SlideShare a Scribd company logo

Bechtel On OpenID and OAuth from Cloud Identity Summit

Matterport
Matterport

Christian Reilly, Manager of Global Systems Engineering and Brian Ward, Manager of Integration Services make a good case for how to use OpenID and OAuth in an extended enterprise environment. Bechtel is a $30B business with 44,000 employees. See slide 13 for a description of Identity 2.0, and BYOI (Bring Your Own Identity) provided by Janrain Engage: www.janrain.com

Business
1 of 20
Download to read offline
Identity in the Bechtel Cloud Why and how one of the most successful Engineering & Construction companies rebuilt their digital world….. Christian Reilly – Manager of Global Systems Engineering Brian D Ward – Manager of Integration Services
Information Evolution & Business Change Introducing the Project Services Network
Our business model is evolving to be more complex and distributed. GRAY Our two main challenges are related to:   Geography Our projects are executed in ZONE many and distributed locations   People Our resource model includes permanent and temporary employees, as well as vendors, customers, partners, and competitors
Current Position
Square pegs and round holes…. How much pain would you like?
  Active Directory – separate internal and external forests   Integrated Authentication, Kerberos Constrained Delegation, Reverse Proxy   Complex trust models & ICC’s   Application mix from Bechtel, Client, Partner, Competitor   Wide variety of application architectures
Core Apps: TimeCard, SAP, Intranet File Shares Mail Printers Desktop SaaS Bridge SaaS Internet Access AD Other apps (long tail)
  High degree of operational complexity   Poor visibility into what people are accessing what resource   Inflexible model slows down deployment of services and applications to projects   Difficult to accommodate new user communities (which change daily)   Not readily adaptable to SaaS offerings
Why is it so easy in The Cloud? And yet so hard in the Enterprise?
  Realizations –  “Castle and Moat” approach to security is dead –  Our Windows-centric approach has significant technical and operational constraints –  Authentication/Authorization are the key problems to solve   Resolutions –  We need a completely new approach –  Make all applications/services SaaS –  Make Bechtel a SaaS Provider (wow) –  Replace, not augment, the current model
  Identity “2.0” –  A new identity model – identities for life –  BYOI with OpenID (Janrain), Federation –  Anyone can have an account –  Self Registration based on relationships   Authorization –  Integrated into SAP –  Attribute store – single source of truth, replacement for groups –  Coarse grained authz performed by Ping  –  Fine grained done in apps for now, centrally later
  Integration –  SAML / OpenToken integration for all deployed applications –  Citrix integration with credential translation for legacy application support –  Two-legged OAuth STS for web services   Services –  New application stacks (SaaS-style) –  File / Print / Internet Access authentication replacement –  New desktop model – BYOD
Core Apps: TimeCard, SAP, Intranet File Shares Mail Printers Browser SaaS Identity Internet Access Array Other apps (long tail)
  Simplicity –  Built for the “Internet” not for the “Enterprise” –  No “internal” vs. “external” architectural constraints –  Moving away from managing every user account   Agility –  Modular framework of security, UI and services –  Applications decoupled from infrastructure –  No vendor lock in via open standards/open source –  Able to accommodate SaaS and new identity pools natively (with added hope for Geneva)
  Affordability –  Lower overall operational cost –  “B3” approach allows greater flexibility in cost management –  New vendors embrace new commercial models   Security –  Standards based security –  Single point of entry & logging –  Secured by policy not by topology (secure the data and not the device) –  Easily allow any user access to any data in a controlled life cycle
Why can’t we just buy this…hint, hint ? Unraveling years of LAN / WAN based legacy is, well, damn hard.
  Facts –  SaaS integration quickly becoming a commodity –  Federation and/or OpenID fills in the moat –  SaaS moves you out of the castle in the “Metro”   Key Questions –  What does the enterprise have left? –  How long is the tail for traditional enterprises?   Challenges –  Authorization is THE game to win –  Push provisioning is, at best, an interim solution –  A central model with standards-based interfaces is desperately needed
Questions & Answers Or if you’re too shy, grab one of us later….

Recommended

Keynote- SOA & Beyond : Future Computing
Keynote- SOA & Beyond : Future ComputingKeynote- SOA & Beyond : Future Computing
Keynote- SOA & Beyond : Future Computing
WSO2
 
2013.07.05 [IBM] Cloud Ecosystem Forum - Atelier Directions Techniques
2013.07.05 [IBM] Cloud Ecosystem Forum - Atelier Directions Techniques2013.07.05 [IBM] Cloud Ecosystem Forum - Atelier Directions Techniques
2013.07.05 [IBM] Cloud Ecosystem Forum - Atelier Directions Techniques
Club Cloud des Partenaires
 
NetSuite's Quicktake on SAP Business ByDesign
NetSuite's Quicktake on SAP Business ByDesignNetSuite's Quicktake on SAP Business ByDesign
NetSuite's Quicktake on SAP Business ByDesign
Ben Kepes
 
Chapter 06: cloud computing trends
Chapter 06: cloud computing trendsChapter 06: cloud computing trends
Chapter 06: cloud computing trends
SsendiSamuel
 
Advanced Concepts in Software as a Service / Service Oriented Architecture
Advanced Concepts in Software as a Service / Service Oriented ArchitectureAdvanced Concepts in Software as a Service / Service Oriented Architecture
Advanced Concepts in Software as a Service / Service Oriented Architecture
Damon Carr
 
Raleigh Kafka Meetup - DDD, ES, and CQRS
Raleigh Kafka Meetup - DDD, ES, and CQRSRaleigh Kafka Meetup - DDD, ES, and CQRS
Raleigh Kafka Meetup - DDD, ES, and CQRS
Jeff Dutton
 
Developer Conference 2.1 - (Cloud) First Steps to the Cloud
Developer Conference 2.1 - (Cloud) First Steps to the CloudDeveloper Conference 2.1 - (Cloud) First Steps to the Cloud
Developer Conference 2.1 - (Cloud) First Steps to the Cloud
Micro Focus
 
Finding The Intersection Of Soa And Cloud Computing
Finding The Intersection Of Soa And Cloud ComputingFinding The Intersection Of Soa And Cloud Computing
Finding The Intersection Of Soa And Cloud Computing
David Linthicum
 

Recommended

Keynote- SOA & Beyond : Future Computing
Keynote- SOA & Beyond : Future ComputingKeynote- SOA & Beyond : Future Computing
Keynote- SOA & Beyond : Future Computing
WSO2
 
2013.07.05 [IBM] Cloud Ecosystem Forum - Atelier Directions Techniques
2013.07.05 [IBM] Cloud Ecosystem Forum - Atelier Directions Techniques2013.07.05 [IBM] Cloud Ecosystem Forum - Atelier Directions Techniques
2013.07.05 [IBM] Cloud Ecosystem Forum - Atelier Directions Techniques
Club Cloud des Partenaires
 
NetSuite's Quicktake on SAP Business ByDesign
NetSuite's Quicktake on SAP Business ByDesignNetSuite's Quicktake on SAP Business ByDesign
NetSuite's Quicktake on SAP Business ByDesign
Ben Kepes
 
Chapter 06: cloud computing trends
Chapter 06: cloud computing trendsChapter 06: cloud computing trends
Chapter 06: cloud computing trends
SsendiSamuel
 
Advanced Concepts in Software as a Service / Service Oriented Architecture
Advanced Concepts in Software as a Service / Service Oriented ArchitectureAdvanced Concepts in Software as a Service / Service Oriented Architecture
Advanced Concepts in Software as a Service / Service Oriented Architecture
Damon Carr
 
Raleigh Kafka Meetup - DDD, ES, and CQRS
Raleigh Kafka Meetup - DDD, ES, and CQRSRaleigh Kafka Meetup - DDD, ES, and CQRS
Raleigh Kafka Meetup - DDD, ES, and CQRS
Jeff Dutton
 
Developer Conference 2.1 - (Cloud) First Steps to the Cloud
Developer Conference 2.1 - (Cloud) First Steps to the CloudDeveloper Conference 2.1 - (Cloud) First Steps to the Cloud
Developer Conference 2.1 - (Cloud) First Steps to the Cloud
Micro Focus
 
Finding The Intersection Of Soa And Cloud Computing
Finding The Intersection Of Soa And Cloud ComputingFinding The Intersection Of Soa And Cloud Computing
Finding The Intersection Of Soa And Cloud Computing
David Linthicum
 
Npc presentation clexo
Npc presentation clexoNpc presentation clexo
Npc presentation clexo
GovCloud Network
 
Cloud Computing Model with Service Oriented Architecture
Cloud Computing Model with Service Oriented ArchitectureCloud Computing Model with Service Oriented Architecture
Cloud Computing Model with Service Oriented Architecture
Yan Zhao
 
IdM Reference Architecture
IdM Reference ArchitectureIdM Reference Architecture
IdM Reference Architecture
Hannu Kasanen
 
IDC: Selecting the Optimal Path to Private Cloud
IDC: Selecting the Optimal Path to Private CloudIDC: Selecting the Optimal Path to Private Cloud
IDC: Selecting the Optimal Path to Private Cloud
EMC
 
Cloud computing and_saas
Cloud computing and_saasCloud computing and_saas
Cloud computing and_saas
Rahul Parmar
 
Cloud computing and_saas
Cloud computing and_saasCloud computing and_saas
Cloud computing and_saas
kavinalli
 
Cloud agility-gap-whitepaper 9595
Cloud agility-gap-whitepaper 9595Cloud agility-gap-whitepaper 9595
Cloud agility-gap-whitepaper 9595
Accenture
 
SOA And Cloud Computing
SOA And Cloud ComputingSOA And Cloud Computing
SOA And Cloud Computing
David Chou
 
Cloud Computing and SOA from Enterprise Perspective
Cloud Computing and SOA from Enterprise PerspectiveCloud Computing and SOA from Enterprise Perspective
Cloud Computing and SOA from Enterprise Perspective
Yan Zhao
 
Citrix synergy 2012 debrief
Citrix synergy 2012 debriefCitrix synergy 2012 debrief
Citrix synergy 2012 debrief
Jason Poyner
 
OreDev 2008: Software + Services
OreDev 2008: Software + ServicesOreDev 2008: Software + Services
OreDev 2008: Software + Services
ukdpe
 
Microsoft System Center 2012 Overview
Microsoft System Center 2012 OverviewMicrosoft System Center 2012 Overview
Microsoft System Center 2012 Overview
Motty Ben Atia
 
Software defined infrastructure
Software defined infrastructureSoftware defined infrastructure
Software defined infrastructure
mdscomputers
 
IBM WebSphere Appliance Overview
IBM WebSphere Appliance OverviewIBM WebSphere Appliance Overview
IBM WebSphere Appliance Overview
Adam Loffredo
 
Enterprise Integration Patterns Revisited (again) for the Era of Big Data, In...
Enterprise Integration Patterns Revisited (again) for the Era of Big Data, In...Enterprise Integration Patterns Revisited (again) for the Era of Big Data, In...
Enterprise Integration Patterns Revisited (again) for the Era of Big Data, In...
Kai Wähner
 
MT100 How we secure Big Data and protect our digital assets
MT100 How we secure Big Data and protect our digital assetsMT100 How we secure Big Data and protect our digital assets
MT100 How we secure Big Data and protect our digital assets
Dell EMC World
 
Architecting SaaS: Doing It Right the First Time
Architecting SaaS: Doing It Right the First TimeArchitecting SaaS: Doing It Right the First Time
Architecting SaaS: Doing It Right the First Time
Serhiy (Serge) Haziyev
 
Cloud Computing In Banking And Finance Industry
Cloud Computing In Banking And Finance IndustryCloud Computing In Banking And Finance Industry
Cloud Computing In Banking And Finance Industry
Tyrone Systems
 
Cloud computing notes unit I as per RGPV syllabus
Cloud computing notes unit I as per RGPV syllabusCloud computing notes unit I as per RGPV syllabus
Cloud computing notes unit I as per RGPV syllabus
NANDINI SHARMA
 
Stanford GSB Portland Alumni - Leveraging Social Media for Customer Engagement
Stanford GSB Portland Alumni - Leveraging Social Media for Customer EngagementStanford GSB Portland Alumni - Leveraging Social Media for Customer Engagement
Stanford GSB Portland Alumni - Leveraging Social Media for Customer Engagement
Matterport
 
Social Media for Online Retailers
Social Media for Online RetailersSocial Media for Online Retailers
Social Media for Online Retailers
Matterport
 
DEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagement
DEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagementDEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagement
DEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagement
Matterport
 

More Related Content

What's hot

Cloud Computing Model with Service Oriented Architecture
Cloud Computing Model with Service Oriented ArchitectureCloud Computing Model with Service Oriented Architecture
Cloud Computing Model with Service Oriented Architecture
Yan Zhao
 
Cloud computing and_saas
Cloud computing and_saasCloud computing and_saas
Cloud computing and_saas
kavinalli
 
Cloud agility-gap-whitepaper 9595
Cloud agility-gap-whitepaper 9595Cloud agility-gap-whitepaper 9595
Cloud agility-gap-whitepaper 9595
Accenture
 
Cloud Computing and SOA from Enterprise Perspective
Cloud Computing and SOA from Enterprise PerspectiveCloud Computing and SOA from Enterprise Perspective
Cloud Computing and SOA from Enterprise Perspective
Yan Zhao
 

What's hot (19)

Npc presentation clexo
Npc presentation clexoNpc presentation clexo
Npc presentation clexo
 
Cloud Computing Model with Service Oriented Architecture
Cloud Computing Model with Service Oriented ArchitectureCloud Computing Model with Service Oriented Architecture
Cloud Computing Model with Service Oriented Architecture
 
IdM Reference Architecture
IdM Reference ArchitectureIdM Reference Architecture
IdM Reference Architecture
 
IDC: Selecting the Optimal Path to Private Cloud
IDC: Selecting the Optimal Path to Private CloudIDC: Selecting the Optimal Path to Private Cloud
IDC: Selecting the Optimal Path to Private Cloud
 
Cloud computing and_saas
Cloud computing and_saasCloud computing and_saas
Cloud computing and_saas
 
Cloud computing and_saas
Cloud computing and_saasCloud computing and_saas
Cloud computing and_saas
 
Cloud agility-gap-whitepaper 9595
Cloud agility-gap-whitepaper 9595Cloud agility-gap-whitepaper 9595
Cloud agility-gap-whitepaper 9595
 
SOA And Cloud Computing
SOA And Cloud ComputingSOA And Cloud Computing
SOA And Cloud Computing
 
Cloud Computing and SOA from Enterprise Perspective
Cloud Computing and SOA from Enterprise PerspectiveCloud Computing and SOA from Enterprise Perspective
Cloud Computing and SOA from Enterprise Perspective
 
Citrix synergy 2012 debrief
Citrix synergy 2012 debriefCitrix synergy 2012 debrief
Citrix synergy 2012 debrief
 
OreDev 2008: Software + Services
OreDev 2008: Software + ServicesOreDev 2008: Software + Services
OreDev 2008: Software + Services
 
Microsoft System Center 2012 Overview
Microsoft System Center 2012 OverviewMicrosoft System Center 2012 Overview
Microsoft System Center 2012 Overview
 
Software defined infrastructure
Software defined infrastructureSoftware defined infrastructure
Software defined infrastructure
 
IBM WebSphere Appliance Overview
IBM WebSphere Appliance OverviewIBM WebSphere Appliance Overview
IBM WebSphere Appliance Overview
 
Enterprise Integration Patterns Revisited (again) for the Era of Big Data, In...
Enterprise Integration Patterns Revisited (again) for the Era of Big Data, In...Enterprise Integration Patterns Revisited (again) for the Era of Big Data, In...
Enterprise Integration Patterns Revisited (again) for the Era of Big Data, In...
 
MT100 How we secure Big Data and protect our digital assets
MT100 How we secure Big Data and protect our digital assetsMT100 How we secure Big Data and protect our digital assets
MT100 How we secure Big Data and protect our digital assets
 
Architecting SaaS: Doing It Right the First Time
Architecting SaaS: Doing It Right the First TimeArchitecting SaaS: Doing It Right the First Time
Architecting SaaS: Doing It Right the First Time
 
Cloud Computing In Banking And Finance Industry
Cloud Computing In Banking And Finance IndustryCloud Computing In Banking And Finance Industry
Cloud Computing In Banking And Finance Industry
 
Cloud computing notes unit I as per RGPV syllabus
Cloud computing notes unit I as per RGPV syllabusCloud computing notes unit I as per RGPV syllabus
Cloud computing notes unit I as per RGPV syllabus
 

Viewers also liked

DEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagement
DEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagementDEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagement
DEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagement
Matterport
 
Building a community of practice around higher ed for sustainabiltiy in asia ...
Building a community of practice around higher ed for sustainabiltiy in asia ...Building a community of practice around higher ed for sustainabiltiy in asia ...
Building a community of practice around higher ed for sustainabiltiy in asia ...
Michelle Merrill
 
1257103560 X Mp Lantand Iso15926 Oct2009
1257103560 X Mp Lantand Iso15926 Oct20091257103560 X Mp Lantand Iso15926 Oct2009
1257103560 X Mp Lantand Iso15926 Oct2009
Giorgio Amici
 
Lean roots to grow, wings to fly!
Lean roots to grow, wings to fly!Lean roots to grow, wings to fly!
Lean roots to grow, wings to fly!
Nitin Ramrakhyani
 

Viewers also liked (20)

Stanford GSB Portland Alumni - Leveraging Social Media for Customer Engagement
Stanford GSB Portland Alumni - Leveraging Social Media for Customer EngagementStanford GSB Portland Alumni - Leveraging Social Media for Customer Engagement
Stanford GSB Portland Alumni - Leveraging Social Media for Customer Engagement
 
Social Media for Online Retailers
Social Media for Online RetailersSocial Media for Online Retailers
Social Media for Online Retailers
 
DEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagement
DEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagementDEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagement
DEMOgala 2010: OpenID and OAuth, Technologies to increase customer engagement
 
Dealing with Darwin
Dealing with DarwinDealing with Darwin
Dealing with Darwin
 
DJP_Asset+information
DJP_Asset+informationDJP_Asset+information
DJP_Asset+information
 
Building a community of practice around higher ed for sustainabiltiy in asia ...
Building a community of practice around higher ed for sustainabiltiy in asia ...Building a community of practice around higher ed for sustainabiltiy in asia ...
Building a community of practice around higher ed for sustainabiltiy in asia ...
 
1257103560 X Mp Lantand Iso15926 Oct2009
1257103560 X Mp Lantand Iso15926 Oct20091257103560 X Mp Lantand Iso15926 Oct2009
1257103560 X Mp Lantand Iso15926 Oct2009
 
Bechtel Customer Presentation
Bechtel Customer PresentationBechtel Customer Presentation
Bechtel Customer Presentation
 
Product Innovation is a Habit
Product Innovation is a HabitProduct Innovation is a Habit
Product Innovation is a Habit
 
Demystifying 11 japanese jargons from tps lean
Demystifying 11 japanese jargons from tps leanDemystifying 11 japanese jargons from tps lean
Demystifying 11 japanese jargons from tps lean
 
Beyond Apartheid and Democracy
Beyond Apartheid and DemocracyBeyond Apartheid and Democracy
Beyond Apartheid and Democracy
 
Lean roots to grow, wings to fly!
Lean roots to grow, wings to fly!Lean roots to grow, wings to fly!
Lean roots to grow, wings to fly!
 
Yet another building metaphor
Yet another building metaphorYet another building metaphor
Yet another building metaphor
 
Take Product Ownership To Next Level !!
Take Product Ownership To Next Level !!Take Product Ownership To Next Level !!
Take Product Ownership To Next Level !!
 
How to get open data into the hands of activists
How to get open data into the hands of activistsHow to get open data into the hands of activists
How to get open data into the hands of activists
 
Scale hurts
Scale hurtsScale hurts
Scale hurts
 
Agile 2012 inside out leading change from the middle
Agile 2012 inside out leading change from the middleAgile 2012 inside out leading change from the middle
Agile 2012 inside out leading change from the middle
 
Systems Thinking
Systems ThinkingSystems Thinking
Systems Thinking
 
Innovation is a habit
Innovation is a habitInnovation is a habit
Innovation is a habit
 
Speed2 innovation agile noida
Speed2 innovation agile noidaSpeed2 innovation agile noida
Speed2 innovation agile noida
 

Similar to Bechtel On OpenID and OAuth from Cloud Identity Summit

Azure Overview Csco
Azure Overview CscoAzure Overview Csco
Azure Overview Csco
rajramab
 
How Financial Institutions Are Leveraging Data Virtualization to Overcome the...
How Financial Institutions Are Leveraging Data Virtualization to Overcome the...How Financial Institutions Are Leveraging Data Virtualization to Overcome the...
How Financial Institutions Are Leveraging Data Virtualization to Overcome the...
Denodo
 
Basics of cloud computing & salesforce.com
Basics of cloud computing & salesforce.comBasics of cloud computing & salesforce.com
Basics of cloud computing & salesforce.com
Deepu S Nath
 
Is10 innovative technology 8
Is10 innovative technology 8Is10 innovative technology 8
Is10 innovative technology 8
hicksonj
 
Zarafa SummerCamp 2012 - Keynote Peter Ganten
Zarafa SummerCamp 2012 - Keynote Peter GantenZarafa SummerCamp 2012 - Keynote Peter Ganten
Zarafa SummerCamp 2012 - Keynote Peter Ganten
Zarafa
 
Digital Reinvention by NRB
Digital Reinvention by NRBDigital Reinvention by NRB
Digital Reinvention by NRB
William Poos
 
Avner Algom IGT Opening HP Seminar
Avner Algom IGT Opening HP SeminarAvner Algom IGT Opening HP Seminar
Avner Algom IGT Opening HP Seminar
Avner Algom
 
Data Virtualization: Introduction and Business Value (UK)
Data Virtualization: Introduction and Business Value (UK)Data Virtualization: Introduction and Business Value (UK)
Data Virtualization: Introduction and Business Value (UK)
Denodo
 
IBM INTEGRATION BUS (IIB V10)—DATA ROUTING AND TRANSFORMATION
IBM INTEGRATION BUS (IIB V10)—DATA ROUTING AND TRANSFORMATIONIBM INTEGRATION BUS (IIB V10)—DATA ROUTING AND TRANSFORMATION
IBM INTEGRATION BUS (IIB V10)—DATA ROUTING AND TRANSFORMATION
Kellton Tech Solutions Ltd
 

Similar to Bechtel On OpenID and OAuth from Cloud Identity Summit (20)

4.4.2013 Software, System, & IT Architecture - Good Design is Good Business:...
4.4.2013 Software, System, & IT Architecture - Good Design is Good Business:...4.4.2013 Software, System, & IT Architecture - Good Design is Good Business:...
4.4.2013 Software, System, & IT Architecture - Good Design is Good Business:...
 
Azure Overview Csco
Azure Overview CscoAzure Overview Csco
Azure Overview Csco
 
Star storage m cloud week
Star storage m cloud weekStar storage m cloud week
Star storage m cloud week
 
How Financial Institutions Are Leveraging Data Virtualization to Overcome the...
How Financial Institutions Are Leveraging Data Virtualization to Overcome the...How Financial Institutions Are Leveraging Data Virtualization to Overcome the...
How Financial Institutions Are Leveraging Data Virtualization to Overcome the...
 
Basics of cloud computing & salesforce.com
Basics of cloud computing & salesforce.comBasics of cloud computing & salesforce.com
Basics of cloud computing & salesforce.com
 
Introduction To Cloud Computing By Beant Singh Duggal
Introduction To Cloud Computing By Beant Singh DuggalIntroduction To Cloud Computing By Beant Singh Duggal
Introduction To Cloud Computing By Beant Singh Duggal
 
Soa12c launch 1 overview cr
Soa12c launch 1 overview crSoa12c launch 1 overview cr
Soa12c launch 1 overview cr
 
Cloud computing boi fair 9jan2012
Cloud computing boi fair 9jan2012Cloud computing boi fair 9jan2012
Cloud computing boi fair 9jan2012
 
Is10 innovative technology 8
Is10 innovative technology 8Is10 innovative technology 8
Is10 innovative technology 8
 
Zarafa SummerCamp 2012 - Keynote Peter Ganten
Zarafa SummerCamp 2012 - Keynote Peter GantenZarafa SummerCamp 2012 - Keynote Peter Ganten
Zarafa SummerCamp 2012 - Keynote Peter Ganten
 
Business and Online Services - Ben Kepes
Business and Online Services - Ben KepesBusiness and Online Services - Ben Kepes
Business and Online Services - Ben Kepes
 
Digital Reinvention by NRB
Digital Reinvention by NRBDigital Reinvention by NRB
Digital Reinvention by NRB
 
Avner Algom IGT Opening HP Seminar
Avner Algom IGT Opening HP SeminarAvner Algom IGT Opening HP Seminar
Avner Algom IGT Opening HP Seminar
 
Data Virtualization: Introduction and Business Value (UK)
Data Virtualization: Introduction and Business Value (UK)Data Virtualization: Introduction and Business Value (UK)
Data Virtualization: Introduction and Business Value (UK)
 
Cloud Computing
Cloud ComputingCloud Computing
Cloud Computing
 
Cloud Computing By Pankaj Sharma
Cloud Computing By Pankaj SharmaCloud Computing By Pankaj Sharma
Cloud Computing By Pankaj Sharma
 
Φάννυ Κοφινά, 7th Digital Banking Forum
Φάννυ Κοφινά, 7th Digital Banking ForumΦάννυ Κοφινά, 7th Digital Banking Forum
Φάννυ Κοφινά, 7th Digital Banking Forum
 
IBM INTEGRATION BUS (IIB V10)—DATA ROUTING AND TRANSFORMATION
IBM INTEGRATION BUS (IIB V10)—DATA ROUTING AND TRANSFORMATIONIBM INTEGRATION BUS (IIB V10)—DATA ROUTING AND TRANSFORMATION
IBM INTEGRATION BUS (IIB V10)—DATA ROUTING AND TRANSFORMATION
 
ON event - May 2010
ON event - May 2010ON event - May 2010
ON event - May 2010
 
Analyst field reports on top 15 MDM solutions - Aaron Zornes (NYC 2021)
Analyst field reports on top 15 MDM solutions - Aaron Zornes (NYC 2021)Analyst field reports on top 15 MDM solutions - Aaron Zornes (NYC 2021)
Analyst field reports on top 15 MDM solutions - Aaron Zornes (NYC 2021)
 

Recently uploaded

unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabiunwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
Abortion pills in Kuwait Cytotec pills in Kuwait
 
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
rajveerescorts2022
 
Call Girls In Majnu Ka Tilla 959961~3876 Shot 2000 Night 8000
Call Girls In Majnu Ka Tilla 959961~3876 Shot 2000 Night 8000Call Girls In Majnu Ka Tilla 959961~3876 Shot 2000 Night 8000
Call Girls In Majnu Ka Tilla 959961~3876 Shot 2000 Night 8000
dlhescort
 
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756
dollysharma2066
 
BAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL
BAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRLBAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL
BAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL
kapoorjyoti4444
 
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Sheetaleventcompany
 
Mysore Call Girls 8617370543 WhatsApp Number 24x7 Best Services
Mysore Call Girls 8617370543 WhatsApp Number 24x7 Best ServicesMysore Call Girls 8617370543 WhatsApp Number 24x7 Best Services
Mysore Call Girls 8617370543 WhatsApp Number 24x7 Best Services
Dipal Arora
 

Recently uploaded (20)

unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabiunwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
 
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
 
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
 
Call Girls In Majnu Ka Tilla 959961~3876 Shot 2000 Night 8000
Call Girls In Majnu Ka Tilla 959961~3876 Shot 2000 Night 8000Call Girls In Majnu Ka Tilla 959961~3876 Shot 2000 Night 8000
Call Girls In Majnu Ka Tilla 959961~3876 Shot 2000 Night 8000
 
Katrina Personal Brand Project and portfolio 1
Katrina Personal Brand Project and portfolio 1Katrina Personal Brand Project and portfolio 1
Katrina Personal Brand Project and portfolio 1
 
Falcon Invoice Discounting: The best investment platform in india for investors
Falcon Invoice Discounting: The best investment platform in india for investorsFalcon Invoice Discounting: The best investment platform in india for investors
Falcon Invoice Discounting: The best investment platform in india for investors
 
How to Get Started in Social Media for Art League City
How to Get Started in Social Media for Art League CityHow to Get Started in Social Media for Art League City
How to Get Started in Social Media for Art League City
 
Organizational Transformation Lead with Culture
Organizational Transformation Lead with CultureOrganizational Transformation Lead with Culture
Organizational Transformation Lead with Culture
 
Cheap Rate Call Girls In Noida Sector 62 Metro 959961乂3876
Cheap Rate Call Girls In Noida Sector 62 Metro 959961乂3876Cheap Rate Call Girls In Noida Sector 62 Metro 959961乂3876
Cheap Rate Call Girls In Noida Sector 62 Metro 959961乂3876
 
Value Proposition canvas- Customer needs and pains
Value Proposition canvas- Customer needs and painsValue Proposition canvas- Customer needs and pains
Value Proposition canvas- Customer needs and pains
 
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756
 
It will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 MayIt will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 May
 
SEO Case Study: How I Increased SEO Traffic & Ranking by 50-60% in 6 Months
SEO Case Study: How I Increased SEO Traffic & Ranking by 50-60% in 6 MonthsSEO Case Study: How I Increased SEO Traffic & Ranking by 50-60% in 6 Months
SEO Case Study: How I Increased SEO Traffic & Ranking by 50-60% in 6 Months
 
BAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL
BAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRLBAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL
BAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL
 
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
 
RSA Conference Exhibitor List 2024 - Exhibitors Data
RSA Conference Exhibitor List 2024 - Exhibitors DataRSA Conference Exhibitor List 2024 - Exhibitors Data
RSA Conference Exhibitor List 2024 - Exhibitors Data
 
Marel Q1 2024 Investor Presentation from May 8, 2024
Marel Q1 2024 Investor Presentation from May 8, 2024Marel Q1 2024 Investor Presentation from May 8, 2024
Marel Q1 2024 Investor Presentation from May 8, 2024
 
Business Model Canvas (BMC)- A new venture concept
Business Model Canvas (BMC)- A new venture conceptBusiness Model Canvas (BMC)- A new venture concept
Business Model Canvas (BMC)- A new venture concept
 
Falcon Invoice Discounting: Empowering Your Business Growth
Falcon Invoice Discounting: Empowering Your Business GrowthFalcon Invoice Discounting: Empowering Your Business Growth
Falcon Invoice Discounting: Empowering Your Business Growth
 
Mysore Call Girls 8617370543 WhatsApp Number 24x7 Best Services
Mysore Call Girls 8617370543 WhatsApp Number 24x7 Best ServicesMysore Call Girls 8617370543 WhatsApp Number 24x7 Best Services
Mysore Call Girls 8617370543 WhatsApp Number 24x7 Best Services
 

Bechtel On OpenID and OAuth from Cloud Identity Summit

  • 1. Identity in the Bechtel Cloud Why and how one of the most successful Engineering & Construction companies rebuilt their digital world….. Christian Reilly – Manager of Global Systems Engineering Brian D Ward – Manager of Integration Services
  • 2.
  • 3. Information Evolution & Business Change Introducing the Project Services Network
  • 4.
  • 5. Our business model is evolving to be more complex and distributed. GRAY Our two main challenges are related to:   Geography Our projects are executed in ZONE many and distributed locations   People Our resource model includes permanent and temporary employees, as well as vendors, customers, partners, and competitors
  • 7. Square pegs and round holes…. How much pain would you like?
  • 8.   Active Directory – separate internal and external forests   Integrated Authentication, Kerberos Constrained Delegation, Reverse Proxy   Complex trust models & ICC’s   Application mix from Bechtel, Client, Partner, Competitor   Wide variety of application architectures
  • 9. Core Apps: TimeCard, SAP, Intranet File Shares Mail Printers Desktop SaaS Bridge SaaS Internet Access AD Other apps (long tail)
  • 10.   High degree of operational complexity   Poor visibility into what people are accessing what resource   Inflexible model slows down deployment of services and applications to projects   Difficult to accommodate new user communities (which change daily)   Not readily adaptable to SaaS offerings
  • 11. Why is it so easy in The Cloud? And yet so hard in the Enterprise?
  • 12.   Realizations –  “Castle and Moat” approach to security is dead –  Our Windows-centric approach has significant technical and operational constraints –  Authentication/Authorization are the key problems to solve   Resolutions –  We need a completely new approach –  Make all applications/services SaaS –  Make Bechtel a SaaS Provider (wow) –  Replace, not augment, the current model
  • 13.   Identity “2.0” –  A new identity model – identities for life –  BYOI with OpenID (Janrain), Federation –  Anyone can have an account –  Self Registration based on relationships   Authorization –  Integrated into SAP –  Attribute store – single source of truth, replacement for groups –  Coarse grained authz performed by Ping  –  Fine grained done in apps for now, centrally later
  • 14.   Integration –  SAML / OpenToken integration for all deployed applications –  Citrix integration with credential translation for legacy application support –  Two-legged OAuth STS for web services   Services –  New application stacks (SaaS-style) –  File / Print / Internet Access authentication replacement –  New desktop model – BYOD
  • 15. Core Apps: TimeCard, SAP, Intranet File Shares Mail Printers Browser SaaS Identity Internet Access Array Other apps (long tail)
  • 16.   Simplicity –  Built for the “Internet” not for the “Enterprise” –  No “internal” vs. “external” architectural constraints –  Moving away from managing every user account   Agility –  Modular framework of security, UI and services –  Applications decoupled from infrastructure –  No vendor lock in via open standards/open source –  Able to accommodate SaaS and new identity pools natively (with added hope for Geneva)
  • 17.   Affordability –  Lower overall operational cost –  “B3” approach allows greater flexibility in cost management –  New vendors embrace new commercial models   Security –  Standards based security –  Single point of entry & logging –  Secured by policy not by topology (secure the data and not the device) –  Easily allow any user access to any data in a controlled life cycle
  • 18. Why can’t we just buy this…hint, hint ? Unraveling years of LAN / WAN based legacy is, well, damn hard.
  • 19.   Facts –  SaaS integration quickly becoming a commodity –  Federation and/or OpenID fills in the moat –  SaaS moves you out of the castle in the “Metro”   Key Questions –  What does the enterprise have left? –  How long is the tail for traditional enterprises?   Challenges –  Authorization is THE game to win –  Push provisioning is, at best, an interim solution –  A central model with standards-based interfaces is desperately needed
  • 20. Questions & Answers Or if you’re too shy, grab one of us later….