This Intel Cloud Builders webinar focuses on the Secure Cloud Access Reference Architecture. User access security for the cloud means providing consistent enterprise class security across any protocol, device, network, and cloud provider platform. The traditional approach leverages IdM + SAML for app to app SSO- however the heavyweight nature and reality of scaling these technologies to third party cloud provider platforms presents a real glass ceiling to cloud adoption. To achieve an end-to-end "secure client to cloud session" requires adoption of a mix of standards and emerging client side strong authentication technologies managed from a single control point. This session presents a simple use case and reference architecture and layers how each of these standards & technologies can play a role: AuthN: SAML, Open ID, OAuth, Pledge (OTP), AuthZ: XACML, Platform Connectors: IdM & Provisioning, Client & Server: TXT, IPT (Identity Protection).
You will learn: *Maturity and state of cloud access standards *Use cases for cloud access *Intel Cloud Builders Secure Cloud Access Reference Architecture
Gunnar Peterson is a Managing Principal at Arctec Group. Mr. Peterson is an internationally recognized software security expert, frequently published, an Associate Editor for IEEE Security & Privacy Journal on Building Security In, a contributor to the SEI and DHS Build Security In portal on software security, a Visiting Scientist at Carnegie Mellon Software Engineering Institute, and an in-demand speaker at security conferences.
Vikas Jain Director of Product Management at Intel for the Cloud Identity and Security products. Prior to Intel, he has held leadership roles in product management and software development over the last 15 years at a wide-range of technology companies including Oracle, Oblix, Wipro and Infosys.
RecordedApr 5 201158 mins
Your place is confirmed, we'll send you email reminders
Randy Heffner, Forrester Research, Blake Dournaee, Intel Sr Product Manager
At the Enterprise level, API initiatives must serve a diverse range of
needs: IT’s hybrid data center, traffic management & security concerns,
complex multi-org internal dev communities, partner SLAs, public API
programs, and legacy system integration. API Management in this context is not a “one solution fits all” approach- it requires a loose coupling of connected systems and development processes to manage APIs at Enterprisescale. In this webinar, Intel’s guest speaker, Randy Heffner of Forrester Research, outlines the key Enterprise categories for B2B, internal, & open Web API models and presents sample use cases to highlight how an API platform layer simplifies API delivery and management across teams. Intel reveals new twists on API Management including API payload data protection, incorporating SOA repository & registries, and utilizing API Portal Engines for customized deployment models. Join this expert webinar, to learn how to leverage APIs as the universal tunnel into the Enterprise.
Join Securosis analysts Adrian Lane and Gunnar Peterson as they discuss their new report, "API Gateways: Where Security Enables Innovation". This "speed round" style webinar will focus on API security best practices and will invite real world security questions from the audience. All attendees will receive a free copy of the report.
Devon Biondi (Mashery), Andy Thurai (Intel), Joshua Greenough (CapitalOne)
APIs are a hot topic in all sectors of IT - they have gone from being niche solutions provided by big players like Amazon and Google, to being almost as ubiquitous as corporate websites. Ad hoc API development & evangelism without a formal program can leave real revenue on the table, can unintentionally leak sensitive data, and can tarnish the corporate brand with the development community. Today, developers and partners expect to be engaged with first class API programs, while businesses expect real insights to know which APIs are profitable and which APIs to bring to market next. In this webinar, Intel & Mashery outline the baseline enterprise pillars for constructing a first class API program. Learn from CapitalOne how they strategized to build an API program grounded in core business objectives. All attendees to receive a new Mobile API Buyers Guide that presents how to optimize APIs for mobile apps.
3 mega trends (mobile apps, partner/developer API programs, and
healthcare data integration/portability) have converged to create a new
revenue generating opportunity for Providers and Payers that is all the
rage: API Developer Community Portals. In this webinar, we present
premier case study from AETNA that illustrate best practices to building a successful API Program.From security expert Gunnar Peterson learn gateway security patterns that should be employed to safely surface legacy data & services for packaging as raw API information assets, hear from API management MQ leader Mashery how to construct, share, and promote APIs to developers using branded Portals & Partner API Workshops, and finally from Intel see how to build a mobile optimized back-end that bridges mobile friendly security/protocols (eg OAuth) with enterprise grade security &
integration controls. All attendees will receive a Mobile API Architecture White Paper.
Forrester Analyst: Michael Facemire, Intel Architect: Travis Broughton
A sound enterprise mobile app strategy focuses on automating and scaling 4 key pillars: back-end data/app integration, app composition/packaging/promotion, secure channel from device to enterprise, and tools to simplify app creation cross-device. Mastering these disciplines delivers native mobile apps that offer consistent and compelling user experiences and brand expansion through engaged developer communities. In this webinar, Forrester & Intel focus on how mobile middleware solutions have evolved the from traditional 3-tier web apps to provide direct access to back-end data via APIs. However, the evolution to this model presents new challenges to developers: inconsistent formats and protocols, inadequate security controls, and rapidly evolving interfaces, to name just a few.
You will learn:
-Tips for integrating BYOD platforms into your enterprise app offerings
-Tradeoffs between web app portals and native mobile apps
-The gateway approach to streamline development while improving security
-Tools to provide a unified foundation for mobile enterprise application development
Andy Thurai Chief Architect, Intel Application Security and Identity Products
As the Enterprise begins to expose application APIs as packaged products consumed by developer communities, partners, and mobile devices- they are also opening new threat vectors into their back end infrastructure. APIs include self documenting meta data that often mistakenly provides information on usage and connections that can be used for SQL injection or other content borne attacks. The application layer must deal with a wide range of protocols with potential threats… from XML/SOAP, REST/JSON, and OAuth/and API Keys used in application requests. In this webinar, we outline API best practice security measures such as encryption, SSL, key management, DLP, and schema validation. To scale deployment Intel showcases how an API Gateway combined with a portal managed service in the cloud can safely share APIs while tightly integrating cloud/on-prem applications.
Mashery Product Manager: Chris Lippi, Intel Chief Architect-Andy Thurai
In this product launch webinar, Intel & API Management magic quadrant leader Mashery discuss the market drivers that have created the need for enterprise class API management solutions that scale to thousands of developers and consumers. We showcase a new composite API platform solution available from Intel, that packages a cloud based API portal from Mashery for promotion, monitoring, and sharing of meta data to developer communities with the Intel gateway security & integration solution that exposes RESTful APIs for consumption at the network edge. The lifecycle for APIs will be discussed along with the typical separation of duties for API management within the enterprise: Service Administrators, Developers, and Architects. Tune in to learn how to package APIs as revenue generating products, safely expose back end applications, and drive usage with mobile consumers and developer communities.
HITEC and the Patient Protection & Affordable Care Act (PPACA) are fueling the requirement for, and subsequent growth of, interoperable systems in the US -- with a common thread between all the various initiatives being the use of SOA, mobile focused information exchange, and protecting patient data privacy.
In this webinar, Intel looks specifically at the Health Insurance Exchange (HIX) ecosystem and posits a "Service Gateway Reference Architecture" that incorporates legacy protocols, the workflows involved in information exchange, information delivery to mobile APIs, and PHI data protection. Maximus, a leader with programs in health and human services, that has partnered with state, local, and Federal government - discusses how to protect PHI for HIPAA compliance.
Blake Dournaee, Product Manager, Intel Expressway Service Gateway
The issue with the predominant multi-tier data center application architecture is that it is designed with a browser in mind. Mobile Device Management and Web-only Firewalls do not address how to incorporate server side applications, legacy data, and identity infrastructure with the sea of heterogeneous mobile platforms, operating systems, and programming languages used today. We present how Service/API Gateway enables the mobile application economy via REST APIs with JSON and mobile friendly tokens such as OAuth. Finally we outline an end-to-end mobile enablement architecture to expose app data via APIs, advertise APIs to developers via a portal, and tools that make it easy for developers to use those APIs to create mobile apps.
Gartner Analyst: Benoit Lheureux, Blue Cross Blue Shield Assoc Chief Arch.: Plamen Petrov, Intel Chief Arch.: Andy Thurai
Cloud Service Brokerage (CSB) presents an emerging operational role where IT aggregates services from multiple cloud providers, applies corporate policies, & exposes a simplified consumption API for internal developers and partners. Its clear point-to-point management of billing, SLAs, API versioning/governance, integration connectors, and security cannot be managed by individual developers or departments in a controlled compliant way. Gartner discusses different CSB types, market spend, required technical capabilities, and where enablement solutions exist on the technology adoption curve. Chief Architect, Plamen Petrov presents a real world CSB deployment that Blue Cross Blue Shield Association implemented to help aggregate 3rd party services & deliver integration/security services for 38 independent BCBA companies.
Organizations need something stronger than a simple UserID/password logon to protect sensitive data in the cloud. Strong authentication is the industry standard for protecting personal, financial, healthcare or confidential corporate information. In this webinar, identity security experts from Intel/McAfee, Nordic Edge and BioID discuss the various types of multi-factor authentication that are available, and when, where and how they can be deployed to provide essential protections.
Over the past decade, Salesforce.com has evolved from a CRM destination to a suite of platforms that enable social enterprise collaboration. Now identity and access management are at the forefront of the latest capabilities enabled by Salesforce.com and its ISV partners Intel & McAfee. Not only can an enterprise enable seamless SSO access into Salesforce.com from corporate ID stores, they can manage access to any external SaaS app or up-level cloud provider authentication with multi-factor authentication, all managed 100% within the Salesforce platform.
In this webinar, Salesforce.com’s identity experts present their latest platform capabilities for cloud security & outline new areas of focus in federation standards, such as provisioning and support for mobile apps. Intel presents their experience in leveraging the Force.com platform to build their Identity-as-a-Service offering: Intel Cloud SSO - now available on AppExchange.
You will learn:
* How to enable seamless SSO into custom apps deployed on Force.com
* How to leverage resident Salesforce.com identities for cloud access
* How to implement SSO across large multi-org Salesforce.com hierarchies
* Mobile cloud SSO design patterns and emerging standards
* How to apply Multi-Factor Authentication for access to Salesforce or SaaS
* How to leverage Active Directory for access to external SaaS apps
* New Force.com cloud security capabilities
Adrian Lane, Analyst-CTO Securosis, Blake Dournaee, Intel
When securing credit card data, the imperative to be PCI DSS compliant remains a constant, while the actual solution implemented by merchants can vary depending on the size and nature of an organization. A solution for a small merchant with low transactions will differ from mid-sized retailers with a web presence…from a large merchant with POS & back-office payment infrastructure. Securosis.com’s expert PCI-DSS analyst Adrian Lane, dissects the deployment models with pros and cons of: on-prem vs outsourced models, proxy based tokenization, and format preserving encryption. Adrian covers base tokenization flows for newbies and reflects on detailed cost, pricing, & vendor lock-in concerns for deployments in progress. You will learn:
•3 Core Models: Tokenize all infrastructure, modify point apps with API/SDK, Proxy-modify data in transit
•Patterns for tightly coupled payment & back office systems
•Tokenization as a Service- expense of token format migration
•Cost considerations to consider
Steve Coplan-Research Manager, Enterprise Security Practice, 451 Research and Vikas Jain-Director, Product Management, Intel
As organizations move to the Cloud, concerns arise about retaining control of data resident on third-party services. At the same time, distributing information and protecting intellectual property across a distributed, cloud-based supply chain is a business and IT concern, since there is a need for verifiable trust and persistent visibility into the flow of information. An emerging white space exists for the glue between identity logic, data properties, storage and key management in terms of defining, managing and enforcing policies across SaaS, cloud, mobile and hybrid environments. In this webinar we present the concepts and review solutions that are beginning to address this white space: the cloud service broker role, API/Service Gateways, & Identity as a Service.
Vikas Jain, Dir. Product Mgt., Intel; Kamal Elharam, Dir. IT, Senior Service America, Inc.
Outsourcing identity management to the cloud allows you to reduce costs, improve productivity, strengthen security, and streamline IT operations.
Join us for a first look at Intel’s new identity as a service offering that simplifies the cumbersome process of providing users with access to hundreds of SaaS apps. We provide an overview of the multi-tenant platform architecture, strong auth security controls and unique configuration capabilities gained through our deployment on Force.com. Hear about first impressions from customers.
You will learn about:
•Benefits of outsourcing identity to the cloud
•How & when to incorporate corp id stores
•Cloud access scenarios where 2nd Factor Auth should be applied
•100% in cloud, on-prem, or hybrid- which is right for you?
•Decision criteria used by customers to choose IDaaS
Bonus: All attendees will receive 30 day free trial + new Gartner “Evaluate IDaaS” report
Dan Woods-CTO Tech Analyst, Chad Holmes-McAfee DLP, Blake Dournaee-Intel Gateway Product Manager
As APIs enable organizations to extend their products into broad-based platforms and as applications are shared outside the protective firewall to/from the cloud and among cloud providers--Security, Governance, Control, and Managment of these APIs have never been more important. API Security necessarily deals with four major issues: Identity and Authentication, Access Control and Authorization, Input Validation, and Misconfiguration. As a follow on to the introductory Enterprise API Requirements webinar, this technical session will take a deep dive into Enterprise API Security including:
• Relevant API authentication and authorization standards like OAuth & XACML
• The intersection of Data Loss Prevention technology and Service APIs
• The growing importance of Threat Protection applied to APIs
• Best practice construction of a rich audit/log trail for API security
• Leveraging corporate identity infrastructure for service authentication
• Throttling and QOS as it relates to security processing
• Overview of API Gateway design pattern in context of the McAfee Cloud Security Platform
Bonus: All webinar attendees will receive a technical API white paper + 50% off discount code for the new Oreilly API Strategy Guide e-book– both by industry analyst Dan Woods
Vikas Jain (Intel), Andy Kiang (Box), Chad Holmes (McAfee)
Employees love the convenience and utility of collaborative file sharing applications like Box.com. Sharing contracts, graphics/video files, or other corporate content using a cloud based service empowers users to share information directly with external partners-outside traditional enterprise security controls. You want to encourage productivity but you also need a strategy that addresses how you’re going to control access to file sharing applications and inspect data before it leaves the enterprise.
In this webinar Intel, McAfee and Box have joined forces to discuss how content can be protected throughout the collaboration lifecycle-from access and upload to download and distribution.
You will learn:
•Overview of typical file sharing use cases and workflows
•Streamlining access for users
•Tying federated authentication to corporate id stores
•Adding 2nd factor strong authentication for sensitive document sharing
•Blocking sensitive files from upload
•On-prem, 100% in the cloud, and hybrid implementation options
As a bonus, all attendees will be eligible to receive a free enterprise trial account from Box.
ProgrammableWeb Founder: John Musser; Blake Dournaee-Intel Product Manager
While APIs have been ubiquitous within the enterprise for many years, today they are emerging as the new enterprise control point for cloud applications. In the modern API economy, every enterprise with an Internet presence has an opportunity to expose APIs to third-party access, unlocking value in data and services that would otherwise be hidden behind monolithic legacy systems. While API management might be an old concept, cloud-based API management presents a new discipline with added security, visibility, integration, and scale requirements.
In this session, John Musser, Founder of ProgrammableWeb.com and Blake Dournaee, Product Manager, Intel will discuss:
•API Evolution – Where did they come from?
•Open APIs vs Private APIs
•Hosted APIs vs On-premise APIs
•Introduction to API Security
New approaches to identity and access management based on leveraging the powerful, elastic, and cost-effective cloud model are emerging. In this webinar, Dave Kearns, Sr. Analyst at KuppingerCole, will discuss the benefits and challenges of moving use identities to the cloud. Vikas Jain, Director of Product Management at Intel, will follow with an overview of Intel Cloud SSO, Intel’s newest identity and security solution for the cloud.
The recommended cloud security stack, standards, and operating frameworks have rapidly evolved into a set of production quality best practices for the Enterprise as they engage each cloud provider. However, as scale is applied, managing 1-n cloud relationships and services across hybrid environments points to a brokered or intermediary model to solve integration/security complexity, aggregate services, & add new value. This is not new- B2B EDI evolved much the same way from point-to-point, to IT department managed gateway VANs, to 3rd party industry B2B exchanges. Join this webinar to prepare your organization for Cloud Service Brokerage - Gartnerâs Daryl C. Plummer has forecast this as âthe biggest growth area for cloud computing.â
You will learn:
*Industry definitions of Cloud Service Broker roles
*When do organizations know if they need a CSB? What kind?
*Relevant CSA operating standards that apply to brokers
*NIST research solicited from 500 industry experts
*NISTâs Reference Architecture for broker platforms
*What capabilities do CSBs âownâ and what they â
*Intel/McAfee explain core broker API, security, governance, and integration capabilities
*Insight into expected adoption paths & early field use cases from InfoSys
*Attendees receive: complementary Gartner Analyst Report on Cloud Service Brokers
*References to standards documentation & working groups
Application security & analytics software that help enable the Hybrid Enterprise model where data and apps are deployed across on-prem and cloud environments. Transform how services & sensitive data are exposed as APIs to developers/mobile, aggregate and analyze corporate data for new insights, and ensure data level security and compliance.
Lo scorso anno il ransomware ha raggiunto un nuovo livello di evoluzione e pericolosità: come essere certi che l'infrastruttura IT sia protetta e in grado di affrontare un attacco?
Oggi i leader della sicurezza hanno importanti sfide da risolvere:
•Un’intelligence sulle minacce insufficiente a individuare gli aggressori e le campagne che potrebbero attaccare la loro azienda.
•La penuria di analisti di sicurezza competenti in grado di identificare il numero crescente di minacce che penetrano all’interno delle aziende. Nel 2015, ad esempio, l’uso del crypto-ransomware come strumento di aggressione è aumentato del 35%, ma le aziende aggredite impiegano ancora più di 200 giorni per accorgersi del problema.
•Scarsa conoscenza specializzata delle tecniche di incident response e remediation per gli ambienti IT colpiti.
Gli autori dei ransomware continuano ad affinare le proprie tattiche, e le aziende devono imparare a conoscere bene le nuove minacce. Partecipa al webinar Symantec che descrive un attacco di ransomware, le sue conseguenze e la strategia di remediation adottata dall’azienda colpita.
VCE VxRail Appliance with EMC data protection provides simple, fast and efficient protection of data and applications regardless of where they live, against whatever might happen, and at the right service level based on business value.
Learn how all employees can work and collaborate securely! The new world of work demands that people collaborate faster and more seamlessly than ever before.
Your employees have access to cloud-based apps, personal devices, and pervasive internet connectivity. All these things are great for getting work done, but your company is still held to high standards around security, and auditing, and you can't afford to make a wrong move.
Join this webcast to explore some common security scenarios such as:
•How do you provide access when you can't always control the endpoint?
•How do you know where all your company's files are right now?
•If you terminate an employee, how would you know what files they had in their possession.?
•Could you wipe a terminated employee's corporate data while leaving their personal content alone?
This webcast is part of our Digital security in the modern world webcast series. Sign up for this session, or the entire series today!
VMware, NetApp and even EMC are proponents of using NFS based storage systems to support mission critical workloads like virtual machines, databases and performance sensitive unstructured data. But in comparison to mission critical fibre channel, the tools to monitor and optimize your NFS infrastructure are lacking. In this webinar Storage Switzerland and Virtual Instruments will discuss the five challenges facing IT professionals that depend on NFS-based storage infrastructure for performance-intensive workloads. You will learn how to detect and overcome:
Business continuity can be a high pressured role at times, with many decisions having to be made under that pressure. It is important to be able to manage it effectively and so ensure the right decision is taken, whatever the circumstances. In this webinar, Paul Breed MCBI presents a decision making model which includes:
Information - (Fact, Assumption, Gaps - urgency)
Threat and Risk Assessment - based on Identity, Capability, Intention
Development of a Working Strategy - that dovetails the Threat and Risk Assessment
Options - ideally from a predetermined tactical menu that reduces time critical decision making
Action - based on the agreed option together with contingencies
Review - constantly review the decision especially when new information comes to light
Wie können Sie angesichts des neuen Grads an Ausgereiftheit und Bedrohung, den Ransomware im vergangenen Jahr erreicht hat, sicher sein, dass Ihre Infrastruktur davor geschützt und Ihr Unternehmen ausreichend vorbereitet ist, um einen Angriff zu bewältigen?
Sicherheitsverantwortliche haben heute mit diesen Problemen zu kämpfen:
•Nicht genügend umsetzbare Threat Intelligence, um verstehen zu können, welche Akteure und Kampagnen eine Bedrohung für ihre Unternehmen darstellen.
•Zu wenig geschulte Sicherheitsanalysten, die die zunehmende Zahl von Bedrohungen identifizieren können, die in ihre Unternehmen eindringen. Beispielsweise konnte der Einsatz von Crypto-Ransomware als Angriffstool im Jahr 2015 eine weitere Zunahme verzeichnen, und zwar um 35 %. Dennoch brauchen Unternehmen, in denen ein Angriff stattfindet, in der Regel mehr als 200 Tage, um sich dessen bewusst zu werden.
•Zu wenig spezialisiertes Know-how hinsichtlich der Methoden, die erforderlich sind, um auf Bedrohungen zu reagieren und diese unschädlich zu machen, nachdem sie in ihrer IT-Umgebung Fuß gefasst haben.
Die Taktiken von Ransomware-Gangs werden immer ausgefeilter und Unternehmen müssen sich der Gefahr, die sie darstellen, vollständig bewusst sein. Nehmen Sie an einem Webinar von Symantec teil, in dem ein konkreter Ransomware-Angriff behandelt wird. Sie erfahren, was geschehen ist und welche Maßnahmen das betroffene Unternehmen ergriffen hat, um die Bedrohung zu beseitigen.
Ransomware continues to evolve. Last year, the use of encryption as a weapon to hold companies’ and individuals’ critical data hostage grew by 35 percent.
Take this opportunity to learn directly about what can happen in a ransomware attack based on real-life events. Symantec’s Cyber Security Services experts will lead the discussion and will help you to understand how you can improve your line of defense against ransomware and minimise the loss of key data, money and intellectual property from your organisation.
The frequency of cyber-attacks continues to increase at an unparalleled pace. By attacking the most vulnerable value chains of organizations, they result in information confidentiality & integrity breaches, discontinuity of business activities and huge damages. Once considered predominantly as a technological issue, the risks related to the information systems are now evaluated within the Enterprise Risk Management scope. On the other hand, traditionally, Business Continuity Management (BCM) is mostly treated as a domain separate from Information System Security Management (ISSM). With the rapid explosion of cyber threats, the alignment between BCM and ISSM is now becoming a must, in order to provide management with a holistic view and enabling them to implement organizations where the teams closely interact with each other.
It goes without saying that the organizational part of security and BCM is the key for a successful implementation, yet the information system (IS) part needs to also be addressed in an efficient way. Various standards and frameworks exist to help organizations implementing a BCM, but they lack a strong link with the governance, architecture and security of the IS. In this webinar we will introduce very briefly an innovative approach and describe the first steps for the linkage between the two worlds, enabling an efficient implementation of BC based on an architectured and secured IS.
If object storage is the future of unstructured data storage, NFS is clearly the present. Object storage vendors realize this and provide NFS support. The problem is most of these vendors leverage a NFS gateway to act as the bridge. Gateways create their own problems however, diminishing the value of the object storage investment. In this ChalkTalk video watch as Storage Switzerland’s George Crump and Caringo's Jonathan Ring discuss the ideal way to address NFS on Object shortfalls.
Ce webinaire présentera les bénéfices pour les organisation de s’aligner sur la norme ISO 22301 et de la certification à la norme ainsi que les bénéfices pour les individus de connaître la ISO 22301. Le webinaire présentera également la formation offerte par le BCI pour améliorer sa connaissance de cette norme et comment avoir une approche étapiste en vue de certifier une organisation en utilisant l’outil d’auto-évaluation. Ces formation et outil ont été développés par ICOR, le International Consortium for Organizational Resilience.
Marie-Hélène Primeau est formatrice pour le BCI et enseigne les cours ISO 22301 Lead Auditor. Sa firme, Premier Continuum, a aussi intégré l’outil d’auto-évaluation ISO 22301, développé par ICOR, dans son logiciel de continuité ParaSolution et le distribue sous licence.