First Morning Session 10:00am
Presenter: Ashley Stevenson
Notes: John Pinson
- Use Case: I want to be able to authenticate a consumer device or thing – let’s say it was bought at a Walgreens.
- Ashley: does the manufacturer enable? Is the data from the device getting stored in the device? Is it getting uploaded to the cloud? Does it collect data?
Four Elements of Identity Management for the Internet of Things
- Federation cuts across all four points.
- Governance / Federated Authorization. Think of UMA. It enables you to create consent policy that is decentralized, so given a circumstance, that piece of data is accessible on a repeatable basis, eg. Any doctor can access your heart rate data.
- Would UMA work in a situation where you have an elderly grandmother where you need to delegate access to her healthcare data?
Answer: Yes. Depending on your organization, ForgeRock can constrain the devices / infrastructure that you are allowed to see, and grant access as needed.
Ashley demos a SmartCity console built in OpenAM #IoT
The unique thing with the IoT is that it goes beyond M2M interactions, enabling people and devices to share data up to the cloud, or with other people & devices. OpenIDM is the access point for devices, but it’s just the beginning. Does that device have a credential? Is it associated with the organization? How so? OpenIDM enables you to assign a token, a PKI association, etc. Think of a UPS guy. If you’re expecting a delivery on a Tuesday morning, and a guy wearing brown, driving a brown truck shows up at your doorstep, he’s fully credentialed to make that delivery. Same with IoT devices.