Federated Security Incident Response
Time 10/29/14 08:30AM-09:15AM
Federations like InCommon have created a new requirement for security incident response. Without federation, when a campus account is compromised its Information Security team helps the account owner to regain control of the account and notifies managers of any sensitive
applications accessed by the account. Now that federation has extended campus based authentication to many off campus services, which of those external service providers should also be notified, and how? Leading practitioners of Information Security and of Identity and
Access Management have begun to address the problem of how to extend security incident response to the federated context. This session will provide attendees with up to the minute status of that work and invite input to guide its continuation.
Speaker Thomas Barton University of Chicago
Primary track Trust and Identity