Presentation is loading. Please wait.

Presentation is loading. Please wait.

A Survey of Risk: Federated ID Management in Cloud and Grid Computing Presentation by Andy Wood (P11250192)

Published bySabina Austin Modified over 8 years ago

Similar presentations

Presentation on theme: "A Survey of Risk: Federated ID Management in Cloud and Grid Computing Presentation by Andy Wood (P11250192)"— Presentation transcript:

1

2 A Survey of Risk: Federated ID Management in Cloud and Grid Computing Presentation by Andy Wood (P11250192)

3 Introduction Cloud (and Grid) computing are the new platforms today. Working with business partners is more common place in todays connected world. Managing user accounts across disparate systems is becoming more difficult and costly.

4 Federated ID Management Federated ID Management (FIdM) allows for simplified user management across security domains. Based on a user authenticating to own DS and their ID used to authenticate to remote services through trust relationships. FIdM is based on not just technology. Many ways to implement – User centric – Business centric

5 Federated ID Management

6 Critical Review - Resources Keywords: – (FIdM or Federated) and Cloud and Risk. Resource Databases: – IEEE Xplore; ACM DL; SCOPUS; CiteSeerX and Google Scholar. Resources: – 673 initial resources. – Reduced to final 18. – 5 Further papers added

7 Critical Review - Criteria Criteria: – Primary / Secondary source – Difficulty to implement – Risk type: Security; Liability; Trust; Assurance or Interoperability – Scalability – Protocols – Citation

8 Critical Review - Findings Most papers describe similar technologies: – SAML being key protocol for ID transfer – XACML bring key protocol for access control Key risks: – Trust (with 3 rd party); – Interoperability; and – Message security. Scalability of solutions were good Difficulty varied and subjective Olden (2011) describes a typical enterprise benefit with example saving of $4.5m per year.

9 Critical Review – Risks Liability – Ensuring lines of responsibility Assurance – Processes and procedures being followed: staff vetting; joiners/movers/leavers etc. Trust – Fundamental, but difficult to implement Security – ID theft – Greater exposure than via separate authentication to systems – Message security through exchange of ID information Interoperability – Some standard based mechanisms such as SAML – Others describe extended or bespoke mechanisms – Potential for large federations to include multiple mechanisms Higher risk profile Higher cost for implementation and support

10 Conclusion Resources were harmonious in design and risk Immature area of technology – Still room for improvement FIdM is more than just technology Lack of described foundation prior to tech FIdM is a business enabler Balance of risk v business enablement Risk profile has to be aligned to each business

Download ppt "A Survey of Risk: Federated ID Management in Cloud and Grid Computing Presentation by Andy Wood (P11250192)"

Similar presentations

NRL Security Architecture: A Web Services-Based Solution

NRL Security Architecture: A Web Services-Based Solution
Windows 2000 Security --Kerberos COSC513 Project Sihua Xu June 13, 2014.

Windows 2000 Security --Kerberos COSC513 Project Sihua Xu June 13, 2014.
FIA Prague Preparation February 6, 2008. Scenario planning approach We cannot predict the future We cannot predict the future We do understand the drivers.

FIA Prague Preparation February 6, Scenario planning approach We cannot predict the future We cannot predict the future We do understand the drivers.
The Internet2 NET+ Services Program Jerry Grochow Interim Vice President CSG January, 2012.

The Internet2 NET+ Services Program Jerry Grochow Interim Vice President CSG January, 2012.
Extending ForeFront beyond the limit www.AGATSolutions.com TMGUAG ISAIAG AG Security Suite.

Extending ForeFront beyond the limit TMGUAG ISAIAG AG Security Suite.
Federal Student Aid Technical Architecture Initiatives Sandy England

Federal Student Aid Technical Architecture Initiatives Sandy England
Active Directory: Final Solution to Enterprise System Integration

Active Directory: Final Solution to Enterprise System Integration
Copyright © Richard N. Taylor, Nenad Medvidovic, and Eric M. Dashofy. All rights reserved. Software Connectors.

Copyright © Richard N. Taylor, Nenad Medvidovic, and Eric M. Dashofy. All rights reserved. Software Connectors.
Software Connectors. Attach adapter to A Maintain multiple versions of A or B Make B multilingual Role and Challenge of Software Connectors Change A’s.

Software Connectors. Attach adapter to A Maintain multiple versions of A or B Make B multilingual Role and Challenge of Software Connectors Change A’s.
Introduction and Overview “the grid” – a proposed distributed computing infrastructure for advanced science and engineering. Purpose: grid concept is motivated.

Introduction and Overview “the grid” – a proposed distributed computing infrastructure for advanced science and engineering. Purpose: grid concept is motivated.
Copyright © Richard N. Taylor, Nenad Medvidovic, and Eric M. Dashofy. All rights reserved. Software Connectors Software Architecture Lecture 7.

Copyright © Richard N. Taylor, Nenad Medvidovic, and Eric M. Dashofy. All rights reserved. Software Connectors Software Architecture Lecture 7.
Asper School of Business University of Manitoba Systems Analysis & Design Instructor: Bob Travica System architectures Updated: November 2014.

Asper School of Business University of Manitoba Systems Analysis & Design Instructor: Bob Travica System architectures Updated: November 2014.
1 Overview of Other Global Networks Exchange Network User Group Meeting April 2006.

1 Overview of Other Global Networks Exchange Network User Group Meeting April 2006.
Finalize RESTful Application Programming Interface (API) Security Recommendations Transport & Security Standards Workgroup January 28, 2014.

Finalize RESTful Application Programming Interface (API) Security Recommendations Transport & Security Standards Workgroup January 28, 2014.
Institute of Technology, Sligo Dept of Computing Semester 3, version 2.1.3 Semester 3 Chapter 3 VLANs.

Institute of Technology, Sligo Dept of Computing Semester 3, version Semester 3 Chapter 3 VLANs.
SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)

SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)
Customer Focus Module Preview

Customer Focus Module Preview
Secure Systems Research Group - FAU Web Services Standards Presented by Keiko Hashizume.

Secure Systems Research Group - FAU Web Services Standards Presented by Keiko Hashizume.
Copyright © Richard N. Taylor, Nenad Medvidovic, and Eric M. Dashofy. All rights reserved. Software Connectors Software Architecture Lecture 7.

Copyright © Richard N. Taylor, Nenad Medvidovic, and Eric M. Dashofy. All rights reserved. Software Connectors Software Architecture Lecture 7.
Scenario covered in this presentation Separate credential from on- premises credential Authentication occurs via cloud directory service Does not.

Scenario covered in this presentation Separate credential from on- premises credential Authentication occurs via cloud directory service Does not.

Similar presentations

Ads by Google