RSA Conference Brochure 2008

idEntity & accEss ManagEMEnt tuEsday, april 8 1:30 p.m. – 2:40 p.m. iAM-105 WEdnEsday, april 9 8:00 a.m. – 8:50 a.m. iAM-201 (S) The Government-Wide implementation of HSPD-12 Michael Butler | Director, GSA HSPD-12 Managed Service Office, U.S. General Services Administration David Temoshok | Director, Identity Policy and Management, U.S. General Services Administration (T2) Breaking the identity Metasystem Pamela Dingle | Founder, Pamela Project This session presents the strategies, plans and status for accomplishing the government-wide implementation of Homeland Security Presidential Directive 12 (HSPD-12). It will focus on the GSA-shared services, testing and interoperability. 3:00 p.m. – 3:50 p.m. iAM-106 The user-centric identity community has been working together to prove identity metasystem interoperability for some time, but what happens when the intention is not to interoperate, but to defeat? This session will concentrate on research into abuse and error cases that component owners must be able to recover from gracefully in order to be robust and secure metasystem participants. 9:10 a.m. – 10:20 a.m. iAM-202 (T2) Digital identity and Service-Oriented Architecture — Hope and Glory (T2) Enterprise Access Management: The XACMl Standards-Based Path Ahead Ron Williams | Product Architect, Access and Federated Identity Management, IBM Corporation Adoption of federated identity techniques has been slower than the hype might indicate, despite the maturity of standards such as SAML 2.0 and web services security. This presentation examines the distinct business and technical identity management issues in both the commercial and user-centric spheres, as well as important catalysts to drive successful deployment. 4:10 p.m. – 5:20 p.m. iAM-107 Norman Brickman | Lead InfoSec Engineer, The MITRE Corporation Russell Reopell | Principal InfoSec Engineer, The MITRE Corporation As enterprise IT infrastructures evolve from a product environment dominated by web access management to one that also requires support for service-oriented architecture, the type of enterprise access management products available must also evolve. This presentation introduces this market shift and explains the technology improvements and standards-based interoperability that its success depends upon. 10:40 a.m. – 11:50 a.m. iAM-203 (T2) What Vendors Won’t Tell You About Federated identity Daniel Houser | Sr. Security Identity Architect, Cardinal Health Bob West | Founder and CEO, Echelon One Federated identity single sign-on has a unique set of challenges, and many federation projects are completed late and over budget. This session will provide details on what it takes to be successful with an enterprise federation project, as well as pragmatic perspectives on staffing, support, session management, troubleshooting and politics. 5:40 p.m. – 6:30 p.m. iAM-108 Securing information Assets through identity-Based Access Controls PANELIST: Sean Kline | Director of Product Management, Identity and Access Assurance Group, RSA, The Security Division of EMC (S) How Might OpeniD Apply to an Enterprise? Rafat Alvi | Principal Engineer, CTO Office, Sun Microsystems Yvonne Wilson | Director, IT Strategy – Security and Application Services, Sun Microsystems Organizations view information as one of their most important assets. Protecting information requires the ability to authenticate identities by matching the level of risk to the right authentication method, control access, and consider using data-centric security. This panel will discuss various approaches to information-centric security and trends that will drive usage of standards-based policy. This session will explore applicability of OpenID to various types of enterprise activities. Considerations will be discussed such as security, trust, privacy, data needs and the extent to which OpenID might or might not meet the needs of certain situations. 32 sEssion classification (B) Business Futures (S) Strategic (T1) Advanced Technical (T2) Intermediate Technical (T3) Basic Technical See page 5 for complete level descriptions.

Table of Contents Feed for the Digital Edition of RSA Conference Brochure 2008

Table of Contents Who Should Attend & Why Keynote Speakers Agenda At-A-Glance Session Classification Special Events & Activities Connect & Network Highlights 1-Day Pre-Conference Tutorials 2-Day Pre-Conference Tutorials Tracks & Sessions Authentication Consumer Protection Business Trends & Impact Case Studies Cryptographers Deployment Strategies Developing with Security Enterprise Defense Hackers & Threats 1 Hackers & Threats 2 Identity & Access Management Industry Experts Law & Liability Policy & Government Professional Development Security-Oriented Architecture Standards Wireless Sponsor Sessions List of Exhibitors Registration Information Sponsors

For optimal viewing of this digital publication, please enable JavaScript and then refresh the page. If you would like to try to load the digital publication without using Flash Player detection, please click here.