iWelcome hires MIT-recognised security researcher Dr. Maciej Machulak and delivers a masterclass on User-Managed Access at the Cloud Identity Summit 2016 in New Orleans, LA, USA
iWelcome has recently hired Dr. Maciej Machulak as the Senior Identity Architect to help the company enter the emerging market of consented data sharing. Dr. Machulak is best known for his work on User-Managed Access (UMA) – an award-winning technology that gives individuals back the control of their online data. Dr. Machulak has been awarded for his work on security and privacy with the prestigious MIT Innovators Under 35 award in 2015. After joining iWelcome, Maciej will continue to serve as the Vice-Chair of the User-Managed Access Work Group at Kantara Initiative and will represent iWelcome in that group.
“Joining iWelcome is both a great and a challenging step.” said Maciej. “The company is clearly committed to delivering the state-of-the-art Identity-as-a-Service (IDaaS) platform to its enterprise customers. I will use my expertise to help the team extend the platform with the emerging identity standards and technologies to provide significant benefits to iWelcome customers and their end users.”
“We are thrilled to have Maciej in our team.” said Danny de Vreeze, CEO of iWelcome. “As a fast-growing European identity platform provider, we want to be at the forefront of developments in the identity and privacy space. Maciej’s knowledge and experience will be a significant value add to achieve that goal. The European Union’s General Data Protection Regulation (GDPR), which has been passed on April 14 this year, requires companies to consider privacy even more seriously than before. As a company we aim to equip our customers with the necessary tools that will help them become compliant with the upcoming law and at the same time with give their end users (like consumers and partners) flexible means to control their data.”
Maciej has started with his new role by representing the company at the Cloud Identity Summit 2016 in New Orleans, LA, USA, where he delivered a “User-Managed Access Masterclass”. During the class, Maciej explained the problems and challenges with sharing online data in the hyper-connected world, and discussed the importance of such technologies as UMA to provide users with better controls over the flow of their online information. He also discussed the UMA architecture and the protocol in great details.
UMA is a technology that provides a centralised policy administration point for the various resources the data owner may have at disparate locations on the Internet. Using a single UMA authorisation server and its unified Web/mobile user interface, the user can set access and usage control/sharing policies once for all resource servers. The UMA protocol builds atop the OAuth 2.0 authorisation framework and on the OpenID Connect protocol for identity management by using the OAuth 2.0 ‘delegation feature’. This allows a data owner to grant data access to another user who may be accessing the data via a hosted application operated by a third-party.