Browse communities
Presenting a webinar?
Share this content

Identity of Data

Steve Coplan-Research Manager, Enterprise Security Practice, 451 Research and Vikas Jain-Director, Product Management, Intel
As organizations move to the Cloud, concerns arise about retaining control of data resident on third-party services. At the same time, distributing information and protecting intellectual property across a distributed, cloud-based supply chain is a business and IT concern, since there is a need for verifiable trust and persistent visibility into the flow of information. An emerging white space exists for the glue between identity logic, data properties, storage and key management in terms of defining, managing and enforcing policies across SaaS, cloud, mobile and hybrid environments. In this webinar we present the concepts and review solutions that are beginning to address this white space: the cloud service broker role, API/Service Gateways, & Identity as a Service.
Jun 5 2012
51 mins
Identity of Data
Intel API/Service Gateways Identity as a Service
More from this community:

Business Continuity / Disaster Recovery

Webinars and videos

  • Live and recorded (1009)
  • Upcoming (31)
  • Date
  • Rating
  • Views
  • In this session, we look at the issues with testing and audit. This is the base causes of why we fail to secure systems and how we can more effectively create methodologies that actually find flaws. Penetration tests and audit each have major failings, but when done correctly and with the right incentives, they can help make us more secure. When done poorly, we all suffer.
    Read more >
  • Zac Streelman, Manager, Information Technology at Leupold and Stevens was looking for a disaster recovery (DR) solution that would extend the flexibility of virtualization to his DR environment. The solution had to deliver enterprise-class support for his mission critical applications: Oracle, Microsoft SQL Server and SharePoint and various CAD programs. The board of directors was specifically asking what the current solution was and what service levels could the infrastructure deliver.
    Zerto Virtual Replication installed seamlessly into their existing infrastructure, did not require any data center updates and is fully integrated into VMware vCenter.

    With Zerto Virtual Replication he was able to:
    - Realize very aggressive service levels – recovery point objectives of seconds and recovery time objectives of minutes
    - Deliver a better ROI with a DR solution that is hardware agnostic
    - Increase team productivity with a very simple solution
    - Quickly cross-train additional staff on DR processes and procedures
    - Optimize flexibility as changes to the environment required changes to the DR strategy
    - Test and validate the DR failover process without taking primary production systems offline

    Join Zac Streelman, Manager, Information Technology at Leupold and Stevens and Jennifer Gill, Director of Product Marketing at Zerto, to hear from your peers and learn about Zerto Virtual Replication.
    Read more >
  • Zac Streelman, Manager, Information Technology at Leupold and Stevens was looking for a disaster recovery (DR) solution that would extend the flexibility of virtualization to his DR environment. The solution had to deliver enterprise-class support for his mission critical applications: Oracle, Microsoft SQL Server and SharePoint and various CAD programs. The board of directors was specifically asking what the current solution was and what service levels could the infrastructure deliver.
    Zerto Virtual Replication installed seamlessly into their existing infrastructure, did not require any data center updates and is fully integrated into VMware vCenter.

    With Zerto Virtual Replication he was able to:
    - Realize very aggressive service levels – recovery point objectives of seconds and recovery time objectives of minutes
    - Deliver a better ROI with a DR solution that is hardware agnostic
    - Increase team productivity with a very simple solution
    - Quickly cross-train additional staff on DR processes and procedures
    - Optimize flexibility as changes to the environment required changes to the DR strategy
    - Test and validate the DR failover process without taking primary production systems offline

    Join Zac Streelman, Manager, Information Technology at Leupold and Stevens and Jennifer Gill, Director of Product Marketing at Zerto, to hear from your peers and learn about Zerto Virtual Replication.
    Read more >
  • Join us as top security experts look at some of the latest security challenges and provide strategies for defense, including how to quickly implement a robust solution that provides the protection you need without impacting your network performance or reducing employee productivity. You will learn how to better protect your networks from the inside as well as the outside, with solutions that reduce work for IT and security teams.

    You will learn about:
    •The malware menace – latest stats and facts
    •Third party industry firewall comparison results: which firewall is best for you?
    •Best and easiest practices for securing end points
    •How a customer implemented a solution—step-by-step
    •And much more…
    Read more >
  • The data center is changing in an era of applications and automation, but how do you get there? OST, an expert in crafting automation for large-scale public clouds and developing new provisioning models for enterprise technology and in-application development, has experience in bringing data centers into the 21st century.

    Register for this webinar to learn:
    •How to develop core disciplines of application development and automation in the IT department
    •How to provide business-responsive services without compromising quality
    •How to prepare your data center for the future
    Read more >
  • Le taux d’équipement en périphériques mobiles (PC, tablettes, smarphones) dépassant maintenant celui des PCs fixes, il n’est pas surprenant que la tendance se poursuive en entreprises. Hors la mobilité va de pair avec le Cloud en tant que nouvelle plateforme de collaboration d’où un échange des informations bien au-delà du traditionnel périmètre.
    Lors de ce webcast, nous vous proposons de mieux comprendre comment protéger vos données stockées dans le Cloud, tout en garantissant une facilité d’expérience aux utilisateurs.
    Découvrez :
    -Comment développer, gérer et mettre en œuvre des politiques de sécurité renforcées dans le Cloud
    -Comment sécuriser les communications emails échangées entre terminaux mobiles
    -Comment Symantec peut vous aider à résoudre des problématiques de conformité grâce au DLP et au chiffrement
    Read more >
  • La convergence des infrastructures IT apporte un surcroit de complexité, de coûts et de risques dans la gestion, le stockage et la protection des informations dans les entreprises.
    Au cours de cette session, nous vous proposons de faire le point sur les enjeux actuels des infrastructures (virtualisation, croissance des données, stockage…) et vous présenterons une solution moderne de protection des données pour réduire la complexité et les coûts : l’appliance Symantec Backup Exec 3600.
    Read more >
  • Organizations outsourcing card data to the cloud face significant security risks. As soon as an organization adds other players to the offsite card-management mix, ensuring compliance with the PCI Data Security Standard becomes increasingly challenging. Cloud users and cloud service providers need to understand what their roles and responsibilities are when it comes to protecting this data. Storing, processing and transmitting cardholder data in the cloud brings the cloud environment into scope for PCI-DSS.

    Organizations need to know where their data is at all times. A lot of cloud clients have limited or no control over cardholder data storage. Organizations should be concerned about collecting and correlating access logs and other information from cloud vendors to ensure they are maintaining security compliance. Where's the data being stored? Is it stored in multiple locations? These are all things that you have to take into consideration when you're thinking about outsourcing to a cloud provider. Join this webcast as we address the compliance challanges in the cloud, and gain new insights on:

    - Emerging PCI security risks in the cloud
    - Understand the role of cloud entities
    - Processes for assessing risk when card data could potentially be stored in multiple locations
    - Structuring planning controls to deal with PCI DSS changes
    - Recommendations for achieving PCI compliance across virtual environments
    Read more >
  • Enterprise IT implementations and upgrades often come with business disruption, unexpected costs and lengthy delays. What if there were a way to avoid those risks?

    Please join us for an informative webinar spotlighting a unique alternative to traditional onsite technology integration. Take a look inside FusionStorm’s Integration Center and see how our expert configuration, staging and logistics services enable on-time, plug-and-play installation of multivendor solutions anywhere in the world.

    Detailed case study examples will show you how to cut deployment time and disruption for:
    •rollouts of customized technology solutions to multiple locations
    •repetitive deployments of standardized equipment

    Mark your calendar and join us for an inside look at the best practices and nimble processes that enable rapid turnaround of complex projects with less risk.
    Read more >
  • Listen to this brief webcast of the impressions these two IBM Champions have after evaluating DB2 10.5 with BLU Acceleration.
    Read more >
  • Channel
  • Channel profile

Intel API & PCI Security

Up Down
  • 5 Practical Steps to Building an Enterprise Class API Program May 22 2013 5:00 pm UTC 60 mins
    APIs are a hot topic in all sectors of IT - they have gone from being niche solutions provided by big players like Amazon and Google, to being almost as ubiquitous as corporate websites. Ad hoc API development & evangelism without a formal program can leave real revenue on the table, can unintentionally leak sensitive data, and can tarnish the corporate brand with the development community. Today, developers and partners expect to be engaged with first class API programs, while businesses expect real insights to know which APIs are profitable and which APIs to bring to market next. In this webinar, Intel & Mashery outline the baseline enterprise pillars for constructing a first class API program. Learn from CapitalOne how they strategized to build an API program grounded in core business objectives. All attendees to receive a new Mobile API Buyers Guide that presents how to optimize APIs for mobile apps.
  • Mobile Optimized Healthcare API Programs: New Revenue from Legacy Data Recorded: Mar 5 2013 61 mins
    3 mega trends (mobile apps, partner/developer API programs, and
    healthcare data integration/portability) have converged to create a new
    revenue generating opportunity for Providers and Payers that is all the
    rage: API Developer Community Portals. In this webinar, we present
    premier case study from AETNA that illustrate best practices to building a successful API Program.From security expert Gunnar Peterson learn gateway security patterns that should be employed to safely surface legacy data & services for packaging as raw API information assets, hear from API management MQ leader Mashery how to construct, share, and promote APIs to developers using branded Portals & Partner API Workshops, and finally from Intel see how to build a mobile optimized back-end that bridges mobile friendly security/protocols (eg OAuth) with enterprise grade security &
    integration controls. All attendees will receive a Mobile API Architecture White Paper.
  • 4 Building Blocks to Mobilize your Enterprise App Strategy Recorded: Jan 24 2013 64 mins
    A sound enterprise mobile app strategy focuses on automating and scaling 4 key pillars: back-end data/app integration, app composition/packaging/promotion, secure channel from device to enterprise, and tools to simplify app creation cross-device. Mastering these disciplines delivers native mobile apps that offer consistent and compelling user experiences and brand expansion through engaged developer communities. In this webinar, Forrester & Intel focus on how mobile middleware solutions have evolved the from traditional 3-tier web apps to provide direct access to back-end data via APIs. However, the evolution to this model presents new challenges to developers: inconsistent formats and protocols, inadequate security controls, and rapidly evolving interfaces, to name just a few.

    You will learn:
    -Tips for integrating BYOD platforms into your enterprise app offerings
    -Tradeoffs between web app portals and native mobile apps
    -The gateway approach to streamline development while improving security
    -Tools to provide a unified foundation for mobile enterprise application development
  • Application Layer API Security & Management Recorded: Dec 12 2012 47 mins
    As the Enterprise begins to expose application APIs as packaged products consumed by developer communities, partners, and mobile devices- they are also opening new threat vectors into their back end infrastructure. APIs include self documenting meta data that often mistakenly provides information on usage and connections that can be used for SQL injection or other content borne attacks. The application layer must deal with a wide range of protocols with potential threats… from XML/SOAP, REST/JSON, and OAuth/and API Keys used in application requests. In this webinar, we outline API best practice security measures such as encryption, SSL, key management, DLP, and schema validation. To scale deployment Intel showcases how an API Gateway combined with a portal managed service in the cloud can safely share APIs while tightly integrating cloud/on-prem applications.
  • Joint Intel & Mashery Webinar: Intel Expressway API Manager Revealed Recorded: Dec 4 2012 62 mins
    In this product launch webinar, Intel & API Management magic quadrant leader Mashery discuss the market drivers that have created the need for enterprise class API management solutions that scale to thousands of developers and consumers. We showcase a new composite API platform solution available from Intel, that packages a cloud based API portal from Mashery for promotion, monitoring, and sharing of meta data to developer communities with the Intel gateway security & integration solution that exposes RESTful APIs for consumption at the network edge. The lifecycle for APIs will be discussed along with the typical separation of duties for API management within the enterprise: Service Administrators, Developers, and Architects. Tune in to learn how to package APIs as revenue generating products, safely expose back end applications, and drive usage with mobile consumers and developer communities.
  • Reference Architecture for Healthcare Data Exchange, Mobile Delivery, PHI Recorded: Sep 20 2012 53 mins
    HITEC and the Patient Protection & Affordable Care Act (PPACA) are fueling the requirement for, and subsequent growth of, interoperable systems in the US -- with a common thread between all the various initiatives being the use of SOA, mobile focused information exchange, and protecting patient data privacy.

    In this webinar, Intel looks specifically at the Health Insurance Exchange (HIX) ecosystem and posits a "Service Gateway Reference Architecture" that incorporates legacy protocols, the workflows involved in information exchange, information delivery to mobile APIs, and PHI data protection. Maximus, a leader with programs in health and human services, that has partnered with state, local, and Federal government - discusses how to protect PHI for HIPAA compliance.
  • Using API Gateways to Securely Expose Legacy Apps to Devices Recorded: Sep 11 2012 39 mins
    The issue with the predominant multi-tier data center application architecture is that it is designed with a browser in mind. Mobile Device Management and Web-only Firewalls do not address how to incorporate server side applications, legacy data, and identity infrastructure with the sea of heterogeneous mobile platforms, operating systems, and programming languages used today. We present how Service/API Gateway enables the mobile application economy via REST APIs with JSON and mobile friendly tokens such as OAuth. Finally we outline an end-to-end mobile enablement architecture to expose app data via APIs, advertise APIs to developers via a portal, and tools that make it easy for developers to use those APIs to create mobile apps.
  • Rise of the Cloud Service Broker Role for IT Recorded: Aug 9 2012 64 mins
    Cloud Service Brokerage (CSB) presents an emerging operational role where IT aggregates services from multiple cloud providers, applies corporate policies, & exposes a simplified consumption API for internal developers and partners. Its clear point-to-point management of billing, SLAs, API versioning/governance, integration connectors, and security cannot be managed by individual developers or departments in a controlled compliant way. Gartner discusses different CSB types, market spend, required technical capabilities, and where enablement solutions exist on the technology adoption curve. Chief Architect, Plamen Petrov presents a real world CSB deployment that Blue Cross Blue Shield Association implemented to help aggregate 3rd party services & deliver integration/security services for 38 independent BCBA companies.
  • Using Strong Authentication to Protect Sensitive IT Assets in the Cloud Recorded: Jul 18 2012 58 mins
    Organizations need something stronger than a simple UserID/password logon to protect sensitive data in the cloud. Strong authentication is the industry standard for protecting personal, financial, healthcare or confidential corporate information. In this webinar, identity security experts from Intel/McAfee, Nordic Edge and BioID discuss the various types of multi-factor authentication that are available, and when, where and how they can be deployed to provide essential protections.
  • Manage Identity & Access to All Your External SaaS Apps from Salesforce Recorded: Jun 25 2012 58 mins
    Over the past decade, Salesforce.com has evolved from a CRM destination to a suite of platforms that enable social enterprise collaboration. Now identity and access management are at the forefront of the latest capabilities enabled by Salesforce.com and its ISV partners Intel & McAfee. Not only can an enterprise enable seamless SSO access into Salesforce.com from corporate ID stores, they can manage access to any external SaaS app or up-level cloud provider authentication with multi-factor authentication, all managed 100% within the Salesforce platform.

    In this webinar, Salesforce.com’s identity experts present their latest platform capabilities for cloud security & outline new areas of focus in federation standards, such as provisioning and support for mobile apps. Intel presents their experience in leveraging the Force.com platform to build their Identity-as-a-Service offering: Intel Cloud SSO - now available on AppExchange.

    You will learn:

    * How to enable seamless SSO into custom apps deployed on Force.com
    * How to leverage resident Salesforce.com identities for cloud access
    * How to implement SSO across large multi-org Salesforce.com hierarchies
    * Mobile cloud SSO design patterns and emerging standards
    * How to apply Multi-Factor Authentication for access to Salesforce or SaaS
    * How to leverage Active Directory for access to external SaaS apps
    * New Force.com cloud security capabilities
  • 3 Core PCI-DSS Tokenization Models- Choosing the right PCI-DSS Strategy Recorded: Jun 14 2012 61 mins
    When securing credit card data, the imperative to be PCI DSS compliant remains a constant, while the actual solution implemented by merchants can vary depending on the size and nature of an organization. A solution for a small merchant with low transactions will differ from mid-sized retailers with a web presence…from a large merchant with POS & back-office payment infrastructure. Securosis.com’s expert PCI-DSS analyst Adrian Lane, dissects the deployment models with pros and cons of: on-prem vs outsourced models, proxy based tokenization, and format preserving encryption. Adrian covers base tokenization flows for newbies and reflects on detailed cost, pricing, & vendor lock-in concerns for deployments in progress. You will learn:

    •3 Core Models: Tokenize all infrastructure, modify point apps with API/SDK, Proxy-modify data in transit
    •Patterns for tightly coupled payment & back office systems
    •Tokenization as a Service- expense of token format migration
    •Cost considerations to consider
  • Identity of Data Recorded: Jun 5 2012 51 mins
    As organizations move to the Cloud, concerns arise about retaining control of data resident on third-party services. At the same time, distributing information and protecting intellectual property across a distributed, cloud-based supply chain is a business and IT concern, since there is a need for verifiable trust and persistent visibility into the flow of information. An emerging white space exists for the glue between identity logic, data properties, storage and key management in terms of defining, managing and enforcing policies across SaaS, cloud, mobile and hybrid environments. In this webinar we present the concepts and review solutions that are beginning to address this white space: the cloud service broker role, API/Service Gateways, & Identity as a Service.
  • First Look - Intel Cloud SSO Deep Dive Recorded: May 24 2012 50 mins
    Outsourcing identity management to the cloud allows you to reduce costs, improve productivity, strengthen security, and streamline IT operations.
    Join us for a first look at Intel’s new identity as a service offering that simplifies the cumbersome process of providing users with access to hundreds of SaaS apps. We provide an overview of the multi-tenant platform architecture, strong auth security controls and unique configuration capabilities gained through our deployment on Force.com. Hear about first impressions from customers.
    You will learn about:
    •Benefits of outsourcing identity to the cloud
    •How & when to incorporate corp id stores
    •Cloud access scenarios where 2nd Factor Auth should be applied
    •100% in cloud, on-prem, or hybrid- which is right for you?
    •Decision criteria used by customers to choose IDaaS

    Bonus: All attendees will receive 30 day free trial + new Gartner “Evaluate IDaaS” report
  • API Security: A Deep Dive into Authentication, DLP, and Validation Controls Recorded: May 10 2012 54 mins
    As APIs enable organizations to extend their products into broad-based platforms and as applications are shared outside the protective firewall to/from the cloud and among cloud providers--Security, Governance, Control, and Managment of these APIs have never been more important. API Security necessarily deals with four major issues: Identity and Authentication, Access Control and Authorization, Input Validation, and Misconfiguration. As a follow on to the introductory Enterprise API Requirements webinar, this technical session will take a deep dive into Enterprise API Security including:

    • Relevant API authentication and authorization standards like OAuth & XACML
    • The intersection of Data Loss Prevention technology and Service APIs
    • The growing importance of Threat Protection applied to APIs
    • Best practice construction of a rich audit/log trail for API security
    • Leveraging corporate identity infrastructure for service authentication
    • Throttling and QOS as it relates to security processing
    • Overview of API Gateway design pattern in context of the McAfee Cloud Security Platform
    Bonus: All webinar attendees will receive a technical API white paper + 50% off discount code for the new Oreilly API Strategy Guide e-book– both by industry analyst Dan Woods
  • Applying Strong Auth and DLP to Collaborative File Sharing Recorded: Apr 26 2012 57 mins
    Employees love the convenience and utility of collaborative file sharing applications like Box.com. Sharing contracts, graphics/video files, or other corporate content using a cloud based service empowers users to share information directly with external partners-outside traditional enterprise security controls. You want to encourage productivity but you also need a strategy that addresses how you’re going to control access to file sharing applications and inspect data before it leaves the enterprise.

    In this webinar Intel, McAfee and Box have joined forces to discuss how content can be protected throughout the collaboration lifecycle-from access and upload to download and distribution.

    You will learn:
    •Overview of typical file sharing use cases and workflows
    •Streamlining access for users
    •Tying federated authentication to corporate id stores
    •Adding 2nd factor strong authentication for sensitive document sharing
    •Blocking sensitive files from upload
    •On-prem, 100% in the cloud, and hybrid implementation options
    As a bonus, all attendees will be eligible to receive a free enterprise trial account from Box.
  • Enterprise API Requirements and Best Practices- with ProgrammableWeb Recorded: Apr 4 2012 59 mins
    While APIs have been ubiquitous within the enterprise for many years, today they are emerging as the new enterprise control point for cloud applications. In the modern API economy, every enterprise with an Internet presence has an opportunity to expose APIs to third-party access, unlocking value in data and services that would otherwise be hidden behind monolithic legacy systems. While API management might be an old concept, cloud-based API management presents a new discipline with added security, visibility, integration, and scale requirements.

    In this session, John Musser, Founder of ProgrammableWeb.com and Blake Dournaee, Product Manager, Intel will discuss:
    •API Evolution – Where did they come from?
    •Open APIs vs Private APIs
    •Hosted APIs vs On-premise APIs
    •Enterprise Usecases
    •API Abstraction
    •Introduction to API Security
    •Customer Examples
  • Identity & Access Management in the Cloud: Real or Mirage? Recorded: Mar 29 2012 60 mins
    New approaches to identity and access management based on leveraging the powerful, elastic, and cost-effective cloud model are emerging. In this webinar, Dave Kearns, Sr. Analyst at KuppingerCole, will discuss the benefits and challenges of moving use identities to the cloud. Vikas Jain, Director of Product Management at Intel, will follow with an overview of Intel Cloud SSO, Intel’s newest identity and security solution for the cloud.
  • Solving Cloud Complexity with Service Brokers Recorded: Jan 10 2012 64 mins
    The recommended cloud security stack, standards, and operating frameworks have rapidly evolved into a set of production quality best practices for the Enterprise as they engage each cloud provider. However, as scale is applied, managing 1-n cloud relationships and services across hybrid environments points to a brokered or intermediary model to solve integration/security complexity, aggregate services, & add new value. This is not new- B2B EDI evolved much the same way from point-to-point, to IT department managed gateway VANs, to 3rd party industry B2B exchanges. Join this webinar to prepare your organization for Cloud Service Brokerage - Gartner’s Daryl C. Plummer has forecast this as “the biggest growth area for cloud computing.”

    You will learn:

    *Industry definitions of Cloud Service Broker roles
    *When do organizations know if they need a CSB? What kind?
    *Relevant CSA operating standards that apply to brokers
    *NIST research solicited from 500 industry experts
    *NIST’s Reference Architecture for broker platforms
    *What capabilities do CSBs ‘own’ and what they ‘
    *Intel/McAfee explain core broker API, security, governance, and integration capabilities
    *Insight into expected adoption paths & early field use cases from InfoSys
    *Attendees receive: complementary Gartner Analyst Report on Cloud Service Brokers
    *References to standards documentation & working groups
  • Turn FFIEC Compliance into Customer Loyalty and Retention Recorded: Dec 1 2011 60 mins
    Within the FFIEC Authentication Guidance, one provision, strong authentication, stands out as an opportunity to make security conveniently visible to customers. Join two banking security thought leaders and a solution provider for insights on how to satisfy this crucial FFIEC mandate, and how to establish greater customer confidence—and loyalty—in online transactions.
  • Straight Talk on the New PCI Tokenization Guidelines Recorded: Nov 29 2011 57 mins
    With the August 2011 PCI Standards Council update, internal tokenization has clearly gained momentum as the lowest impact solution that large merchants can implement to achieve PCI compliance for stored cardholder data. However, not all tokenization solutions are created equal; many do not apply recommended network security or authentication controls.

    In this session, independent Payment Card Industry QSA (Qualified Security Assessor) expert Walter Conway gives insight directly from field engagements to illustrate best practices for solution selection and implementation. In addition, all registrants will receive a free copy of Walter's whitepaper “PCI DSS Tokenization Buyers Guide.”.
Secure the Hybrid Enterprise
Cloud security solutions deployed by hundreds of customers over 10 years, McAfee aligned security, patented Informatica powered integration, API Management powered by Mashery, and the only no app impact data tokenization solution for PCI & PII scope reduction. Transform how services & sensitive data are exposed as APIs to dev, mobile, & cloud
  • Upcoming webinars (1)
  • Recorded webinars (46)
  • Subscribers (4,799)
Channel RSS feed
Up Down

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: Identity of Data
  • Live at: Jun 5 2012 4:15 pm
  • Presented by: Steve Coplan-Research Manager, Enterprise Security Practice, 451 Research and Vikas Jain-Director, Product Management, Intel
  • From:
Your email has been sent.
or close
You must be logged in to email this
OK