32
Borderless Identity The Enterprise Identity Bus” Paul Fremantle CTO and Co-Founder, WSO2 [email protected] @pzfreo #wso2

Borderless Identity - “The Enterprise Identity Bus”

  • Upload
    wso2

  • View
    512

  • Download
    2

Embed Size (px)

DESCRIPTION

Centralized identity management is dead. Passwords should be dead. The identity assumptions of the first 50 years of computing are no longer meeting the needs of the 21st Century. We need to use Open Standards and Open security models to federate identity and access control - not just across organizations but across different technologies, different standards and different models. The concept of an Identity Bus is a reference architecture for solving these problems and creating a strategically federated approach to identity, and creating approaches that support borderless identity.

Citation preview

Page 1: Borderless Identity - “The Enterprise Identity Bus”

Borderless Identity“The Enterprise Identity Bus”

Paul FremantleCTO and Co-Founder, WSO2

[email protected] @pzfreo #wso2

Page 2: Borderless Identity - “The Enterprise Identity Bus”

• CTO and Co-Founder, WSO2• Chair of OASIS standard• Apache Committer• Regular speaker• PhD student

o In a band: Revel Weird and Wild

o Plays flute and mandolino Father of two childreno Keen snowboarder

Page 3: Borderless Identity - “The Enterprise Identity Bus”
Page 4: Borderless Identity - “The Enterprise Identity Bus”

Connected Business

Page 5: Borderless Identity - “The Enterprise Identity Bus”

Connected Car

Credits: https://angel.co/carvoyant

Page 6: Borderless Identity - “The Enterprise Identity Bus”

Connected Car of the Year 2013 – Mercedes Benz S Class

• Connected Car is reconnecting car makers to their customers • Creating new ecosystems of App Providers• Creating new Big Data• And creating new challenges around Identity and Access

Management

Page 7: Borderless Identity - “The Enterprise Identity Bus”

Connected Plane(Connected Supply Chain)

Page 8: Borderless Identity - “The Enterprise Identity Bus”

Connected Government

Page 9: Borderless Identity - “The Enterprise Identity Bus”

Connected Everything

Page 10: Borderless Identity - “The Enterprise Identity Bus”

Offer and Manage APIsto the rest of the world

Page 11: Borderless Identity - “The Enterprise Identity Bus”

Understanding a Connected Business

Page 12: Borderless Identity - “The Enterprise Identity Bus”

https://www.flickr.com/photos/1stpix_diecast_dioramas/https://www.flickr.com/photos/1stpix_diecast_dioramas/

Page 13: Borderless Identity - “The Enterprise Identity Bus”
Page 14: Borderless Identity - “The Enterprise Identity Bus”

Borders don’t work any more

Page 15: Borderless Identity - “The Enterprise Identity Bus”

Why?

• BYOD / BYO Everything• APIs• IoT • Ecosystems• Mergers / Acquisitions• Value Webs

Page 16: Borderless Identity - “The Enterprise Identity Bus”

SAML

SAMLSAML

SAML

Spaghetti Identity

SAML

SAML

SAML

SAML

SAML

SAML

SAML

Page 17: Borderless Identity - “The Enterprise Identity Bus”

The history of integration in Enterprises

• Single EAI hub• Departmental ESBs• The cross-ESB ESB • APIs and true federation

Page 18: Borderless Identity - “The Enterprise Identity Bus”

https://www.flickr.com/photos/jaredzimmerman

Page 19: Borderless Identity - “The Enterprise Identity Bus”

https://www.flickr.com/photos/cobalt

Page 20: Borderless Identity - “The Enterprise Identity Bus”

Federated Identity Silos

SAML

SAML

SAML

OIDC

OIDC

OIDC

OpenID

OpenID

OpenID

Page 21: Borderless Identity - “The Enterprise Identity Bus”

Connected! – But Yet Disconnected

SAML

SAML

SAML

OIDC

OIDC

OIDC

OpenID

OpenID

OpenID

Page 22: Borderless Identity - “The Enterprise Identity Bus”

What is the lesson?

A single monolithic identity model just won’t work

Page 23: Borderless Identity - “The Enterprise Identity Bus”

GSMA Mobile Connect

Page 24: Borderless Identity - “The Enterprise Identity Bus”

OpenID Connect Discovery

Registry model of integration

Page 25: Borderless Identity - “The Enterprise Identity Bus”

The Enterprise Identity Bus

Page 26: Borderless Identity - “The Enterprise Identity Bus”

What does an Enterprise Identity Bus do?

• Bridges betweenTokens – OAuth/2, OpenID/OIDC, SAML2, WS-Federation, Kerberos, etcClaims and Claims Dialects – email addresses, phone numbers,

names, etcProvisioning

SPML, SCIM, Salesforce, Google, etcJust in Time provisioning, inbound, outbound

Page 27: Borderless Identity - “The Enterprise Identity Bus”

Who is building a connected business?

Page 28: Borderless Identity - “The Enterprise Identity Bus”

• The only company to build a complete platform for a Connected Business in a single codebase– Including the Enterprise Identity Bus

• The only company to have the same platform deploy on-premise, in private cloud, and in a public cloud

• 100% open source

Page 29: Borderless Identity - “The Enterprise Identity Bus”

WSO2 Identity Server 5.0 Launching May 21st 2014

Page 30: Borderless Identity - “The Enterprise Identity Bus”

Invention comes in many forms and at many scales. The most radical and transformative of inventions are often those that empower others to unleash their creativity – to pursue their dreams.

Jeff Bezos

“ “

Page 31: Borderless Identity - “The Enterprise Identity Bus”
Page 32: Borderless Identity - “The Enterprise Identity Bus”

Thank [email protected]://wso2.com/contacthttp://pzf.fremantle.org@pzfreo#wso2