The state of uma 2014 11-03

•Download as PPTX, PDF•

0 likes•559 views

kantarainitiative

I

The State of
User-Managed Access,
November 2014
Eve Maler, chair
@UMAWG
3 November 2014
tinyurl.com/umawg
1

Agenda
• Quick summary of UMA in context
• Specification progress in context
• Implementation news
• Standardization progress and next steps
• Use case domains
• Other major news items
• Thoughts on UMA contributions to the
larger conversation
2

The new Venn of access control and consent
OpenID
Connect
UMA
OAuth 2.0

The marvelous spiral of controlled
personal data/access sharing
4

Interoperable, RESTful
authorization-as-a-service
5
Has standardized APIs
for privacy and
“selective sharing”
Outsources protection to
a centralizable
authorization server
“authz
provider”
(AzP)
“authz
relying
party”
(AzRP)
identity
provider
(IdP)
SSO relying
party
(RP)

Specification progress in
context
6
08 09 10 11 12 13 14 15
Protect
Serve
UMA Core, Resource Set Registration
OAuth 1.0, 1.0a WRAP
OpenID AB/Connect
Open
ID
OpenID Connect
OAuth 2.0
Dynamic Client Reg…
Claims,
Obs…

Implementation news
• Interop testing has begun on the “V0.9”
specs, mostly against Roland Hedberg’s suite
– Four participants, four full solutions (including an
authorization server) and two partial solutions
(resource server and client only)
– Several other implementations in the wings
• A few implementations in deployment
– One product for a personal data use case
– One product for several enterprise use cases
• Cross-matrix testing coming in 2015
7

Use-case domains
Health
Financial
Education
Personal
Government
Media
Behavioral
Web
Mobile
API
IoT

Other major news items
• EIC award
• HEART WG
• New open-source
community
10

UMA contributions to the larger
privacy and consent conversation
• UMA authorization grants (and consent
directives) as asynchronous consent
• The relationship between proactive,
directed sharing and privacy-as-runtime-consent
11

UMA contributions to the larger
access control conversation
• Opportunities for declarative policy to be
the “rocket fuel” of IoT authorization
• Opportunities for UMA along with
simplified XACML in the health space
• UMA extensions for full ABAC
12

Big thanks!
• To Kantara
• To the UMA WG
• To the implementers
• To the IRM community
13

Questions? Thank you!
Eve Maler, chair
@UMAWG
3 November 2014
tinyurl.com/umawg
14

More Related Content

What's hot

IAM for the Masses: Managing Consumer Identities

IAM for the Masses: Managing Consumer Identities

IAM for the Masses: Managing Consumer Identities

FUTURE-PROOFING CONSUMER IDENTITY AND ACCESS MANAGEMENT

FUTURE-PROOFING CONSUMER IDENTITY AND ACCESS MANAGEMENT

FUTURE-PROOFING CONSUMER IDENTITY AND ACCESS MANAGEMENT

EVE MALER, VP OF INNOVATION & EMERGING TECHNOLOGY, FORGEROCK Existing notice-and-consent paradigms of privacy have begun to fail dramatically – and people have begun to notice. Now that Edward Snowden has burst our privacy bubble and IoT devices are recording our every move, it’s time for companies to break out of the privacy-as-compliance rut. In this session, learn about the User-Managed-Access (UMA) standard, ForgeRock’s OpenUMA project and how ForgeRock is developing solutions to ensure privacy and trust in the digital world.

Identity Summit UK: STEPPING UP TO NEW DATA PROTECTION CHALLENGES

Identity Summit UK: STEPPING UP TO NEW DATA PROTECTION CHALLENGES

Identity Summit UK: STEPPING UP TO NEW DATA PROTECTION CHALLENGES

Lasse Andresen, CTO and Founder, ForgeRock A technology preview from our CTO office. Presentation looks at the Innovation coming out of ForgeRock Labs including the IoT SmartCity demonstration. Learn more about ForgeRock Access Management: https://www.forgerock.com/platform/access-management/ Learn more about ForgeRock Identity Management: https://www.forgerock.com/platform/identity-management/

2015 Identity Summit - CTO Innovation Center

2015 Identity Summit - CTO Innovation Center

2015 Identity Summit - CTO Innovation Center

Kantara a Global Context 2011

Kantara a Global Context 2011

Kantara a Global Context 2011

kantarainitiative

2016 04-26 webinar - consumer-focused identity management

2016 04-26 webinar - consumer-focused identity management

2016 04-26 webinar - consumer-focused identity management

This session will concentrate on the Connect.gov cloud service, a federated identity effort being led by the United States Postal Service (USPS) and the benefits of this program to the federal agencies and to Identity Providers. We will discuss the technology behind Connect.gov service, and how the NSTIC guidelines and requirements were met by it. In addition, we will cover how demands for pre-integration with popular identity and access management (IAM) platforms were met, addressing the U.S. Federal Identity, Credential and Access Management program (FICAM) requirements. In particular, the use case where ForgeRock IAM platform was integrated with Connect.Gov for managing user access to online government services will be described.

Identity Summit 2015: Connect.gov and Identity Management Systems

Identity Summit 2015: Connect.gov and Identity Management Systems

Identity Summit 2015: Connect.gov and Identity Management Systems

AY - Adaptive Access Control

AY - Adaptive Access Control

AY - Adaptive Access Control

Eve Maler, VP Innovation & Emerging Technology, ForgeRock: Existing notice-and-consent paradigms of privacy have begun to fail dramatically — and people have begun to notice. Now that Edward Snowden has burst our privacy bubble and IoT devices are recording our every move, it’s time for companies to break out of the privacy-as-compliance rut. The User-Managed Access (UMA) standard and ForgeRock’s OpenUMA project are stepping into the breach to give individuals a convenient central hub for proactively authorizing who and what can get access to their personal data and content.

Consent 2.0: Applying User-Managed Access to the Privacy Challenge

Consent 2.0: Applying User-Managed Access to the Privacy Challenge

Consent 2.0: Applying User-Managed Access to the Privacy Challenge

GDPR is coming in Hot. Top Burning Questions Answered to Help You Keep Your C...

GDPR is coming in Hot. Top Burning Questions Answered to Help You Keep Your C...

GDPR is coming in Hot. Top Burning Questions Answered to Help You Keep Your C...

Kantara - Digital Identity in 2018

Kantara - Digital Identity in 2018

Kantara - Digital Identity in 2018

Identity Summit 2015: 2Keys Canadian Digital Identity

Identity Summit 2015: 2Keys Canadian Digital Identity

Identity Summit 2015: 2Keys Canadian Digital Identity

Canberra Executive Breakfast - A Citizen-Centric Approach to Identity

Canberra Executive Breakfast - A Citizen-Centric Approach to Identity

Canberra Executive Breakfast - A Citizen-Centric Approach to Identity

In this webcast, KuppingerCole´s Principal Analyst Martin Kuppinger will introduce the concept of Identity Management for the Internet of Things. Following Martin's opening talk, ForgeRock´s Gerhard Zehethofer will discuss how ForgeRock is now extending these capabilities into the areas of managed and unmanaged devices, enhancing the customer experience as well as security and privacy at scale for people, services, and things.

Digital Identities in the Internet of Things - Securely Manage Devices at Scale

Digital Identities in the Internet of Things - Securely Manage Devices at Scale

Digital Identities in the Internet of Things - Securely Manage Devices at Scale

Loqr

Caixa Geral Depósitos

The pressure is on. You need to build a great customer login experience that is secure but doesn’t burden your customers with complicated password requirements. But wait, there’s more – you also need to personalize the login experience and provide metrics back to the business. Legacy authentication has you boxed in. What are you to do? Solutions like multi-factor authentication (MFA) are replacing traditional login methods but its limitations are often static and offer up inconsistent customer experiences, leading to abandonment. Organizations need an intelligent authentication approach that strikes a balance between usability, security, and customer choice. In this webcast you will learn what Intelligent Authentication is and how it enables you to: Easily configure, measure, and adjust login journeys using digital signals including device, contextual, behavioral, user choice, and risk-based factors Leverage user login analytics to increase user adoption rates, and improve the customer experience Automatically redirect suspicious users for further monitoring Quickly consume out-of-the-box authenticators, utilize existing authenticators, and integrate with cyber security solutions — all in one place

The Road to Intelligent Authentication Journeys

The Road to Intelligent Authentication Journeys

The Road to Intelligent Authentication Journeys

CIS 2015 Modernize IAM with UnboundID and Ping Identity - Terry Sigle & B. Al...

CIS 2015 Modernize IAM with UnboundID and Ping Identity - Terry Sigle & B. Al...

CIS 2015 Modernize IAM with UnboundID and Ping Identity - Terry Sigle & B. Al...

Authentication and MFA is no longer a one-mode-fits-all experience. Customer-centric companies need flexible intelligence models and simple, consistent login journeys across channels—web, call center, mobile—without being forced to bolt MFA on top of usernames and passwords. ForgeRock’s VP, Global Strategy and Innovation, Ben Goodman, and Trusona’s Chief Design Officer, Kevin Goldman, explain how ForgeRock combined with Trusona creates a broad range of multi-factor authentication modalities all with a consistent user experience, including primary MFA without usernames, passwords or typing whatsoever. Bonus: Trusona will reveal findings from the first-ever passwordless MFA behavioral research.

ForgeRock and Trusona - Simplifying the Multi-factor User Experience

ForgeRock and Trusona - Simplifying the Multi-factor User Experience

ForgeRock and Trusona - Simplifying the Multi-factor User Experience

In this webinar from November 2015, John Barco (VP of Product Management) and Tim Sedlack (Sr. Product Manager) take you on a journey: A long time ago in a technology sector far, far away, organizations were promised a unified platform for centralizing identity and integrating it into resources everywhere. But this promise was never realized. Instead, organizations were forced down a dark path to implement a piecemeal identity infrastructure that was painful, with massive integration costs. Finally, the wait is over. In this webinar, we will provide an overview of ForgeRock's unified platform and highlight all the common services provided across the end-to-end solution to make your life easier. Learn more about ForgeRock Access Management: https://www.forgerock.com/platform/access-management/ Learn more about ForgeRock Identity Management: https://www.forgerock.com/platform/identity-management/

Webinar: Identity Wars: The Unified Platform Awakens

Webinar: Identity Wars: The Unified Platform Awakens

Webinar: Identity Wars: The Unified Platform Awakens

Spellpoint - Securing Access for Microservices

Spellpoint - Securing Access for Microservices

Spellpoint - Securing Access for Microservices

What's hot (20)

IAM for the Masses: Managing Consumer Identities

IAM for the Masses: Managing Consumer Identities

IAM for the Masses: Managing Consumer Identities

FUTURE-PROOFING CONSUMER IDENTITY AND ACCESS MANAGEMENT

FUTURE-PROOFING CONSUMER IDENTITY AND ACCESS MANAGEMENT

FUTURE-PROOFING CONSUMER IDENTITY AND ACCESS MANAGEMENT

Identity Summit UK: STEPPING UP TO NEW DATA PROTECTION CHALLENGES

Identity Summit UK: STEPPING UP TO NEW DATA PROTECTION CHALLENGES

Identity Summit UK: STEPPING UP TO NEW DATA PROTECTION CHALLENGES

2015 Identity Summit - CTO Innovation Center

2015 Identity Summit - CTO Innovation Center

2015 Identity Summit - CTO Innovation Center

Kantara a Global Context 2011

Kantara a Global Context 2011

Kantara a Global Context 2011

2016 04-26 webinar - consumer-focused identity management

2016 04-26 webinar - consumer-focused identity management

2016 04-26 webinar - consumer-focused identity management

Identity Summit 2015: Connect.gov and Identity Management Systems

Identity Summit 2015: Connect.gov and Identity Management Systems

Identity Summit 2015: Connect.gov and Identity Management Systems

AY - Adaptive Access Control

AY - Adaptive Access Control

AY - Adaptive Access Control

Consent 2.0: Applying User-Managed Access to the Privacy Challenge

Consent 2.0: Applying User-Managed Access to the Privacy Challenge

Consent 2.0: Applying User-Managed Access to the Privacy Challenge

GDPR is coming in Hot. Top Burning Questions Answered to Help You Keep Your C...

GDPR is coming in Hot. Top Burning Questions Answered to Help You Keep Your C...

GDPR is coming in Hot. Top Burning Questions Answered to Help You Keep Your C...

Kantara - Digital Identity in 2018

Kantara - Digital Identity in 2018

Kantara - Digital Identity in 2018

Identity Summit 2015: 2Keys Canadian Digital Identity

Identity Summit 2015: 2Keys Canadian Digital Identity

Identity Summit 2015: 2Keys Canadian Digital Identity

Canberra Executive Breakfast - A Citizen-Centric Approach to Identity

Canberra Executive Breakfast - A Citizen-Centric Approach to Identity

Canberra Executive Breakfast - A Citizen-Centric Approach to Identity

Digital Identities in the Internet of Things - Securely Manage Devices at Scale

Digital Identities in the Internet of Things - Securely Manage Devices at Scale

Digital Identities in the Internet of Things - Securely Manage Devices at Scale

Loqr

The Road to Intelligent Authentication Journeys

The Road to Intelligent Authentication Journeys

The Road to Intelligent Authentication Journeys

CIS 2015 Modernize IAM with UnboundID and Ping Identity - Terry Sigle & B. Al...

CIS 2015 Modernize IAM with UnboundID and Ping Identity - Terry Sigle & B. Al...

CIS 2015 Modernize IAM with UnboundID and Ping Identity - Terry Sigle & B. Al...

ForgeRock and Trusona - Simplifying the Multi-factor User Experience

ForgeRock and Trusona - Simplifying the Multi-factor User Experience

ForgeRock and Trusona - Simplifying the Multi-factor User Experience

Webinar: Identity Wars: The Unified Platform Awakens

Webinar: Identity Wars: The Unified Platform Awakens

Webinar: Identity Wars: The Unified Platform Awakens

Spellpoint - Securing Access for Microservices

Spellpoint - Securing Access for Microservices

Spellpoint - Securing Access for Microservices

Viewers also liked

Конверсия. Александр Кузьмин

Конверсия. Александр Кузьмин

Конверсия. Александр Кузьмин

Тарасов Константин

РИФ 2016, Мобильная Реклама - «Новый черный»

РИФ 2016, Мобильная Реклама - «Новый черный»

РИФ 2016, Мобильная Реклама - «Новый черный»

Тарасов Константин

Space shuttle slv1

Space shuttle slv1

Space shuttle slv1

Kostas Tampakis

РИФ 2016, Аварии информационных систем как угроза для бизнеса

РИФ 2016, Аварии информационных систем как угроза для бизнеса

РИФ 2016, Аварии информационных систем как угроза для бизнеса

Тарасов Константин

РИФ 2016, Mobile Native Ads: путь к сердцу пользователя через дружелюбную рек...

РИФ 2016, Mobile Native Ads: путь к сердцу пользователя через дружелюбную рек...

РИФ 2016, Mobile Native Ads: путь к сердцу пользователя через дружелюбную рек...

Тарасов Константин

РИФ 2016, Исследовательская комиссия стандартизации Интернета вещей №20 Между...

РИФ 2016, Исследовательская комиссия стандартизации Интернета вещей №20 Между...

РИФ 2016, Исследовательская комиссия стандартизации Интернета вещей №20 Между...

Тарасов Константин

РИФ 2016, Как получить первую сотню клиентов из Западной Европы

РИФ 2016, Как получить первую сотню клиентов из Западной Европы

РИФ 2016, Как получить первую сотню клиентов из Западной Европы

Тарасов Константин

Juan cusme

РИФ 2016, Усидеть на двух стульях: внутренние и клиентские стартапы, как сохр...

РИФ 2016, Усидеть на двух стульях: внутренние и клиентские стартапы, как сохр...

РИФ 2016, Усидеть на двух стульях: внутренние и клиентские стартапы, как сохр...

Тарасов Константин

РИФ 2016, Десять лет на американском рынке аутсорсинга: UpWork и за его преде...

РИФ 2016, Десять лет на американском рынке аутсорсинга: UpWork и за его преде...

РИФ 2016, Десять лет на американском рынке аутсорсинга: UpWork и за его преде...

Тарасов Константин

Workshop Leader Parte 2

Workshop Leader Parte 2

Workshop Leader Parte 2

Francesco Perticari

Tatorii

РИФ 2016, Повышение эффективности и удобства работы с платежными сервисами. Э...

РИФ 2016, Повышение эффективности и удобства работы с платежными сервисами. Э...

РИФ 2016, Повышение эффективности и удобства работы с платежными сервисами. Э...

Тарасов Константин

PAGERANK

РИФ 2016, Инфографика как инструмент контент-маркетинга

РИФ 2016, Инфографика как инструмент контент-маркетинга

РИФ 2016, Инфографика как инструмент контент-маркетинга

Тарасов Константин

Closet & Storage Concepts Franchise Model

Closet & Storage Concepts Franchise Model

Closet & Storage Concepts Franchise Model

το μουσείο Madam tussaud στη βιέννη

το μουσείο Madam tussaud στη βιέννη

το μουσείο Madam tussaud στη βιέννη

Kostas Tampakis

РИФ 2016 Ежегодная статистика: Who is who на рынке платежей

РИФ 2016 Ежегодная статистика: Who is who на рынке платежей

РИФ 2016 Ежегодная статистика: Who is who на рынке платежей

Тарасов Константин

Pepe

Kostas Tampakis

РИФ 2016, Панавто ДЦ Mercedes-Benz: что делать со сквозной аналитикой или зач...

РИФ 2016, Панавто ДЦ Mercedes-Benz: что делать со сквозной аналитикой или зач...

РИФ 2016, Панавто ДЦ Mercedes-Benz: что делать со сквозной аналитикой или зач...

Тарасов Константин

Viewers also liked (20)

Конверсия. Александр Кузьмин

Конверсия. Александр Кузьмин

Конверсия. Александр Кузьмин

РИФ 2016, Мобильная Реклама - «Новый черный»

РИФ 2016, Мобильная Реклама - «Новый черный»

РИФ 2016, Мобильная Реклама - «Новый черный»

Space shuttle slv1

Space shuttle slv1

Space shuttle slv1

РИФ 2016, Аварии информационных систем как угроза для бизнеса

РИФ 2016, Аварии информационных систем как угроза для бизнеса

РИФ 2016, Аварии информационных систем как угроза для бизнеса

РИФ 2016, Mobile Native Ads: путь к сердцу пользователя через дружелюбную рек...

РИФ 2016, Mobile Native Ads: путь к сердцу пользователя через дружелюбную рек...

РИФ 2016, Mobile Native Ads: путь к сердцу пользователя через дружелюбную рек...

РИФ 2016, Исследовательская комиссия стандартизации Интернета вещей №20 Между...

РИФ 2016, Исследовательская комиссия стандартизации Интернета вещей №20 Между...

РИФ 2016, Исследовательская комиссия стандартизации Интернета вещей №20 Между...

РИФ 2016, Как получить первую сотню клиентов из Западной Европы

РИФ 2016, Как получить первую сотню клиентов из Западной Европы

РИФ 2016, Как получить первую сотню клиентов из Западной Европы

Juan cusme

РИФ 2016, Усидеть на двух стульях: внутренние и клиентские стартапы, как сохр...

РИФ 2016, Усидеть на двух стульях: внутренние и клиентские стартапы, как сохр...

РИФ 2016, Усидеть на двух стульях: внутренние и клиентские стартапы, как сохр...

РИФ 2016, Десять лет на американском рынке аутсорсинга: UpWork и за его преде...

РИФ 2016, Десять лет на американском рынке аутсорсинга: UpWork и за его преде...

РИФ 2016, Десять лет на американском рынке аутсорсинга: UpWork и за его преде...

Workshop Leader Parte 2

Workshop Leader Parte 2

Workshop Leader Parte 2

Tatorii

РИФ 2016, Повышение эффективности и удобства работы с платежными сервисами. Э...

РИФ 2016, Повышение эффективности и удобства работы с платежными сервисами. Э...

РИФ 2016, Повышение эффективности и удобства работы с платежными сервисами. Э...

PAGERANK

РИФ 2016, Инфографика как инструмент контент-маркетинга

РИФ 2016, Инфографика как инструмент контент-маркетинга

РИФ 2016, Инфографика как инструмент контент-маркетинга

Closet & Storage Concepts Franchise Model

Closet & Storage Concepts Franchise Model

Closet & Storage Concepts Franchise Model

το μουσείο Madam tussaud στη βιέννη

το μουσείο Madam tussaud στη βιέννη

το μουσείο Madam tussaud στη βιέννη

РИФ 2016 Ежегодная статистика: Who is who на рынке платежей

РИФ 2016 Ежегодная статистика: Who is who на рынке платежей

РИФ 2016 Ежегодная статистика: Who is who на рынке платежей

Pepe

РИФ 2016, Панавто ДЦ Mercedes-Benz: что делать со сквозной аналитикой или зач...

РИФ 2016, Панавто ДЦ Mercedes-Benz: что делать со сквозной аналитикой или зач...

РИФ 2016, Панавто ДЦ Mercedes-Benz: что делать со сквозной аналитикой или зач...

Similar to The state of uma 2014 11-03

Kantara Initiative's UMA Work Group published revision 9 of its OAuth-based protocol on March 6 to solve a broad range of "access management 2.0" challenges, and will shortly begin interoperability testing. On Thursday, March 20, at 8am Pacific, the UMA Work Group conducted a free public webinar sponsored by Kantara board member CA Technologies to discuss UMA's benefits for enterprises. This is a capture of the slides from the webinar. The video can be found at http://bit.ly/1iEs30O

Uma webinar 2014 03-20

Uma webinar 2014 03-20

Uma webinar 2014 03-20

kantarainitiative

UMA is a profile and application of OAuth that defines how resource owners can control resource access by clients operated by arbitrary requesting parties, where the resources reside on any number of resource servers, and where a centralized authorization server governs access based on resource owner policy. Recent investigations have shown promise for applying UMA to Internet of Things authorization use cases. This is a presentation by Eve Maler for the IETF ACE working group.

UMA for ACE

Hannes Tschofenig

Phase two of OpenAthens SP evolution including OpenID connect option

Phase two of OpenAthens SP evolution including OpenID connect option

Phase two of OpenAthens SP evolution including OpenID connect option

Hortonworks DataFlow & Apache Nifi @Oslo Hadoop Big Data

Hortonworks DataFlow & Apache Nifi @Oslo Hadoop Big Data

Hortonworks DataFlow & Apache Nifi @Oslo Hadoop Big Data

Talk delivered by Eve Maler (@xmlgrrl), ForgeRock VP of Innovation and Emerging Technology, at the IOTA Conference on 20 October 2014: The first couple of chapters of authorization and access control are still being written even when it comes to old-fashioned web services and newfangled APIs, never mind the Internet of Things. IoT security has needs that go way beyond the current scope of cloud and mobile challenges: super-loosely coupled, super-strong, and more. Everyone can imagine security-gone-wrong scenarios that have disastrous consequences for industrial IoT use cases. For consumer-facing IoT in healthcare, household appliances, and more, the consequences are different but no less severe, and it adds a killer requirement: privacy. How can we solve the problems of access control and privacy in a unified way, without compromise? And how can we solve the problem NOW? The OAuth-based User-Managed Access (UMA) protocol provides answers.

Consumerizing Industrial Access Control: Using UMA to Add Privacy and Usabili...

Consumerizing Industrial Access Control: Using UMA to Add Privacy and Usabili...

Consumerizing Industrial Access Control: Using UMA to Add Privacy and Usabili...

Build Safe & Secure Distributed Systems - RTI Boston Roadshow- 2014 09 30

Build Safe & Secure Distributed Systems - RTI Boston Roadshow- 2014 09 30

Build Safe & Secure Distributed Systems - RTI Boston Roadshow- 2014 09 30

Real-Time Innovations (RTI)

Learn what is new in Splunk App for Stream and how it can help you utilize wire/network data analytics to proactively resolve applications and IT operational issues and to efficiently analyze security threats in real-time, across your cloud and on-premises infrastructures. Additionally, you will learn about Splunk MINT, which allows you to gain operational intelligence on the availability, performance, and usage of your mobile apps. You’ll learn how to instrument your mobile apps for operational insight, and how you can build the dashboards, alerts, and searches you need to gain real-time insight on your mobile apps.

Splunk MINT for Mobile Intelligence and Splunk App for Stream for Enhanced Op...

Splunk MINT for Mobile Intelligence and Splunk App for Stream for Enhanced Op...

Splunk MINT for Mobile Intelligence and Splunk App for Stream for Enhanced Op...

October Southern CA Road Shows - Build Safe and Secure Distributed Systems

October Southern CA Road Shows - Build Safe and Secure Distributed Systems

October Southern CA Road Shows - Build Safe and Secure Distributed Systems

Real-Time Innovations (RTI)

OpenStack - Powered Private Clouds

OpenStack - Powered Private Clouds

OpenStack - Powered Private Clouds

Hostway|HOSTING

Beyond Messaging Enterprise Dataflow powered by Apache NiFi

Beyond Messaging Enterprise Dataflow powered by Apache NiFi

Beyond Messaging Enterprise Dataflow powered by Apache NiFi

Privacy on FHIR Demo at HIMSS!5

Privacy on FHIR Demo at HIMSS!5

Privacy on FHIR Demo at HIMSS!5

BigData Techcon - Beyond Messaging with Apache NiFi

BigData Techcon - Beyond Messaging with Apache NiFi

BigData Techcon - Beyond Messaging with Apache NiFi

API Gateway - OFM Canberra October 2014

API Gateway - OFM Canberra October 2014

API Gateway - OFM Canberra October 2014

The Platform Big Picture

The Platform Big Picture

The Platform Big Picture

Join us to learn what is new in Splunk App for Stream and how it can help you utilize wire/network data analytics to proactively resolve applications and IT operational issues and to efficiently analyze security threats in real-time, across your cloud and on-premises infrastructures. Additionally, you will learn about Splunk MINT, which allows you to gain operational intelligence on the availability, performance, and usage of your mobile apps. You’ll learn how to instrument your mobile apps for operational insight, and how you can build the dashboards, alerts, and searches you need to gain real-time insight on your mobile apps.

What’s New: Splunk App for Stream and Splunk MINT

What’s New: Splunk App for Stream and Splunk MINT

What’s New: Splunk App for Stream and Splunk MINT

Oracle Access Management - Customer presentation

Oracle Access Management - Customer presentation

Oracle Access Management - Customer presentation

Delivery Centric

TIAD : Automation day by Jerôme Labat

TIAD : Automation day by Jerôme Labat

TIAD : Automation day by Jerôme Labat

The Incredible Automation Day

Identity Enabling Web Services

Identity Enabling Web Services

Identity Enabling Web Services

Splunk MINT and Stream Breakout

Splunk MINT and Stream Breakout

Splunk MINT and Stream Breakout

API’s and Micro Services 0.5

API’s and Micro Services 0.5

API’s and Micro Services 0.5

Similar to The state of uma 2014 11-03 (20)

Uma webinar 2014 03-20

Uma webinar 2014 03-20

Uma webinar 2014 03-20

UMA for ACE

Phase two of OpenAthens SP evolution including OpenID connect option

Phase two of OpenAthens SP evolution including OpenID connect option

Phase two of OpenAthens SP evolution including OpenID connect option

Hortonworks DataFlow & Apache Nifi @Oslo Hadoop Big Data

Hortonworks DataFlow & Apache Nifi @Oslo Hadoop Big Data

Hortonworks DataFlow & Apache Nifi @Oslo Hadoop Big Data

Consumerizing Industrial Access Control: Using UMA to Add Privacy and Usabili...

Consumerizing Industrial Access Control: Using UMA to Add Privacy and Usabili...

Consumerizing Industrial Access Control: Using UMA to Add Privacy and Usabili...

Build Safe & Secure Distributed Systems - RTI Boston Roadshow- 2014 09 30

Build Safe & Secure Distributed Systems - RTI Boston Roadshow- 2014 09 30

Build Safe & Secure Distributed Systems - RTI Boston Roadshow- 2014 09 30

Splunk MINT for Mobile Intelligence and Splunk App for Stream for Enhanced Op...

Splunk MINT for Mobile Intelligence and Splunk App for Stream for Enhanced Op...

Splunk MINT for Mobile Intelligence and Splunk App for Stream for Enhanced Op...

October Southern CA Road Shows - Build Safe and Secure Distributed Systems

October Southern CA Road Shows - Build Safe and Secure Distributed Systems

October Southern CA Road Shows - Build Safe and Secure Distributed Systems

OpenStack - Powered Private Clouds

OpenStack - Powered Private Clouds

OpenStack - Powered Private Clouds

Beyond Messaging Enterprise Dataflow powered by Apache NiFi

Beyond Messaging Enterprise Dataflow powered by Apache NiFi

Beyond Messaging Enterprise Dataflow powered by Apache NiFi

Privacy on FHIR Demo at HIMSS!5

Privacy on FHIR Demo at HIMSS!5

Privacy on FHIR Demo at HIMSS!5

BigData Techcon - Beyond Messaging with Apache NiFi

BigData Techcon - Beyond Messaging with Apache NiFi

BigData Techcon - Beyond Messaging with Apache NiFi

API Gateway - OFM Canberra October 2014

API Gateway - OFM Canberra October 2014

API Gateway - OFM Canberra October 2014

The Platform Big Picture

The Platform Big Picture

The Platform Big Picture

What’s New: Splunk App for Stream and Splunk MINT

What’s New: Splunk App for Stream and Splunk MINT

What’s New: Splunk App for Stream and Splunk MINT

Oracle Access Management - Customer presentation

Oracle Access Management - Customer presentation

Oracle Access Management - Customer presentation

TIAD : Automation day by Jerôme Labat

TIAD : Automation day by Jerôme Labat

TIAD : Automation day by Jerôme Labat

Identity Enabling Web Services

Identity Enabling Web Services

Identity Enabling Web Services

Splunk MINT and Stream Breakout

Splunk MINT and Stream Breakout

Splunk MINT and Stream Breakout

API’s and Micro Services 0.5

API’s and Micro Services 0.5

API’s and Micro Services 0.5

More from kantarainitiative

Kantara initiative - AGM 2022

Kantara initiative - AGM 2022

Kantara initiative - AGM 2022

kantarainitiative

2021 Annual General Meeting

2021 Annual General Meeting

2021 Annual General Meeting

kantarainitiative

2020 Annual General Meeting Executive Summary

2020 Annual General Meeting Executive Summary

2020 Annual General Meeting Executive Summary

kantarainitiative

2020 Annual General Meeting

2020 Annual General Meeting

2020 Annual General Meeting

kantarainitiative

AARC Assurance Profiles for Kantara Initiative

AARC Assurance Profiles for Kantara Initiative

AARC Assurance Profiles for Kantara Initiative

kantarainitiative

Kantara uma webinar july 2020

Kantara uma webinar july 2020

Kantara uma webinar july 2020

kantarainitiative

Kantara webinar 800 63-3 approval 2020-07-15

Kantara webinar 800 63-3 approval 2020-07-15

Kantara webinar 800 63-3 approval 2020-07-15

kantarainitiative

Kantara webinar 800 63-3 approval 2020-07-15

Kantara webinar 800 63-3 approval 2020-07-15

Kantara webinar 800 63-3 approval 2020-07-15

kantarainitiative

Kantara orientation april 2020

Kantara orientation april 2020

Kantara orientation april 2020

kantarainitiative

Kantara Initiative orientation 2019 (incl. 10th Anniversary video)

Kantara Initiative orientation 2019 (incl. 10th Anniversary video)

Kantara Initiative orientation 2019 (incl. 10th Anniversary video)

kantarainitiative

Kantara Initiative orientation 2019 (incl. 10th Anniversary video)

Kantara Initiative orientation 2019 (incl. 10th Anniversary video)

Kantara Initiative orientation 2019 (incl. 10th Anniversary video)

kantarainitiative

Kantara Initiative orientation 2019 (incl. 10th Anniversary video)

Kantara Initiative orientation 2019 (incl. 10th Anniversary video)

Kantara Initiative orientation 2019 (incl. 10th Anniversary video)

kantarainitiative

Kantara Initiative Inc is the global ‘commons’ non-profit consortium passionate about giving control of personal data back to people, through innovation, standardization and good practice. Attracting established and emerging organizations, governments and individuals to its open collaborative ethos, Kantara operates Trust Frameworks to assess and assure digital identity and privacy solution service providers and is the home of 2 open specifications selected in the top 5 trends for 2018 - UMA, the OAuth extension enabling respecting user-controlled delegation, and the Consent Receipt. Kantara maintains leadership positions in OECD ITAC and ISO SC27 in topics around digital Trust, Privacy and Identity.

Kantara orientation 2018

Kantara orientation 2018

Kantara orientation 2018

kantarainitiative

Kantara Overview 2017

Kantara Overview 2017

Kantara Overview 2017

kantarainitiative

Kantara Workshop at CIS

Kantara Workshop at CIS

Kantara Workshop at CIS

kantarainitiative

Cloud Identity Summit

Cloud Identity Summit

Cloud Identity Summit

kantarainitiative

Mobile Device and Attribute Validation (MDAV)

Mobile Device and Attribute Validation (MDAV)

Mobile Device and Attribute Validation (MDAV)

kantarainitiative

Kantara Initiative, Inc in 2016

Kantara Initiative, Inc in 2016

Kantara Initiative, Inc in 2016

kantarainitiative

Laws of relationships v7

Laws of relationships v7

Laws of relationships v7

kantarainitiative

Protecting Personal Data in a IoT Network with UMA

Protecting Personal Data in a IoT Network with UMA

Protecting Personal Data in a IoT Network with UMA

kantarainitiative

More from kantarainitiative (20)

Kantara initiative - AGM 2022

Kantara initiative - AGM 2022

Kantara initiative - AGM 2022

2021 Annual General Meeting

2021 Annual General Meeting

2021 Annual General Meeting

2020 Annual General Meeting Executive Summary

2020 Annual General Meeting Executive Summary

2020 Annual General Meeting Executive Summary

2020 Annual General Meeting

2020 Annual General Meeting

2020 Annual General Meeting

AARC Assurance Profiles for Kantara Initiative

AARC Assurance Profiles for Kantara Initiative

AARC Assurance Profiles for Kantara Initiative

Kantara uma webinar july 2020

Kantara uma webinar july 2020

Kantara uma webinar july 2020

Kantara webinar 800 63-3 approval 2020-07-15

Kantara webinar 800 63-3 approval 2020-07-15

Kantara webinar 800 63-3 approval 2020-07-15

Kantara webinar 800 63-3 approval 2020-07-15

Kantara webinar 800 63-3 approval 2020-07-15

Kantara webinar 800 63-3 approval 2020-07-15

Kantara orientation april 2020

Kantara orientation april 2020

Kantara orientation april 2020

Kantara Initiative orientation 2019 (incl. 10th Anniversary video)

Kantara Initiative orientation 2019 (incl. 10th Anniversary video)

Kantara Initiative orientation 2019 (incl. 10th Anniversary video)

Kantara Initiative orientation 2019 (incl. 10th Anniversary video)

Kantara Initiative orientation 2019 (incl. 10th Anniversary video)

Kantara Initiative orientation 2019 (incl. 10th Anniversary video)

Kantara Initiative orientation 2019 (incl. 10th Anniversary video)

Kantara Initiative orientation 2019 (incl. 10th Anniversary video)

Kantara Initiative orientation 2019 (incl. 10th Anniversary video)

Kantara orientation 2018

Kantara orientation 2018

Kantara orientation 2018

Kantara Overview 2017

Kantara Overview 2017

Kantara Overview 2017

Kantara Workshop at CIS

Kantara Workshop at CIS

Kantara Workshop at CIS

Cloud Identity Summit

Cloud Identity Summit

Cloud Identity Summit

Mobile Device and Attribute Validation (MDAV)

Mobile Device and Attribute Validation (MDAV)

Mobile Device and Attribute Validation (MDAV)

Kantara Initiative, Inc in 2016

Kantara Initiative, Inc in 2016

Kantara Initiative, Inc in 2016

Laws of relationships v7

Laws of relationships v7

Laws of relationships v7

Protecting Personal Data in a IoT Network with UMA

Protecting Personal Data in a IoT Network with UMA

Protecting Personal Data in a IoT Network with UMA

Recently uploaded

Data Cloud, More than a CDP by Matt Robison

Data Cloud, More than a CDP by Matt Robison

Data Cloud, More than a CDP by Matt Robison

Anna Loughnan Colquhoun

Artificial Intelligence Chap.5 : Uncertainty

Artificial Intelligence Chap.5 : Uncertainty

Artificial Intelligence Chap.5 : Uncertainty

Khushali Kathiriya

Building Digital Trust in a Digital Economy Veronica Tan, Director - Cyber Security Agency of Singapore Apidays Singapore 2024: Connecting Customers, Business and Technology (April 17 & 18, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

Tata AIG General Insurance Company - Insurer Innovation Award 2024

Tata AIG General Insurance Company - Insurer Innovation Award 2024

Tata AIG General Insurance Company - Insurer Innovation Award 2024

The Digital Insurer

Created by Mozilla Research in 2012 and now part of Linux Foundation Europe, the Servo project is an experimental rendering engine written in Rust. It combines memory safety and concurrency to create an independent, modular, and embeddable rendering engine that adheres to web standards. Stewardship of Servo moved from Mozilla Research to the Linux Foundation in 2020, where its mission remains unchanged. After some slow years, in 2023 there has been renewed activity on the project, with a roadmap now focused on improving the engine’s CSS 2 conformance, exploring Android support, and making Servo a practical embeddable rendering engine. In this presentation, Rakhi Sharma reviews the status of the project, our recent developments in 2023, our collaboration with Tauri to make Servo an easy-to-use embeddable rendering engine, and our plans for the future to make Servo an alternative web rendering engine for the embedded devices industry. (c) Embedded Open Source Summit 2024 April 16-18, 2024 Seattle, Washington (US) https://events.linuxfoundation.org/embedded-open-source-summit/ https://ossna2024.sched.com/event/1aBNF/a-year-of-servo-reboot-where-are-we-now-rakhi-sharma-igalia

A Year of the Servo Reboot: Where Are We Now?

A Year of the Servo Reboot: Where Are We Now?

A Year of the Servo Reboot: Where Are We Now?

Imagine a world where information flows as swiftly as thought itself, making decision-making as fluid as the data driving it. Every moment is critical, and the right tools can significantly boost your organization’s performance. The power of real-time data automation through FME can turn this vision into reality. Aimed at professionals eager to leverage real-time data for enhanced decision-making and efficiency, this webinar will cover the essentials of real-time data and its significance. We’ll explore: FME’s role in real-time event processing, from data intake and analysis to transformation and reporting An overview of leveraging streams vs. automations FME’s impact across various industries highlighted by real-life case studies Live demonstrations on setting up FME workflows for real-time data Practical advice on getting started, best practices, and tips for effective implementation Join us to enhance your skills in real-time data automation with FME, and take your operational capabilities to the next level.

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

Discord is a free app offering voice, video, and text chat functionalities, primarily catering to the gaming community. It serves as a hub for users to create and join servers tailored to their interests. Discord’s ecosystem comprises servers, each functioning as a distinct online community with its own channels dedicated to specific topics or activities. Users can engage in text-based discussions, voice calls, or video chats within these channels. Understanding Discord Servers Discord servers are virtual spaces where users congregate to interact, share content, and build communities. Servers may revolve around gaming, hobbies, interests, or fandoms, providing a platform for like-minded individuals to connect. Communication Features Discord offers a range of communication tools, including text channels for messaging, voice channels for real-time audio conversations, and video channels for face-to-face interactions. These features facilitate seamless communication and collaboration. What Does NSFW Mean? The acronym NSFW stands for “Not Safe For Work,” indicating content that may be inappropriate for professional or public settings. NSFW Content NSFW content encompasses material that is sexually explicit, violent, or otherwise graphic in nature. It often includes nudity, profanity, or depictions of sensitive topics.

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf

Partners Life - Insurer Innovation Award 2024

Partners Life - Insurer Innovation Award 2024

Partners Life - Insurer Innovation Award 2024

The Digital Insurer

Webinar Recording: https://www.panagenda.com/webinars/why-teams-call-analytics-is-critical-to-your-entire-business Nothing is as frustrating and noticeable as being in an important call and being unable to see or hear the other person. Not surprising then, that issues with Teams calls are among the most common problems users call their helpdesk for. Having in depth insight into everything relevant going on at the user’s device, local network, ISP and Microsoft itself during the call is crucial for good Microsoft Teams Call quality support. To ensure a quick and adequate solution and to ensure your users get the most out of their Microsoft 365. But did you know that ‘bad calls’ are also an excellent indicator of other problems arising? Precisely because it is so noticeable!? Like the canary in the mine, bad calls can be early indicators of problems. Problems that might otherwise not have been noticed for a while but can have a big impact on productivity and satisfaction. Join this session by Christoph Adler to learn how true Microsoft Teams call quality analytics helped other organizations troubleshoot bad calls and identify and fix problems that impacted Teams calls or the use of Microsoft365 in general. See what it can do to keep your users happy and productive! In this session we will cover - Why CQD data alone is not enough to troubleshoot call problems - The importance of attributing call problems to the right call participant - What call quality analytics can do to help you quickly find, fix-, and prevent problems - Why having retrospective detailed insights matters - Real life examples of how others have used Microsoft Teams call quality monitoring to problem shoot problems with their ISP, network, device health and more.

Why Teams call analytics are critical to your entire business

Why Teams call analytics are critical to your entire business

Why Teams call analytics are critical to your entire business

Abhishek Deb(1), Mr Abdul Kalam(2) M. Des (UX) , School of Design, DIT University , Dehradun. This paper explores the future potential of AI-enabled smartphone processors, aiming to investigate the advancements, capabilities, and implications of integrating artificial intelligence (AI) into smartphone technology. The research study goals consist of evaluating the development of AI in mobile phone processors, analyzing the existing state as well as abilities of AI-enabled cpus determining future patterns as well as chances together with reviewing obstacles as well as factors to consider for more growth.

Exploring the Future Potential of AI-Enabled Smartphone Processors

Exploring the Future Potential of AI-Enabled Smartphone Processors

Exploring the Future Potential of AI-Enabled Smartphone Processors

Manulife - Insurer Innovation Award 2024

Manulife - Insurer Innovation Award 2024

Manulife - Insurer Innovation Award 2024

The Digital Insurer

MySQL Webinar, presented on the 25th of April, 2024. Summary: MySQL solutions enable the deployment of diverse Database Architectures tailored to specific needs, including High Availability, Disaster Recovery, and Read Scale-Out. With MySQL Shell's AdminAPI, administrators can seamlessly set up, manage, and monitor these solutions, ensuring efficiency and ease of use in their administration. MySQL Router, on the other hand, provides transparent routing from the application traffic to the backend servers in the architectures, requiring minimal configuration. Completely built in-house and supported by Oracle, these solutions have been adopted by enterprises of all sizes for their business-critical applications. In this presentation, we'll delve into various database architecture solutions to help you choose the right one based on your business requirements. Focusing on technical details and the latest features to maximize the potential of these solutions.

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Axa Assurance Maroc - Insurer Innovation Award 2024

Axa Assurance Maroc - Insurer Innovation Award 2024

Axa Assurance Maroc - Insurer Innovation Award 2024

The Digital Insurer

A Principled Technologies deployment guide Conclusion Deploying VMware Cloud Foundation 5.1 on next gen Dell PowerEdge servers brings together critical virtualization capabilities and high-performing hardware infrastructure. Relying on our hands-on experience, this deployment guide offers a comprehensive roadmap that can guide your organization through the seamless integration of advanced VMware cloud solutions with the performance and reliability of Dell PowerEdge servers. In addition to the deployment efficiency, the Cloud Foundation 5.1 and PowerEdge solution delivered strong performance while running a MySQL database workload. By leveraging VMware Cloud Foundation 5.1 and PowerEdge servers, you could help your organization embrace cloud computing with confidence, potentially unlocking a new level of agility, scalability, and efficiency in your data center operations.

Deploy with confidence: VMware Cloud Foundation 5.1 on next gen Dell PowerEdg...

Deploy with confidence: VMware Cloud Foundation 5.1 on next gen Dell PowerEdg...

Deploy with confidence: VMware Cloud Foundation 5.1 on next gen Dell PowerEdg...

Principled Technologies

Effective data discovery is crucial for maintaining compliance and mitigating risks in today's rapidly evolving privacy landscape. However, traditional manual approaches often struggle to keep pace with the growing volume and complexity of data. Join us for an insightful webinar where industry leaders from TrustArc and Privya will share their expertise on leveraging AI-powered solutions to revolutionize data discovery. You'll learn how to: - Effortlessly maintain a comprehensive, up-to-date data inventory - Harness code scanning insights to gain complete visibility into data flows leveraging the advantages of code scanning over DB scanning - Simplify compliance by leveraging Privya's integration with TrustArc - Implement proven strategies to mitigate third-party risks Our panel of experts will discuss real-world case studies and share practical strategies for overcoming common data discovery challenges. They'll also explore the latest trends and innovations in AI-driven data management, and how these technologies can help organizations stay ahead of the curve in an ever-changing privacy landscape.

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

Three things you will take away from the session: • How to run an effective tenant-to-tenant migration • Best practices for before, during, and after migration • Tips for using migration as a springboard to prepare for Copilot in Microsoft 365 Main ideas: Migration Overview: The presentation covers the current reality of cross-tenant migrations, the triggers, phases, best practices, and benefits of a successful tenant migration Considerations: When considering a migration, it is important to consider the migration scope, performance, customization, flexibility, user-friendly interface, automation, monitoring, support, training, scalability, data integrity, data security, cost, and licensing structure Next Wave: The next wave of change includes the launch of Copilot, which requires businesses to be prepared for upcoming changes related to Copilot and the cloud, and to consolidate data and tighten governance ShareGate: ShareGate can help with pre-migration analysis, configurable migration tool, and automated, end-user driven collaborative governance

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

🐬 The future of MySQL is Postgres 🐘

🐬 The future of MySQL is Postgres 🐘

🐬 The future of MySQL is Postgres 🐘

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

The Digital Insurer

How to Troubleshoot Apps for the Modern Connected Worker

How to Troubleshoot Apps for the Modern Connected Worker

How to Troubleshoot Apps for the Modern Connected Worker

The 7 Things I Know About Cyber Security After 25 Years | April 2024

The 7 Things I Know About Cyber Security After 25 Years | April 2024

The 7 Things I Know About Cyber Security After 25 Years | April 2024

Recently uploaded (20)

Data Cloud, More than a CDP by Matt Robison

Data Cloud, More than a CDP by Matt Robison

Data Cloud, More than a CDP by Matt Robison

Artificial Intelligence Chap.5 : Uncertainty

Artificial Intelligence Chap.5 : Uncertainty

Artificial Intelligence Chap.5 : Uncertainty

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

Tata AIG General Insurance Company - Insurer Innovation Award 2024

Tata AIG General Insurance Company - Insurer Innovation Award 2024

Tata AIG General Insurance Company - Insurer Innovation Award 2024

A Year of the Servo Reboot: Where Are We Now?

A Year of the Servo Reboot: Where Are We Now?

A Year of the Servo Reboot: Where Are We Now?

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf

Partners Life - Insurer Innovation Award 2024

Partners Life - Insurer Innovation Award 2024

Partners Life - Insurer Innovation Award 2024

Why Teams call analytics are critical to your entire business

Why Teams call analytics are critical to your entire business

Why Teams call analytics are critical to your entire business

Exploring the Future Potential of AI-Enabled Smartphone Processors

Exploring the Future Potential of AI-Enabled Smartphone Processors

Exploring the Future Potential of AI-Enabled Smartphone Processors

Manulife - Insurer Innovation Award 2024

Manulife - Insurer Innovation Award 2024

Manulife - Insurer Innovation Award 2024

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Axa Assurance Maroc - Insurer Innovation Award 2024

Axa Assurance Maroc - Insurer Innovation Award 2024

Axa Assurance Maroc - Insurer Innovation Award 2024

Deploy with confidence: VMware Cloud Foundation 5.1 on next gen Dell PowerEdg...

Deploy with confidence: VMware Cloud Foundation 5.1 on next gen Dell PowerEdg...

Deploy with confidence: VMware Cloud Foundation 5.1 on next gen Dell PowerEdg...

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

🐬 The future of MySQL is Postgres 🐘

🐬 The future of MySQL is Postgres 🐘

🐬 The future of MySQL is Postgres 🐘

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

How to Troubleshoot Apps for the Modern Connected Worker

How to Troubleshoot Apps for the Modern Connected Worker

How to Troubleshoot Apps for the Modern Connected Worker

The 7 Things I Know About Cyber Security After 25 Years | April 2024

The 7 Things I Know About Cyber Security After 25 Years | April 2024

The 7 Things I Know About Cyber Security After 25 Years | April 2024

The state of uma 2014 11-03

1. The State of User-Managed Access, November 2014 Eve Maler, chair @UMAWG 3 November 2014 tinyurl.com/umawg 1

2. Agenda • Quick summary of UMA in context • Specification progress in context • Implementation news • Standardization progress and next steps • Use case domains • Other major news items • Thoughts on UMA contributions to the larger conversation 2

3. The new Venn of access control and consent OpenID Connect UMA OAuth 2.0

4. The marvelous spiral of controlled personal data/access sharing 4

5. Interoperable, RESTful authorization-as-a-service 5 Has standardized APIs for privacy and “selective sharing” Outsources protection to a centralizable authorization server “authz provider” (AzP) “authz relying party” (AzRP) identity provider (IdP) SSO relying party (RP)

6. Specification progress in context 6 08 09 10 11 12 13 14 15 Protect Serve UMA Core, Resource Set Registration OAuth 1.0, 1.0a WRAP OpenID AB/Connect Open ID OpenID Connect OAuth 2.0 Dynamic Client Reg… Claims, Obs…

7. Implementation news • Interop testing has begun on the “V0.9” specs, mostly against Roland Hedberg’s suite – Four participants, four full solutions (including an authorization server) and two partial solutions (resource server and client only) – Several other implementations in the wings • A few implementations in deployment – One product for a personal data use case – One product for several enterprise use cases • Cross-matrix testing coming in 2015 7

8. Standardization progress and next steps 8 UMA “Core” (Profile of OAuth) Resource Set Registration Claim Profiles Framework Binding Obligations Q1-2 Q1-2 Q3-4 Q3-4?

9. Use-case domains Health Financial Education Personal Government Media Behavioral Web Mobile API IoT

10. Other major news items • EIC award • HEART WG • New open-source community 10

11. UMA contributions to the larger privacy and consent conversation • UMA authorization grants (and consent directives) as asynchronous consent • The relationship between proactive, directed sharing and privacy-as-runtime-consent 11

12. UMA contributions to the larger access control conversation • Opportunities for declarative policy to be the “rocket fuel” of IoT authorization • Opportunities for UMA along with simplified XACML in the health space • UMA extensions for full ABAC 12

13. Big thanks! • To Kantara • To the UMA WG • To the implementers • To the IRM community 13

14. Questions? Thank you! Eve Maler, chair @UMAWG 3 November 2014 tinyurl.com/umawg 14

Editor's Notes

UMA has a friendly and harmonized relationship with OAuth and OpenID Connect
Talking to this slide: EVE