Bienvenue sur Scribd !

An Enterprise Case Study Cisco

Transféré par

0% ont trouvé ce document utile (0 vote)

33 vues20 pages

If everybody specializes in what they're good at, were better off. If we ignore logical divisions of labor and all try to be our own butcher, baker, and brewer, its a short, slick slope to hoarding duck feathers and living in suburban petting zoos.

Description originale:

Copyright

Formats disponibles

PDF, TXT ou lisez en ligne sur Scribd

Partager ce document

Partager ou intégrer le document

Options de partage

Avez-vous trouvé ce document utile ?

Ce contenu est-il inapproprié ?

Signaler ce document

Droits d'auteur :

Formats disponibles

Téléchargez comme PDF, TXT ou lisez en ligne sur Scribd

Signaler comme contenu inapproprié

0% ont trouvé ce document utile (0 vote)

33 vues20 pages

An Enterprise Case Study Cisco

Transféré par

Abderrahmane Abdmeziane

Droits d'auteur :

Formats disponibles

Téléchargez comme PDF, TXT ou lisez en ligne sur Scribd

Signaler comme contenu inapproprié

Passer à la page

Vous êtes sur la page 1sur 20

Rechercher à l'intérieur du document

Cisco Confidential 1 Cisco Confidential 2010 Cisco and/or its affiliates. All rights reserved. 1
Applying Cloud Identity to
Real Life: an Enterprise
Case Study
David Jones
Information Security Architect
November 3
rd
2011
2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2
Remember when
Larry said the Cloud
didnt exist?
2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3
Normal people have
been Cloudy for
years.
2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4 Cisco Confidential Cisco Confidential 2010 Cisco and/or its affiliates. All rights reserved. 4
If everybody specializes in what
theyre good at, were better off. If we
ignore logical divisions of labor and all
try to be our own butcher, baker, and
brewer, its a short, slick slope to
hoarding duck feathers and living in
suburban petting zoos.

Grayson Schaffer on Adam Smiths The Wealth of Nations
Outside Magazine, March 2009
2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5
In the beginning
Proprietary Agents
1000 different user profile provisioning
processes
Dedicated Hardware
Passwords out there

2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 6
90+ IT Federated Connections
350+ Total Cloud Providers in Use

2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 7
Win: SAML, OAuth, SCIM, REST
Lose: OpenId, SPML, SOAP
2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8
<saml:NameID
Format="urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress">
user@mail.example.org
</saml:NameID>
<saml:Conditions
NotBefore="2004-12-05T09:17:05Z"
NotOnOrAfter="2004-12-05T09:27:05Z">
<saml:AudienceRestriction>
<saml:Audience>https://sp.example.com/SAML2</saml:Audience>
</saml:AudienceRestriction>
</saml:Conditions>
2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 9
POST /token HTTP/1.1
Host: server.example.com
Authorization: Basic czZCaGRSa3F0MzpnWDFmQmF0M2JW
Content-Type: application/x-www-form-urlencoded;charset=UTF-8

grant_type=authorization_code&code=i1WsRn1uB1
&redirect_uri=https%3A%2F%2Fclient%2Eexample%2Ecom%2Fcb

Note: previous versions of Oauth required a client_id like &client_id=s6BhdRkqt3 in the grant type

2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10
HTTP/1.1 200 OK
Content-Type: application/json;charset=UTF-8
Cache-Control: no-store
Pragma: no-cache
{
"access_token":"2YotnFZFEjr1zCsicMWpAA",
"token_type":"example",
"expires_in":3600,
"refresh_token":"tGzv3JOkF0XG5Qx2TlKWIA",
"example_parameter":"example_value
}
2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 11
2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12 Cisco Confidential 12 2010 Cisco and/or its affiliates. All rights reserved.
Increasingly Commoditized Options = No
Longer a Captive Customer of IT!
! But where is our Data going?
Measure
Manage
Secure
Scale
2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 13
The amount of critical intellectual property that
would be copied onto Cloud Provider systems
without thought of loss
The number of cloud providers that are not
concerned with the co-mingling of their customers
data
2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 14

HIPAA requires we limit who has access to
medical records, how can we keep track of it if our
PaaS provider is using a 3
rd
party for storage that
we dont know about?
Or if they want to outsource their backups to yet
another?
2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 15
2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential Sec Arch 042310 16
Evolution of Blueprint Capabilities
Network
Perimeter
Identity
Management
Service
Management
Data
Governance
Policy &
Orchestration
Classification
& Compliance
External
Identity Model
1
2
3
2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 17
2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential CAB Sec Arch 0610 18
!And why Point-to-Point Federation wont scale
EVERNOTE
Your
Company
2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 19
2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 20
Thank you.

Vous aimerez peut-être aussi

Keynote Address - Think Like A Hacker, Defend Like A Ninja DR Peter Holliday Chief Defence Architect APAC
Document45 pages
Keynote Address - Think Like A Hacker, Defend Like A Ninja DR Peter Holliday Chief Defence Architect APAC
fmaringota
Pas encore d'évaluation
BYOD-We Secure It
Document31 pages
BYOD-We Secure It
Supattra Smith
Pas encore d'évaluation
Introduce To Public Cloud Service
Document43 pages
Introduce To Public Cloud Service
Force Power
Pas encore d'évaluation
Configuring An Ipsec VPN Tunnel Between A Cisco Sa 500 and A Mac Ipsecuritas Client
Document11 pages
Configuring An Ipsec VPN Tunnel Between A Cisco Sa 500 and A Mac Ipsecuritas Client
jhoan9924
Pas encore d'évaluation
Cisco Catalyst 2960G-48TC Switch: Product Bulletin No. 3268
Document3 pages
Cisco Catalyst 2960G-48TC Switch: Product Bulletin No. 3268
Cintia Ahmad
Pas encore d'évaluation
Cisco Self-Defending Networks Overview
Document3 pages
Cisco Self-Defending Networks Overview
Ravi Srinivas
Pas encore d'évaluation
Any Connect
Document118 pages
Any Connect
Steven Hudson
Pas encore d'évaluation
Stats Filter cAPIC AWS: Huyen Duong Technical Marketing Engineer April 2020
Document20 pages
Stats Filter cAPIC AWS: Huyen Duong Technical Marketing Engineer April 2020
Erik Lim
Pas encore d'évaluation
Asdmconfig
Document1 346 pages
Asdmconfig
Hạnh Nhân
Pas encore d'évaluation
Chapter 3 - Authentication, Authorization, and Accounting - Compressed
Document64 pages
Chapter 3 - Authentication, Authorization, and Accounting - Compressed
Gedeon Faki
Pas encore d'évaluation
Introduction To IronPort Products
Document36 pages
Introduction To IronPort Products
maksimu
Pas encore d'évaluation
Sec 15 0s CG Sec Con Book
Document935 pages
Sec 15 0s CG Sec Con Book
aarnulfo
Pas encore d'évaluation
Asa 91 VPN Config
Document472 pages
Asa 91 VPN Config
сниматељ Зоран
Pas encore d'évaluation
En CCNAS v11 Ch08
Document169 pages
En CCNAS v11 Ch08
Joseph Edwards
Pas encore d'évaluation
Cisco IOS XR Getting Started Guide
Document224 pages
Cisco IOS XR Getting Started Guide
ranjan_mehera
Pas encore d'évaluation
Brksec 3667
Document166 pages
Brksec 3667
Joshua Fonseca
Pas encore d'évaluation
Individual Role Requirement
Document5 pages
Individual Role Requirement
Engin Kartal
Pas encore d'évaluation
Cisco Secure Desktop Configuration Guide: For Cisco ASA 5500 Series Administrators
Document82 pages
Cisco Secure Desktop Configuration Guide: For Cisco ASA 5500 Series Administrators
volero triste
Pas encore d'évaluation
Cisco IronPort AsyncOS 7.6 For Email Daily Management Guide
Document324 pages
Cisco IronPort AsyncOS 7.6 For Email Daily Management Guide
Voyage Io
Pas encore d'évaluation
(Cisco) Deploying 802.1X For Lan Security (2003) (PPT)
Document70 pages
(Cisco) Deploying 802.1X For Lan Security (2003) (PPT)
Sudhir Kurade
Pas encore d'évaluation
SIM7500 - SIM7600 - SIM7800 Series - SSL - Application Note: LTE Module
Document10 pages
SIM7500 - SIM7600 - SIM7800 Series - SSL - Application Note: LTE Module
Alejandro Demiti
Pas encore d'évaluation
2052
Document107 pages
2052
Vkrishna Soladm
Pas encore d'évaluation
Ip Addressing
Document27 pages
Ip Addressing
Maria Lady Jeam Saga
Pas encore d'évaluation
En CCNAS v11 Ch02
Document179 pages
En CCNAS v11 Ch02
fransalvatrucha
Pas encore d'évaluation
21 Web Data Security
Document3 pages
21 Web Data Security
adi80661122
Pas encore d'évaluation
CCNASv2 InstructorPPT CH7
Document88 pages
CCNASv2 InstructorPPT CH7
ahmed
Pas encore d'évaluation
Cisco Unified SIP SRST System Administrator Guide (All Versions)
Document138 pages
Cisco Unified SIP SRST System Administrator Guide (All Versions)
aarnulfo
Pas encore d'évaluation
ANA371RefGuide (Cisco Pseudo Wire, Carrier Ethernet)
Document1 306 pages
ANA371RefGuide (Cisco Pseudo Wire, Carrier Ethernet)
agcauchi
Pas encore d'évaluation
Authentication, Authorization, and Accounting: CCNA Security v2.0
Document54 pages
Authentication, Authorization, and Accounting: CCNA Security v2.0
Amy Godoy Villalta
Pas encore d'évaluation
Cag21 PDF
Document140 pages
Cag21 PDF
Sid Mehta
Pas encore d'évaluation
WSA 7.0.0 UserGuide
Document784 pages
WSA 7.0.0 UserGuide
Luis Jimenez
Pas encore d'évaluation
Seguridad en Redes LAN - Sesion 11
Document84 pages
Seguridad en Redes LAN - Sesion 11
Rojas Romero Nirak Aniroc
Pas encore d'évaluation
En CCNAS v11 Ch02
Document178 pages
En CCNAS v11 Ch02
Francisco Proaño
Pas encore d'évaluation
CCNASv2 InstructorPPT CH3
Document54 pages
CCNASv2 InstructorPPT CH3
wepe
Pas encore d'évaluation
Cisco Anyconnect Posture With Asa, Ise and Amp V1.1: About This Demonstration
Document29 pages
Cisco Anyconnect Posture With Asa, Ise and Amp V1.1: About This Demonstration
Reven The savage
Pas encore d'évaluation
Cisco Meraki
Document27 pages
Cisco Meraki
Shiv Bhattarai
100% (2)
Cisco ISA3000 With FTD FMC v3 Guided Demo
Document40 pages
Cisco ISA3000 With FTD FMC v3 Guided Demo
akarki77
Pas encore d'évaluation
Chapter 7: Network Evolution: CCNA Routing and Switching Connecting Networks v6.0
Document48 pages
Chapter 7: Network Evolution: CCNA Routing and Switching Connecting Networks v6.0
amar9916
Pas encore d'évaluation
Cisco IronPort Web Data Security and Data Loss Prevention Overview
Document3 pages
Cisco IronPort Web Data Security and Data Loss Prevention Overview
Shaili Singhal
Pas encore d'évaluation
Cisco WebEx Security
Document23 pages
Cisco WebEx Security
jawajuice
Pas encore d'évaluation
Cisco Fiber Switch Fiber Configuration
Document126 pages
Cisco Fiber Switch Fiber Configuration
nsadnan
Pas encore d'évaluation
Redes Seguras: Docentes Del Curso 2019
Document55 pages
Redes Seguras: Docentes Del Curso 2019
MasterDefcom
Pas encore d'évaluation
Asa 91 Firewall Config
Document712 pages
Asa 91 Firewall Config
dimkatsar30
Pas encore d'évaluation
Icm 85 Config
Document247 pages
Icm 85 Config
Tim Dubbay
Pas encore d'évaluation
ESA 7.6 Configuration Guide
Document460 pages
ESA 7.6 Configuration Guide
aitel
Pas encore d'évaluation
Brkcol 2256
Document99 pages
Brkcol 2256
David Echeverri
Pas encore d'évaluation
ACL (Access Control List)
Document40 pages
ACL (Access Control List)
fajar 2907
Pas encore d'évaluation
Ctharc 2025
Document28 pages
Ctharc 2025
Gao Tianming
Pas encore d'évaluation
Deploying The Cisco ACE Web Application Firewall: BRKAPP-2014
Document49 pages
Deploying The Cisco ACE Web Application Firewall: BRKAPP-2014
kds20850
Pas encore d'évaluation
MPLS22LG
Document146 pages
MPLS22LG
pilacuan
Pas encore d'évaluation
CCNASv2 InstructorPPT CH10
Document143 pages
CCNASv2 InstructorPPT CH10
San Lop
Pas encore d'évaluation
Cisco VPN Config Guide - CG
Document131 pages
Cisco VPN Config Guide - CG
bjb302
Pas encore d'évaluation
ESA 7.1.1 Configuration Guide
Document630 pages
ESA 7.1.1 Configuration Guide
Can dien tu Thai Binh Duong
Pas encore d'évaluation
IPSec VPNs - An Overview - Presentation
Document157 pages
IPSec VPNs - An Overview - Presentation
namalka_omar
Pas encore d'évaluation
Quick Look - Cisco Content Switching Module
Document7 pages
Quick Look - Cisco Content Switching Module
iwc2008007
Pas encore d'évaluation
3750 Stack Upgrade Best Practice
Document12 pages
3750 Stack Upgrade Best Practice
Joao Carlos Magalhaes
Pas encore d'évaluation
Cisco Prime Administrator Guide PDF
Document168 pages
Cisco Prime Administrator Guide PDF
jinikari
Pas encore d'évaluation
SSL VPN : Understanding, evaluating and planning secure, web-based remote access
D'Everand
SSL VPN : Understanding, evaluating and planning secure, web-based remote access
Tim Speed
Pas encore d'évaluation
The Evolution of Cloud Computing: How to plan for change
D'Everand
The Evolution of Cloud Computing: How to plan for change
Clive Longbottom
Pas encore d'évaluation
Getting Started with Oracle Tuxedo
D'Everand
Getting Started with Oracle Tuxedo
Biru Chattopadhayay
Pas encore d'évaluation
BT SIP Trunk Configuration Guide for CUCM 10.5 and CUBE 9.5
Document13 pages
BT SIP Trunk Configuration Guide for CUCM 10.5 and CUBE 9.5
Abderrahmane Abdmeziane
Pas encore d'évaluation
Arabic Ccna Voice
Document42 pages
Arabic Ccna Voice
Morad Alabsy
Pas encore d'évaluation
Enterprise Routing Portfolio Poster PDF
Document1 page
Enterprise Routing Portfolio Poster PDF
bstrellow
Pas encore d'évaluation
Cisco VCS MCU Connection Using H323 Deployment Guide
Document10 pages
Cisco VCS MCU Connection Using H323 Deployment Guide
Abderrahmane Abdmeziane
Pas encore d'évaluation
SBA BN Foundation Configuration Files Guide H1CY10
Document63 pages
SBA BN Foundation Configuration Files Guide H1CY10
Abderrahmane Abdmeziane
Pas encore d'évaluation
MS Arch Hybrid Store 3D SEC PDF
Document1 page
MS Arch Hybrid Store 3D SEC PDF
Abderrahmane Abdmeziane
Pas encore d'évaluation
Unh-Iol BFC Knowledgebase MSTP
Document19 pages
Unh-Iol BFC Knowledgebase MSTP
Abderrahmane Abdmeziane
100% (1)
Cisco As5300 Voice Gateway
Document12 pages
Cisco As5300 Voice Gateway
Abderrahmane Abdmeziane
Pas encore d'évaluation
High-Performance GPON ONT for FTTH Deployments
Document4 pages
High-Performance GPON ONT for FTTH Deployments
Sumanta Ghosh
Pas encore d'évaluation
Weird Negative Float Situations
Document15 pages
Weird Negative Float Situations
Soham Banerjee
Pas encore d'évaluation
Core Course Vii J2Ee Technologies Objective
Document72 pages
Core Course Vii J2Ee Technologies Objective
maha
Pas encore d'évaluation
Accounts Maintenance - Salary Upload.22.08.2004
Document2 pages
Accounts Maintenance - Salary Upload.22.08.2004
yayabar4u
Pas encore d'évaluation
FTK Forensic Exam Yields Criminal Network
Document37 pages
FTK Forensic Exam Yields Criminal Network
Sabrina Johnson
100% (1)
CK210 Micro CNC Lathe
Document4 pages
CK210 Micro CNC Lathe
Wilson Sergio Martins Dantas
Pas encore d'évaluation
Outlook Integration Implementation Guide: Salesforce, Winter '22
Document16 pages
Outlook Integration Implementation Guide: Salesforce, Winter '22
César Oliveira
Pas encore d'évaluation
Vdoc - Pub The Maple Handbook Maple V Release 3
Document522 pages
Vdoc - Pub The Maple Handbook Maple V Release 3
marcelo
Pas encore d'évaluation
Virtual Mouse
Document59 pages
Virtual Mouse
Sajjad Idrees
Pas encore d'évaluation
12.3 DEFAULT Values, MERGE, and Multi-Table Inserts
Document13 pages
12.3 DEFAULT Values, MERGE, and Multi-Table Inserts
Raul Perez
Pas encore d'évaluation
Prospect Tracking Database Configuration
Document260 pages
Prospect Tracking Database Configuration
amith ashwithi
Pas encore d'évaluation
The 10th TSSA Program Book v1.0 Final Version PDF
Document19 pages
The 10th TSSA Program Book v1.0 Final Version PDF
Ayu Rosyida zain
Pas encore d'évaluation
Smart Antenna - Seminar Report, PPT, PDF For ECE Students
Document2 pages
Smart Antenna - Seminar Report, PPT, PDF For ECE Students
vvkrkz
Pas encore d'évaluation
Protecting Your Sensitive Data in The Oracle E Business Suite
Document38 pages
Protecting Your Sensitive Data in The Oracle E Business Suite
mtalmasri
Pas encore d'évaluation
Second Syllabus IT E 203 Professional Elective 2 - Web Systems and Technologies
Document6 pages
Second Syllabus IT E 203 Professional Elective 2 - Web Systems and Technologies
Michaelangelo R. Serrano
Pas encore d'évaluation
Qualcomm Snapdragon 662 Mobile Platform Product Brief
Document2 pages
Qualcomm Snapdragon 662 Mobile Platform Product Brief
ichida_hiroshi
Pas encore d'évaluation
Hillcrest 1st Term Exam
Document34 pages
Hillcrest 1st Term Exam
Oyinade Adeolu
Pas encore d'évaluation
III B Tech I Sem r10
Document5 pages
III B Tech I Sem r10
kumaraswamireddy
Pas encore d'évaluation
Kyle Norris: Office Equipment: Handyman Equipment
Document1 page
Kyle Norris: Office Equipment: Handyman Equipment
Elizabeth Thornton
Pas encore d'évaluation
Crud Operation Using REST & Spring Boot
Document4 pages
Crud Operation Using REST & Spring Boot
Ajay
Pas encore d'évaluation
MX510 MX512 Operator and Installation Manual
Document242 pages
MX510 MX512 Operator and Installation Manual
Miroslaw Labuda
Pas encore d'évaluation
HP 3PAR StoreServe ELearning 1 2Q15 Full Deck
Document323 pages
HP 3PAR StoreServe ELearning 1 2Q15 Full Deck
mjsmith11
100% (2)
Eric Conrad Cissp Study Guide 2010 PDF
Document2 pages
Eric Conrad Cissp Study Guide 2010 PDF
Luisana
0% (2)
Lab#1
Document16 pages
Lab#1
Imran Khan
Pas encore d'évaluation
Iub Troubleshooting
Document36 pages
Iub Troubleshooting
Nicholas Wilson
100% (6)
Network Security 1.0 Modules 15 - 17 - Cryptography Group Exam Answers
Document14 pages
Network Security 1.0 Modules 15 - 17 - Cryptography Group Exam Answers
Brali Dioulson Nguema
Pas encore d'évaluation
Offline Assessment For Exchange Server
Document2 pages
Offline Assessment For Exchange Server
Hieu Pham
Pas encore d'évaluation
SAG
Document63 pages
SAG
dyoden
Pas encore d'évaluation
Ex 3 SRS
Document5 pages
Ex 3 SRS
Vaibhav Puri
Pas encore d'évaluation
3500 42m Proximitor Seismic Monitor Module Op Maintenance Man
Document306 pages
3500 42m Proximitor Seismic Monitor Module Op Maintenance Man
Denis Jimenez
100% (3)