enabling the multi-device universe
DESCRIPTION
Moving beyond conventional single sign-on to seamless cross-device access with APIs People are carrying more devices every day – with the average being 2.9 per person. Meanwhile, multitasking has gone into overdrive, as users quickly move from laptop to phone to tablet, expecting a seamless experience when accessing their favorite apps. And this expectation is not just limited to leisure and personal use – it extends to business applications. Security has broken this seamless workflow and inhibited the mobile “stickiness” businesses are striving to achieve. This webinar with Scott Morrison and Leif Bildoy of CA Technologies will demonstrate how the right combination of identity functionality and secure APIs can help your organization to overcome these challenges and enable the multi-device universe. You Will Learn • What challenges must be overcome when supporting multiple mobile app types • How SSO is evolving past mobile app access to device access • Why the right implementation of identity and APIs will create consumer stickiness • How the Internet of Things (IoT) is creating new business opportunitiesTRANSCRIPT
Enabling the Mul.-‐Device Universe Moving beyond conven.onal single sign-‐on to seamless cross-‐device access with APIs
Sco? Morrison – SVP & Dis.nguished Engineer, CA API Management Leif Bildoy – Sr. Product Manager, CA Mobile API Gateway Bob Covington – Director, Enterprise Architecture, The JM Smucker Company
November 18, 2014
2 © 2014 CA. ALL RIGHTS RESERVED.
3 © 2014 CA. ALL RIGHTS RESERVED.
Mobile Growth Con.nues
By 2017, mobile apps will be downloaded more than 268 billion .mes, genera.ng revenue of more than $77 billion — making apps one of the most popular
compu.ng tools for users across the globe. *
? ?
... It’s An App, Happy World
*Gartner. “Predicts 2014: Apps, Personal Cloud and Data Analy.cs Will Drive New Consumer Interac.ons.” Stephanie Baghdassarian, Brian Blau, Jessica Ekholm, Sandy Shen. November 22, 2013.
4 © 2014 CA. ALL RIGHTS RESERVED.
App, Mobile & API Growth Con.nues
... It’s An App, Happy World • Harvard Business Review, “For Mobile Devices, Think Apps, Not Ads”, Sunil Gupta, Head of HBR Marke.ng. March 2013.¹ • h?p://www.programmableweb.com/ ² • Naked security survey, “How do you compare to Steve Wozniak”, January 2013
Time spent with apps
vs. browsers¹
82% ~12385 # of APIs as of
November 2014²
2.9 Average # of devices
people carry³
5 © 2014 CA. ALL RIGHTS RESERVED.
Choose the Right App Experience Web App Native App
What It Is
Web application accessed through a mobile web browser
Client-side code on mobile device
Pros
Easy to build and change Optimized user experience for platform
Not device/platform specific
No download required Local data storage
Easy accessibility
Cons
User experience is good but not great
Not readily portable across devices
Download required
Device-specific optimization requires use of mobile-friendly technologies
Updates required
Crowded app marketplace
6 © 2014 CA. ALL RIGHTS RESERVED.
Password Frustra.on
7 © 2014 CA. ALL RIGHTS RESERVED.
UX vs. Risk
More Convenience More Risk
Less Convenience Less Risk
Challenge is finding that right balance
No passcode Device passcode App security
8 © 2014 CA. ALL RIGHTS RESERVED.
Starts with the API: Enable Anything, Everywhere App Access
OUTSIDE PARTNERS / DIVISIONS
EXTERNAL DEVELOPERS
MOBILE APPS CLOUD SERVICES INTERNET OF THINGS
API Server Data
API
APPS
9 © 2014 CA. ALL RIGHTS RESERVED.
Our Goal To move seamlessly & securely between apps
10 © 2014 CA. ALL RIGHTS RESERVED. App Context Iden.ty
2. User provide Enterprise creden.als
1. User taps one of the four enterprise apps
3. User can seamlessly switch between the four enterprise apps
A B C D
How Smucker’s deployed mobile SSO with CA API Management
12 © 2014 CA. ALL RIGHTS RESERVED.
Challenge Enable single sign-‐on access to cloud applica.ons.
The Cost and Complexity of tradi.onal enterprise single sign-‐on tools was prohibi.ve.
Approach Leverage a combina.on of Integrated Windows Authen.ca.on, Microsom Ac.ve Directory and SAML Authen.ca.on with the API Gateway to provide seamless authen.ca.on with our cloud providers
Benefit Implementa.on of Single Sign-‐On with our exis.ng Microsom Ac.ve Directory infrastructure.
One Password
Cloud SSO Integra.on (SAML)
13 © 2014 CA. ALL RIGHTS RESERVED.
CA API Gateway Implementa.on Architecture
API Gateway Cluster
Mobile
Internet Fire
wall / Rou
ter
Mob
ile ASA
VP
N
F5 Load
Balancer CA API Gateway
CA API Gateway
Smucker A
pplica.
on/Database
Servers
Desktop ESM Client
API Portal (Shared)
External Apps /
Customers
14 © 2014 CA. ALL RIGHTS RESERVED.
Our Goal To move seamlessly & securely between devices
15 © 2014 CA. ALL RIGHTS RESERVED.
Discuss Q4 targets with Bob. Don’t forget to
Discuss Q4 targets with Bob. Don’t forget to cover incen.ves.
1. Phone detects it is close to tablet using Bluetooth Low Energy
2. Session migrates to tablet so user does not have to reenter creden.als
App Context
3. App session context pushed to secure cloud storage
Source
Target
4. Context can be pushed to different target apps § Email § Notes § …etc.
Iden.ty
16 © 2014 CA. ALL RIGHTS RESERVED.
Our Goal Make your phone and corporate/social iden.ty your key to the Internet of Things (IoT)
17 © 2014 CA. ALL RIGHTS RESERVED. Iden.ty
1. Phone detects it is close to tablet using Bluetooth Low Energy 2. Gives user opportunity to open lock using current ac.ve ID
3. Home controller checks to see if ID is authorized
18 © 2014 CA. ALL RIGHTS RESERVED.
Our Goal Secure Video Streams. Gesng the right data, to the right person, at the right .me.
19 © 2014 CA. ALL RIGHTS RESERVED.
Drone capturing live video
Mul.ple secure, high-‐defini.on video streams
How CA API Management Delivers SSO
21 © 2014 CA. ALL RIGHTS RESERVED.
Simplify X-‐app Access & Security in Mobile
SSO/Auth SDK Web App
NaWve App
Mobile APIGateway
§ Authen.cate mobile user § Provide SSO across na.ve and mobile web apps
§ Simplify OAuth for developers
What you need to do
§ Delight customers with great mobile experiences
§ Accelerate delivery of new mobile apps
Value to your business
API
API
22 © 2014 CA. ALL RIGHTS RESERVED.
Web and Mobile SSO Via CA Mobile API Gateway and CA SSO
Web Server A
Web Server B
CA SSO (SiteMinder)
Web App B
Desktop/Laptop Browser
Web App A
NaWve app
NaWve app
Mobile Device
Web Site A
Mobile API Gateway & SDK
CA Mobile API Gateway
(MAG)
Device OS/HW
Web Site B
EB* EB*
*Enterprise Browser
Unified, na6ve SSO
23 © 2014 CA. ALL RIGHTS RESERVED.
OneAccess is another proof point
§ Easy access to all Applica.ons
§ Unified SSO
§ Na.ve, WebApp, Hybrid
24 © 2014 CA. ALL RIGHTS RESERVED.
Identity Manager
Cloud Apps
On-‐Premises Enterprise Apps
CA SSO ( SiteMinder ) / LDAP / IdP
CA Mobile API Gateway
The Mobile API Gateway enables fast, secure mobile delivery of enterprise applica.ons
Benefits
• A common standard across plauorms and applica.ons
• Improves developer velocity and .me to value
• App, User and Device level security
Paul Pronsati EVP, Global Business Ops & CIO
25 © 2014 CA. ALL RIGHTS RESERVED.
Summary Deliver Produc.vity, Securely and with Agility
Experience
Security
Speed
26 © 2014 CA. ALL RIGHTS RESERVED.
Ques.ons
27 © 2014 CA. ALL RIGHTS RESERVED.
Copyright © 2014 CA. The JM Smuckers logo is either a registered trademark or trademark of JM Smuckers Corpora.on in the
United States and/or other countries.. All trademarks, trade names, service marks and logos referenced herein belong to their
respec.ve companies.
THIS PRESENTATION IS FOR YOUR INFORMATIONAL PURPOSES ONLY. CA assumes no responsibility for the accuracy or
completeness of the informa.on. TO THE EXTENT PERMITTED BY APPLICABLE LAW, CA PROVIDES THIS DOCUMENT “AS IS”
WITHOUT WARRANTY OF ANY KIND, INCLUDING, WITHOUT LIMITATION, ANY IMPLIED WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE, OR NONINFRINGEMENT. In no event will CA be liable for any loss or damage, direct or
indirect, in connecWon with this presentaWon, including, without limitaWon, lost profits, lost investment, business
interrupWon, goodwill, or lost data, even if CA is expressly advised in advance of the possibility of such damages.