Software Engineering Radio - the podcast for professional software developers Episode 547: Nicholas Manson on Identity Management for Cloud Applications
Jan 18, 2023
Nicholas Manson, a seasoned SaaS architect with over 20 years in building cloud applications, dives deep into identity management for cloud services. He outlines the essentials of digital identity, touching on everyday user types and federation concepts. Nicholas explains the balance between security and user experience and reviews the evolution of OAuth 2.0 and OpenID Connect. He also covers advanced topics like Zero Trust architecture, multi-factor authentication, and vendor evaluation strategies, making complex topics accessible and engaging.
AI Snips
Chapters
Transcript
Episode notes
What A Digital Identity Actually Is
- A digital identity is a record in a system that represents an external agent, like a user or device.
- Identity management is the subsystem that establishes and manages these records and authentication.
Identity Creates Trust Then Grants Rights
- Identity management's core purpose is to provide a basis for trust by authenticating callers.
- IAM adds authorization to decide what an authenticated identity can do in the system.
Match Authentication To Risk
- Use authentication strength that matches the sensitivity of your data and processes.
- Expect higher friction (e.g., MFA, in-person verification) for high-value operations like banking.