Authentication, authorization and identity o my!

12
Authentication, Authorization and Identity O my! Tom Freestone Tuesday, May 24, 2022

TAGS:

Transcript of Authentication, authorization and identity o my!

Page 1: Authentication, authorization and identity o my!

Authentication, Authorization and Identity O my!

Tom FreestoneApril 12, 2023

Page 2: Authentication, authorization and identity o my!

Tom Freestone

BYU Office of IT

Technical Lead Authentication ProductsTechnical Lead Portal Services

Page 3: Authentication, authorization and identity o my!

Authentication, Authorization and Identity

PastPresentFuture

Page 4: Authentication, authorization and identity o my!

Back when I was a kid we used real computers …

Page 5: Authentication, authorization and identity o my!

Web

Page 6: Authentication, authorization and identity o my!

The Mullet

Intermediary Pattern

Page 7: Authentication, authorization and identity o my!

Web 2.0

Page 8: Authentication, authorization and identity o my!

Why CAS?

Security AbstractionMultiple protocols

SAMLOpenIdSpengoCAS

Central Login ScreenB2CChallenges

Wrapping mind around the model

Page 9: Authentication, authorization and identity o my!

Non Person Persons?

EntityTrustMultiple Authentication

PrincipalEntity

Page 10: Authentication, authorization and identity o my!

API Key

B2B AuthenticationBusiness Process to Business Process

Design RequirementsTrafficMulti-PurposeSecureSimple, elegant

ChallengesWrap your mind aroundNot a standard

Page 11: Authentication, authorization and identity o my!

Where to Next?

AttributesAssertions

Federated Authorization

StandardsOAuthSAML 2

Page 12: Authentication, authorization and identity o my!

Questions


Java Authentication and Authorization ServicesAuthentication & Authorization • Authentication is the process of verifying the users’ identity. Typically this entails obtaining

Java Authentication and Authorization ServicesAuthentication & Authorization • Authentication is the process of verifying the users’ identity. Typically this entails obtaining

The new Account Management Identity, Authentication, Authorization Policies

The new Account Management Identity, Authentication, Authorization Policies

OpenAM Consortium Tokyo Japan Feb 2014 · Open Identity Stack. Commercial Open Source Identity Services. Web Services Security. Authentication. Authorization. Federation. ... “All-in-One”

OpenAM Consortium Tokyo Japan Feb 2014 · Open Identity Stack. Commercial Open Source Identity Services. Web Services Security. Authentication. Authorization. Federation. ... “All-in-One”

Authentication, Authorization, & Identity Management

Authentication, Authorization, & Identity Management

Design of Identity Management, Authentication and Authorization … · 2017-04-20 · Design of Identity Management, Authentication and Page 6 of 74 Authorization Infrastructure 1.

Design of Identity Management, Authentication and Authorization … · 2017-04-20 · Design of Identity Management, Authentication and Page 6 of 74 Authorization Infrastructure 1.

Extending Authentication and Authorization

Extending Authentication and Authorization

Best Practices: Authentication & Authorization Infrastructure€¢Tokens: in modern security standards are all about them. •Decoupling authentication / authorization (OIDC authentication

Best Practices: Authentication & Authorization Infrastructure€¢Tokens: in modern security standards are all about them. •Decoupling authentication / authorization (OIDC authentication

SharePoint Authentication and Authorization

SharePoint Authentication and Authorization

AWS re:Invent 2016: Serverless Authentication and Authorization: Identity Management for Serverless Architectures (MBL306)

AWS re:Invent 2016: Serverless Authentication and Authorization: Identity Management for Serverless Architectures (MBL306)

Isilon OneFS Authentication, Identity Management ... · Dell EMC Technical White Paper Isilon OneFS Authentication, Identity Management, & Authorization Multi-Protocol Data Access

Isilon OneFS Authentication, Identity Management ... · Dell EMC Technical White Paper Isilon OneFS Authentication, Identity Management, & Authorization Multi-Protocol Data Access

Identity Authentication

Identity Authentication

Password authentication - Santa Monica Collegehomepage.smc.edu/morgan_david/linux/a21-passwords.pdf · authentication != authorization – authorization establishes what user can

Password authentication - Santa Monica Collegehomepage.smc.edu/morgan_david/linux/a21-passwords.pdf · authentication != authorization – authorization establishes what user can

SharePoint Saturday Events - Authentication, Authorization and Identity - More Than Meets the eye

SharePoint Saturday Events - Authentication, Authorization and Identity - More Than Meets the eye

Authentication / Authorization with Drupal...Authentication / Authorization with Drupal Authorization: Drupal LDAP Good BAD Pros • Uses CornellAD Cons • Only applies application

Authentication / Authorization with Drupal...Authentication / Authorization with Drupal Authorization: Drupal LDAP Good BAD Pros • Uses CornellAD Cons • Only applies application

Password Security Module 8 - Amazon Web Services · Password Security Module 8 ... Authentication & Authorization Authentication The process of verifying the digital identity of the

Password Security Module 8 - Amazon Web Services · Password Security Module 8 ... Authentication & Authorization Authentication The process of verifying the digital identity of the

Authentication Authorization and Accounting Configuration ...AAA Authentication General Configuration Procedure 4 RADIUS Change of Authorization 5 Change-of-Authorization Requests

Authentication Authorization and Accounting Configuration ...AAA Authentication General Configuration Procedure 4 RADIUS Change of Authorization 5 Change-of-Authorization Requests

Interface Control Document (ICD) Template...The EVV Service will leverage API Keys for authentication and authorization to enforce identity verification and service authorization.

Interface Control Document (ICD) Template...The EVV Service will leverage API Keys for authentication and authorization to enforce identity verification and service authorization.

Authorization and Authentication Infrastructure

Authorization and Authentication Infrastructure

Authentication, Authorization, and Accounting

Authentication, Authorization, and Accounting

New Paradigms of Digital Identity: Authentication & Authorization as a Service (AuthaaS)

New Paradigms of Digital Identity: Authentication & Authorization as a Service (AuthaaS)