Loading…
This event has ended. View the official site or create your own event → Check it out
This event has ended. Create your own
View analytic
Monday, February 29 • 2:00pm - 2:55pm
Access Control in 2016 - deep dive

Sign up or log in to save this to your schedule and see who's attending!

Access control is undoubtedly a critical security mechanism, which is often managed as part of Identity & Access Management (IAM). Unfortunately current access control implementations are often quite crude (e.g. limited to role-based access and account provisioning). This is in contrast to the increasing complexity of the access policies that should actually be implemented - for example, required to meet regulations.As a poor man’s way out, organizations today resort to implementing basic access control mechanisms to meet compliance requirements (e.g. “least privilege”) – but these mechanisms are often too coarse and static to be effective (e.g. “least privilege” is much more than privileged account management).In fact access control comprises many different, often not so well-understood approaches, which should be used by InfoSec professionals and developers to make access control more effective, and manageable while at the same time being technically implementable. Advanced access control approaches are often criticized for being unmanageable, unimplementable, or too costly. In this quite technical session you will learn: why access control policy implementation in 2016 is more complex than you may think, why traditional access control mechanisms are often insufficient, which new approaches are available, and are suitable for what IT/business environment.

Speakers
avatar for Dr. Ulrich Lang

Dr. Ulrich Lang

Founder & CEO, ObjectSecurity LLC
Renowned access control expert with over 20 years in InfoSec (startup, large bank, academic, inventor, technical expert witness, conference program committee, proposal evaluator/reviewer etc.). Over 150 publications/presentations InfoSec book author. PhD on access control from Cambridge University (2003), a master’s in InfoSec (Royal Holloway). Co-founder, co-inventor and CEO of ObjectSecurity (Gartner “Cool Vendor 2008”), an innovative... Read More →


Monday February 29, 2016 2:00pm - 2:55pm
DNA Lounge 375 11th St, San Francisco, CA 94103

Attendees (17)