Identity management: Enhancing the User Experience
Today managing user expectations is a very daunting task. Turning to an identity management system to create meaningful human interactions seem rather peculiar, but if implemented properly almost any product, system, or service can elicit a positive user experience. During this session we will look a few identity related functions coupled with proper usability techniques to create a secure environment for users to function in.
3. 1. A few IAM best practices
2. The people problem
3. Usability and beyond
4. The user lifecycle
5. A look at Kent State University
6. Take a look at usable IAM functions
7. Preparing for the future (Convergence)
MatthewO.Pahls
Agenda
4. Strive for the fewest number of
Identity repositories.
Expect to use multiple authoritative
sources for user information.
Separate the authoritative
repository from the enterprise
directory
Choose a pragmatic goal for user-to-
role assignment
Match the culture and operations of
your business with a role framework
Automate Provisioning
Provide knowledge and control to
business owners and custodians
MatthewO.Pahls
Just a few IAM best practices
5. Behind every quantitative study
lurks a rather peculiar variable.
“Each individual will adopt a course
of action that will involve the
expenditure of the probably least
average of his work” - George Kingsley Zipf
Will not seek out information
that makes their jobs harder
At best we “satisfice” under
“bounded rationality”
I.A.
MatthewO.Pahls
The people problem
6. Testing one person is better than
testing none.
Testing one user in the beginning of
a project is better than testing 50
near the end.
The importance of recruiting
representative users is overrated.
Testing in an iterative process
Top 5 reasons for not testing
● We don’t have time
● We don’t have money
● We don’t have the expertise
● We don’t have a usability lab
● We wouldn’t know what to do
with the results.
MatthewO.Pahls
The people problem
17. Keeping your users informed.
Matthew Pahls,
Your Kent State University password has been changed on
05/13/2014 02:30 PM. If you are not aware of this change, please
contact the Helpdesk at 330.672.HELP (4357).
As a reminder your alternate e-mail address will not be used for
marketing purposes.
Thank you,
Kent State University Helpdesk
Information Services
Call: 330.672.HELP (4357)
Visit: 1st Floor Library Walk-Up Desk
Matthew Pahls,
Your Kent State University alternate e-mail address has been
changed to asdfasdf@gmail.com on 05/13/2014 02:30 PM. If you
did not initiate this change, please contact the Helpdesk at
330.672.HELP (4357).
As a reminder your alternate e-mail address will not be used for
marketing purposes.
Thank you,
Kent State University Helpdesk
Information Services
Call: 330.672.HELP (4357)
Visit: 1st Floor Library Walk-Up Desk
MatthewO.Pahls
Usable IAM function
18. 2-Factor Authentication
Lets just see how easy 2-Factor can
be to setup with an example.
Lets use Duo Security
MatthewO.Pahls
Usable IAM function
20. You are the password
Nymi Wristband
● Recognize you based on your
unique cardiac rhythm
● Low power Bluetooth
● Gesture based movements
○ eg Opening a Door
MatthewO.Pahls
The future