securingidentyandprivacyacross mobile)and)iot)...aboutme& o cto&and&co/founder,&...
TRANSCRIPT
![Page 1: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/1.jpg)
Last Updated: Jan. 2014
Securing Iden,ty and Privacy across Mobile and IoT
WIPJam February 2014
Paul Fremantle
CTO and Co-‐Founder, [email protected]
![Page 2: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/2.jpg)
About me
o CTO and Co-‐Founder, WSO2
o Chair of OASIS standard
o Apache Commi=er o Regular speaker
2
![Page 3: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/3.jpg)
About me
o CTO and Co-‐Founder, WSO2
o Chair of OASIS standard
o Apache Commi=er o Regular speaker
3
o Masked Vigilante
![Page 4: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/4.jpg)
About me
o CTO and Co-‐Founder, WSO2
o Chair of OASIS standard
o Apache Commi=er o Regular speaker
4
o In a band: Revel Weird and Wild
o Plays flute and mandolin
o Father of two children o Keen snowboarder
![Page 5: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/5.jpg)
IdenLty is fluid
5
![Page 6: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/6.jpg)
6
![Page 7: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/7.jpg)
7
![Page 8: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/8.jpg)
Open Standards Open Source Open ParLcipaLon
8
![Page 9: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/9.jpg)
![Page 10: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/10.jpg)
Federated IdenLty and Access
10
![Page 11: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/11.jpg)
11
![Page 12: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/12.jpg)
![Page 13: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/13.jpg)
Who uses OAuth?
![Page 14: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/14.jpg)
![Page 15: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/15.jpg)
MQTT
![Page 16: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/16.jpg)
OAuth2 with IoT
o h=p://pzf.fremantle.org/2013/11/using-‐oauth-‐20-‐with-‐mq=.html
16
![Page 17: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/17.jpg)
Why?
your device = your data
17
![Page 18: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/18.jpg)
18
![Page 19: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/19.jpg)
OpenId Connect
o Using OAuth2 for IdenLty o A pa=ern already in use for Github and others
o Discovery o How do I find out which idenLty provider to use?
o What has this got to do with Mobile? o Quick demo!
19
![Page 20: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/20.jpg)
Quick demo
20
![Page 21: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/21.jpg)
WSO2 in Mobile
o Completely Open Source under the Apache License o No “extra features under a closed license”
o IdenLty management and OpenID Connect o Launched this week:
o The world’s first Open Source MDM plaLorm
21
![Page 22: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/22.jpg)
22
![Page 23: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/23.jpg)
23
![Page 24: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/24.jpg)
ParLcipate!
o Help build an ecosystem: o OAuth and OpenID Connect for Mobile and IoT
o Join our mailing lists: o [email protected] o [email protected]
o Try out the WSO2 MDM/MAM o h=p://wso2.com/products/enterprise-‐mobility-‐manager/
o WSO2 IdenLty Server o h=p://wso2.com/products/idenLty-‐server/
24
![Page 25: SecuringIdentyandPrivacyacross Mobile)and)IoT)...Aboutme& o CTO&and&Co/Founder,& WSO2 o Chair&of&OASIS& standard& o Apache&Commi=er& o Regular&speaker& 4 o In&aband:& Revel’Weird’](https://reader034.vdocuments.us/reader034/viewer/2022051903/5ff490dfb56b6f4f45737fbe/html5/thumbnails/25.jpg)
QuesLons?