Session Abstract: This session will cover the main aspects of shared signals and events standards CAEP (Continuous Access Evaluation Protocol) and RISC (Risk Incident Sharing and Coordination), broken into digest-able chunks for real-world implementations. We'll showcase how this orchestrates into the bigger IAM ecosystem of domains like authorization, access, session management, identity management ... to name a few. We also will go into detail about interoperability, sharing (internal and external), and implementation design of push vs pull while covering pros/cons and caveats.
The presentation covers use cases on how to extend the CAEP and RISC events to be "custom" while adhering to the specifications. Then, we'll cover transmitters and publishers, as this is where the real security value is in this framework. Lastly, we'll discuss how these security event tokens (SETs) are received and integrated into systems (IdPs or security systems) to reflect the breadth, reach of SETs and their downstream value with access, identity management, and sharing security information. The format of the SETs will also be highlighted to showcase the enriched information using an already widely adopted standard — JSON web tokens.