Presentation is loading. Please wait.

Presentation is loading. Please wait.

Multi-Protocol Identity Provider Architecture Considerations Uppili Srinivasan, Oracle.

Similar presentations


Presentation on theme: "Multi-Protocol Identity Provider Architecture Considerations Uppili Srinivasan, Oracle."— Presentation transcript:

1 Multi-Protocol Identity Provider Architecture Considerations Uppili Srinivasan, Oracle

2 Token Payload Trust Fabric Identity Network Ideals – Heterogeneity & Co-existence Internet Commerce Partner Networks & Consortiums Social Networks & Blogs Point-to-point E-Business Relationship s User Mediated Dynamic Trust Circle of Trust Point-point E-Business Trust SAML X.509Kerberos Protocols SAML Federation WS-Trust / WS- Federation OpenID (Adapted from Kim Camerons ID meta-system Ideals) Identity Solutions Ideal Architecture: Multi-Protocol but integrated Trust model, token types and protocols decoupled Legacy / Current : Multi-protocol Identity silos Trust model, token types and protocols tightly coupled in each silo

3 Card Based Authentication in SAML SP SAML Card Enabled SAML IDP IDPSTS SSO / Card RP

4 Multi-Protocol Identity Environment Multi-protocol Identity Provider Card Enabled End-users Partner circle of trust OpenID Consuming ISPs Outsourced (Web) Services SAML WS-Trust / WS-Fed OpenID STSSAML Protocol Facades Card RP

5 Social Networks & Blogs Common Authentication & Trust Infrastructure Common Authentication and Trust F/W APIs Pseudonym & Privacy Handling Attributes / Claims Access Trust & Policy Mgmt Credential & Token Handling Authorizatio n Decision Services Attribute Authorities Internet Commerce Partner Networks & Consortiums Point-to-point E-Business Relationships Identity Provider and Single Sign-on Services Token / Trust & Federation Services SAMLOpenIDWS-Trust / WS-federation Integrated Multi-protocol Technology Infrastructure Interconnected Heterogeneous Identity Network Session Mgmt Card Enablement & Mgmt

6 Multi-Protocol IDP Scenarios & Benefits Session management & global sign-off Consistent enforcement Privacy policies Trust policies / authorizations Single point of administration Card provisioning & enablement Attribute services External (IDP) token / credential service Privacy policies Trust policies and authorization


Download ppt "Multi-Protocol Identity Provider Architecture Considerations Uppili Srinivasan, Oracle."

Similar presentations


Ads by Google