Presentation is loading. Please wait.

Presentation is loading. Please wait.

WP8 Security and Privacy Identity Management 15. November 2012 Wolfgang Steigerwald (DT) Robert Seidl (NSN)

Published byMiranda Wade Modified over 9 years ago

Similar presentations

Presentation on theme: "WP8 Security and Privacy Identity Management 15. November 2012 Wolfgang Steigerwald (DT) Robert Seidl (NSN)"— Presentation transcript:

1 WP8 Security and Privacy Identity Management 15. November 2012 Wolfgang Steigerwald (DT) Robert Seidl (NSN)

2 The FI-WARE Project – Base Platform for Future Service Infrastructures Agenda  Aspects of Identity Management  Differences of the IdM solutions  The Nokia Siemens Network (NSN) IdM-System  The Deutsche Telekom (DT) IdM-System  Questions, Answers and Discussion

3 The FI-WARE Project – Base Platform for Future Service Infrastructures Device ServiceNetwork Application User Aspects of Identity Management Authentication private secure mutual Single Sign-On to service domains Identity Federation towards applications Authorisation & Trust Management User & Profile Management Authentication Authorisation Accounting

4 The FI-WARE Project – Base Platform for Future Service Infrastructures Features NSNDT Authentication Methods: Username/PasswordYesYes eID(STORK)Yes (2 nd version) No 3 rd Party LoginYesYes Attribute Based CredentialsYes No Supported Protocols: OAuth2.0Yes (2 nd version)Yes SAML2.0Yes No OpenIDYes (2 nd version)Yes httpsYesYes Interfaces: WebYesYes RestFull NoYes Markets: Telecommunication Internet Shops

5 The FI-WARE Project – Base Platform for Future Service Infrastructures Nokia Siemens Networks IDM Solution One-IDM

6 The FI-WARE Project – Base Platform for Future Service Infrastructures What we have and what we will offer in detail to FI-Ware UC projects. Customer self care / Customer care tools Service specific profileFeatures for One-IDM customers  Service will be managed and hosted by NSN  Provisioning of user accounts will be done by NSN  Set-up of trust relations will be done by NSN  Configuration of attribute database scheme will be done by NSN  Service specific attributes can be viewed  Account name at service  Account type (existing or on-demand)  Attribute release policy (admin role)  Authentication at service can consider the trust level of used authentication method at portal (cf. box above)  Full list of attributes can be viewed on overview page  Transparency towards user is an important concern  At the portal, users are able to view and (partially) modify their attributes  Basic identifiers cannot be modified (because e.g. full name is legally bound to a contract) Identity management / Authentication At the portal, the user may choose different authentication methods:  username / password  Facebook Connect (Facebook can be used as Identity Provider)  Support of ABC4Trust credentials Other authentication methods (not in portal) include:  AAA  GBA  German eID  Identity federation in general possible The red marked features will be not available in the project.

7 The FI-WARE Project – Base Platform for Future Service Infrastructures How you can use the One-IDM User’s Home Example Service Service One-IDM System IdM Server IdM Portal federation browser based redirect

8 The FI-WARE Project – Base Platform for Future Service Infrastructures The Global Customer Platform GCP

9 The FI-WARE Project – Base Platform for Future Service Infrastructures What we have and what we will offer in detail to FI-Ware UC projects. Customer self care / Customer care tools Product management / Subscription management for free products Features for GCP-B2B-customers  Cloud-offer: Managed and hosted environment  DTAG security- and data-privacy standards  Complete online administration  Online management of customer care agents  Complete control over your brand – white-label platform  Any functionality also exposed via APIs for full integration  Complete and comprehensive online documentation  Product catalog management (commercial aspects such as price-plans, contractual attributes)  Payment management for subscription products  Wide range of pricing-models for subscriptions (fixed recurring, trial periods, set-up fees, usage based post paid, …)  Global payment methods  Customizable customer self care portal for customer data administration, account administration, contract management, billing management  Customer care tooling for managing user-data, customer-data, contract-data and invoicing  Customer care tooling can be integrated with existing customer care systems Registration / Identity management / Product booking  Complete online registration  Complete Login, logout, single-sign-on  Registration and login using 3rd party identity providers (facebook, google, yahoo!, …)  Password change, password recovery, management of 3rd party ID-federations  OAuth 2.0-based API for apps on iOS, android, …  Complete checkout-process for product booking  Complete management of payment-information The red marked features will be not available in the project.

10 The FI-WARE Project – Base Platform for Future Service Infrastructures How you can use GCP WEB Shop Global Customer Platform Tenant Instance login Registration or Login Configuration Customer Self-care Management Customer Care Management Admin

11 The FI-WARE Project – Base Platform for Future Service Infrastructures Outlook During the project we will provide a common interface for both IDM systems We will provide additional features: One-IDM: switch to Digital Self support of OAuth2.0, OpenID, eID GCP: new features will be developed regarding customer needs enhancements to the REST-API How to access the demos GCP demo https://logint2.idm.toon.sul.t-online.de/media-store https://logint2.idm.toon.sul.t-online.de/music-service https://logint2.idm.toon.sul.t-online.de/video-service Please contact wolfgang.steigerwald@telekom.de One-IDM https://85.183.197.168:8443/idmPortal http://85.183.197.168/shop/catalog Please contact gerald.meyer@nsn.com Prerequisite: add these lines to your „hosts“ file (/etc/hosts or c:\windows\system32\drivers\etc\hosts): 85.183.197.168 idm.nsn.com 85.183.197.168 payb.nsn.com 85.183.197.168 easybuy

12 The FI-WARE Project – Base Platform for Future Service Infrastructures Thanks !!

13 The FI-WARE Project – Base Platform for Future Service Infrastructures Preliminary Core GEs Architecture

Download ppt "WP8 Security and Privacy Identity Management 15. November 2012 Wolfgang Steigerwald (DT) Robert Seidl (NSN)"

Similar presentations

Next Generation Athens Services Ed Zedlewski UK e-Science Town Meeting, London, 11 April 2005.

Next Generation Athens Services Ed Zedlewski UK e-Science Town Meeting, London, 11 April 2005.
Web Hosting. The purpose of this Startup Guide is to familiarize you with Own Web Now's Web Hosting. Own Web Now offers two web hosting platforms, one.

Web Hosting. The purpose of this Startup Guide is to familiarize you with Own Web Now's Web Hosting. Own Web Now offers two web hosting platforms, one.
Presented by Brad Jacobson The Publisher on the Web Exploiting the new online sales channels.

Presented by Brad Jacobson The Publisher on the Web Exploiting the new online sales channels.
Grow your business with your head in the cloud. What is Cloud Computing ? Internet-based computing, whereby shared resources, software and information.

Grow your business with your head in the cloud. What is Cloud Computing ? Internet-based computing, whereby shared resources, software and information.
Mobile Protection Overview

Mobile Protection Overview
Agenda AD to Windows Azure AD Sync Options Federation Architecture

Agenda AD to Windows Azure AD Sync Options Federation Architecture
FI-WARE Testbed Access Control temporary solution.

FI-WARE Testbed Access Control temporary solution.
- 1 - Defense Security Service Background: During the Fall of 2012 Defense Security Service will be integrating ISFD with the Identity Management (IdM)

- 1 - Defense Security Service Background: During the Fall of 2012 Defense Security Service will be integrating ISFD with the Identity Management (IdM)
A 21 st Century Solution For 21 st Century Publishers.

A 21 st Century Solution For 21 st Century Publishers.
“It’s going to take a month to get a proof of concept going.” “I know VMM, but don’t know how it works with SPF and the Portal” “I know Azure, but.

“It’s going to take a month to get a proof of concept going.” “I know VMM, but don’t know how it works with SPF and the Portal” “I know Azure, but.
INTRODUCTION Toomeeting Conference (TMC) is the easiest and more accessible multimedia videoconferencing solution on market. TMC offers a large portfolio.

INTRODUCTION Toomeeting Conference (TMC) is the easiest and more accessible multimedia videoconferencing solution on market. TMC offers a large portfolio.
SaaS, PaaS & TaaS By: Raza Usmani

SaaS, PaaS & TaaS By: Raza Usmani
SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)

SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)
Winter 2005-2006 Consolidated Server Deployment Guide for Hosted Messaging and Collaboration version 3.5 Philippe Maurent Principal Consultant Microsoft.

Winter Consolidated Server Deployment Guide for Hosted Messaging and Collaboration version 3.5 Philippe Maurent Principal Consultant Microsoft.
© 2008 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. HP Automates Infrastructure Outsourcing.

© 2008 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. HP Automates Infrastructure Outsourcing.
Module 4 Managing Client Access. Module Overview Configuring the Client Access Server Role Configuring Client Access Services for Outlook Clients Configuring.

Module 4 Managing Client Access. Module Overview Configuring the Client Access Server Role Configuring Client Access Services for Outlook Clients Configuring.
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
Nu Vendor Management System A web based tool to Manage Vendors.

Nu Vendor Management System A web based tool to Manage Vendors.
Web 2.0: Concepts and Applications 6 Linking Data.

Web 2.0: Concepts and Applications 6 Linking Data.
Presentation Software as a Service Applications Software-as-a-Service Partner Enablement Program Enabling ‘Software as a Service’

Presentation Software as a Service Applications Software-as-a-Service Partner Enablement Program Enabling ‘Software as a Service’

Similar presentations

Ads by Google