Upload File

wso2con eu 2016: advance information access control system for mobile devices based on wso2...

  • Home
  • Technology
  • WSO2Con EU 2016: Advance Information Access Control System for Mobile Devices Based on WSO2 Architecture
13
Advance Informa.on Access Control System for Mobile Devices Based on a WSO2 Architecture Fidel Paniagua & Javier Ruiz Research Assistants

Upload: wso2-inc

Post on 15-Apr-2017

198 views

Category:

Technology


0 download

Report

TRANSCRIPT

Page 1: WSO2Con EU 2016: Advance Information Access Control System for Mobile Devices Based on WSO2 Architecture

AdvanceInforma.onAccessControlSystemforMobileDevicesBasedonaWSO2ArchitectureFidelPaniagua&JavierRuizResearchAssistants

Page 2: WSO2Con EU 2016: Advance Information Access Control System for Mobile Devices Based on WSO2 Architecture

Content

•  Businessproblem•  Solu.onArchitecture•  Decisioncriteria•  Implementa.onperformance•  Deploymentinfo•  Demo

Page 3: WSO2Con EU 2016: Advance Information Access Control System for Mobile Devices Based on WSO2 Architecture

BusinessProblem(I)

•  Userssharecorporatedevicesatthesame.me•  Bringyourowndevice•  Cloudstorage•  Keyscompromiseinuserdevices•  Disgruntledemployees

Dataleakinforma?on

Page 4: WSO2Con EU 2016: Advance Information Access Control System for Mobile Devices Based on WSO2 Architecture

Currentsolu.onsonlycovers:•  Userprofiles•  Systemcipher•  Containercipher•  Mul.pleauthen.ca.onfactors•  Informa.onRightsManagement

Ø  MicrosoGIRMØ  AdobeDRM

BusinessProblem(andII)

Page 5: WSO2Con EU 2016: Advance Information Access Control System for Mobile Devices Based on WSO2 Architecture

Solu?onarchitecture(I)

MobileDevice

Iden.tyServerServiceProvider

JavaCard

•  AAA•  Securekeymanagement

Page 6: WSO2Con EU 2016: Advance Information Access Control System for Mobile Devices Based on WSO2 Architecture

•  Oursystemprovidesthefollowingsecuritymechanisms:–  Downloadanddisplayinforma.onaccesscontrol–  Cypherprotec.on–  KeysarestoragewithintheJC–  Mul.factorauthen.ca.on–  Informa.onisdecipheredwithintheJC–  Mul.lateralandmul.levelsecurity

Solu?onarchitecture(andII)

Page 7: WSO2Con EU 2016: Advance Information Access Control System for Mobile Devices Based on WSO2 Architecture

Decisioncriteria

•  Opensourcealterna.ve•  WSO2offersfullsuiteofproducts•  Iden.tyServerisfullintegratedwithXACMLandSAML•  Applica.on Server allows easily to deploy SSO and

XACMLinWebApplica.ons•  Applica.on Server supports mul.ple web applica.on

formats•  Publicmailinglists•  WSO2offersalotofdocumenta.onandexamples

Page 8: WSO2Con EU 2016: Advance Information Access Control System for Mobile Devices Based on WSO2 Architecture

Implementa?onperformance

Advantages•  XACMLevalua.oninashort.me•  Hardwarecryptographicopera.ons

Drawbacks•  PolicyAdministra.on•  LowperformancewithJavaCard+NFCconnec.on

Futureop.miza.ons:SecureSD

Page 9: WSO2Con EU 2016: Advance Information Access Control System for Mobile Devices Based on WSO2 Architecture

Deploymentinfo(I)

MobileDevice

WebApplica.on Iden.tyserver

Virtualiza.on

Debian Debian

VMwareESXi

XperiaZ2Tablet

NFCUserJavaCard

Wi-Fi

Page 10: WSO2Con EU 2016: Advance Information Access Control System for Mobile Devices Based on WSO2 Architecture

ServiceProvider–  WSO2Applica.onServer5.3.0

•  SSOwithSAML2.0•  HTTPS•  En.tlementFilter

Iden.tyProvider–  WSO2Iden.tyServer5.1.0

•  SSOwithSAML2.0•  XACML3.0•  SupportforMicrosoGAc.veDirectory•  PIPCustomiza.on

Deploymentinfo(andII)

Page 11: WSO2Con EU 2016: Advance Information Access Control System for Mobile Devices Based on WSO2 Architecture

Demo

•  Video

UserProfiles

•  Fidel–  SecurityClearance:Confiden.al–  Country:Spain–  Ins.tu.on:Army–  Mission:Alpha

•  Javier–  SecurityClearance:TopSecret–  Country:Spain–  Ins.tu.on:Navy–  Mission:Beta

Documents

•  UCAV_2_2_6–  Classifica.onLevel:Confiden.al–  Country:Spain–  Ins.tu.on:Army–  Mission:Alpha

•  UCAV_2_3_2–  Classifica.onLevel:Secret–  Country:Spain

Page 12: WSO2Con EU 2016: Advance Information Access Control System for Mobile Devices Based on WSO2 Architecture

Demo

Page 13: WSO2Con EU 2016: Advance Information Access Control System for Mobile Devices Based on WSO2 Architecture

ThankYou!

#WSO2ConEU

Shareyourfeedbackforthissessionwso2con.com/app


WSO2Con ASIA 2016: WSO2 DevOps: How to Deploy, Manage, Administer and Monitor WSO2 Products

WSO2Con ASIA 2016: Introduction to the All New WSO2 Governance Center

WSO2Con ASIA 2016: An Introduction to the WSO2 Analytics Platform

WSO2Con USA 2017: Enhancing Customer Experience with WSO2 Identity Server

WSO2 App Dev Strategy and Roadmap - WSO2Con EU 2014

WSO2Con ASIA 2016: An Introduction to the WSO2 Integration Platform

WSO2Con Asia 2014 - Federated Asset Management with WSO2 Enterprise

WSO2Con US 2013 - The Integration Game Changer: WSO2 Integration Cloud

WSO2Con EU 2015: WSO2 For EXPO2015

WSO2Con USA 2017: Positioning WSO2 for Quicker Uptake

[WSO2Con EU 2017] Opening Keynote: The WSO2 Digital Agility Impact

WSO2Con ASIA 2016: Understanding the WSO2 API Management Platform

WSO2Con ASIA 2016: Case Study: Identity in the WSO2 Ecosystem

WSO2Con EU 2016: Integrating WSO2 Governance Registry with Enterprise Architecture Tools

WSO2Con EU 2016: WSO2 Process Center: Processes as Friends, Not Enemies

WSO2Con USA 2015: Revolutionizing WSO2 PaaS with Kubernetes & App Factory

WSO2Con EU 2016: How to Contribute to WSO2 : Community Process

WSO2Con ASIA 2016: WSO2.Telco IDS – Mobile as Identity

WSO2Con USA 2015: WSO2 DevOps: How to Deploy, Manage, Administer and Monitor WSO2 Products

WSO2Con ASIA 2016: WSO2 Cloud Strategy Update

WSO2Con ASIA 2016: WSO2 Process Center: Processes as Friends, Not Enemies

WSO2Con USA 2017: Rise to the Challenge with WSO2 Identity Server and WSO2 API Manager

WSO2Con US 2013 - Rapidly Building Complex Applications with WSO2 App Factory

[WSO2Con EU 2017] Building Smart, Connected Products with WSO2 IoT Platform

WSO2Con EU 2016: WSO2 Cloud and Platform as a Service Strategy

WSO2Con EU 2016: Rethinking Message Brokering with WSO2 Message Broker

WSO2Con USA 2015: WSO2 Platform for IoT

WSO2Con USA 2017: Implement an Effective Digital Platform Using WSO2 Integration

WSO2Con ASIA 2016: WSO2 Integration Platform Deep Dive

WSO2Con 2011: Introduction to the WSO2 Carbon Platform

WSO2Con 2013 - The Integration Game Changer: WSO2 Integration Cloud

[WSO2Con EU 2017] Open Interoperability of WSO2 Analytics Platform

WSO2Con USA 2015: An Introduction to the WSO2 Analytics Platform

WSO2Con USA 2015: Extending and Customizing WSO2 API Manager

WSO2Con EU 2015: An Introduction to the WSO2 Data Analytics Platform