Dynamic Authorization Management

TYPE: Combined Session DATE: Wednesday, 05/14/2014 TIME: 12:00-13:00 LOCATION: AMMERSEE II

Session(s):

Dynamic Authorization Management: The Market and its Future

Graham Williamson
Director APAC / Senior Analyst
KuppingerCole

In this session, Graham Williamson of KuppingerCole will present on the current state of the Dynamic Authorization Management market based on the brand-new KuppingerCole Leadership Compass document on the subject. The session will discuss the direction of IAM solutions to externalise their authentication and authorisation decisions to a centrally managed decision point. The presentation will advise on the direction various vendors have taken and the degree to which standards such as XACML are supported. Graham will also advise on expectations for the future development of this market sector and the core requirements when selecting a product in this area. The presentation will position Dynamic Authorization Management in the context of a comprehensive IAM solution.

Speaker(s):

Graham Williamson Director APAC / Senior Analyst

KuppingerCole

Graham Williamson is a director of KuppingerCole (Asia Pacific) Pte Ltd headquartered in Singapore. Graham has practical experience in the identity management and access control industry having completed assignments in the academic, government and large corporate industry sectors across three...

RBAC, ABAC, or Both?

Allan Foster
VP of Community
ForgeRock

Finn Frisch
Business Development Manager
Axiomatics

Peter Gietz
CEO
DAASI International GmbH

Ian Glazer
Senior Director, Identity
Salesforce

Patrick Parker
Founder and CEO
EmpowerID

Geoff Webb
Senior Director of Solution Strategy
NetIQ

There is an ongoing discussion about terms such as RBAC (Role Based Access Control) and ABAC (Attribute Based Access Control). However, is it really about either-or? Or isn’t it that most role concepts take other attributes such as the Organizational Unit into account, while the role is a major attribute for most ABAC concepts? Shouldn’t the discussion be more about the question on how to make the shift from Static Access Management, based on pre-determined ACLs (Access Control Lists) etc., towards Dynamic Access Management and especially Dynamic Authorization Management, where applications ask at runtime for authorization decisions? But how to make that shift, how to convince application architects and developers? The panelists will talk about both RBAC and ABAC and how to make Dynamic Authorization Management a success, based on their experience.

Speaker(s):

Allan Foster VP of Community

ForgeRock

Allan Foster is a founding member of ForgeRock, bringing skills in the entire Identity management space. He has proven skills in Access Management, Federation, and Portal Architectures. Allan is based in Portland, Oregon in the USA, and has worked with the ForgeRock products, as well as prior...

Finn Frisch Business Development Manager

Axiomatics

Finn Frisch has more than 20 years of managerial and experience from information security management and related technologies. Finn is currently responsible for Business Development at Axiomatics AB, a company dedicated to XACML based technologies. Before joining Axiomatics, Finn held management...

Peter Gietz CEO

DAASI International GmbH

Peter Gietz, CEO of DAASI International, has an MA in humanities and is active in the field of IT since 1985. He is internationally recognized as an directory expert, with core expertise in X.500, LDAP, PKI, Metadata and eHumanities. Since 1994 he worked for DFN Directory projects, which he lead...

Ian Glazer Senior Director, Identity

Salesforce

Ian Glazer is the Senior Director for Identity, at Salesforce. His responsibilities include product strategy and identity standards work. Prior to that, he was a research vice president and agenda manager on the Identity and Privacy Strategies team at Gartner where he oversaw the entire...

Patrick Parker Founder and CEO

EmpowerID

Patrick Parker is the founder and CEO of EmpowerID, founded in June of 2004. Mr. Parker studied the intersection of role-based access control and workflow automation after extensive leadership in the development of innovative SharePoint web parts to securely delegate administration and...

Geoff Webb Senior Director of Solution Strategy

NetIQ

Geoff Webb has over 20 years of experience in the tech industry and is the Director of Solution Strategy at NetIQ. He is responsible for the NetIQ Information Security, Identity and Access and IT Operations Management solutions. Webb joins NetIQ from Credant Technologies, where he led...

OpenRBAC: Why using an LDAP based Backend for Role Based Access Control Information

Peter Gietz
CEO
DAASI International GmbH

OpenRBAC is an open source implementation of the ANSI standard RBAC. It uses OpenLDAP as backend for storing information on user, roles, resources, priviledges, etc. This has a number of advantages and only very few limitations. Access decisions can be retrieved by simple ldap searches so that a OpenRBAC based Policy Decison Point can answer ten thousands of such queries per seconds. Since two other RBAC software products use LDAP, currently work is being done on an IETF Internet Draft to standardize the LDAP schema and a specific LDAP extended operation for interoparable implementations. The talk will introduce
RBAC, OpenRBAC and report on the LDAP standardisation work.

Speaker(s):

Peter Gietz CEO

DAASI International GmbH

Moderator(s):

Graham Williamson Director APAC / Senior Analyst

KuppingerCole

Quick Links

Information

Agenda

Speakers

Exhibitors

Locations/Hotels

Stay Connected

Information

Congress

European Identity & Cloud Conference 2014

Language:: English
Registration fee:: €1980.00 €1980.00

Contact person:: Mr. Levent Kara
+49 211 23707710
[email protected]

May 13 - 16, 2014 Munich, Germany

Partners

The EIC is proud to present a huge number of partners
Learn more

How can we help you

Send an inquiry

Call Sales-Team +49 211 2370770

Mo – Fr 8:00 – 17:00

EIC 2016 May 13 - 16, 2014

Dynamic Authorization Management

Session(s):