PPT-Source identity (origin authentication)

Henning Schulzrinne May 31 2013 draft petersonsecureoriginps00 Property URL owned URL provider E164 Servicespecific Example alicesmithname sip alicesmithname alicegmailcom. Naturally the best solutions have the widest range of tokens and can protect both cloud and local applications as well as any network access devices But the choice is not just about security it is also about how easily you can deploy manage and pay Ecommerce and email are two resounding examples of the transformation exerted by the network of networks on people around the globe Unfortunately the ubiquity and flexibility of the network has also brought its own set of challenges and security con Operating Systems. What is authentication?. How does the problem apply to operating systems?. Techniques for authentication in operating systems. What Is Authentication?. Determining the identity of some entity. “Geneva” Deep Dive.  Jan Alexander. Program Manager. Microsoft Corporation. BB43. Microsoft Identity Software + Services. One identity model that puts users in control of their identities. “Geneva” Framework. IT443 – Network Security Administration. Instructor: Bo Sheng. 1. Outline. Authentication Mechanisms. Key Distribution Center and Certificate Authorities. Session Key. 2. Authentication. Authentication is the process of reliably verifying certain information. . Aalto . University. , . autumn. 2012. Outline. Single sign-on. OpenId. SAML. and Shibboleth. Corporate IAM. Strong identity. 2. Single sign-on (SSO). Users have too many user accounts. Cannot remember the passwords. CS457. Introduction to Information Security Systems. User Authentication. “The process of verifying an identity claimed by or for a system entity.”. Authentication Process. Fundamental building block and primary line of defense. Federal ICAM Day. June 18, 2013. Phil Wenger, OMB. Douglas Glair, USPS. Anil John, GSA (Moderator). Panel Participants. Phil Wenger, OMB. Externalizing . Authentication using. MAX Authentication as a Service (. Aalto . University. , . autumn. 2011. Outline. Single sign-on. OpenId. SAML. and Shibboleth. Corporate IAM. Strong identity. 2. Single sign-on (SSO). Users have too many user accounts. Cannot remember the passwords. an Internet Banking Environment . About the Speaker. Matthew Clohessy, CPA, CIA, has six and a half years of experience as an internal auditor at mid-sized commercial banking institutions where he specializes in evaluating internal controls over electronic banking delivery channels, retail and commercial banking operations, loss prevention and consumer banking regulatory compliance. Prior to his career in internal auditing, Mr. Clohessy was a network administrator for a small company in the office design industry for four years, where he was responsible for the operation, security and maintenance of the company’s IT infrastructure.. Taxonomy. Abbie Barbir. Authentication Strength. 2. (entity) authentication: A process used to achieve sufficient confidence in the binding between the entity and the presented identity.. What . is . Paul Andrew. Shawn Bishop. OFC-B250. Agenda. Identity for Microsoft cloud services. User. Microsoft Account. Ex: alice@outlook.com. User. Organizational Account. Ex: alice@contoso.com. Microsoft Account. Michael Dalton, . Sr. Identity Engineer, RSA . CISSP, CISA, RSA CSE. Identity . = . the. . most consequential attack vector. 81%. Confirmed . data breaches . involving . weak, default or stolen passwords. More about identity and authentication Tuomas Aura T-110.5241 Network security Aalto University, Nov-Dec 2013 This lecture shows that authentication is much more diverse field than it first seems 2 What is hard about authentication in a network?