• Home

  • Software

  • ENABLING THE E-CITIZEN IN A DISTRIBUTED ENVIRONMENT
12
November 2014 Enabling The eCitizen In A Distributed Environment Daniel Stroud IAM Capabilities Manager [email protected]

ENABLING THE E-CITIZEN IN A DISTRIBUTED ENVIRONMENT

Tags:

Embed Size (px)

DESCRIPTION

DANIEL STROUD, CISSP-ISSAP, MCSE, Identity and Access Management Capabilities Lead, G2, Inc., at the European IRM Summit 2014.

Citation preview

Page 1: ENABLING THE E-CITIZEN IN A DISTRIBUTED ENVIRONMENT

November 2014

Enabling The eCitizen InA Distributed Environment

Daniel StroudIAM Capabilities [email protected]

Page 2: ENABLING THE E-CITIZEN IN A DISTRIBUTED ENVIRONMENT

Primary Goals

• Reusability

• Simplified Public Key Infrastructure (PKI) Authentication in a Distributed Lightweight Directory Access Protocol (LDAP) Environment

• Distributed Attribute Repository Support

• Simplified Transition to Attribute Based Access Control (ABAC)

• Disconnected Operations Support

Page 3: ENABLING THE E-CITIZEN IN A DISTRIBUTED ENVIRONMENT

• Reusability• Choose a robust Open Source solution• Distill complex configurations• Provide automation and standard packaging

• Simplified PKI Authentication• Allow end user PKI certificate linkage and

entrenchment• Allow multiple Certificate Revocation List (CRL)

definitions via HTTP

• Distributed Attribute Repository Support• Implement a pluggable interface with Virtual Directory

Service (VDS) capability

• Simplified ABAC Transition• Package default rules for protected resources

• Disconnected Operations Support• Implement in-memory and local LDAP caching

Technical Approach

Page 4: ENABLING THE E-CITIZEN IN A DISTRIBUTED ENVIRONMENT

REUSABILITYAn Introduction to the KickStart Console…

Page 5: ENABLING THE E-CITIZEN IN A DISTRIBUTED ENVIRONMENT

SIMPLIFIED PKI AUTHENTICATION

Page 6: ENABLING THE E-CITIZEN IN A DISTRIBUTED ENVIRONMENT

The Ideal Situation

Policy Agent

Web ApplicationOpenAM Server

J2EE Servlet Container

PKI Authority

Policy Agent

Web Application

J2EE Servlet Container

Policy Agent

Web Application

Container

CRL

Page 7: ENABLING THE E-CITIZEN IN A DISTRIBUTED ENVIRONMENT

Distributed PKI Environment

Policy Agent

Web Application OpenAM Server

J2EE Servlet Container

LDAP

PKI Authority

Policy Agent

Web Application

J2EE Servlet Container

Policy Agent

Web Application

Container

Web Server

CRLCRL

Page 8: ENABLING THE E-CITIZEN IN A DISTRIBUTED ENVIRONMENT

DISTRIBUTED ATTRIBUTE REPOSITORY SUPPORT

Page 9: ENABLING THE E-CITIZEN IN A DISTRIBUTED ENVIRONMENT

Distributed Attributes

Policy Agent

Web Application OpenAM Server

J2EE Servlet Container

LDAP

Authoritative Attribute Repo

Policy Agent

Web Application

J2EE Servlet Container

Policy Agent

Web Application

Container

Page 10: ENABLING THE E-CITIZEN IN A DISTRIBUTED ENVIRONMENT

SIMPLIFIED ABAC TRANSITIONAnother Look at the KickStart Console…

Page 11: ENABLING THE E-CITIZEN IN A DISTRIBUTED ENVIRONMENT

DISCONNECTED OPERATIONS SUPPORT

Page 12: ENABLING THE E-CITIZEN IN A DISTRIBUTED ENVIRONMENT

Disconnected

Policy Agent

Web Application OpenAM Server

J2EE Servlet Container

LDAP

Authoritative Attribute Repo

Policy Agent

Web Application

J2EE Servlet Container

Policy Agent

Web Application

Container


Enabling Distributed, Event Based, Resolution Storm Surge ... · Enabling Distributed, Event‐Based, High‐Resolution Storm Surge Modeling Brian Blanton, Rick Luettich, Corbitt

Enabling Distributed, Event Based, Resolution Storm Surge ... · Enabling Distributed, Event‐Based, High‐Resolution Storm Surge Modeling Brian Blanton, Rick Luettich, Corbitt

Documents
g4c2c: Enabling Citizen Engagement at Arms' Length from Government

g4c2c: Enabling Citizen Engagement at Arms' Length from Government

Education
Enabling Distributed Agile Teams

Enabling Distributed Agile Teams

Business
Enabling Smarter Cities through Internet of Things, Web of Data & Citizen Participation

Enabling Smarter Cities through Internet of Things, Web of Data & Citizen Participation

Technology
UNIT - I DISTRIBUTED SYSTEM MODELS AND ENABLING TECHNOLOGIES€¦ · cloud computing r13 regulation 1 unit - i distributed system models and enabling technologies ... cloud computing

UNIT - I DISTRIBUTED SYSTEM MODELS AND ENABLING TECHNOLOGIES€¦ · cloud computing r13 regulation 1 unit - i distributed system models and enabling technologies ... cloud computing

Documents
Enabling Interaction and Quality in a Distributed Data DRIS

Enabling Interaction and Quality in a Distributed Data DRIS

Documents
IEEE Standard for Interfaces and Protocols Enabling Distributed

IEEE Standard for Interfaces and Protocols Enabling Distributed

Documents
SnapLogic Live: Enabling the Citizen Integrator

SnapLogic Live: Enabling the Citizen Integrator

Software
Ehealth: enabling self-management, public health 2.0 and citizen science

Ehealth: enabling self-management, public health 2.0 and citizen science

Healthcare
Advanced Distributed Learning Emerging and Enabling Technologies

Advanced Distributed Learning Emerging and Enabling Technologies

Documents
ENABLING GENERIC DISTRIBUTED COMPUTING INFRASTRUCTURE

ENABLING GENERIC DISTRIBUTED COMPUTING INFRASTRUCTURE

Documents
Sampling: The Hows and Whys Driven to Discover Enabling Student Inquiry through Citizen Science Driven to Discover Enabling Student Inquiry through Citizen

Sampling: The Hows and Whys Driven to Discover Enabling Student Inquiry through Citizen Science Driven to Discover Enabling Student Inquiry through Citizen

Documents
Enabling Social Network Analysis in Distributed Collaborative Software Development

Enabling Social Network Analysis in Distributed Collaborative Software Development

Technology
Enabling Petascale Science with a Nationally Distributed ... · Enabling Petascale Science with a Nationally Distributed High-Throughput Computing Fabric of Services – The Open

Enabling Petascale Science with a Nationally Distributed ... · Enabling Petascale Science with a Nationally Distributed High-Throughput Computing Fabric of Services – The Open

Documents
Localising the Grand Transition: Enabling Citizen ... · Citizen Involvement Meter User Transformation Level Citizens’ Survey Snapshot • 97% believe citizen engagement is critical

Localising the Grand Transition: Enabling Citizen ... · Citizen Involvement Meter User Transformation Level Citizens’ Survey Snapshot • 97% believe citizen engagement is critical

Documents
Enabling Citizen-empowered Apps over Linked Data

Enabling Citizen-empowered Apps over Linked Data

Technology
Enabling Distributed Generation Powered …plaza.ufl.edu/chaol/File/Enabling-HPCA-2013.pdfEnabling Distributed Generation Powered Sustainable High-Performance Data ... performance

Enabling Distributed Generation Powered …plaza.ufl.edu/chaol/File/Enabling-HPCA-2013.pdfEnabling Distributed Generation Powered Sustainable High-Performance Data ... performance

Documents
Enabling citizen choices about land use and the natural environment

Enabling citizen choices about land use and the natural environment

Documents
Enabling Distributed Authentication and Access Control ... · Enabling Distributed Authentication and Access Control Using Researcher ... MySpace and 100’s of other sites agree

Enabling Distributed Authentication and Access Control ... · Enabling Distributed Authentication and Access Control Using Researcher ... MySpace and 100’s of other sites agree

Documents
Distributed Service Platform - Enabling innovation in the era of IoT

Distributed Service Platform - Enabling innovation in the era of IoT

Technology
Battery Energy Storage for Enabling Distributed Solar Power Generation

Battery Energy Storage for Enabling Distributed Solar Power Generation

Documents
Enabling Flexible Distributed Learning (FDL) at Oxford Brookes University

Enabling Flexible Distributed Learning (FDL) at Oxford Brookes University

Education
Technological Changes Enabling a Shift Toward a Distributed, … · 2018-01-30 · Technological Changes Enabling a Shift Toward a Distributed, Decentralized and Diverse Model of

Technological Changes Enabling a Shift Toward a Distributed, … · 2018-01-30 · Technological Changes Enabling a Shift Toward a Distributed, Decentralized and Diverse Model of

Documents
Enabling Distributed Threat Analysis

Enabling Distributed Threat Analysis

Documents
Lustre -WAN : Enabling Distributed Workflows in Astrophysics

Lustre -WAN : Enabling Distributed Workflows in Astrophysics

Documents
AirSync: Enabling Distributed Multiuser MIMO with Full

AirSync: Enabling Distributed Multiuser MIMO with Full

Documents
Advanced Distributed Learning: Enabling Enhanced Learning ... --- (eSLE... · Advanced Distributed Learning: Enabling Enhanced Learning Experiences Damon Regan, Ph.D. The Tolliver

Advanced Distributed Learning: Enabling Enhanced Learning ... --- (eSLE... · Advanced Distributed Learning: Enabling Enhanced Learning Experiences Damon Regan, Ph.D. The Tolliver

Documents
Project data.set(ER): Enabling distributed physician ... · Project data.set(ER): Enabling distributed physician feedback and collaboration on modeling data sets for the emergency

Project data.set(ER): Enabling distributed physician ... · Project data.set(ER): Enabling distributed physician feedback and collaboration on modeling data sets for the emergency

Documents
ENABLING DISTRIBUTED WORKFORCE

ENABLING DISTRIBUTED WORKFORCE

Documents
Scrum Gathering 2014 - Enabling Distributed Agile Teams

Scrum Gathering 2014 - Enabling Distributed Agile Teams

Business