Kantara Initiative » Events

Kantara Initiative Symposium 2010, September 1, 2010, Tokyo, Japan

dervla — Wed, 25 Aug 2010 17:25:35 +0000

Thanks to Kantara Initiative’s Japan WG and their leadership, the Kantara Initiative Symposium 2010 in Japan is being held September 1, 2010, 13:00-18:00.

The workshop covers identity trust inclinations, identity control bases applied to numerous global governments, etc. Kantara Initiative’s President, Matthew Gardiner will report on the latest industry activity and identity case studies.

Due to a high level of interest this event has just reached capacity. Agenda details and content:
http://kantarainitiative.org/confluence/display/WGJ/Kantara+Initiative+Symposium+2010. We will share details of the event after September 1.

Kantara Initiative Collaborating with Open Identity Exchange, OpenID Foundation and others on Multi-Protocol Federation Interoperability Demonstration

dervla — Mon, 19 Jul 2010 13:38:07 +0000

Authorization Standards Workshop Also Being Held at Burton Group Catalyst Conference North America 2010.

Piscataway, NJ, July 19, 2010 – Kantara Initiative, an open forum providing identity ecosystem members the opportunity to collaboratively address harmonization and interoperability challenges that exist between identity systems, Web 2.0 applications and services, and Web-based initiatives, is participating in an Open Identity for Business Interop demonstration and an Authorization Standards Workshop at this year’s Burton Catalyst event in San Diego, on July 27.

Kantara Initiative is collaborating with members of the OpenID Foundation, the Information Card Foundation, the Open Identity Exchange, and Identity Commons to demonstrate uses of open identity as a business enabler in the Open Identity for Business Interop. This event will showcase:

Practical applications of the work activity of the US Identity, Credential and Access Management (ICAM) Subcommittee, National Institutes of Health, and their partners
Examples of using different levels of assurance across multiple trust federations
Illustrations of how open identity is moving to mobile devices and enabling new types of mobile applications
New browser-based applications that use identity services to automate cross-site user experiences

“Today’s organizations have new choices when it comes to working with the identities of their partners, citizens, suppliers, and customers – choices that can reduce costs, increase trust and create new business opportunities,” says Don Thibeau, Chairman of the Open Identity Exchange. “The Open Identity Exchange is collaborating with the Kantara Initiative and others on the Open Identity for Business Interop featured at this year’s Catalyst conference to show tangible examples of how identity services can enable business at multiple levels of assurance and across multiple protocols and multiple federations.”

“The use cases highlighted during this workshop held at Burton Catalyst are excellent examples of how Kantara Initiative works openly with the Identity community to fulfill its mission to foster interoperability, innovation and broad adoption through the development of open identity specifications and education programs,” added John Bradley, an independent ID management consultant and chairman of Kantara Initiative’s Federation Interoperability working group.

Kantara Initiative is also spearheading the Authorization Standards Workshop to be held on July 27th at 12:30pm PDT. This interactive workshop will explore the most current developments and trends in authorization standards, including OAuth (a community initiative now being standardized within the IETF), User-Managed Access (being developed within the Kantara Initiative) and XACML (an OASIS standard). Workshop attendees will also examine some authorization use cases that may drive new standards requirements.

“A combination of presentations, panels and demonstrations given by Kantara Initiative members will demonstrate how existing and emerging authorization standards fit into the enterprise and social web infrastructure,” says Paul Madsen, identity management researcher, NTT and Kantara Initiative chairman for Concordia DG and ID-WSF Evolution WG.

If you are interested in attending the Authorization Standards Workshop, please RSVP to Dervla O’Reilly, dervla[at]kantarainitiative[dot]org.

About Kantara Initiative
Kantara Initiative is a global, open, public-private, technology-agnostic forum comprised of identity ecosystem stakeholders. Kantara initiative’s inspired mission is to promote technical interoperability and harmonization; to develop policy frameworks for operational interoperability and; to provide certification and assessment programs to grow trust in the standards, products, and service deployments. Kantara Initiative freely provides the governance and resources whereby diverse members of the ecosystem successfully collaborate on a diverse portfolio of common policy frameworks, technical specifications and deployment guidelines driven by the identity community, industry and governments from around the world. For more information about getting involved in Kantara Initiative, visit http://kantarainitiative.org/.

###

Media Contact
Michelle Hunt
Kantara Initiative
Michelle.Hunt@ieee-isto.org
+1 732 981-3434

Kantara Initiative Meeting, October 19-21, 2010 at Orange-FT campus, Paris, France

dervla — Thu, 15 Jul 2010 19:58:52 +0000

We invite you to join us for the third Kantara Initiative Meeting, Tuesday-Thursday, October 19-21. This event is kindly hosted by Orange-FT at their Issy les Moulineaux campus in Southern Paris.

Registration is now open – the early-bird registration price is $195USD until September 17, then $250USD thereafter until October 21.

Event information is available at our conference page. You can review the agenda, nearby hotel details, maps and travel details at this page.

Stay tuned for details and location for our open-for-all dinner Wednesday, October 20, 6:00-8:00pm.

We hope you will join us later this year in Paris.

Kantara Initiative’s association sponsorship at pii2010

dervla — Mon, 05 Jul 2010 17:45:20 +0000

Registration is open for pii2010. Taking place August 17-19 in Seattle during Seattle Geek Week, pii2010 will explore the future of digital privacy, identity and innovation, and how to strike a balance between protecting sensitive information and enabling new technologies and business models.

It’s an all-hands-on-deck conference where industry executives, technologists, consumer advocates, policy experts and other stakeholders will come together as a group to examine critical issues llike:

How emerging technologies & business models are impacting the way data is created, shared and aggregated
Effective approaches for building online trust with users
Ways in which user preferences and social norms are shifting
Changes in the regulatory landscape, in the U.S. and internationally
The role of anonymity and the future of reputation management on the Web
The latest developments in user-centric identity management

In addition, pii2010 will serve as the official launch pad for pii Labs, an open forum for brainstorming and collaborating where you will have an opportunity to share your ideas and projects with other participants.

Contact Dervla O’Reilly, dervla[at]kantarainitiative[dot]org for the discount code (for Kantara Initiative’s members) to save 20% off of pii2010 registration.

Review the 3-day schedule online.

Kantara Initiative Overview – Secure ID podcast by J. Trent Adams

dervla — Tue, 22 Jun 2010 20:15:56 +0000

In the third part of the Regarding ID series of podcasts looking at identity standards Editor Zack Martin speaks with J. Trent Adams, chair of the Kantara Initiative Leadership Council. In his day job Adams is Outreach Specialist for the Internet Society working on Trust & Identity Initiative.

The Kantara Initiative is trying to bring unity to the various identification standards underway across the globe. Adams gives listeners an overview of what Kantara is trying to accomplish and how its getting there. Another podcast will be posted this week that discusses the certification programs that Kantara is undertaking.

You can listen to the podcast via iTunes, Aggregator, m4a, mp3. Stay tuned for further podcasts in the series.

Authorization Standards Workshop at Burton Catalyst San Diego, July 27, 2010, 12:30-2:30pm

dervla — Thu, 03 Jun 2010 18:30:31 +0000

When: July 27, 2010 12:30-2:30pm, Room Aqua 304, Hilton Bayfront Hotel

Where: Burton Catalyst San Diego

Title: Authorization Standards Workshop

Abstract: As authorization generally follows authentication in a given online transaction, standardization of authorization has generally followed that of web authentication standards like SAML, WS-Federation, and OpenID. This workshop will explore developments & trends in authorization standards, including OAuth (a community initiative now being standardized within the IETF), User-Managed Access (evolving within the Kantara Initiative) and XACML (an OASIS standard). We’ll also look at some authorization use cases that may imply new requirements of these protocols. Through a combination of presentations, panels and demonstrations – we’ll explore how these existing & emerging authorization standards fit into the enterprise & social web infrastructure.

Agenda:

Welcome, Intro & Overview, Paul Madsen – 5 mins

Preso 1 - XACML 3.0 Update

It’s been more than 5 years since eXtensible Access Control Markup Language (XACML) version 2 was standardized at OASIS. In the meantime XACML has grown in popularity as a standard and the number of production XACML implementations continues to grow steadily. XACML 3.0, currently in the final stages of ratification, contains significant enhancements that will enable it to keep pace with growing enterprise demands. In this session, Gerry Gebel will describe the enhancements to version 3.0, including the SAML 2.0, Delegation and Multiple Decision Request profiles. Gerry will also provide use case samples of how new features of XACML 3.0 can be implemented.

Gerry Gebel, Axiomatics – 20 mins

Preso 2/use case - OAuth

As today’s businesses increasingly shift their processes into the cloud, a simplified set of design patterns and standards are required to harmonize the speed and compelling economics of the cloud with companies’ existing Identity management systems and processes. Topics will include the evolution of OAuth2, and it’s applicability to enterprise use-cases for cloud authorization and API federation.

Chuck Mortimer, Product Management Director, Identity & Security, Salesforce.com – 20 mins

Break 5 mins

Preso 3/use case - IASWG overview and review of authorization use cases

Describe IASWG purpose and goals, review authorization use cases received by IASWG thus far, review Concordia AuthZ Survey results.

John Tolbert, Boeing & Gavin Illingworth, BMO – 20 mins

Preso 4/use case – OpenAz: Building and Deploying XACML PEPs for Attribute-Based Access Control

There is an increasing consensus that access control decisions should be externalized from applications or services to a policy engine implementing a PDP. To take full advantage of this model, one needs to embed PEPs in applications, middleware and services in a performant and flexible way. OpenAz (http://openliberty.org/wiki/index.php/Main_Page#OpenAz) is an open source project aimed at creating language bindings for the XACML PEP request-response protocol. A sample implementation of the Java AzApi, which implements the XACML PEP protocol, is available from the OpenAz website.

Prateek Mishra, Oracle – 20 mins

Preso 5/use case - Federation Authorization and the Cloud – Why A Pragmatic Approach is Important

Pam Dingle will discuss what organizations are doing today in the context of federation and authorization. Further he will examine what are the next pragmatic steps organizations should consider such that they can successfully implement a federated authorization model for cloud computing.

Pam Dingle, PingID – 20 mins

Closing comments 10 mins

Event details: http://www.catalyst.burtongroup.com/NA10/ConferenceElements.html

Please RSVP to Dervla O’Reilly, dervla[at]kantarainitiative[dot]org

Burton Catalyst agenda: https://burtongroup.wingateweb.com/na2010/scheduler/weekAtGlance.do

Reporting From RSA 2010: Identity, Health Care, and a Higher Realm of Credentials

dervla — Wed, 10 Mar 2010 17:40:14 +0000

Written by Mike Kirkwood. Read the full article.

This week we are reporting from RSA, the security conference in San Francisco. We’ve seen hackers, threats, and industry leaders roaming these halls – and among these we found leaders of the identity community, people who are thought leaders focused on creating a safe Internet for all individuals.

This includes folks who in the Identity Commons and OASIS workgroups, and the 1-year-old Kantara Initiative. The latter was announced to the public at RSA 2009, and this year it hosted an all-day workshop that brought cloud computing into the forefront of the dialog.

Diverse Community of Interests Coming Together

Today’s all-day workshop offered by the Kantara Initiative focused almost exclusively on identity services and included viewpoints from several perspectives: enterprises (CA, Ping Identity, Aetna, Oracle, HP), service providers (NTT), consumer applications (Paypal, Google), and government agencies (NIH).

The room was packed – standing room only. After the kickoff we had a chance to ask Trent Adams, chair of the Kantara leadership council, to share his thoughts about identity, cloud computing and year one of the new organization.

He talked about the potential big win that existed for the organization because of its involvment in preparing standards for federal government approval. These are in historic times, he said, and embracing openness at the federal level was an opportunity the organization decided was valuable for the community. We’re keeping our ears open to learn more about how identity services will be enabled and approved through the government.

Landscape Change: Cloud Computing Invigorates Identity Efforts

One thing that is clear is that things get more complicated when combining identity services with cloud computing. We were reminded that many of the technologies that have been developed, including things like OpenID and SAML were designed around the same scenarios of sharing across domains. Identity can be solved in a multi-vendor, multi-protocol, and multiple-infrastructure world.

Matthew Gardiner of CA summed the importance of the link between identity solutions and cloud computing in his talk, “Identity as Security Glue for the Cloud”:

“I want to say the phrase cloud security in the first few moments of my talk because you’ll be hearing it a thousand times before the end of the conference. Cloud security can be viewed as a Rubik’s cube of security implications, when identity services and combining them within the vectors of Iaas, PaaS, and SasS combined with private, public, and hybrid clouds.”

The West Coast Perspective on Health Care

RSA and HIMSS fall on the same week this year. While nearly all of the healthcare IT leadership headed to Atlanta, several companies also came to San Francisco.

Yesterday, MEDecision presented their solution and connections to different Web applications and health care records and systems, and gave a very tangible set of scenarios showing how cloud computing and identity meet around sharing information about a person who is a patient.

At the same time on the East Cost, MEDecision was also at HIMSS demonstrating open exchange of health information in a HIE product offering that helps connect services across providers in order to aggregate a view of an individual. The company offers software and services to insurers to negotiate their cloud-based work flow, including moving private data across pharmacy, doctors, insurers, and the entire health care landscape.

No Passwords in the Cloud

Patrick Harding of Ping Identity spoke about his company has learn about cloud computing in this session, “How the Cloud is Changing Federated Identity Requirements”. A few of his observations:

Software is no longer build vs. buy. It now includes subscribe, which by definition is a shorter term relationship.
Cloud computing is an evolution of architecture. It arrives after Web services, which evolved from Web, client server, and mainframe.
Complexity of the identity layer is harder than ever for the simple reason that there are more apps per user than ever before.
Services are becoming any-to-any, where internal (employee) and external (customer) classifications don’t matter nearly as much as before. Because of this firewalls are losing their usefulness.
Audit is no longer an afterthought. Auditors don’t care how or where applications hosted, but hey do need their reports! This includes Sarbanes-Oxley, HIPAA, Gramm-Leach, Bliley, and more.

A core theme of this session was how the consumer mindset is driving requirements for application experience. Consumers expect it to work on any device, be secure, and be portable. To deliver on this, it must be easy to use. At the same time, password risk must be reduced.

A key trend that Harding pointed out is moving identity systems from “push” models into “pull” models. Instead of updating partners and directories by batch services, companies need to be building real-time identity resolution in applications.

We asked Harding if he had any predictions for where that type of service will come from. His response led us to the conclusion that the leader will be a brand and service that people trust and understand the motivations of. It will likely enter the market from a higher realm of credentials than Twitter or Facebook – perhaps from financial services.

Context is Fundamental: Person, Father, Employee, All of the Above

One thing we learned today is that Google’s App Engine is worth watching as this space evolves. Several interesting things are being done in this sandbox that haven’t been accomplished other places, including how to connect consumer services to enterprise login discovery using domain.

Google has inserted itself into the sweet spot by getting consumers and enterprises alike hooked on their applications, giving the company a unique view of the challenges and solutions in joining identity with cloud computing. We’ll be taking a closer look at these offerings and where Google is headed.

Another thing we observed is the power of the network. NTT gave a demonstration of the power of mixing identity protocols (SAML and OpenID) for the purpose of connecting social, information, and financial transactions in the browser with one login. It starts to show how the next generation Internet might work, where the application requests profile from the cloud rather than a user typing it in.

A summary of overlapping-world-multi-protocol integration has been shared on Google’s site.

Presentations available from Kantara Initiative Annual Identity Workshop March 1, 2010

dervla — Wed, 03 Mar 2010 04:10:38 +0000

Many thanks to all our sponsors and presenters of Kantara Initiative’s Annual Identity workshop on March 1 at the RSA Security Conference. We had a full house with interesting presentations, pod demonstrations and dialog throughout the day from our sponsors; CA, FuGen Solutions, Google, NTT, Oracle, PayPal, Ping Identity & the U.S. Government.

If you weren’t there in person, you can review the presentations online:

Kantara Initiative Overview
Kantara Initiative Groups
PayPal KI 2010 RSA 2010 IA and Real World
CA KI Workshop 2010 RSA Conference
NTT KI Workshop 2010 RSA Conference (via prezi.com)
Ping ID KI Workshop 2010 RSA Conference
Oracle KI Workshop 2010 RSA Conference Customer Panel
Google KI Workshop 2010 RSA Conference
FuGen KI Workshop 2010 RSA Conference Demo Pod

Diverse Market Leaders from the Identity Ecosystem Converge on March 1 at RSA

dervla — Wed, 10 Feb 2010 18:14:29 +0000

Diverse Market Leaders from the Identity Ecosystem Converge to Stage Kantara Initiative’s RSA Security Pre-Conference Workshop on “Technology, Policy and Compliance for Identity Services in 2010 and Beyond”

Gain State-of-Identity Insight of common Cloud/SaaS scenarios and recent developments in assurance, multi-protocol interoperability, privacy-enablement and more from Enterprise and Consumer Market Leaders.

Piscataway, NJ, 8 February 2010 Kantara Initiative announced today its annual public Identity Workshop at the RSA Security Conference. The one-day event to be held on March 1st from 8:00am- 5:00pm in the Moscone Center in San Francisco is designed to equip attendees with the vital information required to ensure success in employing the right identity management approach with the proper considerations. Recent developments in identity assurance, multi-protocol interoperability, liability models, usability, privacy-enablement and identity services certification will be spotlighted by key market leaders including Google, Oracle, CA, Aetna, NTT and Ping Identity.

“If you run a login system of any type (Enterprise, Consumer, SaaS vendor) you will find this workshop to be packed with information about major changes in the space, both in terms of security design and new functionality that can improve your identity infrastructure,” reveals Eric Sachs, Product Manager for Google Security.

“Since its inception nearly one year ago, Kantara Initiative has built momentum for service deployment across the identity ecosystem,” says Roger Sullivan, Oracle. “This workshop will help deployers understand how to connect the dots between cloud computing and identity management”.

“Identity protocols like SAML, OpenID, OAuth, and Information Cards continue to evolve,” says Paul Madsen, Identity Management Researcher at NTT. “This workshop will discuss recent developments, and present opportunities for combining the protocols in useful ways.”

“Identity Assurance is the key to successful, secure transactions across the emerging National Health Information Network, “ explains Mark Coderre, Head of Security Architecture for Aetna. “At this workshop we will be showcasing what the healthcare industry is doing with Kantara Initiative programs to improve the security of sensitive data transactions across operational boundaries.”

The identity workshop will feature a series of presentations, panels and demonstrations of common Cloud/SaaS deployment scenarios and innovations from various market leaders.

Technology, Policy and Compliance for identity Services in 2010 & Beyond is open to the public and to all RSA Conference attendees. To register for this free Kantara Initiative workshop, please click http://www.emc.com/microsites/rsa-conference/2010/usa/registration-and-rates.htm and use the code: 131 0KANEXPO for the Expo only pass and select Kantara Initiative from the ‘Registration Package’ page. Note that this pass only allows access to the Kantara Initiative workshop on March 1.

About Kantara Initiative

Kantara Initiative is a global, open, public-private, technology-agnostic forum comprised of identity ecosystem stakeholders. Co-founded by Liberty Alliance, Internet Society, and the Information Card Foundation, among others, its inspired mission is to promote technical interoperability and harmonization; to develop policy frameworks for operational interoperability and; to provide certification and assessment programs to grow trust in the standards, products, and service deployments. Kantara Initiative freely provides the governance and resources whereby diverse members of the ecosystem successfully collaborate on a diverse portfolio of common policy frameworks, technical specifications and deployment guidelines driven by the identity community, industry and governments from around the world. For more information about getting involved in Kantara Initiative, visit www.kantarainitiative.org.

Media Contact

Michelle Hunt

Kantara Initiative

Michelle.Hunt@ieee-isto.org

(732) 981.3434 (o)

###

Kantara Initiative’s RSA Security Pre-Conference Workshop, March 1 2010

dervla — Thu, 04 Feb 2010 00:28:35 +0000

Kantara Initiative holds it’s annual identity workshop at the RSA Conference, March 1, 2010, 8am-5pm. Gain state-of-identity insight through a series of presentations, panels & demonstrations of common Cloud/SaaS scenarios from diverse market leaders.

Title: Technology, Policy, and Compliance for Identity Services in 2010 & Beyond

What: Kantara Initiative’s RSA Security Pre-Conference Workshop

When: Monday, March 1, 2010, 8:00am-5:00pm, Room 301

Where: Moscone Center, San Francisco, CA, USA

2010 brings new opportunities for identity services in the enterprise & consumer markets. This workshop is designed to equip attendees with the vital information required to ensure success in employing the right identity management approach with the proper considerations. Recent developments in identity assurance, multi-protocol interoperability, liability models, usability, privacy-enablement and identity services certification will be spotlighted by key market leaders including Google, Oracle, CA, Aetna, NTT and Ping Identity.

Registration for the event has reached capacity. Access will be granted to those who pre-registered. We encourage you to arrive on Monday, March 1 and if we have not reached full room capacity will be be happy to have you join us.

Agenda:

8:00- 9:00	Visit demonstration pods featuring a variety of innovations & deployment scenarios from FuGen Solutions, NTT, Ping Idenity, U.S. Government.
9:00-9:40	Kantara Initiative – The Identity Ecosystem one year later: highlighting key industry and government initiatives in context and plain English. Trent Adams, Leadership Council Chair @ Kantara Initiative, Outreach Specialist, ISOC
9:40-10:20	PayPal – Who should be asking about your identity, how does this relate to your identity and do you have any say afterall? Andrew Nash, Senior Director, Identity Services, PayPal
10:20-10:30	Break
10:30-11:10	CA – Identity as Security Glue for the Cloud. Matthew Gardiner, Director of Product Marketing, CA & Chris Sharp, Director of Application Development, MEDecision
11:10-11:50	NTT – An overview of recent developments in some key identity protocols (SAML, OpenID, OAuth, IMI etc), and a discussion of opportunities for combining these protocols in interesting ways. Paul Madsen, Identity Management Researcher, NTT
11:50-1:10	Lunch Break with extra free time to visit demonstration pods
1:10-1:50	Ping Identity – How the Cloud is Changing Federated Identity Requirements. Patrick Harding, CTO, Ping Identity
1:50-2:30	Oracle Identity and security considerations in leveraging Cloud services – an enterprise perspective. Uppili Srinivasan, Senior Director Oracle Security and Identity
2:30-2:40	Break
2:40-3:20	Google – Business value of federated login for consumer websites, Enterprise SaaS vendors, and Enterprises. Eric Sachs, Product Manager Google Security & Chris Messina, Open Web Advocate.
3:20-4:00	Kantara Initiative – Identity Services Roadmap: A panel of market leaders from Healthcare, eGovernment, and Financial Services discuss the future of Identity Services. Moderated by Matthew Gardiner, VP of Kantara Initiative & Director of Product Marketing, CA Panelists: Mark Coderre, Head of Security Architecture at Aetna, Debbie Bucci, Integration Services Center Manager (NIH Login, Federaton, SOA), NIH – Center for Information Technology Division of Enterprise and Custom Applications & Todd Inskeep, SVP Authentication & Customer Protection Executive at Bank of America
4:00-5:00	Visit demonstration pods featuring a variety of innovations & deployment scenarios from FuGen Solutions, NTT, Ping Idenity, U.S. Government.