Eve Maler is a renowned strategist, innovator, and communicator on digital identity, access, security, and privacy, with particular focus on creating successful wide-scale ecosystems and fostering individual empowerment. Eve drives innovation for the ForgeRock Open Identity Stack, defining strategic product direction and ForgeRock involvement in industry standards related to access control, authorization, and privacy. She also founded and leads the User-Managed Access (UMA) standards effort. Eve was formerly a principal analyst at Forrester Research, advising clients on emerging identity and security solutions, consumer-facing identity, distributed authorization, privacy enhancement, and API security. Previously, Eve was an identity solutions architect with PayPal, and earlier, a technology director at Sun Microsystems, where she co-founded and made major contributions to the SAML federated identity standard. In a previous life she co-invented XML.
Room: N-121 | Time: 4:00pm - 4:50pm
The first couple of chapters of authorization and access control are still being written even when it comes to old-fashioned web services and newfangled APIs, never mind the Internet of Things. IoT security has needs that go way beyond the current scope of cloud and mobile challenges: super-loosely coupled, super-strong, and more. Everyone can imagine security-gone-wrong scenarios that have disastrous consequences for industrial IoT use cases. For consumer-facing IoT in healthcare, household appliances, and more, the consequences are different but no less severe, and it adds a killer requirement: privacy. How can we solve the problems of access control and privacy in a unified way, without compromise? And how can we solve the problem NOW? The OAuth-based User-Managed Access (UMA) protocol provides answers.