Oracle Identity Management:
Improving Security and Compliance
© 2009 Oracle Corporation Oracle Confidential 2
• Today’s IT Challenges
• Solution
• Oracle Identity Management
• What’s New in Oracle Identity Management 11g?
• Why Oracle?
• Q&A
<Insert Picture Here>
Agenda
© 2009 Oracle Corporation Oracle Confidential 3
Today’s IT Challenges
IT Efficiency• Extranet Accessibility
• Higher level of B2B integrations
• Faster reaction to changing requirements
Security• Organized crime
• Identity theft
• Constant global threats
Compliance• Increasing regulatory demands
• Increasing privacy concerns
• Business viability concerns
© 2009 Oracle Corporation Oracle Confidential 4
70%
Source: Ponemon Institute, 2006
70%
The Ponemon Institute finds that
of all reported security breaches were due to insiders
92%
77%
Data breaches and cybercrimeare on the rise.
Source: Ponemon Institute, 2008
2%2%
When a company announces a security breach, its stock price can drop by
of all IT organizations have experienced at least one cyber-attack
of IT security professionals believe their organizations are vulnerable to cybercrime
69%
66%
57%
Compliance
Majority of 400 directors surveyed recognize that the right IT strategy is very important for
Customer Satisfaction
Managing Risk
Source: Corporate Board Member/ Deloitte Consulting, March 2007
Some Recent Security Highlights
© 2009 Oracle Corporation Oracle Confidential 5
• Increasing regulatory demands
– Mandates need restricted access to sensitive data
• Manual compliance is expensive
• Operational Efficiency
• Security silos / Multiple Identity Stores
– Delays in on-boarding/ off-boarding
– Built up privileges over time
– SoD violations
– Password policies not enforced
across all systems
Challenge: Sustaining Compliance
© 2009 Oracle Corporation Oracle Confidential 6
• Pervasive threat of security breaches
• Fragmented security policies
– Orphaned accounts
– Policies / Authorization hardcoded in the application
– Lack of aggregated audit and accountability
• Manual provisioning requests - prone to errors
• Leaked Passwords
Challenge: Managing Security Risks
© 2009 Oracle Corporation Oracle Confidential 7
Challenge: Operational Efficiencies
• Administrative costs
– Administering access for users
– Help desk calls
– Manual provisioning of accounts for new hires
– Manual aggregation and cross checking of audit data
• User Productivity
– Long wait times for access to requested systems
– Forgotten passwords
• IT Productivity
– Developers re-inventing security for each app
© 2009 Oracle Corporation Oracle Confidential 8
• Today’s IT Challenges
• Solution
• Oracle Identity Management
• What’s New in Oracle Identity Management 11g?
• Why Oracle?
• Q&A
<Insert Picture Here>
Agenda
© 2009 Oracle Corporation Oracle Confidential 9
• Enforces Segregation of Duties
• Restricts Access
• Automates access management
• Automates compliance reports
• Automates attestation
IdM Delivers Sustainable Compliance
© 2009 Oracle Corporation Oracle Confidential 10
• Centralized security and policy management
– Consistent policies enforced across enterprise
– Centralized Authorization
• Automated provisioning / de-provisioning
– Role based user provisioning and de-provisioning
– Automated updates triggered by user status change
• Single Sign-On, Delegated Administration, Risk-based Access
– Reduce password compromises
– Delegate policy administration to business owners
– Proactively defend against sophisticated security threats / fraud
IdM Centralizes & Strengthens Security
© 2009 Oracle Corporation Oracle Confidential 11
• Lower Administrative costs
– Cost savings via reduced help desk calls
– Automated and aggregated audit reporting
• Enhanced User Productivity
– Reduce time to access systems from days to minutes
– Automated provisioning – 212% ROI within 6 months1
• Enhanced IT Productivity
– Developers re-use centralized security functions
– Accelerated application deployments – Virtual Directory
1 1 –– Forrester Research Report Forrester Research Report –– TEI Study of Oracle Identity Manager 2008TEI Study of Oracle Identity Manager 2008
IdM Streamlines IT Efficiency
© 2009 Oracle Corporation Oracle Confidential 12
• Today’s IT Challenges
• Solution
• Oracle Identity Management
• What’s New in Oracle Identity Management 11g?
• Why Oracle?
• Q&A
<Insert Picture Here>
Agenda
© 2009 Oracle Corporation Oracle Confidential 13
© 2009 Oracle Corporation Oracle Confidential 14
Access Manager
Adaptive Access Manager
Enterprise Single Sign-On
Identity Federation
Entitlements Server
Access Management
Identity Manager
Role Manager
Identity Admin.
Internet Directory
Virtual Directory
Directory Services
Identity & Access Management Suite
Audit & Compliance
Enterprise Manager IdM Pack
Manageability
Oracle’s Identity ManagementComprehensive Suite of Best-Of-Breed Products
© 2009 Oracle Corporation Oracle Confidential 15
Comprehensive
Integrated suite of best-of-breed
components that are individually deployable
Application-Centric
Integrated with business applications
Hot-Pluggable
Standards-based and works across heterogeneous platforms
Oracle Identity ManagementUnique Design Advantage
© 2009 Oracle Corporation Oracle Confidential 16
Other Sources
HR Applications
Directory Server
Applications
Physical Security
Databases & OS/Legacy
Identity Data
Oracle Identity AdministrationSustainable Compliance With High ROI
© 2009 Oracle Corporation Oracle Confidential 17
Packaged Apps
Custom Apps
Portals
Secure MutualAuthentication
Kerberos & Basic Auth.
Biometric
Smart Card
Entitlements Management
Risk-based Strong Authentication
Single Sign On Across Enterprise
Standards-based Federation
Oracle Access Management SuiteCentralized Security and Improved Business Agility
© 2009 Oracle Corporation Oracle Confidential 18
Multiple DBMS Multiple Directories HR Applications Mainframe/Legacy
Directory Services Mgr.
Oracle Virtual Directory
Any Application
Virtualizes Access to IdVirtualizes Access to Id--StoresStores
Dynamically binds at RuntimeDynamically binds at Runtime
Standard LDAP & Java APIsStandard LDAP & Java APIs
Oracle Directory Services Rapid Application Deployment Accelerates IT Agility
© 2009 Oracle Corporation Oracle Confidential 19
• Today’s IT Challenges
• Solution
• Oracle Identity Management
• What’s New in Oracle Identity Management 11g?
• Why Oracle?
• Q&A
<Insert Picture Here>
Agenda
© 2009 Oracle Corporation Oracle Confidential 20
Fully IntegratedIdM Suite
Rich User & Administrator Experience
Service-Oriented Security
IDENTITY MANAGEMENT
Oracle Identity Management 11gKey Themes
© 2009 Oracle Corporation Oracle Confidential 21
Oracle IdM 11g Benefits
• Integrates Products on a
Common Platform
• Tighter Suite Level Integration
• Simplifies User and Systems
management
• Accelerated Time to Deploy,
Rapid ROI
© 2009 Oracle Corporation Oracle Confidential 22
Directory Services Mgr. Enterprise Manager
Rapid Application Deployment
Deployment Accelerators
Unified Administration Console
Tighter Platform Integration
Oracle Directory Services 11g
© 2009 Oracle Corporation Oracle Confidential 23
New! Windows CardSpace
WS-Fed
SAML 1.x/2.0
Liberty ID-FF
Applications
Portals
IdM Infrastructures
Identity Stores
Certificate Stores
Policy Stores
Authn/SSO
Partners/Affiliates
Seamless Single Sign-On
Universal Federation Framework
Enterprise-class Manageability
Oracle Identity Federation 11g
© 2009 Oracle Corporation Oracle Confidential 24
• Identity as a Service• Insulating developers from Identity
Infrastructure
• Declarative Security Framework• Security Services Provider Interface
• Comprehensive security for Fusion
Middleware Applications
Oracle Platform Security Services 11gImproving Innovation with IT Agility
© 2009 Oracle Corporation Oracle Confidential 25
Generic Enterprise User Store
Oracle Directory Services
Default Single Sign-On for OFM 11g
Authentication and SSO for OFM 11g
HTTP Authentication
Smart Cards
Certificates
Oracle HTTP Server w/WebGate
Security for Fusion Middleware Applications
OAM Default sol for SSO for all FMW apps
Fusion Middleware Applications
© 2009 Oracle Corporation Oracle Confidential 26
Coming Soon..
• Oracle Identity Manager 11g
• Oracle Access Manager 11g
• Oracle Entitlements Server 11g
• Oracle Adaptive Access Manager 11g
Comprehensive & Integrated IdM Suite 11g
Oracle
Identity
Management
© 2009 Oracle Corporation Oracle Confidential 27
• Today’s IT Challenges
• Solution
• Oracle Identity Management
• What’s New in Oracle Identity Management 11g?
• Why Oracle?
• Q&A
<Insert Picture Here>
Agenda
© 2009 Oracle Corporation Oracle Confidential 28
“Oracle has established itself as Leader.”
- The Forrester Wave: Identity And Access Management, Q1 2008
Market Leader According To
Oracle reached the top of our
evaluation through a combination of
the breadth, depth, interoperability,
and packaging of its IAM features
alongside the strategy and current
state of market execution on its
application-centric identity vision.
- The Forrester Wave: Identity And Access Management, Q1 2008
© 2009 Oracle Corporation Oracle Confidential 29Magic Quadrant Disclaimer: The Magic Quadrant is copyrighted by Gartner, Inc. and is reused with permission. The Magic Quadrant is a graphical representation of a marketplace at and for a specific time
period. It depicts Gartner's analysis of how certain vendors measure against criteria for that marketplace, as defined by Gartner. Gartner does not endorse any vendor, product or service depicted in the Magic
Quadrant, and does not advise technology users to select only those vendors placed in the "Leaders" quadrant. The Magic Quadrant is intended solely as a research tool, and is not meant to be a specific guide
to action. Gartner disclaims all warranties, express or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
User Provisioning, H2 2008 Web Access Management, Nov 2008
“Oracle assumes the No. 1 position”- Earl Perkins, Perry Carpenter, Aug. 15 2008 (Research G00159740)
Leader in
© 2009 Oracle Corporation Oracle Confidential 30
“Oracle continues to increase in
mindshare while broadening its IdM
portfolio.”
- VantagePoint 2008: Identity and Privacy Trends in Enterprise IT
Strongest Vendor According To
© 2009 Oracle Corporation Oracle Confidential 31
Identity Management Customers
Financial Services
Manufacturing & Technology
Public Sector
Transportation & Services
Telecommunication
Retail
© 2009 Oracle Corporation Oracle Confidential 32
SummaryImproving IT Agility with Oracle Identity Management
© 2009 Oracle Corporation Oracle Confidential 33
Quote Attribution
Title, Company
For More Information
• Visit the Oracle Fusion Middleware 11g web
site at
http://www.oracle.com/fusionmiddleware11g
• Oracle Fusion Middleware on oracle.com
www.oracle.com/middleware
• Oracle Fusion Middleware on OTN
http://otn.oracle.com/middleware
Get Started
• Visit the Oracle IdM Website at:
http://oracle.com/identity
• Technical information available at:
http://otn.oracle.com/
• Talk to an Oracle IdM Specialist:
1-800-633-0738
• View demos, videos, iseminars
whitepapers: http://oracle.com/identity
Resources
Top Related