SlideShare a Scribd company logo

Beyond username and password it's continuous authorization webinar

ForgeRock, profile picture
ForgeRock

ForgeRock is an identity and access management software company. This document discusses how identity management is becoming more complex with changes like mobility, cloud computing, and IoT. It presents ForgeRock's identity platform as a solution to help manage complex relationships and continuous authorization. The document also discusses problems with passwords and introduces ForgeRock's mobile push authentication as a more secure alternative that is easy for users.

Software
1 of 25
Downloaded 61 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
© 2016 ForgeRock. All rights reserved. Beyond Username and Password: It's Continuous Authorization Andy Hall Product Management Director, ForgeRock Chris Kawalek Sr. Product Marketing Manager, ForgeRock
© 2016 ForgeRock. All rights reserved. Agenda • The Changing Role of Identity and Access Management • Leveraging Context for Continuous Security • The Problem with Passwords • A Better Way: Mobile Push Authentication • Q & A and Next Steps 2
© 2016 ForgeRock. All rights reserved. 2010 Founded 10 Offices worldwide with headquarters in San Francisco 350+ Employees 450+ Customers 30+ Countries $52M Funding to date (thru Series C) by Accel Partners, Foundation Capital and Meritech Capital Partners ForgeRock The leading, next-generation, identity security software platform.
© 2016 ForgeRock. All rights reserved. Changes are Adding Complexity Employees Employees & Partners Perimeter Perimeter Federation Things Perimeter-less Federation Cloud SaaS Mobility Social Consumers Perimeter-less Federation Cloud / SaaS ComplexityofScale Complexity of Experience
© 2016 ForgeRock. All rights reserved. Perimeter-Based Security Identity-Centric Security Enables Digital Business Untrusted Trusted Inhibits Digital Business Old Security Model is Broken. Security Must Now Be Identity-Based.
© 2016 ForgeRock. All rights reserved. From Simply Managing Identities to Managing Complex Relationships Identity Access Management Identity Relationship Management Customers (millions) On-premises People Applications and data PCs Endpoints Workforce (thousands) Partners and Suppliers Customers (millions) On-premises Public Cloud Private Cloud People Things (Tens of millions) Applications and data PCs PhonesTablets Smart Watches Endpoints Source: Forrester Research
© 2016 ForgeRock. All rights reserved. Authoriza*on   Federa*on   Iden*ty   Workflow   Self  Service   Authen*ca*on   Iden*ty   Synchroniza*on   Adap*ve  Risk   Directory   Services   User-­‐Managed   Access   Iden*ty   Gateway   The ForgeRock Identity Platform Built from the OpenAM, OpenDJ, OpenIDM, and Open IG Open Source Projects
© 2016 ForgeRock. All rights reserved. Security is not a one time thing – it’s continuous Security is All About Context Create/Update Relationship Create/Update Policy Adaptive Authentication Adaptive Authorization Accumulate History Adjust Policy
© 2016 ForgeRock. All rights reserved. Flexible Authentication for Modern and Legacy Systems •  Flexible authentication options that offer more protection to authenticate to any digital resource including users, devices, applications, APIs, and things •  Over 25 out-of-the-box authentication modules to fit the needs of your business LDAP, ActiveDirectory, device fingerprinting, one-time password, and Adaptive Risk authentication. •  Extend authentication to anything in a simple manner with scripted authentication modules. •  Implement strong multi-factor authentication by chaining modules together Authen'ca'on  
© 2016 ForgeRock. All rights reserved. Mobile Authentication Additional Security That’s Easy to Use •  Improve customer experience and security with Mobile Authentication an out-of-the box mobile authentication app, available both for iOS and Android. •  Enhanced security with frictionless multi- factor and mobile authentication integrated with our Adaptive Risk engine •  Deliver an easy and secure provisioning via QR codes, with Recovery Codes to be used in event of lost or stolen devices Authen'ca'on  
© 2016 ForgeRock. All rights reserved. Continuous Security with Context •  Use context-based intelligence in policies to protect resources at the time of access, not just based on context during authentication. •  Use context to assess risk, requiring stronger authentication mechanisms only when necessary to make it easier for users while maintaining system security. User  Login  =  OpenAM  Session   Change  requires   step-­‐up   authen'ca'on  or   external  proofing   Risk  score  or   higher  level  of   assurance  grants   access   System  detects   new  IP  address   and  device  ID   Context   Change  
© 2016 ForgeRock. All rights reserved. Passwords are the De Facto Standard Credential...For Now •  A decades old idea, exploited to the extreme in the modern world •  Simple for sites to implement, but also prone to mistakes that can lead to massive password leaks •  Users frustrated with increased security protocols •  How long? How many characters? Uppercase and lowercase? How often do I have to change it? yDQwEv$UZKzhk2NN22u@ Can Anyone Remember This?
© 2016 ForgeRock. All rights reserved. The Problem with Passwords •  Insecure •  Easy to share among people / written down •  Very often used on multiple sites •  Weak passwords are very easy to crack or socially engineer •  Inconvenient •  Hard to remember strong passwords •  Very difficult to type on mobile •  Password managers are fidgety and create a centralized target for attacks •  What happens when you forget, for you and for the site? •  Is there a better way?
© 2016 ForgeRock. All rights reserved. Passwordless Login and Frictionless Multifactor Authentication Leverage Mobile Push Notifications to Make Logging in Easier and More Secure
© 2016 ForgeRock. All rights reserved. 15
© 2016 ForgeRock. All rights reserved. More Information •  Read about all the new features on the ForgeRock blog •  Read the documentation on backstage.forgerock.com for technical details •  Follow us on Twitter: @ForgeRock •  Subscribe to Identity Disorder podcast on iTunes
© 2016 ForgeRock. All rights reserved.
© 2016 ForgeRock. All rights reserved. Q & A
© 2016 ForgeRock. All rights reserved. Thank You
© 2016 ForgeRock. All rights reserved. New Mobile Push Authentication •  Eliminates login passwords or use for a frictionless second factor •  Updated ForgeRock Authenticator Mobile App for iOS and Android receives notifications and asks the user to approve •  Users can add their logo, or use the source code to build their own mobile apps •  Uses SNS for secure communication to phone Swipe, Fingerprint Scan, Custom
© 2016 ForgeRock. All rights reserved. New Mobile Push Authentication Register Your Device
© 2016 ForgeRock. All rights reserved. New Mobile Push Authentication Password-less Login
© 2016 ForgeRock. All rights reserved. New Mobile Push Authentication Frictionless Second Factor
© 2016 ForgeRock. All rights reserved. New Push Authentication Customer Value •  Vastly improves the user experience by reducing friction during the user authentication process •  Increases security by using an “out-of-band” step •  Push notification prevents man in the middle attacks that could happen with SMS/OTP
© 2016 ForgeRock. All rights reserved. Simple, Seamless, and Secure Access to Resources •  Establish simple and flexible access policies that protect your resources at all times •  Assess risk with Contextual Authorization which requires stronger authentication mechanisms only when necessary to make it easier for users while still maintaining system security •  Constant security with Continuous Authorization that ensures the authenticity of users, devices, things, and services at all times and mitigate risk whenever an anomaly is detected Authoriza'on  

More Related Content

PDF
Sydney Identity Summit: Addressing the New Threat Landscape with Continuous S...
ForgeRock
 
PDF
Sydney Identity Unconference Introduction and Highlights
ForgeRock
 
PDF
ForgeRock Platform Release - Summer 2016
ForgeRock
 
PPTX
NYC Identity Summit Business Day: Identity is the Center of Everything (Mike ...
ForgeRock
 
PDF
NYC Identity Summit Tech Day: Authorization for the Modern World
ForgeRock
 
PDF
Sydney Identity Summit: Doing Authorisation, Consent and Delegation Right wit...
ForgeRock
 
PPTX
NYC Identity Summit Tech Day: Best Practices for API Security
ForgeRock
 
PDF
Identity Relationship Management - The Right Approach for a Complex Digital W...
ForgeRock
 
Sydney Identity Summit: Addressing the New Threat Landscape with Continuous S...
ForgeRock
 
Sydney Identity Unconference Introduction and Highlights
ForgeRock
 
ForgeRock Platform Release - Summer 2016
ForgeRock
 
NYC Identity Summit Business Day: Identity is the Center of Everything (Mike ...
ForgeRock
 
NYC Identity Summit Tech Day: Authorization for the Modern World
ForgeRock
 
Sydney Identity Summit: Doing Authorisation, Consent and Delegation Right wit...
ForgeRock
 
NYC Identity Summit Tech Day: Best Practices for API Security
ForgeRock
 
Identity Relationship Management - The Right Approach for a Complex Digital W...
ForgeRock
 

What's hot (20)

PPTX
NYC Identity Summit Business Day: Continuous Security
ForgeRock
 
PPTX
User-Managed Access: Why and How? - Access Control in Digital Contract Contexts
ForgeRock
 
PPTX
Backstage Tour of Identity - London Identity Summit
ForgeRock
 
PPTX
Sydney Identity Summit: The Future's So Bright, I Gotta Wear Shades
ForgeRock
 
PPTX
ForgeRock Gartner 2016 Security & Risk Management Summit
ForgeRock
 
PPTX
NYC Identity Summit Tech Day: ForgeRock Identity Platform Overview
ForgeRock
 
PPTX
A Backstage Tour of Identity - Paris Identity Summit 2016
ForgeRock
 
PDF
Digital Trust: How Identity Tackles the Privacy, Security and IoT Challenge
ForgeRock
 
PDF
DevOps Unleashed: Strategies that Speed Deployments
ForgeRock
 
PDF
The Future is Now: The ForgeRock Identity Platform, Early 2017 Release
ForgeRock
 
PDF
The Future of Digital Identity in the Age of the Internet of Things
ForgeRock
 
PPTX
Build a Trust Platform to Enable a Frictionless Customer Experience
ForgeRock
 
PDF
Sydney Identity Summit: Using Identity to Build Digital Trust (Mike Ellis Intro)
ForgeRock
 
PPT
Canberra Executive Breakfast - A Citizen-Centric Approach to Identity
ForgeRock
 
PDF
Security & Identity for the Internet of Things Webinar
ForgeRock
 
PPTX
Identity Gateway with the ForgeRock Identity Platform - So What’s New?
ForgeRock
 
PDF
The Future is Now: What’s New in ForgeRock Access Management
ForgeRock
 
PDF
No IoT Without Identity
ForgeRock
 
PDF
ForgeRock: Identity Relationship Management is the Foundation for Your Digita...
ForgeRock
 
PDF
The Business Ecosystem is a Neighborhood - ForgeRock Identity Live Austin 2017
ForgeRock
 
NYC Identity Summit Business Day: Continuous Security
ForgeRock
 
User-Managed Access: Why and How? - Access Control in Digital Contract Contexts
ForgeRock
 
Backstage Tour of Identity - London Identity Summit
ForgeRock
 
Sydney Identity Summit: The Future's So Bright, I Gotta Wear Shades
ForgeRock
 
ForgeRock Gartner 2016 Security & Risk Management Summit
ForgeRock
 
NYC Identity Summit Tech Day: ForgeRock Identity Platform Overview
ForgeRock
 
A Backstage Tour of Identity - Paris Identity Summit 2016
ForgeRock
 
Digital Trust: How Identity Tackles the Privacy, Security and IoT Challenge
ForgeRock
 
DevOps Unleashed: Strategies that Speed Deployments
ForgeRock
 
The Future is Now: The ForgeRock Identity Platform, Early 2017 Release
ForgeRock
 
The Future of Digital Identity in the Age of the Internet of Things
ForgeRock
 
Build a Trust Platform to Enable a Frictionless Customer Experience
ForgeRock
 
Sydney Identity Summit: Using Identity to Build Digital Trust (Mike Ellis Intro)
ForgeRock
 
Canberra Executive Breakfast - A Citizen-Centric Approach to Identity
ForgeRock
 
Security & Identity for the Internet of Things Webinar
ForgeRock
 
Identity Gateway with the ForgeRock Identity Platform - So What’s New?
ForgeRock
 
The Future is Now: What’s New in ForgeRock Access Management
ForgeRock
 
No IoT Without Identity
ForgeRock
 
ForgeRock: Identity Relationship Management is the Foundation for Your Digita...
ForgeRock
 
The Business Ecosystem is a Neighborhood - ForgeRock Identity Live Austin 2017
ForgeRock
 
Ad

Similar to Beyond username and password it's continuous authorization webinar (20)

PPTX
Webinar: Access Management with the ForgeRock Identity Platform - So What’s N...
ForgeRock
 
PPTX
The Road to Intelligent Authentication Journeys
ForgeRock
 
PDF
The Future is Now: What’s New in ForgeRock Identity Management
ForgeRock
 
PPTX
Identity Management with the ForgeRock Identity Platform - So What’s New?
ForgeRock
 
PPTX
Webinar: "Entitlements: Taking Control of the Big Data Gold Rush"
ForgeRock
 
PDF
Intelligent Authentication (Identity Live Berlin 2018)
ForgeRock
 
PDF
Identity Live Sydney: Intelligent Authentication
ForgeRock
 
PPTX
Identity Live London 2017 | Daniel Raskin
ForgeRock
 
PDF
The Future is Now: What’s New in ForgeRock Identity Gateway
ForgeRock
 
PPTX
OpenIG Webinar: Your Swiss Army Knife for Protecting and Securing Web Apps, A...
ForgeRock
 
PPTX
Directory Services with the ForgeRock Identity Platform - So What’s New?
ForgeRock
 
PPTX
NYC Identity Summit Business Day: "Identity - The Future's So Bright I Gotta ...
ForgeRock
 
PPTX
Internet of Things Security & Privacy
Chris Adriaensen
 
PDF
Modernizing Identity Access Management Platforms - Dale Kinney & Damian Flannery
IdentityNorthEvents
 
PDF
Security On The Edge - A New Way To Think About Securing the Internet of Things
ForgeRock
 
PDF
The ForgeRock Identity Platform Extends CIAM, Fall 2017 Release
ForgeRock
 
PDF
Pas d'IoT sans Identité!
Leonard Moustacchis
 
PPTX
The Hitchhiker's Guide to the Land of OAuth
Chris Adriaensen
 
PPTX
apidays LIVE Hong Kong 2021 - Digital Identity Centric Approach to Accelerate...
apidays
 
PPTX
apidays LIVE Hong Kong 2021 - Digital Identity Centric Approach to Accelerate...
apidays
 
Webinar: Access Management with the ForgeRock Identity Platform - So What’s N...
ForgeRock
 
The Road to Intelligent Authentication Journeys
ForgeRock
 
The Future is Now: What’s New in ForgeRock Identity Management
ForgeRock
 
Identity Management with the ForgeRock Identity Platform - So What’s New?
ForgeRock
 
Webinar: "Entitlements: Taking Control of the Big Data Gold Rush"
ForgeRock
 
Intelligent Authentication (Identity Live Berlin 2018)
ForgeRock
 
Identity Live Sydney: Intelligent Authentication
ForgeRock
 
Identity Live London 2017 | Daniel Raskin
ForgeRock
 
The Future is Now: What’s New in ForgeRock Identity Gateway
ForgeRock
 
OpenIG Webinar: Your Swiss Army Knife for Protecting and Securing Web Apps, A...
ForgeRock
 
Directory Services with the ForgeRock Identity Platform - So What’s New?
ForgeRock
 
NYC Identity Summit Business Day: "Identity - The Future's So Bright I Gotta ...
ForgeRock
 
Internet of Things Security & Privacy
Chris Adriaensen
 
Modernizing Identity Access Management Platforms - Dale Kinney & Damian Flannery
IdentityNorthEvents
 
Security On The Edge - A New Way To Think About Securing the Internet of Things
ForgeRock
 
The ForgeRock Identity Platform Extends CIAM, Fall 2017 Release
ForgeRock
 
Pas d'IoT sans Identité!
Leonard Moustacchis
 
The Hitchhiker's Guide to the Land of OAuth
Chris Adriaensen
 
apidays LIVE Hong Kong 2021 - Digital Identity Centric Approach to Accelerate...
apidays
 
apidays LIVE Hong Kong 2021 - Digital Identity Centric Approach to Accelerate...
apidays
 
Ad

More from ForgeRock (20)

PDF
Digital Identities in the Internet of Things - Securely Manage Devices at Scale
ForgeRock
 
PPTX
Get the Exact Identity Solution You Need - In the Cloud - AWS and Beyond
ForgeRock
 
PDF
Identity Live Sydney: Identity Management - A Strategic Opportunity
ForgeRock
 
PDF
Identity Live Singapore: Transform Your Cybersecurity Capability
ForgeRock
 
PDF
Identity Live Singapore 2018 Keynote Presentation
ForgeRock
 
PDF
Identity Live Sydney 2018 Keynote Presentation
ForgeRock
 
PDF
Identity Live Singapore: Just Ask 'Em
ForgeRock
 
PDF
Identity Live Singapore: Building Trust & Privacy in a Connected Society
ForgeRock
 
PDF
Identity Live Sydney: Building Trust and Privacy in a Connected Society
ForgeRock
 
PDF
Get the Exact Identity Solution you Need in the Cloud - Deep Dive
ForgeRock
 
PPTX
Get the Exact Identity Solution You Need - In the Cloud - Overview
ForgeRock
 
PDF
ForgeRock and Trusona - Simplifying the Multi-factor User Experience
ForgeRock
 
PDF
Opening Keynote (Identity Live Berlin 2018)
ForgeRock
 
PDF
Steinberg - Customer identity as the cornerstone of our approach to digitaliz...
ForgeRock
 
PDF
BMW Group - Identity Enables the Next 100 Years.. (Identity Live Berlin 2018)
ForgeRock
 
PDF
Trust is Everything - The Future of Identity and the ForgeRock Platform (Iden...
ForgeRock
 
PDF
Silo Busters- The Value of User and Data Centricity beyond IoT Devices (Ident...
ForgeRock
 
PDF
Shift from GDPR readiness to sustained compliance to improve your business an...
ForgeRock
 
PDF
Customer Safeguarding, Fraud and GDPR: Manah Khalil
ForgeRock
 
PDF
Applying Innovative Tools for GDPR Success
ForgeRock
 
Digital Identities in the Internet of Things - Securely Manage Devices at Scale
ForgeRock
 
Get the Exact Identity Solution You Need - In the Cloud - AWS and Beyond
ForgeRock
 
Identity Live Sydney: Identity Management - A Strategic Opportunity
ForgeRock
 
Identity Live Singapore: Transform Your Cybersecurity Capability
ForgeRock
 
Identity Live Singapore 2018 Keynote Presentation
ForgeRock
 
Identity Live Sydney 2018 Keynote Presentation
ForgeRock
 
Identity Live Singapore: Just Ask 'Em
ForgeRock
 
Identity Live Singapore: Building Trust & Privacy in a Connected Society
ForgeRock
 
Identity Live Sydney: Building Trust and Privacy in a Connected Society
ForgeRock
 
Get the Exact Identity Solution you Need in the Cloud - Deep Dive
ForgeRock
 
Get the Exact Identity Solution You Need - In the Cloud - Overview
ForgeRock
 
ForgeRock and Trusona - Simplifying the Multi-factor User Experience
ForgeRock
 
Opening Keynote (Identity Live Berlin 2018)
ForgeRock
 
Steinberg - Customer identity as the cornerstone of our approach to digitaliz...
ForgeRock
 
BMW Group - Identity Enables the Next 100 Years.. (Identity Live Berlin 2018)
ForgeRock
 
Trust is Everything - The Future of Identity and the ForgeRock Platform (Iden...
ForgeRock
 
Silo Busters- The Value of User and Data Centricity beyond IoT Devices (Ident...
ForgeRock
 
Shift from GDPR readiness to sustained compliance to improve your business an...
ForgeRock
 
Customer Safeguarding, Fraud and GDPR: Manah Khalil
ForgeRock
 
Applying Innovative Tools for GDPR Success
ForgeRock
 

Recently uploaded (20)

PDF
System and Network Administration Chapter 2
jaramharo
 
PDF
AI in Product Development-omnex systems
omnex systems
 
PDF
Wondershare Filmora 15 Crack With Activation Key [2025
ghrom2211g
 
PPTX
Essential Infomation Tech presentation.pptx
pradeepjava2016
 
PDF
Understanding Forklifts - TECH EHS Solution
TECH EHS Solution
 
PPTX
Lecture 3: Operating Systems Introduction to Computer Hardware Systems
hci7se
 
PDF
Softaken Excel to vCard Converter Software.pdf
markwillsonmw004
 
PDF
How to Migrate SBCGlobal Email to Yahoo Easily
raymondjones7273
 
PDF
Adobe Illustrator 28.6 Crack My Vision of Vector Design
ghrom2211g
 
PDF
System and Network Administraation Chapter 3
jaramharo
 
PDF
Raksha Bandhan Grocery Pricing Trends in India 2025.pdf
Actowiz Solustions
 
PPTX
Odoo POS Development Services by CandidRoot Solutions
CandidRoot Solutions Private Limited
 
PDF
top salesforce developer skills in 2025.pdf
CloudMetic
 
PPTX
L1 - Introduction to python Backend.pptx
MoizAhmed480282
 
PPTX
Introduction to Artificial Intelligence
lohedi9363
 
PDF
Audit Checklist Design Aligning with ISO, IATF, and Industry Standards — Omne...
rohnjim07
 
PDF
Design an Analysis of Algorithms II-SECS-1021-03
DilanEscobar1
 
PPTX
VVF-Customer-Presentation2025-Ver1.9.pptx
blackmambaettijean
 
PPTX
CHAPTER 2 - PM Management and IT Context
KevinPutra14
 
PDF
Claude Code: Everyone is a 10x Developer - A Comprehensive AI-Powered CLI Tool
William Chong
 
System and Network Administration Chapter 2
jaramharo
 
AI in Product Development-omnex systems
omnex systems
 
Wondershare Filmora 15 Crack With Activation Key [2025
ghrom2211g
 
Essential Infomation Tech presentation.pptx
pradeepjava2016
 
Understanding Forklifts - TECH EHS Solution
TECH EHS Solution
 
Lecture 3: Operating Systems Introduction to Computer Hardware Systems
hci7se
 
Softaken Excel to vCard Converter Software.pdf
markwillsonmw004
 
How to Migrate SBCGlobal Email to Yahoo Easily
raymondjones7273
 
Adobe Illustrator 28.6 Crack My Vision of Vector Design
ghrom2211g
 
System and Network Administraation Chapter 3
jaramharo
 
Raksha Bandhan Grocery Pricing Trends in India 2025.pdf
Actowiz Solustions
 
Odoo POS Development Services by CandidRoot Solutions
CandidRoot Solutions Private Limited
 
top salesforce developer skills in 2025.pdf
CloudMetic
 
L1 - Introduction to python Backend.pptx
MoizAhmed480282
 
Introduction to Artificial Intelligence
lohedi9363
 
Audit Checklist Design Aligning with ISO, IATF, and Industry Standards — Omne...
rohnjim07
 
Design an Analysis of Algorithms II-SECS-1021-03
DilanEscobar1
 
VVF-Customer-Presentation2025-Ver1.9.pptx
blackmambaettijean
 
CHAPTER 2 - PM Management and IT Context
KevinPutra14
 
Claude Code: Everyone is a 10x Developer - A Comprehensive AI-Powered CLI Tool
William Chong
 

Beyond username and password it's continuous authorization webinar

  • 1. © 2016 ForgeRock. All rights reserved. Beyond Username and Password: It's Continuous Authorization Andy Hall Product Management Director, ForgeRock Chris Kawalek Sr. Product Marketing Manager, ForgeRock
  • 2. © 2016 ForgeRock. All rights reserved. Agenda • The Changing Role of Identity and Access Management • Leveraging Context for Continuous Security • The Problem with Passwords • A Better Way: Mobile Push Authentication • Q & A and Next Steps 2
  • 3. © 2016 ForgeRock. All rights reserved. 2010 Founded 10 Offices worldwide with headquarters in San Francisco 350+ Employees 450+ Customers 30+ Countries $52M Funding to date (thru Series C) by Accel Partners, Foundation Capital and Meritech Capital Partners ForgeRock The leading, next-generation, identity security software platform.
  • 4. © 2016 ForgeRock. All rights reserved. Changes are Adding Complexity Employees Employees & Partners Perimeter Perimeter Federation Things Perimeter-less Federation Cloud SaaS Mobility Social Consumers Perimeter-less Federation Cloud / SaaS ComplexityofScale Complexity of Experience
  • 5. © 2016 ForgeRock. All rights reserved. Perimeter-Based Security Identity-Centric Security Enables Digital Business Untrusted Trusted Inhibits Digital Business Old Security Model is Broken. Security Must Now Be Identity-Based.
  • 6. © 2016 ForgeRock. All rights reserved. From Simply Managing Identities to Managing Complex Relationships Identity Access Management Identity Relationship Management Customers (millions) On-premises People Applications and data PCs Endpoints Workforce (thousands) Partners and Suppliers Customers (millions) On-premises Public Cloud Private Cloud People Things (Tens of millions) Applications and data PCs PhonesTablets Smart Watches Endpoints Source: Forrester Research
  • 7. © 2016 ForgeRock. All rights reserved. Authoriza*on   Federa*on   Iden*ty   Workflow   Self  Service   Authen*ca*on   Iden*ty   Synchroniza*on   Adap*ve  Risk   Directory   Services   User-­‐Managed   Access   Iden*ty   Gateway   The ForgeRock Identity Platform Built from the OpenAM, OpenDJ, OpenIDM, and Open IG Open Source Projects
  • 8. © 2016 ForgeRock. All rights reserved. Security is not a one time thing – it’s continuous Security is All About Context Create/Update Relationship Create/Update Policy Adaptive Authentication Adaptive Authorization Accumulate History Adjust Policy
  • 9. © 2016 ForgeRock. All rights reserved. Flexible Authentication for Modern and Legacy Systems •  Flexible authentication options that offer more protection to authenticate to any digital resource including users, devices, applications, APIs, and things •  Over 25 out-of-the-box authentication modules to fit the needs of your business LDAP, ActiveDirectory, device fingerprinting, one-time password, and Adaptive Risk authentication. •  Extend authentication to anything in a simple manner with scripted authentication modules. •  Implement strong multi-factor authentication by chaining modules together Authen'ca'on  
  • 10. © 2016 ForgeRock. All rights reserved. Mobile Authentication Additional Security That’s Easy to Use •  Improve customer experience and security with Mobile Authentication an out-of-the box mobile authentication app, available both for iOS and Android. •  Enhanced security with frictionless multi- factor and mobile authentication integrated with our Adaptive Risk engine •  Deliver an easy and secure provisioning via QR codes, with Recovery Codes to be used in event of lost or stolen devices Authen'ca'on  
  • 11. © 2016 ForgeRock. All rights reserved. Continuous Security with Context •  Use context-based intelligence in policies to protect resources at the time of access, not just based on context during authentication. •  Use context to assess risk, requiring stronger authentication mechanisms only when necessary to make it easier for users while maintaining system security. User  Login  =  OpenAM  Session   Change  requires   step-­‐up   authen'ca'on  or   external  proofing   Risk  score  or   higher  level  of   assurance  grants   access   System  detects   new  IP  address   and  device  ID   Context   Change  
  • 12. © 2016 ForgeRock. All rights reserved. Passwords are the De Facto Standard Credential...For Now •  A decades old idea, exploited to the extreme in the modern world •  Simple for sites to implement, but also prone to mistakes that can lead to massive password leaks •  Users frustrated with increased security protocols •  How long? How many characters? Uppercase and lowercase? How often do I have to change it? yDQwEv$UZKzhk2NN22u@ Can Anyone Remember This?
  • 13. © 2016 ForgeRock. All rights reserved. The Problem with Passwords •  Insecure •  Easy to share among people / written down •  Very often used on multiple sites •  Weak passwords are very easy to crack or socially engineer •  Inconvenient •  Hard to remember strong passwords •  Very difficult to type on mobile •  Password managers are fidgety and create a centralized target for attacks •  What happens when you forget, for you and for the site? •  Is there a better way?
  • 14. © 2016 ForgeRock. All rights reserved. Passwordless Login and Frictionless Multifactor Authentication Leverage Mobile Push Notifications to Make Logging in Easier and More Secure
  • 15. © 2016 ForgeRock. All rights reserved. 15
  • 16. © 2016 ForgeRock. All rights reserved. More Information •  Read about all the new features on the ForgeRock blog •  Read the documentation on backstage.forgerock.com for technical details •  Follow us on Twitter: @ForgeRock •  Subscribe to Identity Disorder podcast on iTunes
  • 17. © 2016 ForgeRock. All rights reserved.
  • 18. © 2016 ForgeRock. All rights reserved. Q & A
  • 19. © 2016 ForgeRock. All rights reserved. Thank You
  • 20. © 2016 ForgeRock. All rights reserved. New Mobile Push Authentication •  Eliminates login passwords or use for a frictionless second factor •  Updated ForgeRock Authenticator Mobile App for iOS and Android receives notifications and asks the user to approve •  Users can add their logo, or use the source code to build their own mobile apps •  Uses SNS for secure communication to phone Swipe, Fingerprint Scan, Custom
  • 21. © 2016 ForgeRock. All rights reserved. New Mobile Push Authentication Register Your Device
  • 22. © 2016 ForgeRock. All rights reserved. New Mobile Push Authentication Password-less Login
  • 23. © 2016 ForgeRock. All rights reserved. New Mobile Push Authentication Frictionless Second Factor
  • 24. © 2016 ForgeRock. All rights reserved. New Push Authentication Customer Value •  Vastly improves the user experience by reducing friction during the user authentication process •  Increases security by using an “out-of-band” step •  Push notification prevents man in the middle attacks that could happen with SMS/OTP
  • 25. © 2016 ForgeRock. All rights reserved. Simple, Seamless, and Secure Access to Resources •  Establish simple and flexible access policies that protect your resources at all times •  Assess risk with Contextual Authorization which requires stronger authentication mechanisms only when necessary to make it easier for users while still maintaining system security •  Constant security with Continuous Authorization that ensures the authenticity of users, devices, things, and services at all times and mitigate risk whenever an anomaly is detected Authoriza'on