Download PowerPoint Presentation - MSDN Events

fortnecessityusefulΛογισμικό & κατασκευή λογ/κού

14 Δεκ 2013 (πριν από 3 χρόνια και 10 μήνες)

72 εμφανίσεις

Next Generation Identity
Management with Windows
CardSpace

MSDN Events

http://www.msdnevents.com

What We Will Cover

Identity
Metasystem

CardSpace

in Windows Vista

Using Information Cards

Agenda

Identity
Metasystem

What is
CardSpace
?

Information Card Protocol

Information Card Participants

More Security

Identity Crisis

The Internet is dangerous!

Identity theft, spoofing, phishing,
phraud

Username + password is weak and overwhelmed

Enterprises are in identity silo hell

www.antiphishing.org

22
% Stopped

25
% Cut back

Why an Identity MetaSystem?

Prevent Phishing
Attacks

Prevent Identity Theft

Reduce User Names
and Passwords

Put the User in
Control

Identity
Metasystem

Objectives & Characteristics

No Single Authority

Open Framework

Set of Protocols

Standards Built on SOAP and XML

User in Control

Identity
Metasystem

Seven Laws

User Control
and Consent

Minimal

Disclosure

Justifiable

Parties

Pluralism of

Operators

Human

Integration

Consistent

Experience

Directional

Identity

Identity System Model

User

Identity Provider

Relying
Party

Trust

Identity

Selector

Claims

Token

translation

Agenda

Identity
MetaSystem

What is
CardSpace
?

Information Card Protocol

Information Card Participants

More Security

What is CardSpace?

No Personal Data

Processing
Engine

Replace User Names
and Passwords

Digital

Identity

in

CardSpace

Built on .NET
Framework 3.0

CardSpace as a Metaphor

My Business

My Government

My Bank

My School

What CardSpace Addresses

User name/password fatigue

Phishing and
phraud

Lack of confidence in Internet

Working with
CardSpace

Agenda

Identity
MetaSystem

What is
CardSpace
?

Information Card Protocol

Information Card Participants

More Security

Protocol Drill Down

Identity Provider

(IP)

Relying Party

(RP)

Client

Client would like to access a resource

RP provides identity requirements:

format, claims & issuer of security token

1

2

User

3

Client shows which of known

IPs can satisfy requirements

User selects an IP

4

5

Request to IP

Security Token Service


for security token

providing user credentials

6

IP generates security token

based on RP’s requirements

with display token and proof

of possession for user

7

User views
token and approves

the
release of token

8

Token is released to RP

with proof of possession

RP reads claims and

allows access

Adding Information Card
Support to a Web Site

Agenda

Identity
MetaSystem

What is
CardSpace
?

Information Card Protocol

Information Card Participants

More Security

Participants


Identity Provider

Security Token

Service

SSL Certificate

Information Card
Creation and
Provisioning

Examples

Participants


relying party

Policy

Code to

process token

SSL Certificate

Participants


Clients

Browsers

Internet Explorer,
Firefox, etc.

Non
-
Windows

Rich
Clients

Converting a Traditional Web Site
to Accept Information Cards

Agenda

Identity
MetaSystem

What is
CardSpace
?

Information Card Protocol

Information Card Participants

More Security

Extended Value SSL Certificates

Better End
User feedback

More
Secure

Implemented

in Internet
Explorer 7

Extends
SSL

Accessing multiple web sites with
a single Information Card

Session Summary

An Identity
Metasystem

Is Needed

The Framework Is In Place

Need More Participants

Resources

CardSpace

samples and articles


http://cardspace.netfx3.com

The Identity
Metasystem


http://www.identityblog.com

MSDN Events Resources


http://www.msdnevents.com/resources


MSDN Events

http://www.msdnevents.com