Securing the Perimeter: Deploying Identity and Access Management with Free Open Source Software

Michael Schwartz, Maciej Machulak

  • 出版商: Apress
  • 出版日期: 2018-12-13
  • 定價: $2,100
  • 售價: 9.0$1,890
  • 語言: 英文
  • 頁數: 377
  • 裝訂: Paperback
  • ISBN: 1484226003
  • ISBN-13: 9781484226001
  • 相關分類: 資訊安全
  • 立即出貨 (庫存=1)

  • Securing the Perimeter: Deploying Identity and Access Management with Free Open Source Software-preview-1
  • Securing the Perimeter: Deploying Identity and Access Management with Free Open Source Software-preview-2
  • Securing the Perimeter: Deploying Identity and Access Management with Free Open Source Software-preview-3
  • Securing the Perimeter: Deploying Identity and Access Management with Free Open Source Software-preview-4
  • Securing the Perimeter: Deploying Identity and Access Management with Free Open Source Software-preview-5
  • Securing the Perimeter: Deploying Identity and Access Management with Free Open Source Software-preview-6
  • Securing the Perimeter: Deploying Identity and Access Management with Free Open Source Software-preview-7
  • Securing the Perimeter: Deploying Identity and Access Management with Free Open Source Software-preview-8
Securing the Perimeter: Deploying Identity and Access Management with Free Open Source Software-preview-1

買這商品的人也買了...

商品描述

Leverage existing free open source software to build an identity and access management (IAM) platform that can serve your organization for the long term. With the emergence of open standards and open source software, it’s now easier than ever to build and operate your own IAM stack.

The most common culprit of the largest hacks has been bad personal identification. In terms of bang for your buck, effective access control is the best investment you can make. Financially, it’s more valuable to prevent than to detect a security breach. That’s why Identity and Access Management (IAM) is a critical component of an organization’s security infrastructure. In the past, IAM software has been available only from large enterprise software vendors. Commercial IAM offerings are bundled as “suites” because IAM is not just one component. It’s a number of components working together, including web, authentication, authorization, cryptographic, and persistence services. 

Securing the Perimeter documents a recipe to take advantage of open standards to build an enterprise-class IAM service using free open source software. This recipe can be adapted to meet the needs of both small and large organizations. While not a comprehensive guide for every application, this book provides the key concepts and patterns to help administrators and developers leverage a central security infrastructure.

 

Cloud IAM service providers would have you believe that managing an IAM is too hard. Anything unfamiliar is hard, but with the right road map, it can be mastered. You may find SaaS identity solutions too rigid or too expensive. Or perhaps you don’t like the idea of a third party holding the credentials of your users―the keys to your kingdom. Open source IAM provides an alternative. Take control of your IAM infrastructure if digital services are key to your organization’s success. 

What You’ll Learn

 

  • Understand why you should deploy a centralized authentication and policy management infrastructure
  • Use the SAML or Open ID Standards for web or single sign-on, and OAuth for API Access Management
  • Synchronize data from existing identity repositories such as Active Directory
  • Deploy two-factor authentication services

Who This Book Is For

Security architects (CISO, CSO), system engineers/administrators, and software developers

商品描述(中文翻譯)

利用現有的免費開源軟體來建立一個長期適用於組織的身份和存取管理(IAM)平台。隨著開放標準和開源軟體的出現,現在比以往更容易建立和運營自己的IAM堆疊。

最大的駭客攻擊中最常見的罪魁禍首是糟糕的個人身份識別。從成本效益的角度來看,有效的存取控制是您可以做出的最佳投資。從財務上講,預防安全漏洞比檢測更有價值。這就是為什麼身份和存取管理(IAM)是組織安全基礎設施的關鍵組成部分。過去,IAM軟體只能從大型企業軟體供應商那裡獲得。商業IAM產品被捆綁為“套件”,因為IAM不僅僅是一個組件。它是一些組件共同工作,包括網頁、驗證、授權、加密和持久性服務。

《保護周邊》文件記錄了一個使用免費開源軟體利用開放標準來建立企業級IAM服務的方法。這個方法可以根據小型和大型組織的需求進行調整。雖然不是每個應用程式的全面指南,但本書提供了關鍵概念和模式,以幫助管理員和開發人員利用中央安全基礎設施。

雲IAM服務提供商可能讓您相信管理IAM太難了。任何不熟悉的東西都很難,但有了正確的路線圖,它可以被掌握。您可能會發現SaaS身份解決方案過於僵硬或過於昂貴。或者也許您不喜歡第三方持有您的用戶憑證-您王國的鑰匙。開源IAM提供了一個替代方案。如果數位服務對於您組織的成功至關重要,請掌握您的IAM基礎設施。

您將學到什麼:

- 瞭解為什麼應該部署集中式身份驗證和策略管理基礎設施
- 使用SAML或Open ID標準進行網頁或單一登錄,以及使用OAuth進行API存取管理
- 同步現有身份存儲庫(如Active Directory)中的數據
- 部署雙因素身份驗證服務

本書適合的讀者:

- 安全架構師(CISO,CSO)、系統工程師/管理員和軟體開發人員