register for 2024
May 28-31, 2024 | Aria Resort & Casino, Las Vegas, NV
register for 2024
Identiverse 2023 • Session
Sharing is Caring even with Security—A Journey into the Shared Signals Framework
Identity for Security
Back to Main Agenda
Juniper 3
5:05 pm - 5:30 pm
Senior Staff Security Engineer, Identity Security
The Walt Disney Company
Session Abstract: This session will cover the main aspects of shared signals and events standards CAEP (Continuous Access Evaluation Protocol) and RISC (Risk Incident Sharing and Coordination), broken into digest-able chunks for real-world implementations. We'll showcase how this orchestrates into the bigger IAM ecosystem of domains like authorization, access, session management, identity management ... to name a few. We also will go into detail about interoperability, sharing (internal and external), and implementation design of push vs pull while covering pros/cons and caveats. The presentation covers use cases on how to extend the CAEP and RISC events to be "custom" while adhering to the specifications. Then, we'll cover transmitters and publishers, as this is where the real security value is in this framework. Lastly, we'll discuss how these security event tokens (SETs) are received and integrated into systems (IdPs or security systems) to reflect the breadth, reach of SETs and their downstream value with access, identity management, and sharing security information. The format of the SETs will also be highlighted to showcase the enriched information using an already widely adopted standard — JSON web tokens.
Follow us on
identity everywhere
Stay informed on the latest event updates
Identiverse: The Identity Universe
hosted by CyberRisk Alliance
register now