All Rights Reserved, Copyright FUJITSU LIMITED. 2004 3 All Rights Reserved, Copyright FUJITSU LIMITED. 2004 4



Similar documents
Oracle Identity Managementの概要およびアーキテクチャ

untitled

Testing XML Performance

Encryption Security

ppt

BIG‑IP Access Policy Manager | F5 Datasheet

Windows Oracle -Web - Copyright Oracle Corporation Japan, All rights reserved.

XMLを基盤とするビジネスプロトコルの動向

untitled

untitled

untitled

FirePass Edge Client TM Edge Client LAN Edge Client 7.0 Edge Client Edge Client Edge Client Edge Client Edge Client Edge Client LAN Edge Client VPN Wi

Copyright 2008 All Rights Reserved 2

ハピタス のコピー.pages

相続支払い対策ポイント

150423HC相続資産圧縮対策のポイント

,,, J-SOX ISMS PCIDSS,, IM/VoIP/VoD Copyright 2008 Juniper Networks, Inc. 2

属性認証ハンドブック

セキュリティ関連XML規格の紹介

untitled

初心者にもできるアメブロカスタマイズ新2016.pages

Oracle Application Server 10g(9

- 2 Copyright (C) All Rights Reserved.

CS1987_ReducingITCosts_WP_0212_JPN.indd

untitled

Dec , IS p. 1/60

Copyright 2008 NIFTY Corporation All rights reserved. 2

wpEnterpriseSvr.doc

Copyright All Rights Reserved. -2 -!

DS_BIG-IP LTM VE_jp.indd

IPA:セキュアなインターネットサーバー構築に関する調査

ESA_UI_1110.PDF

Microsoft Word - 最終版 バックせどりismマニュアル .docx

橡Webcamユーザーガイド03.PDF

! Copyright 2015 sapoyubi service All Rights Reserved. 2

サブスクライバー / 署名者 Subscriber 側 ( アリス ) の要件 セキュアな署名 なりすましをいかに防ぐか 署名に使用する私有鍵をいかに保護私有鍵をいかに保護するか?? セキュアなハードウェアトークンなどが有効 セキュアな装置のセキュリティ基準 欧州の電子署名では SSCD (Secu

Oracle Service-Oriented Architecture Suite

金融分野のTPPsとAPIのオープン化:セキュリティ上の留意点

Cisco WebEx ホワイトペーパー: リアルタイムコラボレーションのパワーを解き放つ: Cisco WebEx ソリューションのセキュリティ概要

sec( ).ppt

IW2001-B2 1 Internet Week 2001 ( ) Copyright 2001 All Rights Reserved, by Seiji Kumagai IW2001-B2 2 CodeRed Copyright 2001 All Rights

PowerPoint Presentation

2 WHITE PAPER: OAUTH ca.com/jp OAuth 3 OAuth 4 OAuth 6 OAuth OAuth 8 CA API Gateway OAuth 9 OAuth Toolkit 10 CA API Gateway 2-legged OAuth 3-leg

Oracle Secure Enterprise Search 10gを使用したセキュアな検索

高度な標的型攻撃:包括的な保護

SAML

untitled

82801pdf.pqxp

JB_weblogic_guide.indd

JPGRID-GGF0205 第 5 回 GGF 調査会 globusworld 参加報告 株式会社 SRA グローバルITサービスカンパニー開発部産業第 4グループ 平野基孝 Programs 8 Tutorial 2: Grid Services and Web Services 8 Track

KDDI

- 2 Copyright (C) All Rights Reserved.

untitled

wp_integrating_AD_10.9_16JAN2014

FileMaker Server Getting Started Guide

CA Federation ご紹介資料

Web Web ( (SOAP (SOAP/http (WSDL UDDI 1. 2.XML 3. (XDoS http, https SOAP XML Web/App ( App

EMC Celerra NS-480システム(4ブレード)インストール ガイド

<Documents Title Here>

untitled

<Insert Picture Here> Oracle Business Intelligence 2006/6/27

セキュリティ関連XML規格の紹介

橡CoreTechAS_OverView.PDF

untitled

健康保険組合のあゆみ_top

リバースマップ原稿2

how-to-decide-a-title

URL AdobeReader Copyright (C) All Rights Reserved.

署名ツール検証報告書

SSO Sales/Tech combined webinar template

PRIMEQUEST 1000シリーズ Linux運用ガイド

Cisco® ASA シリーズルーター向けDigiCert® 統合ガイド

"CAS を利用した Single Sign On 環境の構築"

P2P? ( )? ( SOX ) ( ) COPYRIGHT 2005 SSH COMMUNICATIONS SECURITY CORP. ALL RIGHTS RESERVED. 2

Oracle Application Server 10g(9

<%DOC NAME%> (User Manual)

ITSM.PDF

Oracle Application Server 10g( )インストール手順書

konicaminolta.co.jp PageScope Net Care

2009 NTT Corporation. All rights reserved.

FileMaker Server Getting Started Guide

Printer Driverセットアップ編

untitled

スライド 1

AirMac ネットワーク for Windows

CP_SBA_Catalog2012_ indd

FileMaker Server 9 Getting Started Guide

FileMaker Server Getting Started Guide

Systemwalker IT Service Management Systemwalker IT Service Management V11.0L10 IT Service Management - Centric Manager Windows

SRX300 Line of Services Gateways for the Branch


wp_integrating_active_directory_ml

Mac OS X Server Windows NTからの移行

% 11.1% +6.% 4, % %+12.2% 54,16 6.6% EV7, ,183 Copyright 216 JAPAN POST GROUP. All Rights Reserved. 1

rzat10pdf.ps

sp c-final

1 Microsoft Windows Server 2012 Windows Server Windows Azure Hyper-V Windows Server 2012 Datacenter/Standard Hyper-V Windows Server Windo

VNSTProductDes3.0-1_jp.pdf

やよいの顧客管理

弥生給与/やよいの給与計算

Transcription:

2004129 1 All Rights Reserved, Copyright FUJITSU LIMITED. 2004 All Rights Reserved, Copyright FUJITSU LIMITED. 2004 2

All Rights Reserved, Copyright FUJITSU LIMITED. 2004 3 All Rights Reserved, Copyright FUJITSU LIMITED. 2004 4

All Rights Reserved, Copyright FUJITSU LIMITED. 2004 5 XML Security XML/Web ServicesSecurity ( ) $40M(2001) $4.4B(2006) $4.4B(2006) AAA(Authentication, Authorization and Administration) Security 65% ZapThink All Rights Reserved, Copyright FUJITSU LIMITED. 2004 6

All Rights Reserved, Copyright FUJITSU LIMITED. 2004 7 SSO USB Token PKI 802.1X(EAP-TLS), etc. ( SAML Assertion Network Network Network VLAN, etc. TCG PKI Security NGSCB (Next Generation Secure Computing Base) All Rights Reserved, Copyright FUJITSU LIMITED. 2004 8

2 RADIUS PKI Network ( Network Web Web SSO Kerberos Realm All Rights Reserved, Copyright FUJITSU LIMITED. 2004 9 ( ) Web PC (VPN Firewall) Web PC VLAN Web SSLv3 All Rights Reserved, Copyright FUJITSU LIMITED. 2004 10

( ) ID ID All Rights Reserved, Copyright FUJITSU LIMITED. 2004 11 ( ) TCG(Trusted Computing Group) TPM(Trusted Platform Module) TCG(Trusted Computing Group), API 20034 AMD, HP, IBM, Intel, Microsoft 79(20049 ) PC/,,, (OS/ ),, URL : http://www.trustedcomputinggroup.org/ All Rights Reserved, Copyright FUJITSU LIMITED. 2004 12

PC All Rights Reserved, Copyright FUJITSU LIMITED. 2004 13 Security PC Network PC Network All Rights Reserved, Copyright FUJITSU LIMITED. 2004 14

All Rights Reserved, Copyright FUJITSU LIMITED. 2004 15 SSO, Kerberos, NT Domain, DCE, etc. SSO ID ID SSO SAML Liberty, eauthentication ID RBAC, XACML Rule All Rights Reserved, Copyright FUJITSU LIMITED. 2004 16

SSO Liberty Liberty Alliance Project Liberty Alliance Project Liberty Identity ID Single-Sign-On, Single-Log-Out ID Identity Identity ID-FF ID-WSF ID-SIS ID SSO Web All Rights Reserved, Copyright FUJITSU LIMITED. 2004 17 SSOWS-Federation WS-Federation Single-Sign-On Microsoft IBM Verisign 20037 Web Service Securitiy Web Service Securitiy 20024 Microsoft IBM Verisign Web Web Services Security 1 WS-Security 6 7 WS-SecureConversation WS-Federation WS-Authorization WS-Policy WS-Trust WS-Privacy Web Service Security WS-Security MS/IBM/Verisign OASIS SOAP W3C All Rights Reserved, Copyright FUJITSU LIMITED. 2004 18

RBAC Rule Base 1. 1. Basic 2. PKI in B) 3. 2 B2C 3 1. 2. 3. 4. 1. 2. 3. 4 1. 2. 3. 4. Runtime 1. 1. PEP Runtime Web SSO SAML, Liberty Attribute Provider Web PDP Runtime All Rights Reserved, Copyright FUJITSU LIMITED. 2004 19 XACML XACML XML 20032 OASIS ( ) XML XACML XACML XACML 1.0 (20032) XACML 1.1 (20038) XACML 2.0 (2004) time zone RBAC, LDAP,,, All Rights Reserved, Copyright FUJITSU LIMITED. 2004 20

Web SSO SSO (Hub Web SSO SSO e-authentication AA/CS RBAC(: Role Based Access Control) Rule base Rule base All Rights Reserved, Copyright FUJITSU LIMITED. 2004 21 All Rights Reserved, Copyright FUJITSU LIMITED. 2004 22

ID ID Life Cycle Role ID C/S, Web SSO, ID Provisioning SPML ID ID ID ID eauthentication ID SSO SAML Liberty SAML Liberty (Attribute Provider) X.500, LDAP, RDB Entitlement Management RBAC Role,Rule) XACML All Rights Reserved, Copyright FUJITSU LIMITED. 2004 23 ID (ID ) ID ID ID (Federation) ID ID (Integration) ID ID ID (Fragmentation) ID (Consolidation) ID ID ID ID ID ID OS ID ID ID ID (ID ) Computing Computing 1980 1990 1990 All Rights Reserved, Copyright FUJITSU LIMITED. 2004 24

ID OS OSDBWeb OS 3) Control-SA 4) 5) 4) Control-SA 3) 2) 1) 2) 4) 5) 3) Control-SA GUI 1) Control-SA GUI All Rights Reserved, Copyright FUJITSU LIMITED. 2004 25 SPML SPML Service Provisioning Markup Language) OASIS Provisioning Services TC(PSTC) XML SPMLOASIS 2001OASISPSTC(Provisioning Services Technical Committee) Access360, BMC, Business Layers, CA, Entrust, Netegrity, Novell, Oblix, OpenNetwork Technologies, Sun/Waveset 20037 Catalyst 10 BMC, Business Layers, Critical Path, Entrust, OpenNetwork Technologies, PeopleSoft, Sun, Thor Technologies, TruLogica, Waveset 20038 Sun/Waveset SPML 200310IBMSPML2.0 WS-Provisioning 200311 SPML1.0 2004 SPML2.0 All Rights Reserved, Copyright FUJITSU LIMITED. 2004 26

SPML SPML (A) Requesting Authority PSP SPML PSP Provisioning System One SPML (C) Provisioning System Two (B) SPML (D) PST One Resource B Resource C Resource D Resource E Resource F ARAPSPCPSP PSP BPSP PSTD PSP All Rights Reserved, Copyright FUJITSU LIMITED. 2004 27 ID ID Identity ID SSO Assertion SSO ID PDP PEP Assertion Assertion All Rights Reserved, Copyright FUJITSU LIMITED. 2004 28

e-authentication e-authentication ID (e-government ) FirstGov.gov (Federate) e-government e-authentication Identity Federation Interoperability Lab All Rights Reserved, Copyright FUJITSU LIMITED. 2004 29 (Entitlement Management) (Entitlement Management) ( ) IP All Rights Reserved, Copyright FUJITSU LIMITED. 2004 30

All Rights Reserved, Copyright FUJITSU LIMITED. 2004 31 Network SSO ID Scalability ID Provisioning, ID Entitlement management SSO e-authentication Portal All Rights Reserved, Copyright FUJITSU LIMITED. 2004 32

All Rights Reserved, Copyright FUJITSU LIMITED. 2004 33

2024 © docsplayer.net プライバシー | 利用規約 | フィードバック