Seeing Shapes in the Cloud How Identity & Security Give the Cloud Shape

Similar documents
Cloud Computing An Elephant In The Dark

RSA Identity and Access Management 2014

THE POWER OF THE CLOUD IS CLOSER THAN YOU THINK. Michael Lee Aaron Saposnik SWC Technology Partners

Blending Embedded Hardware OTP, SSO, and Out of Band Auth for Secure Cloud Access

Visibility and Control for Sanctioned & Unsanctioned Cloud Apps

Identity & Access Management The Cloud Perspective. Andrea Themistou 08 October 2015

PRACTICAL IDENTITY AND ACCESS MANAGEMENT FOR CLOUD - A PRIMER ON THREE COMMON ADOPTION PATTERNS FOR CLOUD SECURITY

IDENTITY & ACCESS MANAGEMENT IN THE CLOUD

Deploying a Private Cloud with the Oracle Cloud Platform; Customer Case Study.

RSA Via Lifecycle and Governance 101. Getting Started with a Solid Foundation

SaaS, PaaS & TaaS. By: Raza Usmani

1 The intersection of IAM and the cloud

Hybrid Cloud Identity and Access Management Challenges

Fundamental Concepts and Models

Enterprise Application Enablement for the Internet of Things

identity as the new perimeter: securely embracing cloud, mobile and social media agility made possible

<Insert Picture Here> Integrating your On-Premise Applications with Cloud Applications

EXTENDING SINGLE SIGN-ON TO AMAZON WEB SERVICES

Leveraging the Cloud for Smarter Development On Oilfields; What Does that Entail? Kevin Wagner, Director - Energy

NCSU SSO. Case Study


RSA Identity Management & Governance (Aveksa)

Cloud Essentials for Architects using OpenStack

Introductions. KPMG Presenters: Jay Schulman - Managing Director, Advisory - KPMG National Leader Identity and Access Management

Bridging the Gap between On-Premise BizTalk ESB and Windows Azure platform AppFabric

Meet the Cloud API The New Enterprise Control Point

Safe Harbor Statement

RFP BOR-1511 Federated Identity Services - Response to Questions / Answers

NCTA Cloud Architecture

Cloud Ready Technology Evolution

Six Best Practices for Cloud-Based IAM

The Benefits of Cloud Computing to the E-Commerce Industry July 2011 A whitepaper on how hosting on a cloud platform can lower costs, improve

Provisioning and Deprovisioning 1 Provisioning/De-provisiong replacement 1

SaaS at Pfizer. Challenges, Solutions, Recommendations. Worldwide Business Technology

CLOUD COMPUTING S IMPACT ON OUTSOURCING IT SAURABH SHARMA TUCK 12

Guideline on Implementing Cloud Identity and Access Management

Identity and Access Management (IAM) Across Cloud and On-premise Environments: Best Practices for Maintaining Security and Control

IBM Cloud Security Draft for Discussion September 12, IBM Corporation

Cloud Computing in Education: The Intersection of Challenges and Opportunities

Requirements Checklist for Choosing a Cloud Backup and Recovery Service Provider

Cloud Computing: Current Market Trends and Future Opportunities

Cloud-Centric Workloads and Platforms Workstream

Secure Bridge to the Cloud

Secure Cloud Computing

Cloud Security. Peter Jopling IBM UK Ltd Software Group Hursley Labs. peterjopling IBM Corporation

Cloud Computing. Bringing the Cloud into Focus

Cloud SingularLogic:

Planning your Microsoft Application Strategy in a Cloud Crazy World. Steve Soper Senior Managing Partner

cloud Development Strategies - Part 1

The European Cloud Journey. Gabriella Cattaneo, European Government Consulting IDC s European Cloud Research Team February 24, 2014

Top five lessons learned from enterprise hybrid cloud projects

Oracle Reference Architecture and Oracle Cloud

Trends in HR-technology + tips regarding the make or buy decision

HCL AXON SAP Cloud Services

A discussion on Does cloud computing payback? Another in Inecom s series of Insight white papers to help improve your business process

ISSA Phoenix Chapter Meeting Topic: Security Enablement & Risk Reducing Best Practices for BYOD + SaaS Cloud Apps

Keynote: Gartner Magic Quadrants and MarketScopes. Ant Allan Felix Gaehtgens Gregg Kreizman Earl Perkins Brian Iverson

Interoperate in Cloud with Federation

E l i m i n a t i n g Au t hentication Silos and Passw or d F a t i g u e w i t h Federated Identity a n d Ac c e s s

Digital Signage in the Cloud

SOLUTION BRIEF Citrix Cloud Solutions Citrix Cloud Solution for On-boarding

The Benefits of an Integrated Approach to Security in the Cloud

Cloud Computing and Data Center Consolidation

Delivering value to the business with IAM

THE BUSINESS OF CLOUD

SAP HANA Cloud Portal Overview and Scenarios

Plan for Success with a Hybrid Cloud! Thanks to IBM Power Systems OpenStack SoftLayer and UrbanCode

Cloud Computing Software as a Service

Asigra Cloud Backup V13.0 Gives You Greater Flexibility and Expands Your Total Addressable Market

The Jamcracker Enterprise CSB AppStore Unifying Cloud Services Delivery and Management for Enterprise IT

A Strategic Advantage: Cloud

Releasing High Quality Applications More Quickly with vrealize Code Stream

Cloud Computing Security: Public vs. Private Cloud Computing

Transcription:

Seeing Shapes in the Cloud How Identity & Security Give the Cloud Shape Identity Management Federated Identity Management Presented by: Aubrey Turner Cloud Identity Management June 28, 2013

The computer industry is the only industry that is more fashion driven than women s fashion. Maybe I am an idiot, but I have no idea what anyone is talking about. What is it? When is this idiocy going to stop? We ll make cloud computing announcements but I don t understand what we will do differently in light of the cloud. Larry Ellison, CEO Oracle

The Cloud Is Here to Stay 80% of new commercial enterprise apps will be deployed on cloud platforms. IDC At year-end 2016, more than 50% of Global 1000 companies will have stored customer-sensitive data in the public cloud. Gartner SO does Identity Management HAVE to move to the cloud as well?

With Clouds Come Storms

Traditional IAM Concepts IAM Program Management Security Services Federation Services Identity Data Services Access Governance Services Identity Management Services

Option 1: Cloud Identity Delegated Admin Enterprise Cloud Service Provider Most Manual Option ADMIN. SP ADMIN. SaaS PaaS IaaS Lowest Complexity & Risk

Option 2: Cloud Identity Internal to Cloud Enterprise w/on-prem IAM IAM Platform Lifecycle Management Traditional Identity Vendors Offer Cloud Bridges Truly Hybrid Solution Leverages Current Investment

Option 3: Cloud Identity From the Cloud Enterprise Consuming as a True Service CORP. PROVIDER APPLIANCE Tunnel Cloud-Based IAM Service Little Room for Flexibility In Use Cases ADMIN Might Have Real Value for Certain Verticals

In my opinion right now there is way too much hype on the technologies and not enough attention to the real business behind them. Mark Cuban, Owner, Dallas Mavericks

Out of 106 Customers in Last 20 Months 22 discussed cloud identity alternatives 7 sought pricing and/or demonstrations 2 released RFI s NONE consumed Identity Management from the cloud 10 built cloud connectors 30 use delegated admins

Knowing Cloud Adoption Continues What Remains the Same Business Challenges Timeliness Accuracy End User Experience Program Governance Still Critical Local Infrastructure Still Exists Same Users / Same Credentials

Knowing Cloud Adoption Continues Key IAM Changes The Authentication Perimeter No Longer Internally Controllable More unknown endpoints for user access One Size Pushed on All Solutions = Need to Adopt Cloud Strategies Multi-tenant for financial feasibility

Use Case Proliferation The largest change brings forward the reality that use cases now have NUMEROUS variances 4 standard actors in every use case: 3 potential locations for each of these actors: IAM System User Application Accessed Auth Point Inside the Perimeter Remote (unknown externally) In the Cloud

Cloud Functionality Functional Maturity Cloud Functionality Cloud Maturity Description Cloud Prerequisite Benefit SSO / Federation Med/ High Support SSO of ent apps and SaaS apps Ability to support federation standards Enterprise federation out to SaaS applications Authentication Med Cloud-based MFA, risk based/adaptive auth, streamline proofing process Documented authentication policies, support federation standards Outsource Identity Provider Provisioning / Lifecycle Mgnt Low Automate creation and management of acct lifecycle Well defined ent roles, IAM processes Reduce infrastructure required to manage acct lifecycle Access Governance Low Support access certification campaigns Well defined ent roles Reduce infrastructure required to manage certifications

Cloud Identity Maturity Cycle Provisioning and Access Governance Current (on-prem) Manual processes Some rule-based provisioning Siloed IAM systems Manual approval workflows and certifications Interim (maturation) Process maturation Business process automation Enterprise role development Roll-out, extension of existing IAM /IAG system Future (hybrid) Cloud based provisioning and access governance into enterprises with mature roles and processes defined

Additional Cloud Identity Service Concerns Data Protection (international implications) Maintaining Compliance Externally Impacts of Mission-Critical Applications Service Provider Change is Inevitable Very Limited Flexibility When Consuming Identity Management SLA impacts Network Security impacts 3 rd party agreement impacts

In Summary. Hybrid will be the new standard. Noise / Hype still rules the day this will CHANGE, over time. Identity/Cloud Bridges are here to stay. The Cloud should be looked at as just another set of applications.

Thank You, and I Leave You With This. The Cloud services companies of all sizes; the cloud is for everyone. The Cloud is a democracy. - Marc Benioff, Founder of Salesforce

Questions Aubrey Turner Director Strategic Services, Identity & Access Management FishNet Security aubrey.turner@fishnetsecurity.com

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information