Bandit: Interoperability with Windows CardSpace in the Open Enterprise
Baber Amin, Novell
Organizations need to deploy identity-driven services in constantly changing, heterogeneous network environments. They need to provide evolutionary services that are flexible and verifiably secure. The Bandit project is building identity service components that are used by Novell products and directly by customer services; components which reduce barriers of identity silos, ease the evolution, and provide consistent and secure identity services. Project Bandit's open source development supports direct collaboration between Novell, and customer services and deployments.
Because of the widespread deployment of Windows CardSpace and its importance in the identity metasystem, today's identity-enabled enterprise applications should be able to interoperate with it. In the Open Enterprise, Bandit technologies makes this easy.
In this session, we will describe and demostrate how Bandit can be used to enable an identity provider to interoperate with CardSpace as an STS (security token service) without modification of the identity provider. Bandit technologies can be easily and quickly inserted as a gateway between CardSpace and an identity provider to translate between the protocols used by each. In this way, rapid CardSpace enablement and deployment of many different kinds of identity providers is made possible. The complexity of the WS* protocols is encapsulated in the Bandit gateway STS.
Baber Amin is a Senior Product Manager in he Novell Identity and Security Management Group.
He has over fourteen years of experience in networking software design and development, design development and deployment of security, and authentication related technologies. He has been part of the R&D team for Novell's Cryptographic infrastructure, PKI, Single Sign on and Access Control solutions for various product lines.
Mr. Amin is also listed as an inventor on various patents in web caching and content distribution. He has been very pro-active in building and evangelizing identity services within Open source.
Recently, he has spearheaded Novell's entry into the managed credential arena as a provider of HSPD-12 related services, leading to the convergence of physical and logical security systems.