Presentation is loading. Please wait.

Presentation is loading. Please wait.

A Practical Approach To Secure Access To On Premise And Off Premise Applications & Solving The Problem Of Cloud Security: Top 3 Ways To Secure A Cloud.

Published bySkye Filbin Modified over 9 years ago

Similar presentations

Presentation on theme: "A Practical Approach To Secure Access To On Premise And Off Premise Applications & Solving The Problem Of Cloud Security: Top 3 Ways To Secure A Cloud."— Presentation transcript:

1 A Practical Approach To Secure Access To On Premise And Off Premise Applications & Solving The Problem Of Cloud Security: Top 3 Ways To Secure A Cloud Roadmap Darren Platt CTO | Symplified

2 User Growth Fuels ComplexitySensitive Data Outside Firewall SaaS Creates Management Silos Enterprise Integration The Problem: Identity Silos

3 » Terminated employee is removed from Active Directory » Admin must repeat Removal from all siloed apps But Cloud apps aren’t integrated so a terminated employee can access company data and apps Identity Management Challenges in the Cloud – De-provisioning Example

4 » Terminated employee is removed from Active Directory » One step for admin » Centralized policies Terminated employee no longer has access to apps Identity Management Challenges in the Cloud – De-provisioning Example

5 Fortune 500 Midmarket & SMB Enterprise Consumers & Individuals Technical Sophistication & Capabilities Service Providers’ Challenge

6 Network Security SSO (some anyway) -------------------- Access Management Provisioning Audit SLA Management The Iceberg

7 Above Waterline : Single Sign On for Cloud Apps Standards Exist, but are Complicated –SAML, OpenID, OAuth, Shibboleth, WS-Federation Standards are Not Broadly Adopted Often Requires Custom Development and/or Standards Expertise Traditional Internal Security Tools Don’t Apply Point to Point Federation Model Does NOT Scale

8 Below Waterline : The Remaining Work Access Management / Authorization –XACML Provisioning User Accounts –SPML –De-provisioining Audit –CloudAudit SLA Management & Verification

9 ( e x a ) SaaS Adoption Adding More Apps e a The Math Of One-To-Many Linear Growth In Connections e = enterprise a = applications Point-To-Point Doesn’t Scale

10 ( e x a ) SaaS Adoption Adding More Business Units and Apps 1e x 1a = 1 2e x 2a = 4 3e x 3a = 9 4e x 4a = 16 5e x 5a = 25 Geometric Growth In Connections e = enterprise a = applications The Math Of Many-To-Many Point-To-Point Doesn’t Scale

11 (E)(E) Linear Solves both SaaS Adoption and Collaboration The Math of One-to-Broker Point-To-Point Doesn’t Scale

12 Geometric Extra Cost Constant Linear Cost Per User Number Of Apps Graph Perspective Scaled Point-To-Point Doesn’t Scale

13 Symplified Problem Space Symplified Solution Symplified Solution Internal Web AppsPublic Cloud Apps

14 SaaS SSO Portals Mobile Portals for SSO and Access control for iPads, iPhones, Android and others THE USER EXPERIENCE

15 Simple Deployment 1. Choose Deployment2. Integrate & Unify Seams3. Go Live! Trust Cloud or On Premises Virtual Appliance Web Apps Databases Active Directory Web Services Strong Authentication Portal Custom Portal Mobile Portal

16 Applications Public & Private Cloud Applications Public & Private Cloud Mobile Edition One universal login for authentication to many applications Centralized management of user access with dynamic, policy based controls Self-service user registration and account management, user provisioning and password reset and policies SinglePoint Identity as a Service Platform SinglePoint Studio (Admin UI) SSO Portal (End user SSO portal for desktop, tablets and phones) Identity Router (Layer 4 Proxy on Trust Cloud or Appliance) Integration » Trust Fabric (App Store for Identity) » Trust Connector (No Coding Integration Tool) » Web Service API’s (Platform as a Service) » SimpleLink™ (SSL VPN to access behind firewall systems) » Multiple Authentication (Kerberos, SAML, tokens) » Virtual Directory (AD, LDAP, SQL, Web Services) » KeyChain (Credential Vault & Persona Mapping) Customer Infrastructure DB, LDAP, Web Services, Authentication Sources Existing Portals Customer Infrastructure DB, LDAP, Web Services, Authentication Sources Existing Portals Cloud User Stores & Identity Vaults Audit and Reporting Symplified Identity Manager Symplified Access Manager Symplified Sign-On Delivery Any Device Any Location Multi-tenancy | Security | Monitoring | Redundancy | Upgrades » Authentication » SAML & HTTP & OpenID » Authorization » Dynamic Access Control » User Management » Account Synchronization The Symplified Platform

17 Seamless Identity Converging Revolutions With Symplified The Symplified Vision » IT as a Service » The Cloud » Mobile Everywhere » Be Like Amazon » Save Millions on Integration » Embrace The Cloud » Any User » Any Device » Any App » Any Location

18 OVER 1 MILLION USERS RELY ON SYMPLIFIED Customers Symplified scales from workgroups of 50 to the Fortune 500 Symplified Ecosystem Symplified has the largest Cloud Identity Ecosystem PfizerCharmingMeritSerenaSchumacherAHAForestGLSMoody’s AmylinDolbyInMageScriptDemandTecSchlumbergerIvieDWRCoty

19 Thank you! Darren Platt CTO | Symplified dplatt@symplified.com

20 Schumacher Portal Streamlines Revenue Challenge (B2C/Business-to- Customer): Needed to add 3 rd party apps to their external portal, leveraging existing provider log-in and authentication. Results: Symplified technology integrated with Schumacher’s portal provides stronger authentication due to ease-of-use and because providers only have to authenticate one time. This allows for a more seamless communication channel with their provides, their main revenue source. Our employees are very pleased that bookmarks in their browser lead them straight into applications, without any additional sign-on. Doug MenefeeCIO Schumacher Group

21 AHA Cures SSO Headaches with Symplified Challenge (B2E/Employee-to-SaaS): Needed seamless login to their Collaboration platform; supporting intranet portal, SAML and non-SAML SaaS apps. Results: Increased user adoption of the collaboration platform, bridging private and public cloud apps. Up and running in less than two months. We are extremely pleased with the Symplified solution as it has allowed us to deliver on all of our security and compliance objectives for the Social Intranet & Collaboration platform project. We have been very impressed by the professionalism and level of support from Symplified throughout the entire sales and implementation process. Jack MacKay Vice President & Chief Information Officer American Hospital Association

22 Merit Medical Mobilizes with Symplified Challenge (Mobile): Issued mobile devices to field sales team and wanted to secure and manage access to productivity/training applications to increase sales in the field. Results: Centralized authentication, access control and more secure and efficient end user experience – no systems or human resource costs; one man band supporting 100s of field reps. Enabing mashups that combine data from eLeap and Google to supply better insight, rather than more data to mine. Symplified's technology and customer service have taken us to the cloud with confidence. Lincoln Cannon Director of Web Systems Merit Medical

Download ppt "A Practical Approach To Secure Access To On Premise And Off Premise Applications & Solving The Problem Of Cloud Security: Top 3 Ways To Secure A Cloud."

Similar presentations

www.itexpo.com October 10-13, 2006 San Diego Convention Center, San Diego California VoIP/SOA Integration Impact on IT Apps, Processes, & Overall Business.

October 10-13, 2006 San Diego Convention Center, San Diego California VoIP/SOA Integration Impact on IT Apps, Processes, & Overall Business.
Implementing Tableau Server in an Enterprise Environment

Implementing Tableau Server in an Enterprise Environment
Govern the Flow of Data: Moving from Chaos to Control

Govern the Flow of Data: Moving from Chaos to Control
Yammer Technical Solutions Overview

Yammer Technical Solutions Overview
Mobile Access: BYOD Trends SCOTT DUMORE - DIRECTOR, TECHNOLOGY, CHANNELS & ALLIANCES AUTONOMY, HP SOFTWARE.

Mobile Access: BYOD Trends SCOTT DUMORE - DIRECTOR, TECHNOLOGY, CHANNELS & ALLIANCES AUTONOMY, HP SOFTWARE.
Office 365 Identity June 2013 Microsoft Office365 4/2/2017

Office 365 Identity June 2013 Microsoft Office365 4/2/2017
Agenda AD to Windows Azure AD Sync Options Federation Architecture

Agenda AD to Windows Azure AD Sync Options Federation Architecture
Core identity scenarios Federation and synchronization 2 3 Identity management overview 1 Additional features 4.

Core identity scenarios Federation and synchronization 2 3 Identity management overview 1 Additional features 4.
Preventing Good People From Doing Bad Things Best Practices for Cloud Security Brian Anderson Chief Marketing Officer & Author of “Preventing Good People.

Preventing Good People From Doing Bad Things Best Practices for Cloud Security Brian Anderson Chief Marketing Officer & Author of “Preventing Good People.
WSO2 Identity Server Road Map

WSO2 Identity Server Road Map
Federated sign-in WS-Federation WS-Trust SAML 2.0 Metadata Shibboleth Graph API Synchronize accounts Authentication.

Federated sign-in WS-Federation WS-Trust SAML 2.0 Metadata Shibboleth Graph API Synchronize accounts Authentication.
Identity and Access Management: Strategy and Solution Sandeep Sinha Lead Product Manager Windows Server Product Management Redmond,

Identity and Access Management: Strategy and Solution Sandeep Sinha Lead Product Manager Windows Server Product Management Redmond,
Confidential FullArmor Corp. 2015 Platform for SaaS and mobile apps to remotely access, migrate, and sync Active Directory resources with the cloud ADanywhere.

Confidential FullArmor Corp Platform for SaaS and mobile apps to remotely access, migrate, and sync Active Directory resources with the cloud ADanywhere.
Windows Server 2012 R2 Capabilities for BYOD Scenario Yuri Diogenes Senior Knowledge Engineer Data Center, Devices & Enterprise Client – CSI Team’s Page:

Windows Server 2012 R2 Capabilities for BYOD Scenario Yuri Diogenes Senior Knowledge Engineer Data Center, Devices & Enterprise Client – CSI Team’s Page:
SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)

SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)
#CONVERGE2014 Session 1304 Managing Telecom Directories in a Distributed or Multi-Vendor Environment David Raanan Starfish Associates.

#CONVERGE2014 Session 1304 Managing Telecom Directories in a Distributed or Multi-Vendor Environment David Raanan Starfish Associates.
© 2008 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. HP Automates Infrastructure Outsourcing.

© 2008 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. HP Automates Infrastructure Outsourcing.
Solution Briefing Business Productivity in Action Keynote.

Solution Briefing Business Productivity in Action Keynote.
Empower Enterprise Mobility Jasbir Gill Azure Mobility.

Empower Enterprise Mobility Jasbir Gill Azure Mobility.
Matt Steele Senior Program Manager Microsoft Corporation SESSION CODE: SIA326.

Matt Steele Senior Program Manager Microsoft Corporation SESSION CODE: SIA326.

Similar presentations

Ads by Google