#305 - Identity Week America with Ryan Galluzzo of NIST
Identity at the Center16 Syys 2024

#305 - Identity Week America with Ryan Galluzzo of NIST

In this episode of the Identity at the Center podcast, Jeff and Jim are live at the Identity Week America conference in Washington, DC. Welcoming Ryan Galluzzo, Identity Management Program Lead at NIST, they dive into recent NIST updates, including a mobile driver's license project, changes in public comment and revision processes, and the significance of user-controlled wallets. They also touch on self-sovereign identity, risk management, evolution in identity assurance levels, and the vital role of continuous evaluation and improvement. The episode concludes with a light-hearted discussion on the inquisitive nature of children and the spontaneous, enriching conversations that happen at industry conferences.

00:00 Welcome to Identity at the Center Podcast

01:26 Conference Highlights and Networking

02:47 Panel Discussions and Key Takeaways

05:07 Mobile Driver's License Project

07:09 Public Comment Draft and Feedback

11:40 Self-Sovereign Identity and Trust Issues

16:41 NIST Guidance and Risk Management

28:47 Introduction to RMF and Assurance Levels

29:05 Contextualizing Assurance Levels for Different Users

30:25 Continuous Evaluation and Improvement

34:28 User-Controlled Wallets and Federation

35:59 Account Recovery and Assurance Levels

37:18 Overview of NIST 800-63 Documents

51:25 Existential Questions and Personal Anecdotes

55:25 Conclusion and Final Thoughts

Connect with Ryan: ⁠https://www.linkedin.com/in/ryan-galluzzo-a100563b/⁠

Authenticate Conference - Use code IDAC15 for 15% off: ⁠https://authenticatecon.com/event/authenticate-2024-conference/⁠

Connect with us on LinkedIn:

Jim McDonald: ⁠https://www.linkedin.com/in/jimmcdonaldpmp/⁠

Jeff Steadman: ⁠https://www.linkedin.com/in/jeffsteadman/⁠

Visit the show on the web at ⁠http://idacpodcast.com⁠ and watch at ⁠https://www.youtube.com/@idacpodcast

Jaksot(408)

#48 - Eve Maler, IAM UMAnitarian

#48 - Eve Maler, IAM UMAnitarian

Jim and Jeff talk with Eve Maler, CTO at ForgeRock about her work in the IAM space which includes helping found standards like XML and UMA, why we think blockchain identity is over-hyped, and some of ...

15 Kesä 202050min

#47 - IAM Program Drivers & Requirements

#47 - IAM Program Drivers & Requirements

Jim and Jeff talk about IAM Program Drivers & Requirements and which comes first.LastPass Report: https://www.lastpass.com/identity-and-access-management-by-industryConnect with Jim and Jeff on Linked...

8 Kesä 202052min

#46 – The 2020 KuppingerCole Leadership Compass for Privileged Access Management

#46 – The 2020 KuppingerCole Leadership Compass for Privileged Access Management

Jim and Jeff talk about some of the findings in the recently released 2020 KuppingerCole Leadership Compass for Privileged Access Management.Grab the report from any of these leading vendors (in alpha...

1 Kesä 202056min

#45 - The 2020 Verizon Data Breach Investigations Report

#45 - The 2020 Verizon Data Breach Investigations Report

Jim and Jeff talk about some of the findings in the recently released 2020 Verizon Data Breach Investigations Report (link below).Report link: https://enterprise.verizon.com/resources/reports/dbir/Ide...

25 Touko 202050min

#44 - IDSA Report-Identity A Work In Progress

#44 - IDSA Report-Identity A Work In Progress

Jim and Jeff talk about some of the findings in the recently released Identity Defined Security Alliance (IDSA) report "Identity Security: A Work In Progress"Want to join the conversation? Leave us a ...

18 Touko 202035min

#43 - Passwords and Phishing in the COVID Era

#43 - Passwords and Phishing in the COVID Era

Jim and Jeff talk about passwords for World Password Day (May 6th) and a Barracuda Networks commissioned study about the security concerns businesses are seeing during the COVID-19 pandemic.Want to jo...

11 Touko 202042min

#42 - Ron's IAM Program Framework

#42 - Ron's IAM Program Framework

Jim and Jeff talk with Ron about the IAM program framework he is developing and some of the challenges some organizations face when it comes to IAM context and operations.Want to join the conversation...

4 Touko 202037min

#41 - Server Access Management 101 with Paul

#41 - Server Access Management 101 with Paul

Jim and Jeff talk with Paul Volosen from Centrify about the IAM concepts used to secure server access.Want to join the conversation? Leave us a message here: anchor.fm/identity-at-the-center/message o...

27 Huhti 202051min