Selamat datang di Scribd!

Lewati carousel

Web Sso

Diunggah oleh

nikaljen

0% menganggap dokumen ini bermanfaat (0 suara)

52 tayangan15 halaman

web sso description

Judul Asli

web sso

Hak Cipta

Format Tersedia

PDF, TXT atau baca online dari Scribd

Bagikan dokumen Ini

Bagikan atau Tanam Dokumen

Opsi Berbagi

Apakah menurut Anda dokumen ini bermanfaat?

Apakah konten ini tidak pantas?

Laporkan Dokumen Ini

web sso description

Hak Cipta:

Attribution Non-Commercial (BY-NC)

Format Tersedia

Unduh sebagai PDF, TXT atau baca online dari Scribd

Tandai sebagai konten tidak pantas

0% menganggap dokumen ini bermanfaat (0 suara)

52 tayangan15 halaman

Web Sso

Diunggah oleh

nikaljen

web sso description

Hak Cipta:

Attribution Non-Commercial (BY-NC)

Format Tersedia

Unduh sebagai PDF, TXT atau baca online dari Scribd

Tandai sebagai konten tidak pantas

Lompat ke Halaman

Anda di halaman 1dari 15

Cari di dalam dokumen

Nathaniel McCallum Sr.

Software Engineer - Security, Red Hat

Meet Al

Hi!

Al has a lot of passwords...

F!mfi1%$fmoe Tr0ub4dor&3 1852424

mom32 iwantaponey17 correcthorsebatterystaple

Al also has a lot of protocols...

OpenID BrowserID Kerberos

OAuth SAML Facebook Connect

A story of protocol proliferation

1.His enterprise (Kerberos) ID is useless outside his company. 2.New Internet authentication standards don't provide SSO, are restricted to HTTP, complex to implement, have a bad security track record and lack usefulness in complex network topologies. 3.Secure sharing between data silos is an afterthought.

Al needs...
an easy to deploy, secure, federated SSO experience built on scalable, web-based technologies that transcends local, Internet and cloud infrastructure, manages trust relationships dynamically across complex network topology, and handles delegation as a primary concern.

SSL/TLS Client Certificate Authentication

easy built

to deploy, secure, federated SSO experience on scalable, web-based technologies local, Internet and cloud infrastructure

transcends

manages trust relationships dynamically across complex network topology handles delegation as a primary concern

works

Anatomy of a Typical Authorization System

Client

Protected Resource

Authentication Service

Requires AS to be publicly available

Anatomy of TLS Client Certificate Authentication

Client Manual Process

Protected Resource

Authentication Service

Introducing...
SSL/TLS Client Certificate Authentication PLUS:

HTTP REST service for obtaining short-term certificates with full support for secure credential delegation Additional security validations to permit globally unique identities via established certificate authorities Standard client behavior for a secure (a.k.a. no phishing), polished user experience DNS integration

webSSO Authentication
easy built

to deploy, secure, federated SSO experience on scalable, web-based technologies local, Internet and cloud infrastructure trust relationships dynamically

transcends manages works

across complex network topology delegation as a primary concern

handles

webSSO Typical Workflow

Client connects to Protected Resource Error!

No (Current Behavior) Protected Resource prompts for client certificate Yes Client has cert? No (webSSO) Client has ACGC?

Yes Client acquires short-term cert Client locates webSSO AS via ACGC

No User enters credentials

Client presents certificate

Client Authenticated!
12

Client acquires ACGC

Client locates webSSO AS via credentials

webSSO Additional Features

Deploys on existing HTTP stacks (dynamic trust mgmt. requires additional validations) Verifies all parties in every transaction Protected resources can suggest identity providers Integration with existing solutions (Kerberos, multi-factor auth, etc)

webSSO Status

IETF Internet Draft User experience mock-ups Working webSSO AS implementation (Apache 2.0 licensed; release imminent)

http://webSSO.github.com

Anda mungkin juga menyukai

SSL VPN : Understanding, evaluating and planning secure, web-based remote access
Dari Everand
SSL VPN : Understanding, evaluating and planning secure, web-based remote access
Tim Speed
Belum ada peringkat
SOA Security Patterns: Amila Jayasekara Technical Lead Prabath Siriwardena Architect & Senior Manager Wso2 October 2010
Dokumen40 halaman
SOA Security Patterns: Amila Jayasekara Technical Lead Prabath Siriwardena Architect & Senior Manager Wso2 October 2010
Prabath Siriwardena
Belum ada peringkat
Deploying Certificates Cisco Meeting Server: Design your certificates for CMS services and integrate with Cisco UCM Expressway and TMS
Dari Everand
Deploying Certificates Cisco Meeting Server: Design your certificates for CMS services and integrate with Cisco UCM Expressway and TMS
Redouane MEDDANE
Belum ada peringkat
Secure Socket Layer (SSL) : Divey Gupta Sunny Gajjar B.Tech-IV Computer Engg. NIT-Surat
Dokumen22 halaman
Secure Socket Layer (SSL) : Divey Gupta Sunny Gajjar B.Tech-IV Computer Engg. NIT-Surat
Sunny Kishorbhai Gajjar
Belum ada peringkat
Opensso Overview: Sidharth Mishra Sun Microsystems, Inc
Dokumen18 halaman
Opensso Overview: Sidharth Mishra Sun Microsystems, Inc
Amin Abbaspour
Belum ada peringkat
Blockchain Backed DNSSEC
Dokumen12 halaman
Blockchain Backed DNSSEC
d.s.gusted
Belum ada peringkat
Trusted.: o o o o o
Dokumen7 halaman
Trusted.: o o o o o
rajavijayakanth9
Belum ada peringkat
Authentication 101 White Paper
Dokumen9 halaman
Authentication 101 White Paper
javirodz
Belum ada peringkat
Case Study Data Center Modeling Software Luxoft For Software Technology Developer
Dokumen4 halaman
Case Study Data Center Modeling Software Luxoft For Software Technology Developer
luxoft
Belum ada peringkat
Diploma in Applied Network and Cloud Technology DNCT703 Network and Cloud Security
Dokumen17 halaman
Diploma in Applied Network and Cloud Technology DNCT703 Network and Cloud Security
Anchal Singh
Belum ada peringkat
Peter Daizy Kyobe, 200 Charlotte Drive Apt T2 Laurel MARYLAND 2072, 443-979-2941
Dokumen5 halaman
Peter Daizy Kyobe, 200 Charlotte Drive Apt T2 Laurel MARYLAND 2072, 443-979-2941
meher omer
Belum ada peringkat
CCN Case Study
Dokumen13 halaman
CCN Case Study
Gaurang Gawas
100% (1)
SSL/TLS Mutual Authentication Primer
Dokumen3 halaman
SSL/TLS Mutual Authentication Primer
saidkg
Belum ada peringkat
Web Services and PKI
Dokumen7 halaman
Web Services and PKI
Layer7Tech
Belum ada peringkat
Authlogics Password Security Management Datasheet
Dokumen2 halaman
Authlogics Password Security Management Datasheet
علي الاسدي
Belum ada peringkat
Cisco ISE Design and Architecture
Dokumen69 halaman
Cisco ISE Design and Architecture
Mike Van Kleef
100% (1)
HTTP Secure (HTTPS) - Encrypted Communication Protocol
Dokumen6 halaman
HTTP Secure (HTTPS) - Encrypted Communication Protocol
FRANCESCO222
Belum ada peringkat
Website Security Checklist: Protect Your Website in 2021
Dokumen5 halaman
Website Security Checklist: Protect Your Website in 2021
sammy redganji
Belum ada peringkat
Secure Hosting With Lets Encrypt in IIS (1) .PPSX
Dokumen43 halaman
Secure Hosting With Lets Encrypt in IIS (1) .PPSX
Ashwani Parashar
Belum ada peringkat
Imc Pkicrawl 2 PDF
Dokumen14 halaman
Imc Pkicrawl 2 PDF
vxla
Belum ada peringkat
Secure Data Exchange Via HSM
Dokumen3 halaman
Secure Data Exchange Via HSM
Layer7Tech
Belum ada peringkat
Layer 7 SecureSpan XML Virtual Appliance
Dokumen4 halaman
Layer 7 SecureSpan XML Virtual Appliance
Layer7Tech
Belum ada peringkat
Configure Ruckus Smartzone SSL Certificate
Dokumen20 halaman
Configure Ruckus Smartzone SSL Certificate
cristiano_sar
Belum ada peringkat
Analyzing Forget SSL Certificates in The Wild PDF
Dokumen15 halaman
Analyzing Forget SSL Certificates in The Wild PDF
blob ml
Belum ada peringkat
Ipsec and SSL VPN Deployment Considerations: in This Document
Dokumen8 halaman
Ipsec and SSL VPN Deployment Considerations: in This Document
Giorgos Fotopoulos
Belum ada peringkat
Cookie-Based Virtual Password Authentication Proto
Dokumen12 halaman
Cookie-Based Virtual Password Authentication Proto
Aakash Suvarna
Belum ada peringkat
17.2.7 Lab - Certificate Authority Stores
Dokumen7 halaman
17.2.7 Lab - Certificate Authority Stores
ntuta
Belum ada peringkat
Building Multi Tenant Java Applications
Dokumen20 halaman
Building Multi Tenant Java Applications
Trần Đoàn Anh Quân
100% (1)
SSL and TLS Deployment Best Practices Ssllabs - Research Wiki GitHub
Dokumen10 halaman
SSL and TLS Deployment Best Practices Ssllabs - Research Wiki GitHub
Tej Sharma
Belum ada peringkat
SSL - HTTPS
Dokumen28 halaman
SSL - HTTPS
Diego
100% (2)
IT Security and Risk Management - (86485)
Dokumen13 halaman
IT Security and Risk Management - (86485)
SauravKumar
Belum ada peringkat
Symantec™ Complete Website Security: Enterprise-Class SSL/TLS Management Symantec Private CA
Dokumen3 halaman
Symantec™ Complete Website Security: Enterprise-Class SSL/TLS Management Symantec Private CA
carlos torres
Belum ada peringkat
Web Security: SSL, TLS and SET
Dokumen122 halaman
Web Security: SSL, TLS and SET
Kabilan Kabil
Belum ada peringkat
Securing Browser Interactions: Defense in Depth
Dokumen24 halaman
Securing Browser Interactions: Defense in Depth
maca arrieta
Belum ada peringkat
DIT: De-Identified Authenticated Telemetry at Scale
Dokumen15 halaman
DIT: De-Identified Authenticated Telemetry at Scale
Marsha Gusti
Belum ada peringkat
Sso
Dokumen24 halaman
Sso
Vc Raju
Belum ada peringkat
PKI Security
Dokumen64 halaman
PKI Security
Vivien Di
100% (1)
A Survey of Web Security: Aviel D. Rubin Daniel E. Geer JR
Dokumen8 halaman
A Survey of Web Security: Aviel D. Rubin Daniel E. Geer JR
Nirmal Raj Deivasigamani
Belum ada peringkat
06-Implementing Public Key Infrastructure: Senior Technical Instructor Ahmedsultan - Me/about
Dokumen25 halaman
06-Implementing Public Key Infrastructure: Senior Technical Instructor Ahmedsultan - Me/about
Manu
Belum ada peringkat
Best Practices For Securing Your Enterprise:: 10 Things You Need To Know
Dokumen10 halaman
Best Practices For Securing Your Enterprise:: 10 Things You Need To Know
Shubham Gupta
Belum ada peringkat
Ds Endpoint Remote Access
Dokumen2 halaman
Ds Endpoint Remote Access
DonAnto
Belum ada peringkat
SSL VPN For CLN
Dokumen29 halaman
SSL VPN For CLN
VJ SNG
Belum ada peringkat
StrongAuthentication SecureEmployeeAccess SB (En) Web
Dokumen2 halaman
StrongAuthentication SecureEmployeeAccess SB (En) Web
tutakhalu
Belum ada peringkat
SSL TLS Deployment Best Practices 1.3 PDF
Dokumen11 halaman
SSL TLS Deployment Best Practices 1.3 PDF
Jimmy.D
Belum ada peringkat
Secure Socket Layer: Barnali Gupta Banik
Dokumen35 halaman
Secure Socket Layer: Barnali Gupta Banik
barnaliguptabanik
Belum ada peringkat
6-Web Application Security
Dokumen36 halaman
6-Web Application Security
ep230842
Belum ada peringkat
What Is HTTPS?: White Paper
Dokumen7 halaman
What Is HTTPS?: White Paper
lai khoi
Belum ada peringkat
Multi-Factor Password-Authenticated Key Exchange: Douglas Stebila Poornaprajna Udupi Sheueling Chang
Dokumen11 halaman
Multi-Factor Password-Authenticated Key Exchange: Douglas Stebila Poornaprajna Udupi Sheueling Chang
Fotis Marneras
Belum ada peringkat
SSL TLS Deployment Best Practices 1.3
Dokumen11 halaman
SSL TLS Deployment Best Practices 1.3
cozzie907
Belum ada peringkat
Adil Muneer
Dokumen5 halaman
Adil Muneer
Sanjay Attili
Belum ada peringkat
Company Profile: PT Mega Cyber Security
Dokumen50 halaman
Company Profile: PT Mega Cyber Security
Yohannes Alumagubi
Belum ada peringkat
My Submission
Dokumen2 halaman
My Submission
Abdelkebir Labyad
83% (6)
21.4.7 Lab - Certificate Authority Stores
Dokumen7 halaman
21.4.7 Lab - Certificate Authority Stores
LISS MADELEN TRAVEZ ANGUETA
Belum ada peringkat
9.2.2.7 Lab - Certificate Authority Stores PDF
Dokumen9 halaman
9.2.2.7 Lab - Certificate Authority Stores PDF
Interesting facts Channel
Belum ada peringkat
Plantilla Reporte Certificación
Dokumen156 halaman
Plantilla Reporte Certificación
NICAURY ARELIS NICAURY ARELIS SANCHEZ/CISNERO
Belum ada peringkat
Sarbanes Oxley in SOA
Dokumen9 halaman
Sarbanes Oxley in SOA
Layer7Tech
Belum ada peringkat
Fortigate SSLVPN
Dokumen69 halaman
Fortigate SSLVPN
Mauricio Flores
Belum ada peringkat
Network Security Unit 2
Dokumen45 halaman
Network Security Unit 2
Satyam Pandey
Belum ada peringkat
Multi-Replica and Multi-Cloud Data Public Audit Scheme Based On Blockchain
Dokumen14 halaman
Multi-Replica and Multi-Cloud Data Public Audit Scheme Based On Blockchain
Thangavel Murugan
Belum ada peringkat
Lecture 21-Web Evaluation & Web Security-Compressed
Dokumen28 halaman
Lecture 21-Web Evaluation & Web Security-Compressed
Abad
Belum ada peringkat
Prasanna Resume PDF
Dokumen4 halaman
Prasanna Resume PDF
Prasanna
Belum ada peringkat
Set No: 1: Code No: V3203/R07
Dokumen50 halaman
Set No: 1: Code No: V3203/R07
Polireddi Gopala Krishna
Belum ada peringkat
TwitterOauth - Oob Authentication
Dokumen5 halaman
TwitterOauth - Oob Authentication
Renan Pereira Dos Santos
Belum ada peringkat
Slashnext Targeted Phishing Defense Datasheet
Dokumen2 halaman
Slashnext Targeted Phishing Defense Datasheet
Nasir
Belum ada peringkat
Construction Worker Personal Details
Dokumen3 halaman
Construction Worker Personal Details
Ashok Singh
Belum ada peringkat
Summary
Dokumen5 halaman
Summary
lisno
Belum ada peringkat
CS6711 Security Lab Manual
Dokumen83 halaman
CS6711 Security Lab Manual
Swaroop A S
Belum ada peringkat
Internet Banking
Dokumen2 halaman
Internet Banking
api-323535487
Belum ada peringkat
Honeywell 5809 Install Guide
Dokumen2 halaman
Honeywell 5809 Install Guide
Alarm Grid Home Security and Alarm Monitoring
Belum ada peringkat
A 20-Year-Old Entrepreneur'S Success Story
Dokumen4 halaman
A 20-Year-Old Entrepreneur'S Success Story
javadene
100% (1)
Account Details: Login With The Free Account Passwords Below To Bypass Compulsory Registration.
Dokumen4 halaman
Account Details: Login With The Free Account Passwords Below To Bypass Compulsory Registration.
syednazar11
Belum ada peringkat
ISRO Scientist Recruitment Exam Details
Dokumen3 halaman
ISRO Scientist Recruitment Exam Details
manish sharma
Belum ada peringkat
Request For New PAN Card or / and Changes or Correction in PAN Data
Dokumen2 halaman
Request For New PAN Card or / and Changes or Correction in PAN Data
sv net
Belum ada peringkat
Cubenew July 11
Dokumen81 halaman
Cubenew July 11
ganesh
Belum ada peringkat
Dlextarctmain Do
Dokumen1 halaman
Dlextarctmain Do
test test
Belum ada peringkat
Connectivity and Function Test Report Results
Dokumen2 halaman
Connectivity and Function Test Report Results
Danang Jefrianta
Belum ada peringkat
PDF
Dokumen120 halaman
PDF
dyake04
100% (2)
Zimbra NE Multi-Server Install 7.2
Dokumen74 halaman
Zimbra NE Multi-Server Install 7.2
Евгений Коломийцев
Belum ada peringkat
Internal Controls:Sox 404
Dokumen6 halaman
Internal Controls:Sox 404
Laurie Chenoweth
Belum ada peringkat
CNS Unit-3
Dokumen35 halaman
CNS Unit-3
gayatri
Belum ada peringkat
No Data Available in P6 - BI Publisher
Dokumen5 halaman
No Data Available in P6 - BI Publisher
freeup86
Belum ada peringkat
E Commerce Laws in India
Dokumen19 halaman
E Commerce Laws in India
Priya Zutshi
Belum ada peringkat
Status of The Development of ISO/SAE 21434
Dokumen10 halaman
Status of The Development of ISO/SAE 21434
Anonymous OyI17C
50% (2)
SAP Made Easy - by Shannu
Dokumen151 halaman
SAP Made Easy - by Shannu
Sandeep Kumar T
100% (1)
03 Nfs PDF
Dokumen48 halaman
03 Nfs PDF
Karan Deep Singh
Belum ada peringkat
Monitoring Databricks Jobs Through Calls To The Rest Api
Dokumen7 halaman
Monitoring Databricks Jobs Through Calls To The Rest Api
salman kadaya
Belum ada peringkat
License
Dokumen6 halaman
License
chin
50% (2)
Hbo Lesson 9 Issues Between Organization and Individuals
Dokumen2 halaman
Hbo Lesson 9 Issues Between Organization and Individuals
Mitchie Binarao Baylon
Belum ada peringkat
Portable Programmer: Features
Dokumen1 halaman
Portable Programmer: Features
C Vel
Belum ada peringkat
PRC Docs
Dokumen1 halaman
PRC Docs
Daryl J. S. Badajos
Belum ada peringkat
Dari Everand
Belum ada peringkat