wavestone forgerock banking demo
TRANSCRIPT
© 2016 ForgeRock. All rights reserved.
Banking Demo PSD2 Flows
© 2016 ForgeRock. All rights reserved.
•Fastest-growing open source identity security software company in the world•Founded: 2010•Headquartered in San Francisco with offices in 10 countries•Employees: 400+•Customers: 600+ Enterprises in 30+ countries•Global Reach: ~50% international revenue•Funding to Date (thru Series C): $52M•Investors: Accel Partners, Foundation Capital and Meritech Capital Partners
Key Facts Mission Statement
ForgeRock: At a Glance
The ForgeRock Identity Platform currently powers
more than 800 million identities. It is our goal to become the market leader
in digital transformation and security for enterprise
identity worldwide.
© 2016 ForgeRock. All rights reserved.
Banking Demo Architecture
Bank Website
Amazon Echo
Alexa App
iProov Auth
ForgeBankApp
Parsley Accounting
Push Auth
© 2016 ForgeRock. All rights reserved.
ForgeRock Authentication
ForgeRock Authentication
ServiceContextualAdaptive
Strengths (LOA)Multifactor
ExtensibleFrictionless
Module
Step up
Module
Module
CustomModule
Any identity plug-in
scriptable
external cred stores
external cred stores94
Risk Score
Access Management
© 2016 ForgeRock. All rights reserved.
Banking Demo User Journey• Enhance authentication : Logs in with ForgeRock Push
Authentication.
• Mobile Application : Retrieves balance securely using API gateway to mobile app.
• Dynamic Authorization : Adds a new payee with iproovfacial recognition step up.
• Privacy & Consent : Shares account data with accountant using UMA.
© 2016 ForgeRock. All rights reserved.
PSD2 and ForgeRock: Banking agregator example
© 2016 ForgeRock. All rights reserved.
User Managed Access (UMA) and GDPR
Regard for one's wishes and preferences
The true ability to say noand change one's mind
The ability to sharejust the right amount
The right moment to make the decision to share CONTEXT CONTROL
RESPECTCHOICE
UMA is an emerging standard for privacy and consent
© 2016 ForgeRock. All rights reserved.
AISP Demo Flow
1. Enroll to share data2. Request access to data
3. Receive sharing request
4. Approve sharing
5. Access data
ForgeRock at every step
1. Create an UMA share
2. Make a UMA request for data protected by ForgeRock
3. Receive UMA request
4. Authorize UMA request and create permissions
5. Use UMA permissions to request an OAuth2 token and use this to securely access data
© 2016 ForgeRock. All rights reserved.
Banking Demo User Journey
• Innovation : Links ForgeBank skill and checks balance with Amazon Alexa.
• Secure user journey : Transfers money with Alexa and authorizes with push authorization
© 2016 ForgeRock. All rights reserved.
Banking Demo User Journey
• Enhance authentication
• Mobile Application
• Dynamic Authorization
• Privacy & Consent• Innovation • Secure user journey