platforms.

Logiciels
1  sur  62
© 2016 ForgeRock. All rights reserved. A Citizen-Centric Approach to Identity ForgeRock Executive Breakfast
© 2016 ForgeRock. All rights reserved. FORGEROCK IS THE LEADING, NEXT- GENERATION, IDENTITY SECURITY SOFTWARE PLATFORM. 2010 Founded 10 Offices worldwide with headquarters in San Francisco 350+ Employees 450+ Customers 30+ Countries $52M Funding to date (thru Series C) by Accel Partners, Foundation Capital and Meritech Capital Partners
© 2016 ForgeRock. All rights reserved. Improving the Quality of Government Services with Citizen-Focused Identity Management Daniel Raskin SVP Product Management
© 2016 ForgeRock. All rights reserved. What are the trends?
© 2016 ForgeRock. All rights reserved. Hype Cycle for Digital Government Technology, 2016
© 2016 ForgeRock. All rights reserved. The Top 10 Strategic Technology Trends for Government in 2016
© 2016 ForgeRock. All rights reserved. Top Investment Areas CIOs in the Asia/Pacific and EMEA regions indicate digitalization is a much higher priority than their North American peers.
© 2016 ForgeRock. All rights reserved. Digital Transformation – Top Three Expected Outcomes
© 2016 ForgeRock. All rights reserved. 2016 CIO Agenda: A Government Perspective Key Findings •Digital service transformation is at the embryonic stage of maturity in government •Analytics, infrastructure and cloud computing continue to be the top three technology priorities for government CIOs in all tiers and regions – however security and privacy concerns at an all-time high •CIOs report a 34% adoption rate of bimodal IT in government, slightly lagging behind private industry (38%)
© 2016 ForgeRock. All rights reserved. What is the role of identity?
© 2016 ForgeRock. All rights reserved. Identity Access Management Identity Relationship Management Customers (millions) On-premises People Applications and data PCs Endpoints Workforce (thousands) Partners and Suppliers Customers (millions) On-premises Public Cloud Private Cloud People Things (Tens of millions) Applications and data PCs PhonesTablets Smart Watches Endpoints Digital Transformation & Customer Engagement Require Identity Relationship Management (IRM) PROPRIETARY AND CONFIDENTIAL
© 2016 ForgeRock. All rights reserved. Unified, Omnichannel Citizen Experience Single View Contextual Adaptive Privacy & Consent IntelligenceSecurity Persistent Identity Persistent Identity Across Government Channels PROPRIETARY AND CONFIDENTIAL Mobile ReadyOpen DataCitizen ServicesBusiness ServicesSmart City
© 2016 ForgeRock. All rights reserved. Identity Management Evolves to Relationship Management Identity Lifecycle Management Users, Devices, Things & Services
© 2016 ForgeRock. All rights reserved. Contextual Security Taking Safety to the Next Level Passwordless Authentication Register Device for First Time Authorize Access to Citizen Services Authorize family members to use account Authorize Data to Device / Thing
© 2016 ForgeRock. All rights reserved. Did you just submit your taxes? Did you just register a new car? Kayoko is requesting access to your 2015 taxes. Ok? Did you just conduct a transaction on our citizen portal? We noticed your are using a new iPhone. Would you like to register this device? Did you request access to your birth certificate online? Contextual Identity Enriching the Experience
© 2016 ForgeRock. All rights reserved. Contextual Identity Authentication, Authorization and Consent Mobile PassportCitizen Government Official
© 2016 ForgeRock. All rights reserved. SOA is Dead, but Services on the Rise! 1990s and Early Pre-SOA Monolith to change 2000s Traditional SOA Autonomous but coordinated Present Microservices Decoupled and Independent PWC, Agile coding in enterprise IT: Code small and local
© 2016 ForgeRock. All rights reserved. SOA is Dead, but Services on the Rise! 1990s and Early Pre-SOA Monolith to change 2000s Traditional SOA Autonomous but coordinated Present Microservices Decoupled and Independent PWC, Agile coding in enterprise IT: Code small and local
© 2016 ForgeRock. All rights reserved. Service to Service Interaction Authentication, Authorization and Consent https://api.australia.gov/v1/userinfo Authenticate API Authorize API Calls Authenticate API
© 2016 ForgeRock. All rights reserved. Scaling to Support Distributed Cloud Archs Stateless Architecture • Flexible deployment option to address cloud elasticity and massive horizontal scalability • Configuration can be on a per- realm basis • Stateless = state information is encoded in JWT token • Stateful = tokens persisted in the Core Token Service OpenAM Server OpenAM Server OpenAM Server AWS1 AWS2 AWS3 Microservices Client App Distributed Cloud Environment
© 2016 ForgeRock. All rights reserved.
© 2016 ForgeRock. All rights reserved. The Cloud Conundrum No Portability! Identity Baked in and Constrained to Each Cloud!
© 2016 ForgeRock. All rights reserved. OAuth2/OIDC OAuth2/OIDC OAuth2/OID C OAuth2 The Abstraction of Identity … Again
© 2016 ForgeRock. All rights reserved. Cloud Automation
© 2016 ForgeRock. All rights reserved. Cloud Native: Cattle versus Pets
© 2016 ForgeRock. All rights reserved. Cloud Native: Kangaroos versus Koala Bears
© 2016 ForgeRock. All rights reserved. Cloud Native: Cattle versus Pets Cattle •Cattle are numbers •They are almost identical •When ill, get another (Kill it!) •Thousands of cattle on farm Pets •Pets have names like “pussnboots” •They are lovingly hand raised •When ill, nursed back to health •1 or 2 pets in house Elastic Inelastic
© 2016 ForgeRock. All rights reserved. Container Management & Deployment Product Configuration Product Manifests ForgeRock Images Java Image Tomcat Image … Other Images DOCKER REPOSITORY
© 2016 ForgeRock. All rights reserved. Platform Ubiquity
© 2016 ForgeRock. All rights reserved. We Must Be Better Authentication Authorization Multi-Factor Adaptive Risk Self Service Directory API Security GRC …
© 2016 ForgeRock. All rights reserved. Unified Platform UMA Provider Mobile OTP App Synchronization Auditing LDAPv3 REST/JSON Replication Access Control Schema Management Caching Auditing Monitoring Groups Password Policy Active Directory Pass-thru Reporting Authentication Authorization Provisioning User Self-Service Authentication OIDC / OAuth2 Federation / SSO User Self-Service Workflow Engine Reconciliation Password Replay SAML2 Adaptive Risk Stateless/Stateful Registration Role Provisioning Message Transformation API Security Scripting Built from Open Source Projects: UMA Resource Access Management Identity Management Identity Gateway Directory Services
© 2016 ForgeRock. All rights reserved. U.S. Federal Customers Homeland Security Navy DISA Labor Treasury Energy Commerce Defense
© 2016 ForgeRock. All rights reserved. Norway All Gov’t Agencies Global Government Success … Belgium Citizen ID Canada Citizen Services New Zealand Citizen Services France Unemployment, Retiree Services Australia Tax Office UK NHS, BBC Switzerland National Court System
© 2016 ForgeRock. All rights reserved. Identity Relationship Management: Talkin’ Bout a Revolution Relationship Management Cloud Automation Cloud Readiness Platform Ubiquity Microservices Architecture Contextual Identity
© 2016 ForgeRock. All rights reserved. Thank You
© 2016 ForgeRock. All rights reserved. Doing Authorisation, Consent, and Delegation Right With UMA Eve Maler VP Innovation & Emerging Technology @xmlgrrl
© 2016 ForgeRock. All rights reserved. 37 flickr.com/photos/vincrosbie/16301598031/ CC BY-ND 2.0
© 2016 ForgeRock. All rights reserved. flickr.com/photos/vincrosbie/16301598031/ CC BY-ND 2.0
© 2016 ForgeRock. All rights reserved. flickr.com/photos/delmo-baggins/3143080675 CC BY-ND 2.0
© 2016 ForgeRock. All rights reserved. Attribute sharing scenarios In the next stage of the project … [t]he team will be investigating and testing this to further address the thorny issues of trust and transparency when gaining citizens’ permission. … “[E]ligibility for some services can be quite dynamic, for example, as the level of an individual’s in-work benefits varies, and it may be necessary to carry out on-going eligibility checks from time to time. UMA gives the individual a place to go online where they can see and manage all the consents they have given to different organisations. Until now, managing ongoing consent was tricky,” [Ian Litton] added. “Typically, you asked individuals to consent at a point in time. They tick the T&Cs, which they never see again. UMA should fix that problem.” -- UKA Local Digital, 3 March 2016
© 2016 ForgeRock. All rights reserved. Consumer/clinical health IoT scenarios
© 2016 ForgeRock. All rights reserved. resource owner requesting party authorization server resource server manage delegate control negotiateprotect authorize access manage client consent revoke deny Bruce Wayne shares device data with Dr. McCoy
© 2016 ForgeRock. All rights reserved.
© 2016 ForgeRock. All rights reserved.
© 2016 ForgeRock. All rights reserved.
© 2016 ForgeRock. All rights reserved.
© 2016 ForgeRock. All rights reserved.
© 2016 ForgeRock. All rights reserved.
© 2016 ForgeRock. All rights reserved.
© 2016 ForgeRock. All rights reserved.
© 2016 ForgeRock. All rights reserved.
© 2016 ForgeRock. All rights reserved.
© 2016 ForgeRock. All rights reserved.
© 2016 ForgeRock. All rights reserved. Why enable personal data sharing? clinical research better caredata accuracy
© 2016 ForgeRock. All rights reserved. Why ensure personal control of sharing? new IoT needs new regulatory pressures
© 2016 ForgeRock. All rights reserved. The same architecture applies to Google Apps-style delegation “The enterprise interprets access control as damage and routes around it.”
© 2016 ForgeRock. All rights reserved. Why enable constrained delegation? security/authn governance APIs/IoT
© 2016 ForgeRock. All rights reserved. Why formalize federated authorization? business ownership standard access model
© 2016 ForgeRock. All rights reserved. The CMO and the CPO can and must meet in the middle “Consent should not be regarded as freely given if the data subject has no genuine or free choice or is unable to refuse or withdraw consent without detriment. … In order to ensure that consent is freely given, consent should not provide a valid legal ground for the processing of personal data in a specific case where there is a clear imbalance between the data subject and the controller…” We value personal data as an asset Our customers’ wishes have value Our customers have their own reasons to share, not share, and mash up data, which we can address as value-add Risk management perspective Business perspective
© 2016 ForgeRock. All rights reserved. The ForgeRock Identity Platform includes two UMA components authorization server resource server client (sample code provided) UMA Provider (access management) UMA Protector (gateway)
© 2016 ForgeRock. All rights reserved. ForgeRock ForgeRock ForgeRockIdentity ForgeRock Forgerock.com Forgerock.com/blog Thank you!
© 2016 ForgeRock. All rights reserved. Questions? Wrap Up •Feedback Forms •Your Local ForgeRock Team Adam Butler Federal Government Director Adam Biviano Senior Solutions Architect

Recommandé

Sydney Identity Summit: Doing Authorisation, Consent and Delegation Right wit...
Sydney Identity Summit: Doing Authorisation, Consent and Delegation Right wit...Sydney Identity Summit: Doing Authorisation, Consent and Delegation Right wit...
Sydney Identity Summit: Doing Authorisation, Consent and Delegation Right wit...
ForgeRock
 
No IoT Without Identity
No IoT Without Identity No IoT Without Identity
No IoT Without Identity
ForgeRock
 
Build a Trust Platform to Enable a Frictionless Customer Experience
Build a Trust Platform to Enable a Frictionless Customer Experience Build a Trust Platform to Enable a Frictionless Customer Experience
Build a Trust Platform to Enable a Frictionless Customer Experience
ForgeRock
 
Doing Authorisation, Consent, and Delegation Right with UMA - Paris Identity ...
Doing Authorisation, Consent, and Delegation Right with UMA - Paris Identity ...Doing Authorisation, Consent, and Delegation Right with UMA - Paris Identity ...
Doing Authorisation, Consent, and Delegation Right with UMA - Paris Identity ...
ForgeRock
 
User-Managed Access: Why and How? - Access Control in Digital Contract Contexts
User-Managed Access: Why and How? - Access Control in Digital Contract ContextsUser-Managed Access: Why and How? - Access Control in Digital Contract Contexts
User-Managed Access: Why and How? - Access Control in Digital Contract Contexts
ForgeRock
 
Doing Authorisation, Consent, and Delegation Right with UMA - London Identity...
Doing Authorisation, Consent, and Delegation Right with UMA - London Identity...Doing Authorisation, Consent, and Delegation Right with UMA - London Identity...
Doing Authorisation, Consent, and Delegation Right with UMA - London Identity...
ForgeRock
 
Keynote : Customer Identity Builds Digital Trust - Paris Identity Summit
Keynote : Customer Identity Builds Digital Trust - Paris Identity SummitKeynote : Customer Identity Builds Digital Trust - Paris Identity Summit
Keynote : Customer Identity Builds Digital Trust - Paris Identity Summit
ForgeRock
 
NYC Identity Summit Business Day: Doing Authorization, Consent, and Delegatio...
NYC Identity Summit Business Day: Doing Authorization, Consent, and Delegatio...NYC Identity Summit Business Day: Doing Authorization, Consent, and Delegatio...
NYC Identity Summit Business Day: Doing Authorization, Consent, and Delegatio...
ForgeRock
 

Recommandé

Sydney Identity Summit: Doing Authorisation, Consent and Delegation Right wit...
Sydney Identity Summit: Doing Authorisation, Consent and Delegation Right wit...Sydney Identity Summit: Doing Authorisation, Consent and Delegation Right wit...
Sydney Identity Summit: Doing Authorisation, Consent and Delegation Right wit...
ForgeRock
 
No IoT Without Identity
No IoT Without Identity No IoT Without Identity
No IoT Without Identity
ForgeRock
 
Build a Trust Platform to Enable a Frictionless Customer Experience
Build a Trust Platform to Enable a Frictionless Customer Experience Build a Trust Platform to Enable a Frictionless Customer Experience
Build a Trust Platform to Enable a Frictionless Customer Experience
ForgeRock
 
Doing Authorisation, Consent, and Delegation Right with UMA - Paris Identity ...
Doing Authorisation, Consent, and Delegation Right with UMA - Paris Identity ...Doing Authorisation, Consent, and Delegation Right with UMA - Paris Identity ...
Doing Authorisation, Consent, and Delegation Right with UMA - Paris Identity ...
ForgeRock
 
User-Managed Access: Why and How? - Access Control in Digital Contract Contexts
User-Managed Access: Why and How? - Access Control in Digital Contract ContextsUser-Managed Access: Why and How? - Access Control in Digital Contract Contexts
User-Managed Access: Why and How? - Access Control in Digital Contract Contexts
ForgeRock
 
Doing Authorisation, Consent, and Delegation Right with UMA - London Identity...
Doing Authorisation, Consent, and Delegation Right with UMA - London Identity...Doing Authorisation, Consent, and Delegation Right with UMA - London Identity...
Doing Authorisation, Consent, and Delegation Right with UMA - London Identity...
ForgeRock
 
Keynote : Customer Identity Builds Digital Trust - Paris Identity Summit
Keynote : Customer Identity Builds Digital Trust - Paris Identity SummitKeynote : Customer Identity Builds Digital Trust - Paris Identity Summit
Keynote : Customer Identity Builds Digital Trust - Paris Identity Summit
ForgeRock
 
NYC Identity Summit Business Day: Doing Authorization, Consent, and Delegatio...
NYC Identity Summit Business Day: Doing Authorization, Consent, and Delegatio...NYC Identity Summit Business Day: Doing Authorization, Consent, and Delegatio...
NYC Identity Summit Business Day: Doing Authorization, Consent, and Delegatio...
ForgeRock
 
Sydney Identity Summit: Compound Eye: An Approach To A National Identity Ecos...
Sydney Identity Summit: Compound Eye: An Approach To A National Identity Ecos...Sydney Identity Summit: Compound Eye: An Approach To A National Identity Ecos...
Sydney Identity Summit: Compound Eye: An Approach To A National Identity Ecos...
ForgeRock
 
ForgeRock Gartner 2016 Security & Risk Management Summit
ForgeRock Gartner 2016 Security & Risk Management Summit ForgeRock Gartner 2016 Security & Risk Management Summit
ForgeRock Gartner 2016 Security & Risk Management Summit
ForgeRock
 
Sydney Identity Summit: Using Identity to Build Digital Trust (Mike Ellis Intro)
Sydney Identity Summit: Using Identity to Build Digital Trust (Mike Ellis Intro)Sydney Identity Summit: Using Identity to Build Digital Trust (Mike Ellis Intro)
Sydney Identity Summit: Using Identity to Build Digital Trust (Mike Ellis Intro)
ForgeRock
 
NYC Identity Summit Tech Day: Authorization for the Modern World
NYC Identity Summit Tech Day: Authorization for the Modern WorldNYC Identity Summit Tech Day: Authorization for the Modern World
NYC Identity Summit Tech Day: Authorization for the Modern World
ForgeRock
 
Analyst Keynote: Putting Customers First Requires Innovation and Identity - P...
Analyst Keynote: Putting Customers First Requires Innovation and Identity - P...Analyst Keynote: Putting Customers First Requires Innovation and Identity - P...
Analyst Keynote: Putting Customers First Requires Innovation and Identity - P...
ForgeRock
 
Identity Relationship Management - The Right Approach for a Complex Digital W...
Identity Relationship Management - The Right Approach for a Complex Digital W...Identity Relationship Management - The Right Approach for a Complex Digital W...
Identity Relationship Management - The Right Approach for a Complex Digital W...
ForgeRock
 
Security & Identity for the Internet of Things Webinar
Security & Identity for the Internet of Things WebinarSecurity & Identity for the Internet of Things Webinar
Security & Identity for the Internet of Things Webinar
ForgeRock
 
Beyond username and password it's continuous authorization webinar
Beyond username and password it's continuous authorization webinarBeyond username and password it's continuous authorization webinar
Beyond username and password it's continuous authorization webinar
ForgeRock
 
NYC Identity Summit Tech Day: Best Practices for API Security
NYC Identity Summit Tech Day: Best Practices for API SecurityNYC Identity Summit Tech Day: Best Practices for API Security
NYC Identity Summit Tech Day: Best Practices for API Security
ForgeRock
 
Customer Identity Builds Digital Trust - London Identity Summit
Customer Identity Builds Digital Trust - London Identity SummitCustomer Identity Builds Digital Trust - London Identity Summit
Customer Identity Builds Digital Trust - London Identity Summit
ForgeRock
 
NYC Identity Summit Tech Day: ForgeRock Identity Platform Overview
NYC Identity Summit Tech Day: ForgeRock Identity Platform OverviewNYC Identity Summit Tech Day: ForgeRock Identity Platform Overview
NYC Identity Summit Tech Day: ForgeRock Identity Platform Overview
ForgeRock
 
The Future of Digital Identity in the Age of the Internet of Things
The Future of Digital Identity in the Age of the Internet of ThingsThe Future of Digital Identity in the Age of the Internet of Things
The Future of Digital Identity in the Age of the Internet of Things
ForgeRock
 
Sydney Identity Summit: Addressing the New Threat Landscape with Continuous S...
Sydney Identity Summit: Addressing the New Threat Landscape with Continuous S...Sydney Identity Summit: Addressing the New Threat Landscape with Continuous S...
Sydney Identity Summit: Addressing the New Threat Landscape with Continuous S...
ForgeRock
 
Digital Trust: How Identity Tackles the Privacy, Security and IoT Challenge
Digital Trust: How Identity Tackles the Privacy, Security and IoT ChallengeDigital Trust: How Identity Tackles the Privacy, Security and IoT Challenge
Digital Trust: How Identity Tackles the Privacy, Security and IoT Challenge
ForgeRock
 
The Future is Now: What’s New in ForgeRock Identity Gateway
The Future is Now: What’s New in ForgeRock Identity GatewayThe Future is Now: What’s New in ForgeRock Identity Gateway
The Future is Now: What’s New in ForgeRock Identity Gateway
ForgeRock
 
Sydney Identity Summit: Know (and Serve) Your Customers
Sydney Identity Summit: Know (and Serve) Your CustomersSydney Identity Summit: Know (and Serve) Your Customers
Sydney Identity Summit: Know (and Serve) Your Customers
ForgeRock
 
NYC Identity Summit Business Day: Continuous Security
NYC Identity Summit Business Day: Continuous SecurityNYC Identity Summit Business Day: Continuous Security
NYC Identity Summit Business Day: Continuous Security
ForgeRock
 
Sydney Identity Summit: The Future's So Bright, I Gotta Wear Shades
Sydney Identity Summit: The Future's So Bright, I Gotta Wear ShadesSydney Identity Summit: The Future's So Bright, I Gotta Wear Shades
Sydney Identity Summit: The Future's So Bright, I Gotta Wear Shades
ForgeRock
 
ForgeRock: Identity Relationship Management is the Foundation for Your Digita...
ForgeRock: Identity Relationship Management is the Foundation for Your Digita...ForgeRock: Identity Relationship Management is the Foundation for Your Digita...
ForgeRock: Identity Relationship Management is the Foundation for Your Digita...
ForgeRock
 
A Backstage Tour of Identity - Paris Identity Summit 2016
A Backstage Tour of Identity - Paris Identity Summit 2016A Backstage Tour of Identity - Paris Identity Summit 2016
A Backstage Tour of Identity - Paris Identity Summit 2016
ForgeRock
 
What is GR
What is GRWhat is GR
What is GR
Meghan Warby
 
Superior Days 2017 Youth Training
Superior Days 2017 Youth TrainingSuperior Days 2017 Youth Training
Superior Days 2017 Youth Training
UWExtensionDouglasCounty
 

Contenu connexe

Tendances

Analyst Keynote: Putting Customers First Requires Innovation and Identity - P...
Analyst Keynote: Putting Customers First Requires Innovation and Identity - P...Analyst Keynote: Putting Customers First Requires Innovation and Identity - P...
Analyst Keynote: Putting Customers First Requires Innovation and Identity - P...
ForgeRock
 

Tendances (20)

Sydney Identity Summit: Compound Eye: An Approach To A National Identity Ecos...
Sydney Identity Summit: Compound Eye: An Approach To A National Identity Ecos...Sydney Identity Summit: Compound Eye: An Approach To A National Identity Ecos...
Sydney Identity Summit: Compound Eye: An Approach To A National Identity Ecos...
 
ForgeRock Gartner 2016 Security & Risk Management Summit
ForgeRock Gartner 2016 Security & Risk Management Summit ForgeRock Gartner 2016 Security & Risk Management Summit
ForgeRock Gartner 2016 Security & Risk Management Summit
 
Sydney Identity Summit: Using Identity to Build Digital Trust (Mike Ellis Intro)
Sydney Identity Summit: Using Identity to Build Digital Trust (Mike Ellis Intro)Sydney Identity Summit: Using Identity to Build Digital Trust (Mike Ellis Intro)
Sydney Identity Summit: Using Identity to Build Digital Trust (Mike Ellis Intro)
 
NYC Identity Summit Tech Day: Authorization for the Modern World
NYC Identity Summit Tech Day: Authorization for the Modern WorldNYC Identity Summit Tech Day: Authorization for the Modern World
NYC Identity Summit Tech Day: Authorization for the Modern World
 
Analyst Keynote: Putting Customers First Requires Innovation and Identity - P...
Analyst Keynote: Putting Customers First Requires Innovation and Identity - P...Analyst Keynote: Putting Customers First Requires Innovation and Identity - P...
Analyst Keynote: Putting Customers First Requires Innovation and Identity - P...
 
Identity Relationship Management - The Right Approach for a Complex Digital W...
Identity Relationship Management - The Right Approach for a Complex Digital W...Identity Relationship Management - The Right Approach for a Complex Digital W...
Identity Relationship Management - The Right Approach for a Complex Digital W...
 
Security & Identity for the Internet of Things Webinar
Security & Identity for the Internet of Things WebinarSecurity & Identity for the Internet of Things Webinar
Security & Identity for the Internet of Things Webinar
 
Beyond username and password it's continuous authorization webinar
Beyond username and password it's continuous authorization webinarBeyond username and password it's continuous authorization webinar
Beyond username and password it's continuous authorization webinar
 
NYC Identity Summit Tech Day: Best Practices for API Security
NYC Identity Summit Tech Day: Best Practices for API SecurityNYC Identity Summit Tech Day: Best Practices for API Security
NYC Identity Summit Tech Day: Best Practices for API Security
 
Customer Identity Builds Digital Trust - London Identity Summit
Customer Identity Builds Digital Trust - London Identity SummitCustomer Identity Builds Digital Trust - London Identity Summit
Customer Identity Builds Digital Trust - London Identity Summit
 
NYC Identity Summit Tech Day: ForgeRock Identity Platform Overview
NYC Identity Summit Tech Day: ForgeRock Identity Platform OverviewNYC Identity Summit Tech Day: ForgeRock Identity Platform Overview
NYC Identity Summit Tech Day: ForgeRock Identity Platform Overview
 
The Future of Digital Identity in the Age of the Internet of Things
The Future of Digital Identity in the Age of the Internet of ThingsThe Future of Digital Identity in the Age of the Internet of Things
The Future of Digital Identity in the Age of the Internet of Things
 
Sydney Identity Summit: Addressing the New Threat Landscape with Continuous S...
Sydney Identity Summit: Addressing the New Threat Landscape with Continuous S...Sydney Identity Summit: Addressing the New Threat Landscape with Continuous S...
Sydney Identity Summit: Addressing the New Threat Landscape with Continuous S...
 
Digital Trust: How Identity Tackles the Privacy, Security and IoT Challenge
Digital Trust: How Identity Tackles the Privacy, Security and IoT ChallengeDigital Trust: How Identity Tackles the Privacy, Security and IoT Challenge
Digital Trust: How Identity Tackles the Privacy, Security and IoT Challenge
 
The Future is Now: What’s New in ForgeRock Identity Gateway
The Future is Now: What’s New in ForgeRock Identity GatewayThe Future is Now: What’s New in ForgeRock Identity Gateway
The Future is Now: What’s New in ForgeRock Identity Gateway
 
Sydney Identity Summit: Know (and Serve) Your Customers
Sydney Identity Summit: Know (and Serve) Your CustomersSydney Identity Summit: Know (and Serve) Your Customers
Sydney Identity Summit: Know (and Serve) Your Customers
 
NYC Identity Summit Business Day: Continuous Security
NYC Identity Summit Business Day: Continuous SecurityNYC Identity Summit Business Day: Continuous Security
NYC Identity Summit Business Day: Continuous Security
 
Sydney Identity Summit: The Future's So Bright, I Gotta Wear Shades
Sydney Identity Summit: The Future's So Bright, I Gotta Wear ShadesSydney Identity Summit: The Future's So Bright, I Gotta Wear Shades
Sydney Identity Summit: The Future's So Bright, I Gotta Wear Shades
 
ForgeRock: Identity Relationship Management is the Foundation for Your Digita...
ForgeRock: Identity Relationship Management is the Foundation for Your Digita...ForgeRock: Identity Relationship Management is the Foundation for Your Digita...
ForgeRock: Identity Relationship Management is the Foundation for Your Digita...
 
A Backstage Tour of Identity - Paris Identity Summit 2016
A Backstage Tour of Identity - Paris Identity Summit 2016A Backstage Tour of Identity - Paris Identity Summit 2016
A Backstage Tour of Identity - Paris Identity Summit 2016
 

En vedette

Lobbying: The art of the possible
Lobbying: The art of the possible Lobbying: The art of the possible
Lobbying: The art of the possible
Zachman1
 
The Road to Identity 2.0
The Road to Identity 2.0The Road to Identity 2.0
The Road to Identity 2.0
Adam Lewis
 
The connected economy mark skilton july 15 bright talk v2
The connected economy mark skilton july 15 bright talk v2The connected economy mark skilton july 15 bright talk v2
The connected economy mark skilton july 15 bright talk v2
Mark Skilton
 

En vedette (20)

What is GR
What is GRWhat is GR
What is GR
 
Superior Days 2017 Youth Training
Superior Days 2017 Youth TrainingSuperior Days 2017 Youth Training
Superior Days 2017 Youth Training
 
Enterprise 2.0 - Enabling change or part of the problem?
Enterprise 2.0 - Enabling change or part of the problem?Enterprise 2.0 - Enabling change or part of the problem?
Enterprise 2.0 - Enabling change or part of the problem?
 
SCC2013 - Citizen science - Helen Roy
SCC2013 - Citizen science - Helen RoySCC2013 - Citizen science - Helen Roy
SCC2013 - Citizen science - Helen Roy
 
Code for Africa - Building Demand-driven + Citizen-focused Open Data Ecosystems
Code for Africa - Building Demand-driven + Citizen-focused Open Data EcosystemsCode for Africa - Building Demand-driven + Citizen-focused Open Data Ecosystems
Code for Africa - Building Demand-driven + Citizen-focused Open Data Ecosystems
 
Lobbying: The art of the possible
Lobbying: The art of the possible Lobbying: The art of the possible
Lobbying: The art of the possible
 
The Road to Identity 2.0
The Road to Identity 2.0The Road to Identity 2.0
The Road to Identity 2.0
 
National identity strategy presentation may 10, 2016
National identity strategy presentation may 10, 2016National identity strategy presentation may 10, 2016
National identity strategy presentation may 10, 2016
 
digital identity 2.0: how technology is transforming behaviours and raising c...
digital identity 2.0: how technology is transforming behaviours and raising c...digital identity 2.0: how technology is transforming behaviours and raising c...
digital identity 2.0: how technology is transforming behaviours and raising c...
 
Open Data e Smart Government: tecnologie e trend di mercato Alessio Meloni
Open Data e Smart Government: tecnologie e trend di mercato Alessio MeloniOpen Data e Smart Government: tecnologie e trend di mercato Alessio Meloni
Open Data e Smart Government: tecnologie e trend di mercato Alessio Meloni
 
Aof 2.13.12 lobbying 101 webinar
Aof 2.13.12 lobbying 101 webinarAof 2.13.12 lobbying 101 webinar
Aof 2.13.12 lobbying 101 webinar
 
Trends in IRM: Internet of Things
Trends in IRM: Internet of ThingsTrends in IRM: Internet of Things
Trends in IRM: Internet of Things
 
User Authentication for Government
User Authentication for GovernmentUser Authentication for Government
User Authentication for Government
 
The Rise of the Citizen Data Scientist
The Rise of the Citizen Data ScientistThe Rise of the Citizen Data Scientist
The Rise of the Citizen Data Scientist
 
The connected economy mark skilton july 15 bright talk v2
The connected economy mark skilton july 15 bright talk v2The connected economy mark skilton july 15 bright talk v2
The connected economy mark skilton july 15 bright talk v2
 
Data Management for Citizen Science
Data Management for Citizen ScienceData Management for Citizen Science
Data Management for Citizen Science
 
From Strategy to Operations ProjectWorld 2013
From Strategy to Operations ProjectWorld 2013From Strategy to Operations ProjectWorld 2013
From Strategy to Operations ProjectWorld 2013
 
Digital Transformation: Connected API Ecosystems
Digital Transformation: Connected API EcosystemsDigital Transformation: Connected API Ecosystems
Digital Transformation: Connected API Ecosystems
 
Humanity 2.0
Humanity 2.0Humanity 2.0
Humanity 2.0
 
Project Management 2.0
Project Management 2.0Project Management 2.0
Project Management 2.0
 

Similaire à Canberra Executive Breakfast - A Citizen-Centric Approach to Identity

Backstage Tour of Identity - London Identity Summit
Backstage Tour of Identity - London Identity SummitBackstage Tour of Identity - London Identity Summit
Backstage Tour of Identity - London Identity Summit
ForgeRock
 
LITE 2016 – How Administrate Changed our Training Business [Kevin Streater]
LITE 2016 – How Administrate Changed our Training Business [Kevin Streater]LITE 2016 – How Administrate Changed our Training Business [Kevin Streater]
LITE 2016 – How Administrate Changed our Training Business [Kevin Streater]
getadministrate
 
Smart Data Slides: Leverage the IOT to Build a Smart Data Ecosystem
Smart Data Slides: Leverage the IOT to Build a Smart Data EcosystemSmart Data Slides: Leverage the IOT to Build a Smart Data Ecosystem
Smart Data Slides: Leverage the IOT to Build a Smart Data Ecosystem
DATAVERSITY
 

Similaire à Canberra Executive Breakfast - A Citizen-Centric Approach to Identity (20)

Wavestone forgerock banking demo
Wavestone forgerock banking demoWavestone forgerock banking demo
Wavestone forgerock banking demo
 
L’identité numérique : un atout incontournable pour construire une relation c...
L’identité numérique : un atout incontournable pour construire une relation c...L’identité numérique : un atout incontournable pour construire une relation c...
L’identité numérique : un atout incontournable pour construire une relation c...
 
Backstage Tour of Identity - London Identity Summit
Backstage Tour of Identity - London Identity SummitBackstage Tour of Identity - London Identity Summit
Backstage Tour of Identity - London Identity Summit
 
Ben goodman cybersecurity in the iiot
Ben goodman cybersecurity in the iiotBen goodman cybersecurity in the iiot
Ben goodman cybersecurity in the iiot
 
NYC Identity Summit Business Day: "Identity - The Future's So Bright I Gotta ...
NYC Identity Summit Business Day: "Identity - The Future's So Bright I Gotta ...NYC Identity Summit Business Day: "Identity - The Future's So Bright I Gotta ...
NYC Identity Summit Business Day: "Identity - The Future's So Bright I Gotta ...
 
Pas d'IoT sans Identité!
Pas d'IoT sans Identité!Pas d'IoT sans Identité!
Pas d'IoT sans Identité!
 
NYC Identity Summit Business Day: Identity is the Center of Everything (Mike ...
NYC Identity Summit Business Day: Identity is the Center of Everything (Mike ...NYC Identity Summit Business Day: Identity is the Center of Everything (Mike ...
NYC Identity Summit Business Day: Identity is the Center of Everything (Mike ...
 
LITE 2016 – How Administrate Changed our Training Business [Kevin Streater]
LITE 2016 – How Administrate Changed our Training Business [Kevin Streater]LITE 2016 – How Administrate Changed our Training Business [Kevin Streater]
LITE 2016 – How Administrate Changed our Training Business [Kevin Streater]
 
Financial Grade OAuth & OpenID Connect
Financial Grade OAuth & OpenID ConnectFinancial Grade OAuth & OpenID Connect
Financial Grade OAuth & OpenID Connect
 
Javier Daza - eCommerce Day Bogotá 2019
Javier Daza - eCommerce Day Bogotá 2019Javier Daza - eCommerce Day Bogotá 2019
Javier Daza - eCommerce Day Bogotá 2019
 
It's All About The Bot's - Oracle Forms
It's All About The Bot's - Oracle FormsIt's All About The Bot's - Oracle Forms
It's All About The Bot's - Oracle Forms
 
Identity Management: Using OIDC to Empower the Next-Generation Apps
Identity Management: Using OIDC to Empower the Next-Generation AppsIdentity Management: Using OIDC to Empower the Next-Generation Apps
Identity Management: Using OIDC to Empower the Next-Generation Apps
 
Oracle Digital Business Transformation and Internet of Things by Ermin Prašović
Oracle Digital Business Transformation and Internet of Things by Ermin PrašovićOracle Digital Business Transformation and Internet of Things by Ermin Prašović
Oracle Digital Business Transformation and Internet of Things by Ermin Prašović
 
Smart Data Slides: Leverage the IOT to Build a Smart Data Ecosystem
Smart Data Slides: Leverage the IOT to Build a Smart Data EcosystemSmart Data Slides: Leverage the IOT to Build a Smart Data Ecosystem
Smart Data Slides: Leverage the IOT to Build a Smart Data Ecosystem
 
Keeping the Edge Secure - Synchronoss
Keeping the Edge Secure - SynchronossKeeping the Edge Secure - Synchronoss
Keeping the Edge Secure - Synchronoss
 
Chatbots developer meetup
Chatbots developer meetupChatbots developer meetup
Chatbots developer meetup
 
Identity Live Sydney: Intelligent Authentication
Identity Live Sydney: Intelligent Authentication Identity Live Sydney: Intelligent Authentication
Identity Live Sydney: Intelligent Authentication
 
Authorization Using JWTs
Authorization Using JWTsAuthorization Using JWTs
Authorization Using JWTs
 
Intelligent Authentication (Identity Live Berlin 2018)
Intelligent Authentication (Identity Live Berlin 2018)Intelligent Authentication (Identity Live Berlin 2018)
Intelligent Authentication (Identity Live Berlin 2018)
 
Digital Procurement: Trends Shaping The Future Of Source to Pay
Digital Procurement: Trends Shaping The Future Of Source to PayDigital Procurement: Trends Shaping The Future Of Source to Pay
Digital Procurement: Trends Shaping The Future Of Source to Pay
 

Plus de ForgeRock

ForgeRock and Trusona - Simplifying the Multi-factor User Experience
ForgeRock and Trusona - Simplifying the Multi-factor User ExperienceForgeRock and Trusona - Simplifying the Multi-factor User Experience
ForgeRock and Trusona - Simplifying the Multi-factor User Experience
ForgeRock
 
Applying Innovative Tools for GDPR Success
Applying Innovative Tools for GDPR SuccessApplying Innovative Tools for GDPR Success
Applying Innovative Tools for GDPR Success
ForgeRock
 

Plus de ForgeRock (20)

Digital Identities in the Internet of Things - Securely Manage Devices at Scale
Digital Identities in the Internet of Things - Securely Manage Devices at ScaleDigital Identities in the Internet of Things - Securely Manage Devices at Scale
Digital Identities in the Internet of Things - Securely Manage Devices at Scale
 
Get the Exact Identity Solution You Need - In the Cloud - AWS and Beyond
Get the Exact Identity Solution You Need - In the Cloud - AWS and BeyondGet the Exact Identity Solution You Need - In the Cloud - AWS and Beyond
Get the Exact Identity Solution You Need - In the Cloud - AWS and Beyond
 
Identity Live Sydney: Identity Management - A Strategic Opportunity
Identity Live Sydney: Identity Management - A Strategic OpportunityIdentity Live Sydney: Identity Management - A Strategic Opportunity
Identity Live Sydney: Identity Management - A Strategic Opportunity
 
Identity Live Singapore: Transform Your Cybersecurity Capability
Identity Live Singapore: Transform Your Cybersecurity CapabilityIdentity Live Singapore: Transform Your Cybersecurity Capability
Identity Live Singapore: Transform Your Cybersecurity Capability
 
Identity Live Singapore 2018 Keynote Presentation
Identity Live Singapore 2018 Keynote PresentationIdentity Live Singapore 2018 Keynote Presentation
Identity Live Singapore 2018 Keynote Presentation
 
Identity Live Sydney 2018 Keynote Presentation
Identity Live Sydney 2018 Keynote PresentationIdentity Live Sydney 2018 Keynote Presentation
Identity Live Sydney 2018 Keynote Presentation
 
Identity Live Singapore: Just Ask 'Em
Identity Live Singapore: Just Ask 'EmIdentity Live Singapore: Just Ask 'Em
Identity Live Singapore: Just Ask 'Em
 
Identity Live Singapore: Building Trust & Privacy in a Connected Society
Identity Live Singapore: Building Trust & Privacy in a Connected SocietyIdentity Live Singapore: Building Trust & Privacy in a Connected Society
Identity Live Singapore: Building Trust & Privacy in a Connected Society
 
Identity Live Sydney: Building Trust and Privacy in a Connected Society
Identity Live Sydney: Building Trust and Privacy in a Connected SocietyIdentity Live Sydney: Building Trust and Privacy in a Connected Society
Identity Live Sydney: Building Trust and Privacy in a Connected Society
 
Get the Exact Identity Solution you Need in the Cloud - Deep Dive
Get the Exact Identity Solution you Need in the Cloud - Deep DiveGet the Exact Identity Solution you Need in the Cloud - Deep Dive
Get the Exact Identity Solution you Need in the Cloud - Deep Dive
 
Get the Exact Identity Solution You Need - In the Cloud - Overview
Get the Exact Identity Solution You Need - In the Cloud - OverviewGet the Exact Identity Solution You Need - In the Cloud - Overview
Get the Exact Identity Solution You Need - In the Cloud - Overview
 
ForgeRock and Trusona - Simplifying the Multi-factor User Experience
ForgeRock and Trusona - Simplifying the Multi-factor User ExperienceForgeRock and Trusona - Simplifying the Multi-factor User Experience
ForgeRock and Trusona - Simplifying the Multi-factor User Experience
 
Opening Keynote (Identity Live Berlin 2018)
Opening Keynote (Identity Live Berlin 2018)Opening Keynote (Identity Live Berlin 2018)
Opening Keynote (Identity Live Berlin 2018)
 
Steinberg - Customer identity as the cornerstone of our approach to digitaliz...
Steinberg - Customer identity as the cornerstone of our approach to digitaliz...Steinberg - Customer identity as the cornerstone of our approach to digitaliz...
Steinberg - Customer identity as the cornerstone of our approach to digitaliz...
 
BMW Group - Identity Enables the Next 100 Years.. (Identity Live Berlin 2018)
BMW Group - Identity Enables the Next 100 Years.. (Identity Live Berlin 2018)BMW Group - Identity Enables the Next 100 Years.. (Identity Live Berlin 2018)
BMW Group - Identity Enables the Next 100 Years.. (Identity Live Berlin 2018)
 
Trust is Everything - The Future of Identity and the ForgeRock Platform (Iden...
Trust is Everything - The Future of Identity and the ForgeRock Platform (Iden...Trust is Everything - The Future of Identity and the ForgeRock Platform (Iden...
Trust is Everything - The Future of Identity and the ForgeRock Platform (Iden...
 
Silo Busters- The Value of User and Data Centricity beyond IoT Devices (Ident...
Silo Busters- The Value of User and Data Centricity beyond IoT Devices (Ident...Silo Busters- The Value of User and Data Centricity beyond IoT Devices (Ident...
Silo Busters- The Value of User and Data Centricity beyond IoT Devices (Ident...
 
Shift from GDPR readiness to sustained compliance to improve your business an...
Shift from GDPR readiness to sustained compliance to improve your business an...Shift from GDPR readiness to sustained compliance to improve your business an...
Shift from GDPR readiness to sustained compliance to improve your business an...
 
Customer Safeguarding, Fraud and GDPR: Manah Khalil
Customer Safeguarding, Fraud and GDPR: Manah KhalilCustomer Safeguarding, Fraud and GDPR: Manah Khalil
Customer Safeguarding, Fraud and GDPR: Manah Khalil
 
Applying Innovative Tools for GDPR Success
Applying Innovative Tools for GDPR SuccessApplying Innovative Tools for GDPR Success
Applying Innovative Tools for GDPR Success
 

Dernier

Love witchcraft +27768521739 Binding love spell in Sandy Springs, GA |psychic...
Love witchcraft +27768521739 Binding love spell in Sandy Springs, GA |psychic...Love witchcraft +27768521739 Binding love spell in Sandy Springs, GA |psychic...
Love witchcraft +27768521739 Binding love spell in Sandy Springs, GA |psychic...
chiefasafspells
 
Abortion Pill Prices Tembisa [(+27832195400*)] 🏥 Women's Abortion Clinic in T...
Abortion Pill Prices Tembisa [(+27832195400*)] 🏥 Women's Abortion Clinic in T...Abortion Pill Prices Tembisa [(+27832195400*)] 🏥 Women's Abortion Clinic in T...
Abortion Pill Prices Tembisa [(+27832195400*)] 🏥 Women's Abortion Clinic in T...
Medical / Health Care (+971588192166) Mifepristone and Misoprostol tablets 200mg
 
%+27788225528 love spells in new york Psychic Readings, Attraction spells,Bri...
%+27788225528 love spells in new york Psychic Readings, Attraction spells,Bri...%+27788225528 love spells in new york Psychic Readings, Attraction spells,Bri...
%+27788225528 love spells in new york Psychic Readings, Attraction spells,Bri...
masabamasaba
 
%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...
%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...
%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...
masabamasaba
 
%+27788225528 love spells in Knoxville Psychic Readings, Attraction spells,Br...
%+27788225528 love spells in Knoxville Psychic Readings, Attraction spells,Br...%+27788225528 love spells in Knoxville Psychic Readings, Attraction spells,Br...
%+27788225528 love spells in Knoxville Psychic Readings, Attraction spells,Br...
masabamasaba
 
%+27788225528 love spells in Toronto Psychic Readings, Attraction spells,Brin...
%+27788225528 love spells in Toronto Psychic Readings, Attraction spells,Brin...%+27788225528 love spells in Toronto Psychic Readings, Attraction spells,Brin...
%+27788225528 love spells in Toronto Psychic Readings, Attraction spells,Brin...
masabamasaba
 
What Goes Wrong with Language Definitions and How to Improve the Situation
What Goes Wrong with Language Definitions and How to Improve the SituationWhat Goes Wrong with Language Definitions and How to Improve the Situation
What Goes Wrong with Language Definitions and How to Improve the Situation
Juha-Pekka Tolvanen
 
Abortion Pill Prices Boksburg [(+27832195400*)] 🏥 Women's Abortion Clinic in ...
Abortion Pill Prices Boksburg [(+27832195400*)] 🏥 Women's Abortion Clinic in ...Abortion Pill Prices Boksburg [(+27832195400*)] 🏥 Women's Abortion Clinic in ...
Abortion Pill Prices Boksburg [(+27832195400*)] 🏥 Women's Abortion Clinic in ...
Medical / Health Care (+971588192166) Mifepristone and Misoprostol tablets 200mg
 

Dernier (20)

WSO2CON 2024 - Does Open Source Still Matter?
WSO2CON 2024 - Does Open Source Still Matter?WSO2CON 2024 - Does Open Source Still Matter?
WSO2CON 2024 - Does Open Source Still Matter?
 
WSO2CON 2024 - Cloud Native Middleware: Domain-Driven Design, Cell-Based Arch...
WSO2CON 2024 - Cloud Native Middleware: Domain-Driven Design, Cell-Based Arch...WSO2CON 2024 - Cloud Native Middleware: Domain-Driven Design, Cell-Based Arch...
WSO2CON 2024 - Cloud Native Middleware: Domain-Driven Design, Cell-Based Arch...
 
Love witchcraft +27768521739 Binding love spell in Sandy Springs, GA |psychic...
Love witchcraft +27768521739 Binding love spell in Sandy Springs, GA |psychic...Love witchcraft +27768521739 Binding love spell in Sandy Springs, GA |psychic...
Love witchcraft +27768521739 Binding love spell in Sandy Springs, GA |psychic...
 
WSO2CON 2024 - Navigating API Complexity: REST, GraphQL, gRPC, Websocket, Web...
WSO2CON 2024 - Navigating API Complexity: REST, GraphQL, gRPC, Websocket, Web...WSO2CON 2024 - Navigating API Complexity: REST, GraphQL, gRPC, Websocket, Web...
WSO2CON 2024 - Navigating API Complexity: REST, GraphQL, gRPC, Websocket, Web...
 
tonesoftg
tonesoftgtonesoftg
tonesoftg
 
BUS PASS MANGEMENT SYSTEM USING PHP.pptx
BUS PASS MANGEMENT SYSTEM USING PHP.pptxBUS PASS MANGEMENT SYSTEM USING PHP.pptx
BUS PASS MANGEMENT SYSTEM USING PHP.pptx
 
Abortion Pill Prices Tembisa [(+27832195400*)] 🏥 Women's Abortion Clinic in T...
Abortion Pill Prices Tembisa [(+27832195400*)] 🏥 Women's Abortion Clinic in T...Abortion Pill Prices Tembisa [(+27832195400*)] 🏥 Women's Abortion Clinic in T...
Abortion Pill Prices Tembisa [(+27832195400*)] 🏥 Women's Abortion Clinic in T...
 
%+27788225528 love spells in new york Psychic Readings, Attraction spells,Bri...
%+27788225528 love spells in new york Psychic Readings, Attraction spells,Bri...%+27788225528 love spells in new york Psychic Readings, Attraction spells,Bri...
%+27788225528 love spells in new york Psychic Readings, Attraction spells,Bri...
 
WSO2CON2024 - It's time to go Platformless
WSO2CON2024 - It's time to go PlatformlessWSO2CON2024 - It's time to go Platformless
WSO2CON2024 - It's time to go Platformless
 
%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...
%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...
%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...
 
%+27788225528 love spells in Knoxville Psychic Readings, Attraction spells,Br...
%+27788225528 love spells in Knoxville Psychic Readings, Attraction spells,Br...%+27788225528 love spells in Knoxville Psychic Readings, Attraction spells,Br...
%+27788225528 love spells in Knoxville Psychic Readings, Attraction spells,Br...
 
%+27788225528 love spells in Toronto Psychic Readings, Attraction spells,Brin...
%+27788225528 love spells in Toronto Psychic Readings, Attraction spells,Brin...%+27788225528 love spells in Toronto Psychic Readings, Attraction spells,Brin...
%+27788225528 love spells in Toronto Psychic Readings, Attraction spells,Brin...
 
%in ivory park+277-882-255-28 abortion pills for sale in ivory park
%in ivory park+277-882-255-28 abortion pills for sale in ivory park %in ivory park+277-882-255-28 abortion pills for sale in ivory park
%in ivory park+277-882-255-28 abortion pills for sale in ivory park
 
What Goes Wrong with Language Definitions and How to Improve the Situation
What Goes Wrong with Language Definitions and How to Improve the SituationWhat Goes Wrong with Language Definitions and How to Improve the Situation
What Goes Wrong with Language Definitions and How to Improve the Situation
 
WSO2CON 2024 - Freedom First—Unleashing Developer Potential with Open Source
WSO2CON 2024 - Freedom First—Unleashing Developer Potential with Open SourceWSO2CON 2024 - Freedom First—Unleashing Developer Potential with Open Source
WSO2CON 2024 - Freedom First—Unleashing Developer Potential with Open Source
 
WSO2Con204 - Hard Rock Presentation - Keynote
WSO2Con204 - Hard Rock Presentation - KeynoteWSO2Con204 - Hard Rock Presentation - Keynote
WSO2Con204 - Hard Rock Presentation - Keynote
 
MarTech Trend 2024 Book : Marketing Technology Trends (2024 Edition) How Data...
MarTech Trend 2024 Book : Marketing Technology Trends (2024 Edition) How Data...MarTech Trend 2024 Book : Marketing Technology Trends (2024 Edition) How Data...
MarTech Trend 2024 Book : Marketing Technology Trends (2024 Edition) How Data...
 
Abortion Pill Prices Boksburg [(+27832195400*)] 🏥 Women's Abortion Clinic in ...
Abortion Pill Prices Boksburg [(+27832195400*)] 🏥 Women's Abortion Clinic in ...Abortion Pill Prices Boksburg [(+27832195400*)] 🏥 Women's Abortion Clinic in ...
Abortion Pill Prices Boksburg [(+27832195400*)] 🏥 Women's Abortion Clinic in ...
 
WSO2CON 2024 Slides - Open Source to SaaS
WSO2CON 2024 Slides - Open Source to SaaSWSO2CON 2024 Slides - Open Source to SaaS
WSO2CON 2024 Slides - Open Source to SaaS
 
WSO2Con2024 - GitOps in Action: Navigating Application Deployment in the Plat...
WSO2Con2024 - GitOps in Action: Navigating Application Deployment in the Plat...WSO2Con2024 - GitOps in Action: Navigating Application Deployment in the Plat...
WSO2Con2024 - GitOps in Action: Navigating Application Deployment in the Plat...
 

Canberra Executive Breakfast - A Citizen-Centric Approach to Identity

  • 1. © 2016 ForgeRock. All rights reserved. A Citizen-Centric Approach to Identity ForgeRock Executive Breakfast
  • 2. © 2016 ForgeRock. All rights reserved. FORGEROCK IS THE LEADING, NEXT- GENERATION, IDENTITY SECURITY SOFTWARE PLATFORM. 2010 Founded 10 Offices worldwide with headquarters in San Francisco 350+ Employees 450+ Customers 30+ Countries $52M Funding to date (thru Series C) by Accel Partners, Foundation Capital and Meritech Capital Partners
  • 3. © 2016 ForgeRock. All rights reserved. Improving the Quality of Government Services with Citizen-Focused Identity Management Daniel Raskin SVP Product Management
  • 4. © 2016 ForgeRock. All rights reserved. What are the trends?
  • 5. © 2016 ForgeRock. All rights reserved. Hype Cycle for Digital Government Technology, 2016
  • 6. © 2016 ForgeRock. All rights reserved. The Top 10 Strategic Technology Trends for Government in 2016
  • 7. © 2016 ForgeRock. All rights reserved. Top Investment Areas CIOs in the Asia/Pacific and EMEA regions indicate digitalization is a much higher priority than their North American peers.
  • 8. © 2016 ForgeRock. All rights reserved. Digital Transformation – Top Three Expected Outcomes
  • 9. © 2016 ForgeRock. All rights reserved. 2016 CIO Agenda: A Government Perspective Key Findings •Digital service transformation is at the embryonic stage of maturity in government •Analytics, infrastructure and cloud computing continue to be the top three technology priorities for government CIOs in all tiers and regions – however security and privacy concerns at an all-time high •CIOs report a 34% adoption rate of bimodal IT in government, slightly lagging behind private industry (38%)
  • 10. © 2016 ForgeRock. All rights reserved. What is the role of identity?
  • 11. © 2016 ForgeRock. All rights reserved. Identity Access Management Identity Relationship Management Customers (millions) On-premises People Applications and data PCs Endpoints Workforce (thousands) Partners and Suppliers Customers (millions) On-premises Public Cloud Private Cloud People Things (Tens of millions) Applications and data PCs PhonesTablets Smart Watches Endpoints Digital Transformation & Customer Engagement Require Identity Relationship Management (IRM) PROPRIETARY AND CONFIDENTIAL
  • 12. © 2016 ForgeRock. All rights reserved. Unified, Omnichannel Citizen Experience Single View Contextual Adaptive Privacy & Consent IntelligenceSecurity Persistent Identity Persistent Identity Across Government Channels PROPRIETARY AND CONFIDENTIAL Mobile ReadyOpen DataCitizen ServicesBusiness ServicesSmart City
  • 13. © 2016 ForgeRock. All rights reserved. Identity Management Evolves to Relationship Management Identity Lifecycle Management Users, Devices, Things & Services
  • 14. © 2016 ForgeRock. All rights reserved. Contextual Security Taking Safety to the Next Level Passwordless Authentication Register Device for First Time Authorize Access to Citizen Services Authorize family members to use account Authorize Data to Device / Thing
  • 15. © 2016 ForgeRock. All rights reserved. Did you just submit your taxes? Did you just register a new car? Kayoko is requesting access to your 2015 taxes. Ok? Did you just conduct a transaction on our citizen portal? We noticed your are using a new iPhone. Would you like to register this device? Did you request access to your birth certificate online? Contextual Identity Enriching the Experience
  • 16. © 2016 ForgeRock. All rights reserved. Contextual Identity Authentication, Authorization and Consent Mobile PassportCitizen Government Official
  • 17. © 2016 ForgeRock. All rights reserved. SOA is Dead, but Services on the Rise! 1990s and Early Pre-SOA Monolith to change 2000s Traditional SOA Autonomous but coordinated Present Microservices Decoupled and Independent PWC, Agile coding in enterprise IT: Code small and local
  • 18. © 2016 ForgeRock. All rights reserved. SOA is Dead, but Services on the Rise! 1990s and Early Pre-SOA Monolith to change 2000s Traditional SOA Autonomous but coordinated Present Microservices Decoupled and Independent PWC, Agile coding in enterprise IT: Code small and local
  • 19. © 2016 ForgeRock. All rights reserved. Service to Service Interaction Authentication, Authorization and Consent https://api.australia.gov/v1/userinfo Authenticate API Authorize API Calls Authenticate API
  • 20. © 2016 ForgeRock. All rights reserved. Scaling to Support Distributed Cloud Archs Stateless Architecture • Flexible deployment option to address cloud elasticity and massive horizontal scalability • Configuration can be on a per- realm basis • Stateless = state information is encoded in JWT token • Stateful = tokens persisted in the Core Token Service OpenAM Server OpenAM Server OpenAM Server AWS1 AWS2 AWS3 Microservices Client App Distributed Cloud Environment
  • 21. © 2016 ForgeRock. All rights reserved.
  • 22. © 2016 ForgeRock. All rights reserved. The Cloud Conundrum No Portability! Identity Baked in and Constrained to Each Cloud!
  • 23. © 2016 ForgeRock. All rights reserved. OAuth2/OIDC OAuth2/OIDC OAuth2/OID C OAuth2 The Abstraction of Identity … Again
  • 24. © 2016 ForgeRock. All rights reserved. Cloud Automation
  • 25. © 2016 ForgeRock. All rights reserved. Cloud Native: Cattle versus Pets
  • 26. © 2016 ForgeRock. All rights reserved. Cloud Native: Kangaroos versus Koala Bears
  • 27. © 2016 ForgeRock. All rights reserved. Cloud Native: Cattle versus Pets Cattle •Cattle are numbers •They are almost identical •When ill, get another (Kill it!) •Thousands of cattle on farm Pets •Pets have names like “pussnboots” •They are lovingly hand raised •When ill, nursed back to health •1 or 2 pets in house Elastic Inelastic
  • 28. © 2016 ForgeRock. All rights reserved. Container Management & Deployment Product Configuration Product Manifests ForgeRock Images Java Image Tomcat Image … Other Images DOCKER REPOSITORY
  • 29. © 2016 ForgeRock. All rights reserved. Platform Ubiquity
  • 30. © 2016 ForgeRock. All rights reserved. We Must Be Better Authentication Authorization Multi-Factor Adaptive Risk Self Service Directory API Security GRC …
  • 31. © 2016 ForgeRock. All rights reserved. Unified Platform UMA Provider Mobile OTP App Synchronization Auditing LDAPv3 REST/JSON Replication Access Control Schema Management Caching Auditing Monitoring Groups Password Policy Active Directory Pass-thru Reporting Authentication Authorization Provisioning User Self-Service Authentication OIDC / OAuth2 Federation / SSO User Self-Service Workflow Engine Reconciliation Password Replay SAML2 Adaptive Risk Stateless/Stateful Registration Role Provisioning Message Transformation API Security Scripting Built from Open Source Projects: UMA Resource Access Management Identity Management Identity Gateway Directory Services
  • 32. © 2016 ForgeRock. All rights reserved. U.S. Federal Customers Homeland Security Navy DISA Labor Treasury Energy Commerce Defense
  • 33. © 2016 ForgeRock. All rights reserved. Norway All Gov’t Agencies Global Government Success … Belgium Citizen ID Canada Citizen Services New Zealand Citizen Services France Unemployment, Retiree Services Australia Tax Office UK NHS, BBC Switzerland National Court System
  • 34. © 2016 ForgeRock. All rights reserved. Identity Relationship Management: Talkin’ Bout a Revolution Relationship Management Cloud Automation Cloud Readiness Platform Ubiquity Microservices Architecture Contextual Identity
  • 35. © 2016 ForgeRock. All rights reserved. Thank You
  • 36. © 2016 ForgeRock. All rights reserved. Doing Authorisation, Consent, and Delegation Right With UMA Eve Maler VP Innovation & Emerging Technology @xmlgrrl
  • 37. © 2016 ForgeRock. All rights reserved. 37 flickr.com/photos/vincrosbie/16301598031/ CC BY-ND 2.0
  • 38. © 2016 ForgeRock. All rights reserved. flickr.com/photos/vincrosbie/16301598031/ CC BY-ND 2.0
  • 39. © 2016 ForgeRock. All rights reserved. flickr.com/photos/delmo-baggins/3143080675 CC BY-ND 2.0
  • 40. © 2016 ForgeRock. All rights reserved. Attribute sharing scenarios In the next stage of the project … [t]he team will be investigating and testing this to further address the thorny issues of trust and transparency when gaining citizens’ permission. … “[E]ligibility for some services can be quite dynamic, for example, as the level of an individual’s in-work benefits varies, and it may be necessary to carry out on-going eligibility checks from time to time. UMA gives the individual a place to go online where they can see and manage all the consents they have given to different organisations. Until now, managing ongoing consent was tricky,” [Ian Litton] added. “Typically, you asked individuals to consent at a point in time. They tick the T&Cs, which they never see again. UMA should fix that problem.” -- UKA Local Digital, 3 March 2016
  • 41. © 2016 ForgeRock. All rights reserved. Consumer/clinical health IoT scenarios
  • 42. © 2016 ForgeRock. All rights reserved. resource owner requesting party authorization server resource server manage delegate control negotiateprotect authorize access manage client consent revoke deny Bruce Wayne shares device data with Dr. McCoy
  • 43. © 2016 ForgeRock. All rights reserved.
  • 44. © 2016 ForgeRock. All rights reserved.
  • 45. © 2016 ForgeRock. All rights reserved.
  • 46. © 2016 ForgeRock. All rights reserved.
  • 47. © 2016 ForgeRock. All rights reserved.
  • 48. © 2016 ForgeRock. All rights reserved.
  • 49. © 2016 ForgeRock. All rights reserved.
  • 50. © 2016 ForgeRock. All rights reserved.
  • 51. © 2016 ForgeRock. All rights reserved.
  • 52. © 2016 ForgeRock. All rights reserved.
  • 53. © 2016 ForgeRock. All rights reserved.
  • 54. © 2016 ForgeRock. All rights reserved. Why enable personal data sharing? clinical research better caredata accuracy
  • 55. © 2016 ForgeRock. All rights reserved. Why ensure personal control of sharing? new IoT needs new regulatory pressures
  • 56. © 2016 ForgeRock. All rights reserved. The same architecture applies to Google Apps-style delegation “The enterprise interprets access control as damage and routes around it.”
  • 57. © 2016 ForgeRock. All rights reserved. Why enable constrained delegation? security/authn governance APIs/IoT
  • 58. © 2016 ForgeRock. All rights reserved. Why formalize federated authorization? business ownership standard access model
  • 59. © 2016 ForgeRock. All rights reserved. The CMO and the CPO can and must meet in the middle “Consent should not be regarded as freely given if the data subject has no genuine or free choice or is unable to refuse or withdraw consent without detriment. … In order to ensure that consent is freely given, consent should not provide a valid legal ground for the processing of personal data in a specific case where there is a clear imbalance between the data subject and the controller…” We value personal data as an asset Our customers’ wishes have value Our customers have their own reasons to share, not share, and mash up data, which we can address as value-add Risk management perspective Business perspective
  • 60. © 2016 ForgeRock. All rights reserved. The ForgeRock Identity Platform includes two UMA components authorization server resource server client (sample code provided) UMA Provider (access management) UMA Protector (gateway)
  • 61. © 2016 ForgeRock. All rights reserved. ForgeRock ForgeRock ForgeRockIdentity ForgeRock Forgerock.com Forgerock.com/blog Thank you!
  • 62. © 2016 ForgeRock. All rights reserved. Questions? Wrap Up •Feedback Forms •Your Local ForgeRock Team Adam Butler Federal Government Director Adam Biviano Senior Solutions Architect

Notes de l'éditeur

  1. Give a little background about ForgeRock Securing over 500 Million Identities Built for telco-scale Huge enterprise implementations Capital efficient Truly global in nature Multi-national engineering centers 400+ large enterprise & government customers
  2. Daniel
  3. We have been helping governments worldwide and, in addition to Norway, have a number of impressive deployments.
  4. Consumer trust of businesses has never been great. But it’s demonstrably at an ebb in the post-Snowden era when it comes to personal data. There’s qualitative and quantitative evidence telling the story. Image source: https://www.flickr.com/photos/vincrosbie/16301598031/
  5. Latest evidence: Spotify last August: simple privacy policy change alarmed customers Complaints, threats to leave (e.g. new Apple Music) Lesson: commoditized? low switching costs, lack of sensitivity can hurt you even if the change wasn’t materially negative Mobile Ecosystem Forum IoT consumer survey: trust issues biggest concern NEW: On The Dark Web, Medical Records Are A Hot Commodity: Medical records go for US$60 each NEW: “In January of this year, Melbourne’s largest hospital network was significantly impacted when a computer virus affected the hospitals Windows XP systems disrupting meal delivery and pathology results.” (See: http://www.dw.com/en/spotify-feels-the-burn-after-privacy-policy-flub/a-18665269) (See: http://www.fastcompany.com/3061543/on-the-dark-web-medical-records-are-a-hot-commodity) (See: http://securityaffairs.co/wordpress/49472/data-breach/data-breaches-healthcare-sector.html) (See: http://www.bizreport.com/2016/04/21-globally-have-concerns-that-iot-machines-will-take-over-t.html) Image source: https://www.flickr.com/photos/vincrosbie/16301598031/
  6. It’s imperative to build and maintain trusted digital relationships
  7. The project involved a collaboration between Government Digital Service, Department for Work and Pensions, Warwickshire County Council, Mydex and Verizon to design an attribute exchange hub. The hub was built by Verizon with Warwickshire County Council building the relying party gateway to the hub. The attribute provider components were built by Verizon. The project team designed the attribute exchange hub based on [Separate identity assurance and attribute exchange hubs with attributes passing through the attribute exchange hub]. This was selected for a number of reasons: ●  identity assurance has already been designed and developed as a common capability within the government platform (ie GOV.UK Verify) ●  identity assurance and attribute exchange can be treated as separate “services”, each simpler in its own right and each able to develop at its own speed ●  sending all of the messaging via the hub, rather than point to point between relying parties and attribute providers, simplifies on-boarding, and provides a consistent point for logging, auditing and billing. It better meets a number of the design principles established in the Discovery project (See: http://www.ukauthority.com/UKA-Local-Digital/entry/5958/local-and-central-government-work-together-to-explore-online-eligibility-checking-within-digitised-services)
  8. Okay, so why enable personal data sharing? Data quality and accuracy -- one US study: only 5% agreement between medications listed in EHRs and what patients actually take This gap affects cost, efficiency, and satisfaction as well Improved clinical research sets – one UK study: over half the respondents supported use of their data by commercial organizations for research A floor of 17% were not willing to share data at all Better care – Philips did a study with Banner Health Patients with chronic disease using a smart device and an app would tend to leverage continuously monitored vital signs Shorter, less expensive, less ER-intensive stay: savings averaged 10 days/year and $27K/year (See: http://well.blogs.nytimes.com/2016/03/31/let-patients-read-their-medical-records/?_r=0) (See: http://www.wellcome.ac.uk/News/Media-office/Press-releases/2016/WTP060240.htm) Image sources: http://www.serkworks.com/rocket-surgery-institute/ https://upload.wikimedia.org/wikipedia/en/d/dc/Lab_Rats_Film_Poster.jpg http://www.mastgeneralstore.com/products/id-1426/magnet_-_i_love_lucy_vitameatavegamin
  9. So that’s a business-based reward-centric viewpoint Beyond the business-based risk-centric viewpoint of regulatory compliance, why should businesses do what individuals want regarding personal control? The IoT brings new volumes and sources of data, and new use cases for people wanting to share that data CareKit added person-to-person sharing in the Apple ecosystem Dumb socks vs. smart socks – need a solution in wider ecosystems
  10. With apologies to John Gilmore’s famous saying about the ‘net and censorship You have to make the right thing to do be the easiest thing to do IT manages hundreds of API-fronted apps in the enterprise (and some outside). Alice is an employee who needs to delegate constrained access to app features/functions to fellow employees and partners within the ecosystem, giving IT – and herself – centralized visibility into the access granted. Image source: "John Gilmore Portrait" by Neurosynthetic - Own work. Licensed under CC BY-SA 4.0 via Wikimedia Commons - http://commons.wikimedia.org/wiki/File:John_Gilmore_Portrait.jpg#/media/File:John_Gilmore_Portrait.jpg
  11. Bringing the business owner closer to permission management and providing a standardized API access model
  12. New regulations are not just codifying current data protection practice Many are giving user consent a much greater role in the privacy picture At the same time, more organizations are recognizing that personal data has got to be a shared asset You need to provide custodianship but also a relationship (See: https://iapp.org/media/pdf/resource_center/GDPR-final.pdf)
  13. The UMA architecture has these three pieces. ForgeRock will deliver the two key pieces on the top in order to help you protect your API/application (policy enforcement points) and let your users set up sharing preferences (policy decision point).