WP8 Security and Privacy Identity Management 15. November 2012 Wolfgang Steigerwald (DT) Robert Seidl (NSN)

Slides:

Advertisements

Similar presentations

Next Generation Athens Services Ed Zedlewski UK e-Science Town Meeting, London, 11 April 2005.

Advertisements

Web Hosting. The purpose of this Startup Guide is to familiarize you with Own Web Now's Web Hosting. Own Web Now offers two web hosting platforms, one.

Presented by Brad Jacobson The Publisher on the Web Exploiting the new online sales channels.

Grow your business with your head in the cloud. What is Cloud Computing ? Internet-based computing, whereby shared resources, software and information.

Mobile Protection Overview

Agenda AD to Windows Azure AD Sync Options Federation Architecture

FI-WARE Testbed Access Control temporary solution.

- 1 - Defense Security Service Background: During the Fall of 2012 Defense Security Service will be integrating ISFD with the Identity Management (IdM)

A 21 st Century Solution For 21 st Century Publishers.

“It’s going to take a month to get a proof of concept going.” “I know VMM, but don’t know how it works with SPF and the Portal” “I know Azure, but.

INTRODUCTION Toomeeting Conference (TMC) is the easiest and more accessible multimedia videoconferencing solution on market. TMC offers a large portfolio.

SaaS, PaaS & TaaS By: Raza Usmani

SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)

Winter Consolidated Server Deployment Guide for Hosted Messaging and Collaboration version 3.5 Philippe Maurent Principal Consultant Microsoft.

© 2008 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. HP Automates Infrastructure Outsourcing.

Module 4 Managing Client Access. Module Overview Configuring the Client Access Server Role Configuring Client Access Services for Outlook Clients Configuring.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.

Nu Vendor Management System A web based tool to Manage Vendors.

Web 2.0: Concepts and Applications 6 Linking Data.

Presentation Software as a Service Applications Software-as-a-Service Partner Enablement Program Enabling ‘Software as a Service’

Microsoft ® Official Course Module 13 Implementing Windows Azure Active Directory.

Using Enterprise Logins in Portal for ArcGIS via SAML Greg Ponto & Tom Shippee.

The explosion of devices is eroding the standards-based approach to corporate IT. Devices Deploying and managing applications across platforms is.

AUTOMATING DAAS DESKTOPS WITH CITRIX CORTEX Tony Sanchez WW Alliances Solutions Architecture Citrix Systems Inc SESSION CODE: CLI415 (c) 2011 Microsoft.

Customer Hub Protect Your Content. What We’ll Be Talking About Customer Hub is a powerful content management system that is fully integrated with Infusionsoft.

- NCSU project goals and requirements - Adoption Drivers - Current challenges and pain points - Identacor at NCSU - Identacor Features - NCSU Key Benefits.

Mirek Sztajno SQL Server Security PM

FriendFinder Location-aware social networking on mobile phones.

Building consumer apps with Azure AD B2C

Esri UC 2014 | Demo Theater | Using ArcGIS Online App Logins in Node.js James Tedrick.

Application Programming Interfaces. Unacceptable... That employees need to find business information, and documents in an expensive remote desktop.

Identities and Azure AD Premium

Agenda  Microsoft Directory Synchronization Tool  Active Directory Federation Server  ADFS Proxy  Hybrid Features – LAB.

© 2014 IBM Corporation Mobile Customization & Administration IBM Connections 5.0 Workshop Author: Paul Godby IBM Ecosystem Development Duration: 30 minutes.

B2access.eudat.eu B2ACCESS User Training How to register with B2ACCESS Version 1 February 2016 This work is licensed under the Creative Commons.

© 2015 TM Forum | 1 Service Level Management for Smart City Ecosystems and Trusted IoT Nektarios Georgalas, BT.

What is Cloud Computing 1. Cloud computing is a service that helps you to perform the tasks over the Internet. The users can access resources as they.

Google Apps for Education Account Overview for Staff.

Azure Active Directory Uday Hegde 2016 Redmond Summit | Identity Without Boundaries May 26, 2016 Group Program Manager, Azure AD

Web 2.0: Concepts and Applications 6 Linking Data.

11 | Managing User Info Jeremy Foster Michael Palermo

A deep dive into Azure AD B2C

My2N – Mobile Video Technical Training

Using Your Own Authentication System with ArcGIS Online

A lap around Azure Active Directory Business to Consumer (B2C)

Responsive Websites.

Azure Active Directory - Business 2 Consumer

By: Raza Usmani SaaS, PaaS & TaaS By: Raza Usmani

Munix Healthcare Customer Profiling, Frequency Analysis, Location Mapping, Movement Analysis, Web Classification, Time Analysis, and much more …. Internet.

Scalable Web Apps Target this solution to brand leaders responsible for customer engagement and roll-out of global marketing campaigns. Implement scenarios.

Munix for Education Content Filter, Bandwidth Control, Location Mapping, Movement Analysis, User Self Management Portal, Time Analysis, and much more ….

Munix Fitness Centers Customer Profiling, Attendance Management, SMS Alerts, Workout Schedule, Diet Management, and much more …. Internet Gateway & Business.

Introduction to Windows Azure AppFabric

Azure Active Directory voor Developers

Microsoft Office SharePoint Server 2007 Enterprise Search

Munix Saloon & SPA Customer Profiling, Attendance Management, SMS Alerts, Workout Schedule, Diet Management, and much more …. Internet Gateway & Business.

SaaS Application Deep Dive

IBM Marketplace: Business Partner Overview

Cloud Management Mechanisms

Scalable Web Apps Target this solution to brand leaders responsible for customer engagement and roll-out of global marketing campaigns. Implement scenarios.

Taxi App source code Development Company

Cloud Connect Seamlessly

ESA Single Sign On (SSO) and Federated Identity Management

PSC Group, LLc Office 365/SharePoint Online Migration traps and tricks

Matthew Levy Azure AD B2B vs B2C Matthew Levy

SharePoint Online Authentication Patterns

Check-in Identity and Access Management solution that makes it easy to secure access to services and resources.

Microsoft Virtual Academy

Presentation transcript:

WP8 Security and Privacy Identity Management 15. November 2012 Wolfgang Steigerwald (DT) Robert Seidl (NSN)

The FI-WARE Project – Base Platform for Future Service Infrastructures Agenda  Aspects of Identity Management  Differences of the IdM solutions  The Nokia Siemens Network (NSN) IdM-System  The Deutsche Telekom (DT) IdM-System  Questions, Answers and Discussion

The FI-WARE Project – Base Platform for Future Service Infrastructures Device ServiceNetwork Application User Aspects of Identity Management Authentication private secure mutual Single Sign-On to service domains Identity Federation towards applications Authorisation & Trust Management User & Profile Management Authentication Authorisation Accounting

The FI-WARE Project – Base Platform for Future Service Infrastructures Features NSNDT Authentication Methods: Username/PasswordYesYes eID(STORK)Yes (2 nd version) No 3 rd Party LoginYesYes Attribute Based CredentialsYes No Supported Protocols: OAuth2.0Yes (2 nd version)Yes SAML2.0Yes No OpenIDYes (2 nd version)Yes httpsYesYes Interfaces: WebYesYes RestFull NoYes Markets: Telecommunication Internet Shops

The FI-WARE Project – Base Platform for Future Service Infrastructures Nokia Siemens Networks IDM Solution One-IDM

The FI-WARE Project – Base Platform for Future Service Infrastructures What we have and what we will offer in detail to FI-Ware UC projects. Customer self care / Customer care tools Service specific profileFeatures for One-IDM customers  Service will be managed and hosted by NSN  Provisioning of user accounts will be done by NSN  Set-up of trust relations will be done by NSN  Configuration of attribute database scheme will be done by NSN  Service specific attributes can be viewed  Account name at service  Account type (existing or on-demand)  Attribute release policy (admin role)  Authentication at service can consider the trust level of used authentication method at portal (cf. box above)  Full list of attributes can be viewed on overview page  Transparency towards user is an important concern  At the portal, users are able to view and (partially) modify their attributes  Basic identifiers cannot be modified (because e.g. full name is legally bound to a contract) Identity management / Authentication At the portal, the user may choose different authentication methods:  username / password  Facebook Connect (Facebook can be used as Identity Provider)  Support of ABC4Trust credentials Other authentication methods (not in portal) include:  AAA  GBA  German eID  Identity federation in general possible The red marked features will be not available in the project.

The FI-WARE Project – Base Platform for Future Service Infrastructures How you can use the One-IDM User’s Home Example Service Service One-IDM System IdM Server IdM Portal federation browser based redirect

The FI-WARE Project – Base Platform for Future Service Infrastructures The Global Customer Platform GCP

The FI-WARE Project – Base Platform for Future Service Infrastructures What we have and what we will offer in detail to FI-Ware UC projects. Customer self care / Customer care tools Product management / Subscription management for free products Features for GCP-B2B-customers  Cloud-offer: Managed and hosted environment  DTAG security- and data-privacy standards  Complete online administration  Online management of customer care agents  Complete control over your brand – white-label platform  Any functionality also exposed via APIs for full integration  Complete and comprehensive online documentation  Product catalog management (commercial aspects such as price-plans, contractual attributes)  Payment management for subscription products  Wide range of pricing-models for subscriptions (fixed recurring, trial periods, set-up fees, usage based post paid, …)  Global payment methods  Customizable customer self care portal for customer data administration, account administration, contract management, billing management  Customer care tooling for managing user-data, customer-data, contract-data and invoicing  Customer care tooling can be integrated with existing customer care systems Registration / Identity management / Product booking  Complete online registration  Complete Login, logout, single-sign-on  Registration and login using 3rd party identity providers (facebook, google, yahoo!, …)  Password change, password recovery, management of 3rd party ID-federations  OAuth 2.0-based API for apps on iOS, android, …  Complete checkout-process for product booking  Complete management of payment-information The red marked features will be not available in the project.

The FI-WARE Project – Base Platform for Future Service Infrastructures How you can use GCP WEB Shop Global Customer Platform Tenant Instance login Registration or Login Configuration Customer Self-care Management Customer Care Management Admin

The FI-WARE Project – Base Platform for Future Service Infrastructures Outlook During the project we will provide a common interface for both IDM systems We will provide additional features: One-IDM: switch to Digital Self support of OAuth2.0, OpenID, eID GCP: new features will be developed regarding customer needs enhancements to the REST-API How to access the demos GCP demo Please contact One-IDM Please contact Prerequisite: add these lines to your „hosts“ file (/etc/hosts or c:\windows\system32\drivers\etc\hosts): idm.nsn.com payb.nsn.com easybuy

The FI-WARE Project – Base Platform for Future Service Infrastructures Thanks !!

The FI-WARE Project – Base Platform for Future Service Infrastructures Preliminary Core GEs Architecture