Вы находитесь на странице: 1из 33

Oracle Identity Management:

Improving Security and Compliance


Agenda

<Insert Picture Here>


• Today’s IT Challenges
• Solution
• Oracle Identity Management
• What’s New in Oracle Identity Management 11g?
• Why Oracle?
• Q&A

© 2009 Oracle Corporation Oracle Confidential 2


Today’s IT Challenges

Compliance
• Increasing regulatory demands
• Increasing privacy concerns
• Business viability concerns

IT Efficiency Security
• Extranet Accessibility • Organized crime
• Higher level of B2B integrations • Identity theft
• Faster reaction to changing requirements • Constant global threats

© 2009 Oracle Corporation Oracle Confidential 3


Some Recent Security Highlights

Data breaches and cybercrime The Ponemon Institute finds Majority of 400 directors
are on the rise. that surveyed recognize that the
right IT strategy is very
important for
of all IT of all

92%
organizations
have
experienced
70%
70% reported
security
breaches
69% Compliance

at least one were due to


cyber-attack insiders

of IT security
When a
company
66% Customer
Satisfaction
announces a

77%
professionals
believe their
security
2%
organizations
are vulnerable
breach, its
stock price can
drop by
57% Managing
Risk
to cybercrime

Source: Ponemon Institute, 2008 Source: Ponemon Institute, 2006 Source: Corporate Board Member/ Deloitte
Consulting, March 2007

© 2009 Oracle Corporation Oracle Confidential 4


Challenge: Sustaining Compliance

• Increasing regulatory demands


– Mandates need restricted access to sensitive data

• Manual compliance is expensive

• Operational Efficiency

• Security silos / Multiple Identity Stores


– Delays in on-boarding/ off-boarding
– Built up privileges over time
– SoD violations
– Password policies not enforced
across all systems

© 2009 Oracle Corporation Oracle Confidential 5


Challenge: Managing Security Risks

• Pervasive threat of security breaches

• Fragmented security policies


– Orphaned accounts
– Policies / Authorization hardcoded in the application
– Lack of aggregated audit and accountability

• Manual provisioning requests - prone to errors

• Leaked Passwords

© 2009 Oracle Corporation Oracle Confidential 6


Challenge: Operational Efficiencies

• Administrative costs
– Administering access for users
– Help desk calls
– Manual provisioning of accounts for new hires
– Manual aggregation and cross checking of audit data

• User Productivity
– Long wait times for access to requested systems
– Forgotten passwords

• IT Productivity
– Developers re-inventing security for each app

© 2009 Oracle Corporation Oracle Confidential 7


Agenda

<Insert Picture Here>


• Today’s IT Challenges
• Solution
• Oracle Identity Management
• What’s New in Oracle Identity Management 11g?
• Why Oracle?
• Q&A

© 2009 Oracle Corporation Oracle Confidential 8


IdM Delivers Sustainable Compliance

• Enforces Segregation of Duties

• Restricts Access

• Automates access management

• Automates compliance reports

• Automates attestation

© 2009 Oracle Corporation Oracle Confidential 9


IdM Centralizes & Strengthens Security

• Centralized security and policy management


– Consistent policies enforced across enterprise
– Centralized Authorization

• Automated provisioning / de-provisioning


– Role based user provisioning and de-provisioning
– Automated updates triggered by user status change

• Single Sign-On, Delegated Administration, Risk-


based Access
– Reduce password compromises
– Delegate policy administration to business owners
– Proactively defend against sophisticated security
threats / fraud

© 2009 Oracle Corporation Oracle Confidential 10


IdM Streamlines IT Efficiency

• Lower Administrative costs


– Cost savings via reduced help desk calls
– Automated and aggregated audit reporting

• Enhanced User Productivity


– Reduce time to access systems from days to minutes
– Automated provisioning – 212% ROI within 6 months1

• Enhanced IT Productivity
– Developers re-use centralized security functions
– Accelerated application deployments – Virtual Directory

1 – Forrester Research Report – TEI Study of Oracle Identity Manager 2008

© 2009 Oracle Corporation Oracle Confidential 11


Agenda

<Insert Picture Here>


• Today’s IT Challenges
• Solution
• Oracle Identity Management
• What’s New in Oracle Identity Management 11g?
• Why Oracle?
• Q&A

© 2009 Oracle Corporation Oracle Confidential 12


© 2009 Oracle Corporation Oracle Confidential 13
Oracle’s Identity Management
Comprehensive Suite of Best-Of-Breed Products

Identity Admin. Access Management Directory Services

Access Manager
Identity Manager Internet Directory
Adaptive Access Manager
Enterprise Single Sign-On
Role Manager Virtual Directory
Identity Federation
Entitlements Server

Audit & Compliance Manageability


Identity & Access Management Suite Enterprise Manager IdM Pack

© 2009 Oracle Corporation Oracle Confidential 14


Oracle Identity Management
Unique Design Advantage

Comprehensive Hot-Pluggable Application-Centric

Integrated suite of Standards-based Integrated with


best-of-breed and works across business
components that are heterogeneous applications
individually platforms
deployable

© 2009 Oracle Corporation Oracle Confidential 15


Oracle Identity Administration
Sustainable Compliance With High ROI

E-Mail

Directory Server
Databases
& OS/Legacy

HR Applications

Applications

Identity Data
Other Sources
Physical Security

© 2009 Oracle Corporation Oracle Confidential 16


Oracle Access Management Suite
Centralized Security and Improved Business Agility

Kerberos &
Basic Auth. Portals
Single Sign On Across Enterprise

Risk-based Strong Authentication


Secure Mutual
Authentication
Entitlements Management
Packaged Apps

Standards-based Federation
Biometric

Custom Apps
Smart Card

© 2009 Oracle Corporation Oracle Confidential 17


Oracle Directory Services
Rapid Application Deployment Accelerates IT Agility

Any Application

Standard LDAP & Java APIs

Dynamically binds at Runtime Oracle Virtual


Directory

Virtualizes Access to Id-Stores


Directory Services Mgr.

Multiple DBMS Multiple Directories HR Applications Mainframe/Legacy

© 2009 Oracle Corporation Oracle Confidential 18


Agenda

<Insert Picture Here>


• Today’s IT Challenges
• Solution
• Oracle Identity Management
• What’s New in Oracle Identity Management 11g?
• Why Oracle?
• Q&A

© 2009 Oracle Corporation Oracle Confidential 19


Oracle Identity Management 11g
Key Themes

Fully
Integrated
IdM Suite

IDENTITY MANAGEMENT
Service- Rich User &
Oriented Administrator
Security Experience

© 2009 Oracle Corporation Oracle Confidential 20


Oracle IdM 11g Benefits

• Integrates Products on a
Common Platform

• Tighter Suite Level Integration

• Simplifies User and Systems


management

• Accelerated Time to Deploy,


Rapid ROI

© 2009 Oracle Corporation Oracle Confidential 21


Oracle Directory Services 11g

Directory Services Mgr. Enterprise Manager

Rapid Application Deployment

Unified Administration Console


Deployment Accelerators

Tighter Platform Integration

© 2009 Oracle Corporation Oracle Confidential 22


Oracle Identity Federation 11g
New! Windows CardSpace
WS-Fed
SAML 1.x/2.0
Liberty ID-FF

Applications
Partners/Affiliates

Policy Stores Identity


Stores

Seamless Single Sign-On Authn/SSO


Certificate
Portals Stores

Enterprise-class Manageability
IdM Infrastructures

Universal Federation Framework

© 2009 Oracle Corporation Oracle Confidential 23


Oracle Platform Security Services 11g
Improving Innovation with IT Agility

• Identity as a Service
• Insulating developers from Identity
Infrastructure

• Declarative Security Framework


• Security Services Provider Interface

• Comprehensive security for Fusion


Middleware Applications

© 2009 Oracle Corporation Oracle Confidential 24


Security for Fusion Middleware Applications
OAM Default sol for SSO for all FMW apps

HTTP Oracle Directory


Authentication Services

Fusion Middleware
Applications
Oracle HTTP
Certificates Server w/
WebGate

Smart Cards Default Single Sign-On for OFM 11g


Generic Enterprise
User Store
Authentication and SSO for OFM 11g

© 2009 Oracle Corporation Oracle Confidential 25


Coming Soon..

Comprehensive & Integrated IdM Suite 11g

• Oracle Identity Manager 11g

• Oracle Access Manager 11g

• Oracle Entitlements Server 11g


Oracle
Identity • Oracle Adaptive Access Manager 11g
Management

© 2009 Oracle Corporation Oracle Confidential 26


Agenda

<Insert Picture Here>


• Today’s IT Challenges
• Solution
• Oracle Identity Management
• What’s New in Oracle Identity Management 11g?
• Why Oracle?
• Q&A

© 2009 Oracle Corporation Oracle Confidential 27


Market Leader According To

“Oracle has established itself as Leader.”


- The Forrester Wave: Identity And Access Management, Q1 2008

Oracle reached the top of our


evaluation through a combination of
the breadth, depth, interoperability,
and packaging of its IAM features
alongside the strategy and current
state of market execution on its
application-centric identity vision.
- The Forrester Wave: Identity And Access
Management, Q1 2008

© 2009 Oracle Corporation Oracle Confidential 28


Leader in

“Oracle assumes the No. 1 position”


- Earl Perkins, Perry Carpenter, Aug. 15 2008 (Research G00159740)

User Provisioning, H2 2008 Web Access Management, Nov 2008

Magic Quadrant Disclaimer: The Magic Quadrant is copyrighted by Gartner, Inc. and is reused with permission. The Magic Quadrant is a graphical representation of a marketplace at and for a specific time
© 2009period.
Oracle Corporation
It depicts Gartner's analysis of how certain vendors measure against criteria for that marketplace,
Oracle as defined by Gartner. Gartner does not endorse any vendor, product or service depicted in the Magic
Confidential 29
Quadrant, and does not advise technology users to select only those vendors placed in the "Leaders" quadrant. The Magic Quadrant is intended solely as a research tool, and is not meant to be a specific guide
to action. Gartner disclaims all warranties, express or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
Strongest Vendor According To

“Oracle continues
to increase in
mindshare while
broadening its IdM
portfolio.”
- VantagePoint 2008:
Identity and Privacy
Trends in Enterprise IT

© 2009 Oracle Corporation Oracle Confidential 30


Identity Management Customers

Financial Services Transportation & Services

Manufacturing & Technology Telecommunication

Public Sector Retail

© 2009 Oracle Corporation Oracle Confidential 31


Summary
Improving IT Agility with Oracle Identity Management

© 2009 Oracle Corporation Oracle Confidential 32


For More Information

Quote Attribution
Title, Company

Get Started Resources


• Visit the Oracle Fusion Middleware 11g web • Visit the Oracle IdM Website at:
site at http://oracle.com/identity
http://www.oracle.com/fusionmiddleware11g • Technical information available at:
• Oracle Fusion Middleware on oracle.com http://otn.oracle.com/
www.oracle.com/middleware • Talk to an Oracle IdM Specialist:
• Oracle Fusion Middleware on OTN 1-800-633-0738
http://otn.oracle.com/middleware • View demos, videos, iseminars
whitepapers: http://oracle.com/identity

© 2009 Oracle Corporation Oracle Confidential 33

Оценить