This slideshow discusses the challenges of governance structures and trust relationships in a complicated technological environment, and describes an effort to meet that challenge: the Global Federated Identity and Privilege Management Demonstration Project.
This slideshow addresses the challenges of having many recognized sensitive but unclassified (SBU) networks and information systems, with each one having investments in technology, governance structures, and trust relationships without being interoperable. It also addresses the need to ensure that the right individuals have access to authorized resources they need regardless of where they reside in the enterprise, noting that security and privacy of information are major impediments to information exchange and system interoperability. It discusses the complexities of trust domains; federation; value proposition; and the basics of Global Federated Identity and Privilege Management (GFIPM) including identity vs. electronic identity, credentials, tokens, and assertions, GFIPM metadata and assertion framework. The presentation also highlights aspects of the GFIPM Security Interoperability Demonstration Project, with details on its initiation and funding, project approach, participating agencies, resources, user demographics, how GFIPM works, identity provider and service provider integration, and highlights lessons learned from the GFIPM demo project.