Dear Kantara Initiative Community:
Kantara Initiative will be presenting a workshop at HIMSS15, "Extending the
Power of Consent with User-Managed Access and OpenUMA."
*This workshop will explore the existing notice-and-consent paradigms of
privacy have begun to fail dramatically — and as recent Pew surveys have
demonstrated, people have begun to (ahem) notice. The discipline of privacy
engineering aspires to “craft”, but finds it hard to break out the
“compliance” rut. The User-Managed Access (UMA) standard and the OpenUMA
open-source project are stepping into the breach with two essential
elements that change the game: asynchronous consent and centralized consent
management.*
This event is sponsored by MedAllies and ForgeRock with special attendance
from Debbie Bucci of HHS ONC. Debbie and Eve are co-chairs of the Health
Relationship Trust (HEART) Working Group. Come and get your HEART questions
answered!"
*To register for the event, please click here
<https://www.eventbrite.com/e/kantara-initiative-himss-2015-tickets-15276679…>.
*
Kind regards,
Marissa
---------
Marissa Jadrosich
Program Manager for Kantara Initiative
Phone: 732-465-5895
Email: marissa(a)kantarainitiative.org
Website: www.kantarainitiative.org
Hello Community,
This is it...It's the final day to vote for RSA crowdsource sessions.
Here's your chance to support even more UMA in your RSA event. Please take
the time to give a quick thumbs up for these two UMA sessions. We won't
mind if you tell your friends to do the same as well. Happy voting!
*Protect your privacy and control your personal internet of things with UMA*
- Sal D'Agostino, IDMachines
- http://t.co/KedIzLIT8R
- Summary:
UMA is an OAuth profile for distributed access control that puts the user
in charge of what gets shared and how it gets protected, even when the user
is not there! It meets the need to improve privacy and security in the
internet of things. See how to build the UMA stack including OpenID Connect
and OAuth components using low cost open source hardware (Raspberry Pi B),
OS (Debian) and a smart phone as credential. Physical access, home
surveillance (IP video) and home automation uses shown.
*Battle of the OAuth2 Profiles - OpenID vs UMA*
- Mike Schwartz, Gluu
- http://t.co/Oqg0F66Bhn
- Summary:
OpenID Connect allows clients of all types, including web-based, mobile,
native and javascript applications, to request and receive information
about authenticated sessions and end-users. So why do we need the User
Managed Access (UMA) version 1.0 profile of OAuth? Isn't OpenID Connect
good enough? This talk will discuss how UMA promises to standardize central
policy enforcement, enabling people and organizations to better secure APIs
and web resources across a heterogeneous vendor landscape.
Best Regards,
Joni Brennan
Kantara Initiative | Executive Director
email: joni @ kantarainitiative.org
Connecting Identity for a more trustworthy Internet - Overview
<http://www.slideshare.net/kantarainitiative/kantara-overview2014-37969351>
