• About
  • About the Department
  • Contact
  • Directions
  • Partners
  • Rooms
  • Systems & Software
  • Conduit
  • News
  • Events
  • Blog
• People
  • Our Community
  • Faculty
  • Staff
  • Grad Students
  • Ugrad Students
  • Alums
  • Directory
• Research
  • Research Links
  • Areas
  • Publications
• Degrees
  • Degree Programs
  • Doctoral
  • Masters
  • Undergrad
  • Programs
  • Miscellaneous
• Courses
  • Course List
  • Schedule
  • Sections
  • TA Program

The 44th IPP Symposium

Who are you and what do you do? Identity management in the cloud environments and challenges with custom code

Denis Pilipchuk, Oracle

Proper identity management stands at the top of customer's concerns when considering cloud deployments- and rightly so. A secure and scalable identity management implementation is the foundation for the proper operation of an entire cloud environment. However, once identity management has been addressed, what can those users do in the cloud-based applications? No matter how rich the functionality of the deployed applications is, cloud customers are rarely satisfied with "canned" solutions, often requiring customizations and modifications. And here lies another significant challenge for cloud deployments - how can you harden and sandbox customers' code and gadgets? There is a thin line between balancing functionality requirements for such customization and protecting other customers and the company from ill-designed or even malicious code. This presentation starts with reviewing some of the challenges associated with managing the identity of users in the various forms of clouds and provides a high-level description of how Oracle solves various identity management challenges in its Oracle Public Cloud (OPC) deployment.

Mr. Pilipchuk is currently a Security Program Manager at the Global Product Security team in Oracle, where he works with all of the company's product teams to establish and promote security assurances programs, concentrating in the area of Architectural Risk Analysis and security design. He has previously held architectural roles in various organizations, including BEA, Netegrity, Eclipsys. These roles required substantial amount of security involvement, ranging from compliance issues for medical software to fine-grained entitlements and working with security standards in the Web Service and Entitlements areas as part of OASIS. Denis is a CSSLP and holds a M.S. degree in Computer Science.