Identity Assertion Framework
Farhang Kassaei, eBay
Abstract: Identity, authentication and authorization are the glues for modern, distributed applications, they affect security, availability and usability directly and could also be a significant barrier to adoption of distributed paradigms such as SOA and Cloud. Performing these tasks in monolithic systems are fairly well understood, but distributed environments of applications and services with heterogeneous security profiles often present different challenges. In this talk we present architectural models, deployment techniques and policy management ideas representing the top 10 most important lessons we learned from implementing large scale distributed authentication scheme for eBay marketplaces, PayPal and eBay Mobile.