Upload File

hannes tschofenig (ietf#79, saag, beijing)

18
Hannes Tschofenig (IETF#79, SAAG, Beijing)

Upload: eitan

Post on 06-Jan-2016

48 views

Category:

Documents


1 download

Report

Tags:

DESCRIPTION

Hannes Tschofenig (IETF#79, SAAG, Beijing). Acknowledgements. I would like to thank to Pasi Eronen. I am re-using some of his slides in this presentation. The Problem: Secure Data Sharing. Example OAuth Exchange. User Enters a URL In the web browser. Browser opens URL. User is presented - PowerPoint PPT Presentation

TRANSCRIPT

Page 1: Hannes Tschofenig (IETF#79, SAAG, Beijing)

Hannes Tschofenig (IETF#79, SAAG, Beijing)

Page 2: Hannes Tschofenig (IETF#79, SAAG, Beijing)

Acknowledgements

• I would like to thank to Pasi Eronen. I am re-using some of his slides in this presentation.

04/20/23 IETF #79, OAuth Overview, SAAG Meeting, Beijing

2

Page 3: Hannes Tschofenig (IETF#79, SAAG, Beijing)

04/20/23 IETF #79, OAuth Overview, SAAG Meeting, Beijing

3

The Problem: Secure Data Sharing

Page 4: Hannes Tschofenig (IETF#79, SAAG, Beijing)

04/20/23 IETF #79, OAuth Overview, SAAG Meeting, Beijing

4

Page 5: Hannes Tschofenig (IETF#79, SAAG, Beijing)

04/20/23 IETF #79, OAuth Overview, SAAG Meeting, Beijing

5

Example OAuth Exchange

Page 6: Hannes Tschofenig (IETF#79, SAAG, Beijing)

04/20/23 6IETF #79, OAuth Overview, SAAG Meeting, Beijing

User Enters a URLIn the web browser

Page 7: Hannes Tschofenig (IETF#79, SAAG, Beijing)

04/20/23 7IETF #79, OAuth Overview, SAAG Meeting, Beijing

Browser opens URL

Page 8: Hannes Tschofenig (IETF#79, SAAG, Beijing)

04/20/23 8IETF #79, OAuth Overview, SAAG Meeting, Beijing

User is presentedWith the option toaccess remote (but protected) data

Page 9: Hannes Tschofenig (IETF#79, SAAG, Beijing)

04/20/23 9IETF #79, OAuth Overview, SAAG Meeting, Beijing

Resource ConsumerRedirects to Authorization Server

Page 10: Hannes Tschofenig (IETF#79, SAAG, Beijing)

04/20/23 10IETF #79, OAuth Overview, SAAG Meeting, Beijing

User authenticationtakes place

Page 11: Hannes Tschofenig (IETF#79, SAAG, Beijing)

04/20/23 11IETF #79, OAuth Overview, SAAG Meeting, Beijing

User authorizes data exchange

Page 12: Hannes Tschofenig (IETF#79, SAAG, Beijing)

04/20/23 12IETF #79, OAuth Overview, SAAG Meeting, Beijing

Authorization GrantedRedirect from Authz Server back to Resource Consumer

Page 13: Hannes Tschofenig (IETF#79, SAAG, Beijing)

04/20/23 13IETF #79, OAuth Overview, SAAG Meeting, Beijing

Resource ConsumerRequests Token from Authorization ServerFor Access to theResource Server

Page 14: Hannes Tschofenig (IETF#79, SAAG, Beijing)

04/20/23 14IETF #79, OAuth Overview, SAAG Meeting, Beijing

Resource ConsumerReceives Token

Page 15: Hannes Tschofenig (IETF#79, SAAG, Beijing)

04/20/23 15IETF #79, OAuth Overview, SAAG Meeting, Beijing

Resource ConsumerRequests access toData at the ResourceServer

Page 16: Hannes Tschofenig (IETF#79, SAAG, Beijing)

04/20/23 16IETF #79, OAuth Overview, SAAG Meeting, Beijing

Data exchange takesplace

Page 17: Hannes Tschofenig (IETF#79, SAAG, Beijing)

OAuth Profiles

Token Request

Work Scope

UserUser Agent

Authorization Server

Resource Server

Resource Consumer

Access Request(incl. Token)

Authorization Request

04/20/23 17IETF #79, OAuth Overview, SAAG Meeting, Beijing

User Interface

Token FormatAnd Content

Authz ServerInteractionData Exchange

Authentication

Request Security

Page 18: Hannes Tschofenig (IETF#79, SAAG, Beijing)

Summary• Open Web Authentication (OAuth) is developed in

the IETF to provide delegated authentication. • Code available (see http://oauth.net/code/) and

deployment on the way.• Working group is working on finalizing the OAuth 2.0

specification:– http://tools.ietf.org/html/draft-ietf-oauth-v2

• Rechartering discussion started with many extensions being considered by the group

• Your input is needed!

04/20/23 IETF #79, OAuth Overview, SAAG Meeting, Beijing

18

http://oauth.net/code/
http://tools.ietf.org/html/draft-ietf-oauth-v2

Hannes Tschofenig MIT CFP Privacy & Security Working Group Feb. 2 nd 2011

Next Generation 112 Long Term Definition - · PDF fileThe Next Generation 112 Long Term Definition document is based on the NENA i3 ... Hannes Tschofenig Nokia Siemens Networks / EENA

Next Generation 112 Long Term Definition - EENA · The Next Generation 112 Long Term Definition document is based on the NENA i3 ... Cristina Lumbreras EENA Hannes Tschofenig Nokia

HOLDI A3 TAKEAWAY MENU no image A3 TAKEAWAY MENU no...CHANA BHAJI ALOO GOBI PEAS & PANEER OKRA BHAJI MUSHROOM BHAJI SAAG PANEER SAAG CHANA SAAG ALOO SAAG BHAJI CAULIFLOWER BHAJI BEANS

Hannes Tschofenig, Blaine Cook (IETF#79, Beijing)

IPv6, and it’s Future Hannes Tschofenig Nokia Siemens Networks

CLIENT SAAG NAME Type RATE Agri Exposition Auth ......SAAG RATES AND FEES BY CLIENT FY2018 CLIENT SAAG NAME Type RATE Agri Exposition Auth DENNIS, BROWN WIMBERLY, JR.AHRS $100.00 PHRS

Metodologia para Avaliação de Eficiência em SAAG

1 NSIS Interim Meeting 2005, Munich GIMPS Implementation Bernd Schloer, Christian Dickmann, Andreas Westermaier Xiaoming Fu, Hannes Tschofenig, Elwyn Davies

ICEF18 SAAG R5 - ASME

1 Design Patterns for Connected Devices Hannes Tschofenig Michael Koster

1 Location Hiding Henning Schulzrinne Laura Liess Hannes Tschofenig

Emergency Services IAB Tech Chat 28 th February 2007 Hannes Tschofenig

Sung-Hyuck Lee, Seong-Ho Jeong, Hannes Tschofenig, Xiaoming Fu, Jukka Manner

Hannes Tschofenig (IETF#79, SAAG, Beijing). Acknowledgements I would like to thank to Pasi Eronen. I am re- using some of his slides in this presentation

Performance Investigations - Internet Engineering Task · PDF filePerformance Investigations Hannes Tschofenig, Manuel Pégourié-Gonnard 25th March 2015 . 2 Motivation ! In we tried

Resume SAAG

Standardizing IP-based Emergency Services Richard Barnes BBN Technologies IETF GEOPRIV Chair [email protected] Hannes Tschofenig Nokia-Siemens IETF ECRIT

Securing IoT applications with Mbed TLS · © 2018 Arm Limited March 2018 Munich Securing IoT applications with Mbed TLS Hannes Tschofenig Part#2: Public Key-based authentication

Internet Engineering Task Force Provisioning of Symmetric Keys Working Group Hannes Tschofenig

1 Performance Investigations Hannes Tschofenig, Manuel Pégourié-Gonnard 25 th March 2015

Saag summer-2011

1Nokia Siemens Networks Presentation / Author / Date University of Twente On the Security of the Mobile IP Protocol Family Ulrike Meyer and Hannes Tschofenig

Super Speedy Spinach Saag Paneer + Incredible … Speedy Spinach Saag Paneer + Incredible Indian Fried Rice + ... brown+fry Add 1 T butter or ... Spinach Saag Paneer Incredible Indian

ISSN: 2070-1721 Motorola Labs H. Tschofenig Nokia · PDF fileISSN: 2070-1721 Motorola Labs H. Tschofenig ... Example Call Flow for Pull Mode ... Nokia Siemens Networks

Interest of SAAG in Etiological Diagnosis of Ascites in ...Correlation between Levels of SAAG and Etiologies of Ascites In the case of high SAAG, 91% of ascites related to PHT were

Geolocation Privacy Hannes Tschofenig International Working Group on Data Protection in Telecommunications Rome, March 2008

The FIDO Approach to Privacy Hannes Tschofenig, ARM Limited 1

Example oAuth Exchange - Sesar Labsesar.di.unimi.it/corsi/SOASecurity/slide/oauth-tutorial.pdf · History, cont. March 2010: Peter Saint Andre became Area Director and Hannes Tschofenig

Internet Standards- Emergency Services Hannes Tschofenig Mail comments to [email protected] and/or [email protected]@[email protected]

1 Confidential Authentication Session Hannes Tschofenig

Saag Paneer Recipe Card - University of Toronto

Architectural Considerations in Smart Object Networking IAB RFC 7452 Dave Thaler Hannes Tschofenig Mary Barnes (moderator) 1

SAAG Presentation Web Rejuvenation - Memorial University · SAAG Presentation Web Rejuvenation Created Date: 2/1/2017 3:23:47 PM

CIS 2015 How to secure the Internet of Things? Hannes Tschofenig