Agenda
| Thursday, 07.05.2009 | ||
| 07:30-18:00 |
Check-in |
|
| 08:30-09:00 |
Business Involvement is Key for Establishing an Effective Identity and Access Governance in a Global Organisation Berthold Kerl, Deutsche Bank AG
|
|
| 09:00-09:30 |
Implementing RBAC and IAM in a Multi-Country Setting at Dexia Jules Jerome, Dexia Banque Internationale à Luxembourg
|
|
| 09:30-10:00 |
Risk Management in Turbulent Times Prof. Dr. Rob Fijneman, KPMG
|
|
| 10:00-10:30 |
Coffee Break |
|
|
Security & Identity Audits Moderator: Sebastian Rohr, KuppingerCole
|
|
| 10:30-11:30 |
5 Steps to Move from Audit Logs Towards Integrated, Corporate-Level Security and Identity Audits Sebastian Rohr, KuppingerCole
From Proprietary Point Solutions to a Centralized Enterprise Security AdministrationVesna Martinovic, Komercijalna Banka
|
|
| 11:30-12:30 |
The Public Key Infrastructure (PKI) of the Bavarian Public Administration Bernhard Wager, Bayerisches Landesamt für Statistik und Datenverarbeitung
The Bavarian Public Administration has experience with public key services since 1996. In 2000 the Bavarian State Office for Statistics and Data Processing built an PKI based on X.509 certificates. In 2001 the PKI of the Bavarian Public Administration became member to the PKI of the German Public Administration. First use of certificates was for secure e-mail. Over the years certificates have been used for other cases e. g. integrating PKI in applications and infrastructure. For this reason a new PKI solution was deployed in december 2006. In the lecture the following topics will be presented:
Christine Deger, GaVI
GaVI is a German company, which serves as a data center for more than 70 percent of all public insurances in Germany. About 30.000 insurance employees use server applications provided by GaVI. As GaVI faced a growing customer demand for encryption/authentication solutions like e-mail encryption, secure VPN, and WLAN protection (802.1x), we decided in 2006 to set up a Public Key Infrastructure (PKI). The purpose of this PKI is to have a central and integrated management solution for all encryption/authentication tools, thus avoiding isolated applications. The plan was to realize the PKI not as a separate infrastructure, but to integrate it into GaVI's IDM environment. This session explains the details of this large-scale security project. It will be shown that the GaVI PKI has a generic, customer-oriented architecture, which allows for an easy introduction of additional applications and CAs. |
|
| 12:30-14:00 |
Lunch Break |
|
|
Strong and Versatile Authentication Moderator: Dave Kearns, KuppingerCole
|
|
| 14:00-15:00 |
Beyond Passwords: Tokens, Biometrics and Other Authentication Factors Philip Hoyer, ActivIdentity
Philip Lieberman, Lieberman Software
Jackson Shaw, Quest Software
Marc Vanmaele, SecurIT
Giovanni Verhaeghe, VASCO Data Security
|
|
| 15:00-16:00 |
Seeing the Big Picture: Context-Based Authentication Stefan Dodel, Oracle
Jochen Koehler, Cyber-Ark Software
Michel Prompt, Radiant Logic
Darran Rolls, SailPoint
Deepak Taneja, Aveksa
|
|
| 16:00-16:30 |
Coffee Break |
|
| 16:30-17:30 |
Take a Card: Information Cards as Enterprise Authenticators Vittorio Bertocci, Microsoft
Kim Cameron, Microsoft
Johannes Feulner, fun Communications
Mike Llerandi, Ping Identity
Eve Maler, PayPal Inc.
Dale Olds, Novell
Paul Trevithick, Azigo
|
|
| 17:30-18:00 |
The Impact of GRC on Business & IT Service Management Prof. Dr. Sachar Paulus, KuppingerCole
Governance, Risk & Compliance puts a heavy burden on Business leaders, but much more questions the way that they did the IT department (or external service providers) let implement the business processes. But isn't IT Service Management, just like defined by ITIL, what business should be satisfied with? In this keynote, we will analyse how these two worlds match together and what we have to learn from it. |
|
| 18:00-18:15 |
Closing Keynote Tim Cole, KuppingerCole
|
|