1. APS (Keystone) Security “dial tone” Doron Grinstein Chief Architect October 2012 | Version 0.2 | Confidential

2. 2 Dell Software Confidential Security? Authentication Single Sign On (SSO) Federation Session Management Delegated Administration Fine-Grained Authorization Audit Trail (e.g. who granted access to the user?) Reporting (e.g. what can Mike Smith do?) Segregation of Duties Enforcement (SOD)

3. 3 Dell Software Confidential Elements in enterprise settings COTS (commercial off the shelf) Applications – ERP, CRM, Collaboration (SharePoint, etc.) – Web Applications – Mobile Applications – Mainframe Application – Web Services – Rich Client Custom Applications – Web, Rich Client, Mobile, Web Services – Java,.NET,RUBY, PHP, Delphi, COM, C, C++, F#, Power Builder, Cold Fusion, etc.

4. 4 Dell Software Confidential Application Security Today

5. 5 Dell Software Confidential Security should be as simple as this:

6. 6 Dell Software Confidential But in reality you’re faced with this SAML 1.1 XACML 2.0 Kerberos OpenID WS-Trust CAS SAMLP SAML 2.0 Card Spaces OpenAuth OAuth Shibboleth LiveID WIF ADFS WRAP XACML 3.0 DSML SPML WS-Federation RADIUS Siteminder

7. 7 Dell Software Confidential What is needed is a Universal Adapter of IdM!

8. 8 Dell Software Confidential How does it work?

9. Thank you

10. 10 Dell Software Confidential APS becomes the Dell Identity Glue™

11. 11 Dell Software Confidential Entitlement Mgmt Role Mgmt Policy Mgmt Self Service IT Shop Delegation Identity Admin APS and Q1IM provide core services Workflow Assessment SoD Attestation Recertification Orchestration Compliance Governance APS Q1IM Log Service Log Analysis Heuristics Fraud Detection Reporting Real Time Alerts Monitoring Data Access Context PIP Unified Namespace Provisioning / Sync Data Connectors Virtual Directory Authorization Policy Decision Policy Enforcement File SharePoint Web Data Code Authentication User Authentication Two Factor Authn IDP/STS SSO Quest One Core Services