digital identity as a basis for internet security
play

Digital Identity as a Basis for Internet Security Infrastructure - PowerPoint PPT Presentation

Nov 11, 2023 •201 likes •337 views

Digital Identity as a Basis for Internet Security Infrastructure Ing. Radovan Semank Business Global Systems Agenda Introduction Unified User Management Public Key Infrastructure Digital Identity Conclusion Introduction

  1. Digital Identity as a Basis for Internet Security Infrastructure Ing. Radovan Semančík Business Global Systems

  2. Agenda  Introduction  Unified User Management  Public Key Infrastructure  Digital Identity  Conclusion

  3. Introduction  Traditional Internet Security Systems:  Passwords (ad-hoc)  Kerberos  Commercial: NIS, NIS+, LanMan, SecureID,...  Authentication/Single Sign-On only  Need to change  Cross-domain SSO  B2B interactions  Web Services

  4. Unified User Management “Directory” Server

  5. Unified User Management  Directories (LDAP), Meta-directories, User provisioning systems, ...  Good for isolated (enterprise) environment  Mostly LDAP-based solutions  LDAP does not maintain long-term user session  Limited support for dynamic attributes and services  Limited Internet-size scalability  Global directory (“X.500” model) infeasible

  6. Public Key Infrastructure  Based on public key cryptography  In common use on the Internet  X.509, SSL/TLS, IPsec (IKE), S/MIME  Naming problem  X.509 originally extension to X.500 – global directory service assumed  Privacy problem  What attributes to include in the certificate?  Complexity problem  User-side processing makes deployments difficult

  7. Digital Identity  On-line security server model  Based on Security Assertion Markup Language (SAML) – OASIS Standard  User profile manager: Identity Provider Authentication Identity Provider User Profile SAML Service Provider Access

  8. Digital Identity on the Internet  Global Internet environment  No global ID  No single provider  Privacy  Pseudonyms (user handles)  User profile split among different identity providers  Different trust levels

  9. Digital Identity on the Internet Organization Boundaries User Identity Profile Provider Auth. Service Provider Identity Provider Service User Provider Profile

  10. Conclusion  Traditional security systems no longer feasible  Unified User Management good in enterprise  Public Key Infrastructure as a support system  Digital Identity services  Simplified Sign-On  User profiles  Web applications security framework  Web Services security

  11. Questions?

  12. B u s i n e s s G l o b a l S y s t e m s , a . s . Thank you ... Ing. Radovan Semančík Business Global Systems, a.s. Pluhová 2 83248 Bratislava semancik@bgs.sk C o m p l e x n e t w o r k i n g s o l u t i o n s

Recommend

Internet Identity Initiatives Internet Identity Initiatives RL Bob Morgan University of

Internet Identity Initiatives Internet Identity Initiatives RL Bob Morgan University of

Internet Identity Initiatives Internet Identity Initiatives RL Bob Morgan University of Washington and Internet2 EMC2 Mlaga, S pain October 2006 Topics Topics Internet identity buzzwords/ proj ects: user-centric, sxip, dix,

395 views • 18 slides
Internet Identity and Access Control Dr Ken Klingenstein, Director, Middleware and Security,

Internet Identity and Access Control Dr Ken Klingenstein, Director, Middleware and Security,

Internet Identity and Access Control Dr Ken Klingenstein, Director, Middleware and Security, Internet2 Topics Whats happening/ impacts See lunch talk The Research Angle Researchers as users Security Researchers New

499 views • 10 slides
Private Digital Identity on Blockchain Tom Hamer, Kerry Taylor, Kee Siong Ng, Alwen Tiu The

Private Digital Identity on Blockchain Tom Hamer, Kerry Taylor, Kee Siong Ng, Alwen Tiu The

Private Digital Identity on Blockchain Tom Hamer, Kerry Taylor, Kee Siong Ng, Alwen Tiu The Global Identity Crisis In order to access critical services such as finance and social security, people need to have an identity 1.5 billion

857 views • 24 slides
Digital identity, anonymity, pseudonymity and law in India Rowena E Rodrigues University of

Digital identity, anonymity, pseudonymity and law in India Rowena E Rodrigues University of

Digital identity, anonymity, pseudonymity and law in India Rowena E Rodrigues University of Edinburgh Digital India Increase in Internet usage and penetration Cyber cafs Telecentres Home Use Other applications

477 views • 15 slides
Delivery of digital initiatives Case study: Deployment of Indias Biometric Digital Identity

Delivery of digital initiatives Case study: Deployment of Indias Biometric Digital Identity

Delivery of digital initiatives Case study: Deployment of Indias Biometric Digital Identity Platform Regis Bauchiere GM Identity Solutions, Australia Post Digital identity initiatives Learning from global experiences Chile

705 views • 19 slides
Trust, Identity Management and GENI Dr. Ken Klingenstein, Senior Director, Middleware and

Trust, Identity Management and GENI Dr. Ken Klingenstein, Senior Director, Middleware and

Trust, Identity Management and GENI Dr. Ken Klingenstein, Senior Director, Middleware and Security, Internet2 Technologist, University of Colorado at Boulder Topics Internet identity update Technology updates ISOC, IETF Identity,

601 views • 23 slides
Hardware-Intrinsic Identity for IP Protection John Ross Wallrabenstein Sypris Research Sypris

Hardware-Intrinsic Identity for IP Protection John Ross Wallrabenstein Sypris Research Sypris

Hardware-Intrinsic Identity for IP Protection John Ross Wallrabenstein Sypris Research Sypris Electronics Digital Supply Chain Security How is digital information shared securely? Digital Supply Chain Security How is digital

443 views • 25 slides
Larry Clinton President/CEO Internet Security Alliance lclinton@eia.org 703-907-7028

Larry Clinton President/CEO Internet Security Alliance lclinton@eia.org 703-907-7028

Larry Clinton President/CEO Internet Security Alliance lclinton@eia.org 703-907-7028 202-236-0001 Digital Growth? Sure Companies have built into their business models the efficiencies of digital technologies such as real time tracking

570 views • 11 slides
DIGITAL IDENTITY Ben Livshits, Microsoft Research Overview of Todays Lecture 2 Brief

DIGITAL IDENTITY Ben Livshits, Microsoft Research Overview of Todays Lecture 2 Brief

DIGITAL IDENTITY Ben Livshits, Microsoft Research Overview of Todays Lecture 2 Brief history of user Popular identity identities protocols SAML Single sign-on OpenID InfoCard and CardSpace Federated identity

786 views • 66 slides
The Internet Security Alliance The Internet Security Alliance is a collaborative effort with

The Internet Security Alliance The Internet Security Alliance is a collaborative effort with

The Internet Security Alliance The Internet Security Alliance is a collaborative effort with Carnegie Mellon University. It is a cross-sector, internationally- based trade association devoted to cyber security. ISA has individual corporate

349 views • 30 slides
Digital Identity Scotland Attribute Strategy Discussion Friday 22 November 2019 Welcome Colin

Digital Identity Scotland Attribute Strategy Discussion Friday 22 November 2019 Welcome Colin

Digital Identity Scotland Attribute Strategy Discussion Friday 22 November 2019 Welcome Colin Cook Director Digital Scottish Government What we will cover 1. Brief overview; Digital Identity the story so far 2. Opportunities from an

604 views • 34 slides
IT Security Evaluation Why do we need security evaluation To provide a basis for specifying

IT Security Evaluation Why do we need security evaluation To provide a basis for specifying

IT Security Evaluation Why do we need security evaluation To provide a basis for specifying security expectations To verify that a computer product/system fulfills the requirements imposed on it To establish a metric for the degree

535 views • 19 slides
Identity and Access Management Using Identity Management and Identity Governance to increase

Identity and Access Management Using Identity Management and Identity Governance to increase

Identity and Access Management Using Identity Management and Identity Governance to increase Automation and Security. Identity Management (IAM, IdM) defining and managing the roles and access privileges of individual network users, and the

2.89k views • 13 slides
Internet Identity Workshop IIW 2008b Introduction Johannes Ernst NetMesh Inc.

Internet Identity Workshop IIW 2008b Introduction Johannes Ernst NetMesh Inc.

Internet Identity Workshop IIW 2008b Introduction Johannes Ernst NetMesh Inc. http://netmesh.info/jernst Johannes Ernst Modern Identity History Facebook Proprietary et al. Yadis URL-based Age of identity Card-based interop

1.01k views • 24 slides
Communication security over the Internet The big picture Me Internet Resource Internet

Communication security over the Internet The big picture Me Internet Resource Internet

Communication security over the Internet The big picture Me Internet Resource Internet Server Client Attack vectors MAN DNS LAN Client Internet Back Bone Router Networking WWW overview MITM (Man In The Middle) 3 2 4 5 LAN

244 views • 23 slides
Why do we need security evaluation To provide a basis for specifying security expectations

Why do we need security evaluation To provide a basis for specifying security expectations

Why do we need security evaluation To provide a basis for specifying security expectations IT Security Evaluation To verify that a computer product/system fulfills the requirements imposed on it To establish a metric for the degree

70 views • 4 slides
From the Aether to the EthernetAttacking the Internet using Broadcast Digital Television

From the Aether to the EthernetAttacking the Internet using Broadcast Digital Television

From the Aether to the EthernetAttacking the Internet using Broadcast Digital Television Yossef Oren and Angelos D. Keromytis, Columbia University 23rd USENIX Security Symposium, August 2014 esented by Ren-Jay Wang CS598 - COMPUTER

276 views • 12 slides
Network Security Architecture 1 Additional Reading Firewalls and Internet Security:

Network Security Architecture 1 Additional Reading Firewalls and Internet Security:

Network Security Architecture 1 Additional Reading Firewalls and Internet Security: Repelling the Wily Hacker, Cheswick, Bellovin, and Rubin. New second edition Firewall and Internet Security, the Second Hundred (Internet)

801 views • 78 slides
From physical cards to digital credentials: Tokenization and digital identity in Latin America

From physical cards to digital credentials: Tokenization and digital identity in Latin America

From physical cards to digital credentials: Tokenization and digital identity in Latin America Americas Market Intelligence February 2020 Payments industry 25 years experience advisory group in the region for companies operating in AMI is

581 views • 24 slides
Internet Security Summary ITS335: IT Security Sirindhorn International Institute of Technology

Internet Security Summary ITS335: IT Security Sirindhorn International Institute of Technology

ITS335 Internet Security Internet Security Secure Email Internet Security Summary ITS335: IT Security Sirindhorn International Institute of Technology Thammasat University Prepared by Steven Gordon on 20 December 2015 its335y15s2l10,

450 views • 25 slides
Protecting & Managing Your Protecting & Managing Your Professional Identity & Digital

Protecting & Managing Your Protecting & Managing Your Professional Identity & Digital

Protecting & Managing Your Protecting & Managing Your Professional Identity & Digital Professional Identity & Digital Reputation Barbara C. Phillips, MN, GNP, FNP-BC, FAANP Jefferson City, MO ! #NoNPLeftBehind

979 views • 70 slides
Digital Goods E-commerce and the Internet E-Commerce Today E-commerce: use of the Internet

Digital Goods E-commerce and the Internet E-Commerce Today E-commerce: use of the Internet

10/12/2012 E-Commerce: Digital Markets, Digital Goods E-commerce and the Internet E-Commerce Today E-commerce: use of the Internet and Web to transact business; digitally enabled transactions. Began in 1995 and grew exponentially;

715 views • 18 slides
The Internet of Things Afloat by Digital Yacht What is the Internet of Things ? The

The Internet of Things Afloat by Digital Yacht What is the Internet of Things ? The

The Internet of Things Afloat by Digital Yacht What is the Internet of Things ? The Internet of Things (IoT ). A proposed development of the Internet in which everyday objects have network connectivity, allowing them to send

575 views • 24 slides
Cyber Security Maintaining Your Identity on the Net Why Cyber Security? There are three

Cyber Security Maintaining Your Identity on the Net Why Cyber Security? There are three

Cyber Security Maintaining Your Identity on the Net Why Cyber Security? There are three points of failure in any secure network: Technology (hardware and software) Technology Support (ITS) End Users (USD students and employees)

359 views • 23 slides

More recommend