Upload
ca-technologies
View
751
Download
2
Embed Size (px)
Citation preview
Knock, Knock…The Internet of Thingswants to come in?
Ralph Huenten
Security
CA Technologies
Security Presales - EMEASCT31T
@casecurity
#CAWorld
2 © 2015 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD
© 2015 CA. All rights reserved. All trademarks referenced herein belong to their respective companies.
The content provided in this CA World 2015 presentation is intended for informational purposes only and does not form any type of
warranty. The information provided by a CA partner and/or CA customer has not been reviewed for accuracy by CA.
For Informational Purposes Only
Terms of this Presentation
3 © 2015 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD
Abstract
The Internet of Things (IoT) will connect users to the enterprise or just connect to the enterprise independently — but what will be used to secure this access? Come see how CA Security can secure access to and from the IoT.
Ralph Huenten
CA Technologies
Advisor
4 © 2015 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD
Digital transformation is underway
Half of enterprises today say the application economy is significantly disrupting their industry—while 44% say it is doing the same to their own organization 1
-- CA Technologies with Vanson Bourne
1.75Bsmartphone users in 2014 1
25Business apps per device2
50BConnected devices (IoT) by 2020 3
>$100Bin cloud spending this year 4
Sources: 1. CA Vanson Bourne Study2. eMarketer study3. McKinsey Global Institute, Disruptive Technologies, advances that will transform life, business and the global economy, May 20134. GMSA Intelligence, From Concept to Delivery, the M2M Market Today, Feb. 17, 2014
5 © 2015 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD
This drives the need for increased Security
Security concerns - the top obstacle in app economy#1
$12.7MAverage cost to the
company for a breach
Overall IT spend devoted to Security
over next 3 years
>25%2
78%Increase in # of breached
records from 2013 to 20143
16,856Number of attacks the average company had
in 2013
1All data on this slide from CA Application Economy Market Study commissioned by CA, conducted by Vanson Bourne, 20142. The 2014 Cost of Cyber Crime Study Reveals Increased Risks, Oct, 20143. http://breachlevelindex.com/pdf/Breach-Level-Index-Annual-Report-2014.pdf
6 © 2015 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD
IoT Represents the Next Wave of Risk
The Internet of Things (IoT) will connect users to the enterprise or just connect to the enterprise independently — but what will be used to secure this access?
• How will users authenticate to the IoT devices?
• How will IoT devices authenticate to the enterprise?
50BConnected devices
(IoT) by 2020 3
IoT Devices The EnterpriseUsers
• What types of data can the IoTdevices access?
• What types of transactions can the IoT devices perform?
What happens to the IoT device if it is hacked?
7 © 2015 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD
CA Security Solution
Components:– CA API Gateway
used to secure communications between users and IoT devices and between IoT devices and the enterprise.
– CA Advanced Authentication
used to authenticate users to IoT devices and IoT devices to the enterprise.
8 © 2015 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD
CA Security Solution Conceptual Architecture
CA API GatewayCA Advanced
Authentication
IoT Devices The EnterpriseUsers
Secures CommunicationsBetween users, IoT, and Enterprise
Provides MFA and risk analysis for authentication
9 © 2015 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD
CA World User Multiple Devices
CA APIGateway
CA AdvancedAuthentication
Social Media CloudMQTT Raspberry Pi
Slot Car Race Track
CA Security Innovation Demo
10 © 2015 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD
CA Security Innovation Demo
Users Enroll using Demo iPad/laptop or
their own device
CA World User Multiple Devices
CA APIGateway
CA AdvancedAuthentication
Social Media CloudMQTT Raspberry Pi
Slot Car Race Track
11 © 2015 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD
CA Security Innovation Demo
Demo supports direct enrollment or social media registration
CA World User Multiple Devices
CA APIGateway
CA AdvancedAuthentication
Social Media CloudMQTT Raspberry Pi
Slot Car Race Track
12 © 2015 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD
CA Security Innovation Demo
During direct enrollment, user is prompted to enter First Name, Last Name, ID and password. This data is used to create an account in CA Advanced Authentication.
CA World User Multiple Devices
CA APIGateway
CA AdvancedAuthentication
Social Media CloudMQTT Raspberry Pi
Slot Car Race Track
13 © 2015 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD
CA Security Innovation Demo
Users can then click to Start Test Drive
CA World User Multiple Devices
CA APIGateway
CA AdvancedAuthentication
Social Media CloudMQTT Raspberry Pi
Slot Car Race Track
14 © 2015 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD
CA Security Innovation Demo
User is prompted to login using User ID / Password, which is then validated by CA Advanced Authentication.
The demo can support • Basic with/without risk authentication• CA Auth ID with/without risk authentication• CA Mobile OTP with/without risk authentication
CA World User Multiple Devices
CA APIGateway
CA AdvancedAuthentication
Social Media CloudMQTT Raspberry Pi
Slot Car Race Track
15 © 2015 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD
CA Security Innovation Demo
Once authenticated, the gateway will release the request to start slot car engine to CloudMQTT, which will determine which slot car is currently available and place the request in that queue.
CA World User Multiple Devices
CA APIGateway
CA AdvancedAuthentication
Social Media CloudMQTT Raspberry Pi
Slot Car Race Track
16 © 2015 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD
CA Security Innovation Demo
CA World User Multiple Devices
CA APIGateway
CA AdvancedAuthentication
Social Media CloudMQTT Raspberry Pi
Slot Car Race Track
Raspberry periodically checks with CloudMQTTfor new requests, and will turn on power to the correct car when a new request is retrieved.
17 © 2015 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD
CA Security Innovation Demo
CA World User Multiple Devices
CA APIGateway
CA AdvancedAuthentication
Social Media CloudMQTT Raspberry Pi
Slot Car Race TrackAt end of Test Drive, users can select to Stop Engine, which
will also disable their account
18 © 2015 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD
Summary
Authentication– User access to IoT devices can be protected by CA Adv. Authentication
using MFA credentials and/or Risk-Based Authentication
Orchestration– Communications between users, web/mobile apps, IoT devices, and CA
Adv. Auth servers can be orchestrated by CA API Gateway
– The gateway also provides protocol translation where necessary
CA SECURITY FOR THE INTERNET OF THINGS
19 © 2015 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD
Recommended Sessions
SESSION # TITLE DATE/TIME
SCT05S Roadmap: CA Advanced Authentication and CA SSO Wed. Nov 18 at 4:30 pm
SCT24TMobile Risk Analysis: Take Your Mobile App Security to
the Next Level Thurs. Nov 19 at 1:00 pm
SCT21T Enable Omnichannel with Security and API Management Thurs. Nov 19 at 2:00 pm
SCT17T Strong Auth in IdM Thurs. Nov 19 at 3:45 pm
20 © 2015 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD
Must See Demos
Protect Against Fraud & Breaches
CA Advanced Auth
Security Theater
Engage Customers
CA SSO
Security Theater
Innovation – IoTSlot Car
CA AA, APIM
Security Theater
Secure Omni-Channel Access
CA AA, APIM, SSO
Security Theater
21 © 2015 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD
Q & A
22 © 2015 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD
For More Information
To learn more, please visit:
http://cainc.to/Nv2VOe
CA World ’15