Advances in Digital Identity - PowerPoint PPT Presentation

1 / 29
About This Presentation
Title:

Advances in Digital Identity

Description:

Advances in Digital Identity. Steve Plank. Identity Architect. Connectivity. Naming. IP ... plank. self asserted. verifiable. what claims i make. about myself ... – PowerPoint PPT presentation

Number of Views:31
Avg rating:3.0/5.0
Slides: 30
Provided by: stevep150
Category:

less

Transcript and Presenter's Notes

Title: Advances in Digital Identity


1
Advances in Digital Identity
  • Steve PlankIdentity Architect

2
Identity
no consistency
Naming
DNS
Connectivity
IP
3
taught users
type
usernames passwords
web page
4
what is identity?
5
attributes givenName sn preferredName planky date
OfBirth 170685! over18 true over21 true over6
5 false image
steve plank
6
self asserted
what claims i make about myself
verifiable
what claims another party makes about me
7
elvis presley
only 1 of them is real
probably
8
trust
make these
claims
9
SECURITY TOKEN
steve plank over 18 over 21 under 65 image
10
security token service
give it something
DIFFERENT SECURITY TOKEN
Username Password
Biometric Signature
Certificate
Secret
11
identity metasystem
12
participants
subject
relying party (website)
13
identity provider
identity provider
relying party
relying party
security tokenservice
WS-
security token service
WS-
identity selector
14
identity selector
15
human integration
consistent experience across contexts
16
(No Transcript)
17
cards
18
login with self issued card
user
relying party (website)
19
select self issued card
user
relying party (website)
20
create token from card
user
relying party (website)
21
sign, encrypt send token
user
relying party (website)
22
login with managed card
user
relying party (website)
23
select managed card
user
relying party (website)
24
request security token
user
authNX509, kerb, SC, U/pwd
relying party (website)
25
request security token response
user
sign, encrypt send
relying party (website)
26
ltbodygt   ltform id"form1" method"post"
action"login.aspx"gt   ltdivgt     ltbutton
type"submit"gt Click here to sign in with
your Information Card lt/buttongt     ltobject
type"application/x-informationcard"
name"xmlToken"gt       ltparam name"tokenType"
value"urnoasisnamestcSAML1.0assertion"
/gt       ltparam name"issuer
value"http//schemas.xmlsoap.org/ws/2005/05/iden
tity/issuer/self" /gt       ltparam
name"requiredClaims" value"        
http//schemas.xmlsoap.org/ws/2005/05/identity/cla
ims/givenname         http//schemas.xmlsoap.org/w
s/2005/05/identity/claims/surname        
http//schemas.xmlsoap.org/ws/2005/05/identity/cla
ims/emailaddress http//schemas.xmlsoap.or
g/ws/2005/05/identity/claims/
privatepersonalidentifier /gt
lt/objectgt   lt/divgt   lt/frmgt lt/bodygt
27
xmlToken (signed encrypted)
token decrypter
relying party (website)
xmlToken (plaintext)
claims extractor
ppid
456
user database
first name
last name
index into DB
email
456
phone
28
demo
29
roadmap
  • Built into Windows Vista
  • Available for Windows XP Windows Server 2003
  • Betas CTPs available fromhttp//msdn.microsoft
    .com/windowsvista/getthebeta
  • RTM 2nd half 2006
  • More Information Samples at http/cardspace.netf
    x3.com

30
review
  • identity layer
  • phishing, phraud
  • human integration
  • consistent experience across contexts
  • ip
  • rp
  • user
  • identity selector

Presentation style mercilessly stolen off
Lawrence Lessig, BBC News 24 and Dick Hardt
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2024 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "Advances in Digital Identity" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!