Identity Management in a Federated Environment

1. Identity Management in a Federated Environment

2. NATO IdM Initiatives • SC/4-SC/5 NATO IdM Workshop (2008/09) • output: NATO IdM Strawman Paper • directory services oriented view • focused on alliance aspect of NATO IdM • identifies IdM use cases in NATO • SC/4 Service Management Infrastructure AHWG (2008/09) • output: SMI Technical Services Definitions working paper • Security Management architecture view • requirements/standards/technology agnostic approach • identifies interfaces with other security management services NATO UNCLASSIFIED

3. Some Challenges • Terminology • Identity Management is ambiguous • Identity Management includes: • Identity Assurance • Identity Exploitation or Use • Identity Services • What is an “Identity” • Is it a PKI certificate? • Is it a set of attributes? • Is it the same for every entity in the enterprise?

4. Some Challenges • NATO has a two-dimensional challenge • IdM in the NATO Alliance • 28 NATO nations • and partners • constitute a federation • IdM in the NATO Organization • NATO HQs • and NATO agencies • constitute an enterprise (?) NATO UNCLASSIFIED

5. In summary • The concept of NATO IdM is in a very early stage of formalization • Requirements for NATO IdM need to be defined • Two dimensions of the NATO has potential to cause conflicts for IdM • Modern tendencies (Identity 2.0) not reflected either in NATO IdMStrawman Paper or in SMI working paper • Policy document for NATO IdM • Interoperability at all levels NATO UNCLASSIFIED

6. …and Finally • What can we accomplish today? • Listen • Inform • Plan for the future