Securing cloud and mobile pragmatic enterprise security architecture
Download
1 / 29

Securing Cloud and Mobile Pragmatic Enterprise Security Architecture - PowerPoint PPT Presentation


  • 89 Views
  • Uploaded on

Securing Cloud and Mobile Pragmatic Enterprise Security Architecture. Prabath Siriwardena (@prabath) WSO2 Director, Security Architecture. Within the first decade of the 21 st century – internet worldwide increased from 350 million to more than 2 billion .

loader
I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.
capcha
Download Presentation

PowerPoint Slideshow about ' Securing Cloud and Mobile Pragmatic Enterprise Security Architecture' - dylan


An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript
Securing cloud and mobile pragmatic enterprise security architecture

Securing Cloud and Mobile Pragmatic Enterprise Security Architecture

Prabath Siriwardena (@prabath)

WSO2

Director, Security Architecture


Within the first decade of the 21st century – internet worldwide increased from 350 million to more than 2 billion.


Mobile phone subscribers increased from 750 million to 5 billion today it s around 6 billion

Mobile phone subscribers increased from

750 million to 5 billion

Today it’s around 6 billion


O nly 30 of mobile users password protect their mobile devices

Only 30% of mobile users, password protect their mobile devices



113 mobile applicationscell phones are lost or stolen every minute in the U.S and $7 million worth of smartphones are lost daily


62 of mobile workers currently use their personal smartphones for work

62% mobile applicationsof mobile workers

currently use their personal smartphones for work


http://www.websense.com/assets/reports/websense-2013-threat-report.pdfhttp://www.websense.com/assets/reports/websense-2013-threat-report.pdf



C loud service providers are becoming mobile friendly with rest json apis

C of the corporate loud service providers are

becoming mobile friendly with REST/JSON APIs




Mobile applications s ecured with oauth can be vulnerable to phishing

Mobile applications of the corporate secured with OAuth can be vulnerable to phishing


Your Facebook or Twitter account credentials can be quite easily phished through your mobile phone - than from a laptop computer


The need to bake-in client key and the secret key into the mobile app itself is an issue yet to solve


Oauth has given a better failover capability to mobile applications in case of an attack

OAuth has given a better mobile app itself is an issue yet to solvefailover capability to mobile applications in case of an attack


It takes an average of 20 seconds for a user to log into a resource

It takes an average of mobile app itself is an issue yet to solve20 seconds for a user to log into a resource


Single sign on increases user productivity

Single mobile app itself is an issue yet to solveSign On increases user productivity


Browser based single sign on

Authorization Server (IdP) mobile app itself is an issue yet to solve

Browser based Single Sign On

Mobile Device

Native App

Native Web Browser


Native single sign on

Mobile Device mobile app itself is an issue yet to solve

Native Single Sign On

Native App

Native IdP App



Federated single sign on

SAML2 IdP Sign On based on

SAML2 IdP

Authorization Server (IdP)

Federated Single Sign On

Mobile Device

Native App

Native Web Browser





Managed cloud apis

Cloud API Servers

Managed Cloud APIs

Mobile App

API Gateway


ad