Modern Identity
Means No Compromise
Ado Kukic
Sr. Developer Advocate
Auth0
@kukicado
What is
Modern Identity?
@kukicado
- Authentication
- Authorization
- Security
- Personalization
Authentication
@kukicado
The way you login
Authorization
@kukicado
Right access, right time
Security
@kukicado
Protecting data in motion
and at rest
Personalization
@kukicado
Tailored user experience
How can we
modernize identity
without compromising on security, user experience and efficiency?
@kukicado
The Challenge
@kukicado
Security
User Experience
Efficiency
Homegrown identity solutions are...
- Rigid and inflexible
- Expensive to maintain
- Create silos
- Take away from your core competencies
@kukicado
User Experience
@kukicado
Users demand choice when it comes to authentication
Frictionless and personalized experience
Security
@kukicado
Protecting your users, apps, and data from malicious actors
Need for enhanced security features like multifactor auth, anomaly detection, etc.
Business Efficiency
@kukicado
Compliance with laws and regulations such as SOC2, GDPR, and others
Interoperability and efficiency across business units
If done right, identity should be invisible to your users. If done wrong, they’ll feel the pain.
@kukicado
@kukicado
Finding the
right balance between
user experience, security, and business efficiency
@kukicado
Centralizing identity management for all of your applications across various use-cases
/callback?code={123}
{ tokens }
{ sid 123 }
Universal Login
@kukicado
{ html }
Universal Login
@kukicado
Universal Login Benefits
- Single Sign On
- Consistency and Maintenance
-
Centralized Feature Management
- User Experience
@kukicado
@kukicado
Utilizing open standards for better security, interoperability, and flexibility
Open Standards
-
OAuth 2.0 - an open standard for access delegation
-
OpenID Connect - an authentication layer built on top of OAuth 2.0
- JSON Web Tokens - an open industry standard method for representing claims securely between two parties.
@kukicado
User Experience
@kukicado
Streamlined authentication process
Frictionless enhanced security
Personalized experience for each user
Security
@kukicado
Implementing security best practices
Ensuring the right users have the right access
Enhanced security features and anomaly detection
Business Efficiency
@kukicado
Ensuring compliance with GDPR, SOC2, HIPAA, and others laws and regulations
Focus on solving unique business cases
Faster time to market and increased sales, conversions, and revenue
Modern Identity
with Auth0
@kukicado
@kukicado
The Auth0
Universal Identity Platform...
- is easy to integrate whether you have a legacy system or new application
- built on top of open standards like OAuth 2, OpenID Connect, and JSON Web Tokens (JWT)
-
powerful SDKs for web and mobile applications
- flexible and extendable for your unique use case
@kukicado
Auth0
Deployment Options
Public Cloud
A multi-tenant cloud service running on Auth0's infrastructure
@kukicado
Private Cloud
A dedicated cloud service running on Auth0's infrastructure
Managed Private Cloud
A dedicated cloud service running on either Auth0's infrastructure or the customer's AWS cloud infrastructure
Summary
@kukicado
Modern identity is finding the right balance between security, user experience and efficiency
Centralizing identity management for all of your applications across various use-cases
Utilizing open standards for better security, interoperability, and flexibility
Resources
@kukicado
Auth0
https://auth0.com/signup
OpenID Connect Handbook
http://bit.ly/oidc-handbook
Identity Management: Build vs Buy
http://bit.ly/identity-build-vs-buy
Auth0 Total Economic Impact
http://bit.ly/auth0-tei
Thank You!
@kukicado
http://bit.ly/modern-identity-means-no-compromise