Stuart RobertsonDirector EMEA CustomersExostar LLC

Stuart.Robertson@Exostar.com+44 (0)7849 829 754

Pistoia Alliance14th April 2015

Zurich

Using Industry Identity Hubs to Enable Innovation

Learning from the Aerospace industry experience

BIG INNOVATION

Agenda

• Industry hubs to support Innovation

• Example of the Aerospace & Defence industry

• Case study of Boeing 787 Dreamliner

• How does this translate for Pharma industry

• What has been achieved so far

• Future opportunities for innovation

Copyright 2013 Exostar LLC.| All Rights Reserved.| Proprietary and Confidential 2

Aerospace has led the way for Industrial Collaboration

Aerospace & Defence Community Hub

• Formed in 2000, Exostar is a joint venture between 5 of the top Aerospace & Defense companies.

Corporate objective:

• Create and maintain a secure environment used to facilitate design, sourcing, procurement, fulfillment, and collaboration within the defense ecosystem.

R&D Collaboration

Supply Chain Management

• Early adopter of the Cloud model to share resources and facilitate secure business operations.

3

Aerospace Industry Drivers require new innovations

• Design Phase Cost reduction• Agile design processes shorten the development cycle

• Manufacturing Cost reduction Using dynamic supply chain and final assembly processes

• Operational Cost reduction – entire lifecycle of platform High performance design – new materials for weight reduction

More efficient maintenance, repair, overhaul processes

• Commercial Innovation Rolls-Royce charge the airlines by the hour

Penalties for unplanned downtime

True Risk Reward business model

• Regulation driving Innovation Track & Trace of components from source to airframe

In flight monitoring - Recent events demonstrate there is still plenty more to be done i.e. Continuous data streaming

• Business model Supplier funded business models

Increased outsourcing

4

So What was the Solution?

5

AerospaceIdentity

Hub

The design objectives of the A & D identity hub

1. Collaboration

Accelerate R&D and Design processes shortening the development cycle

Protection of Intellectual Property

Meet regulatory requirements

Reduce cost by outsource for regional hosting legal requirements

6

The design objectives of the A & D identity hub

2. Dynamic Supply Chain

Optimise manufacturing performance through dynamic supply

processes

Respond to supply disruption through real time visibility of multi-tier

supply chain

Enable Track and Trace of components providing optimum maintenance

process

Meet regulatory requirements

Reduce cost by outsource to a common platform

7

The design objectives of the A & D identity hub

SECURITY

3. Federated Identity and Access Management

Externalise applications and data to trusted partners

Secure the community to known individuals

Be certain who is accessing data with an audit trail of activity

Protection of IP

Reduce operational cost overhead by outsource to a SaaS service

4. Single Sign On

Enables partners to access 1,000s of externalized applications

For external partners eases the user experience

8

The Aerospace & Defence Identity Hub

9

AerospaceIdentity

Hub

So What….is the innovation?

10

Single Hub & Spoke is more efficient than managing multiple connections.

RESULT : Lower RISK, Lower COSTFASTER project initiation

Our Case Study

Boeing - Producer of military and commercial aircraft

4/20/2015

• Research, design and technology-development centers and programs in multiple countries

• Manufacturing, service and technology partnerships with companies around the world

• Customers and customer support in 150 countries

• Contracts with 26,500 suppliers and partners globally

• More than 170,00 Boeing employees in 50 states and 70 countries

Boeing increasingly relies on Suppliers and Partners

They don’t build them like they used to!

787 focus on entire life-cycle of platform

Design, Test, Certification, Manufacture, Maintenance, Overhaul, Renew

Collaborative Execution enables full visibility

13

Carriers & 3PL Logistics

OEM/EMS

Customer DCs

Demand Plan & Execution

Data

Collaborative Execution Processes

Network Integration

Multi-Enterprise Collaboration

Order

Direct Ship

Purchase Order

Goods Receipt

Component Inventory

Forecast, Sales Orders

FGI Inventory, WIP

Regional Merge Centers

Information FlowMaterial Flow

Retailers / Customers

Milestone TrackingASNs

Inventory Arrival/Departure

Enterprise Systems of RecordPlanning Functions

PLMs CRMs

Multiple ERP

Logistics

Forecast

VMI / SLC

Buy/SellInventory

Tier 2 Suppliers

Tier 1 Suppliers

Copyright 2014 Exostar LLC. All Rights Reserved. Proprietary and Confidential

So What….is the innovation?

14

Dynamic supply chain with real time visibility to multiple tiers of suppliers enables rapid planning response to supply disruption.

RESULT - Cost CONTROL, improved Manufacturing Performance- Track & Trace capability (Serialisation)

Securing the Boeing Supply Chain

• Improved controls for Intellectual Property protection in the

supply chain

Passwords are no longer considered a secure form of authentication

Consistent processes for managing supplier identities and access across all

Boeing divisions – 2FA

• Advanced Persistent Threat (APT) is an ever increasing risk

to the security of the Supply Chain

Cyber attacks targeting supply chain for access to Boeing intellectual property

Security controls not consistent across the various suppliers

• Supply Chain from Concept to Disposal

• This means working with partners from initial platform design through entire

life cycle manufacturing through operation to retiring the airframe and beyond

with 2nd User parts market.

• Buyer or Supplier Funded Security?

Enterprise or Industry Credential

Exostar Credential

Federated Enterprise Directory

Federal Bridge,

CertiPath

SAFE Compliant

Non-PKI

PKI

User ID / Password

Hardware OTP

Phone OTP

Software Certificate

Hardware Token

Exostar Access

Gateway

PIV,CAC,SAFE

Level 2

Level 3

Level 4

Service Provider managed user credentials

Flexible Credentialing Options – Industry and Government Certified

Portal or Application

MAG

Copyright 2013 Exostar LLC.| All Rights Reserved.| Proprietary and Confidential16

So What….is the innovation?

17

All partner credentials managed by service provider with industry standard controls that suppliers must adopt and supplier funded.

RESULT – Reduced RISK, COST, TIME to initiate project phases.- REGULATION requirements fulfilled.

Results for Boeing

• Enhanced security through two-factor authentication in Suppliers

• Consistent supplier access management processes enterprise-wide

• Issued OTP hardware tokens to 40,000 individuals across 12,000

supplier organizations within 12 months

• Transferred significant portion of customer support to Service

Provider

• Streamlined identity management and reduced Boeing touch-time

• More accurate data of supplier company and user information

• Laid the foundation for leveraging cloud or security service providers

• Revalidation and reduction of user base through supplier funded

model

Example Project Enablement

Joint Strike Fighter

• UK nearly pulled out of consortium due to

onerous data management requirements of

US ITAR regulations.

• A combination of policy review combined with IDAM Service deployed to

protect IP overcame the collaboration challenges

Submarine nuclear propulsion systems

• US / UK collaboration unable to proceed

until security controls in place

• Identity and Access Management

to required clearance enabled project

delivery

Automotive Polymer Manufacturer

• Looking to grow in Aerospace sector by

manufacturing Heat Shields

• Required platform to enable ITAR compliance

19

Aerospace has led the way for other industries

20

Cloud Service Applications

Future Applications

& Portals

SWMS

Some community members are Federated for an SSO experience, or may also expose internal applications to their industry partners.

Charles River Laboratories, AMRI, 5+ other CROs

Login

Non Federated Partner User

University Users

Investigator Users

CRO Users Contractors

Partner Identity linked to SAM ID

Secure Access

Manager

Other community members may elect to sign-in with Exostar-issued credentials.

SAM ID used for SSO

SAFE Certified IDP

SAM Identity

Partner Identity

Login

Login

Community Cloud

Exostar Secure Share

Secure File Transfer

SaaS for Merck

• Convenience via single sign-on• Secure, compliant and controlled platform

Secure Access Manager - Life Sciences Identity Hub

LMS

OTP Second Factor Service

EMR/EHR Applications

EPCS Module

Future EMR/EHR Applications

Merck EngageZone

White Label / Branding of SaaS SharePoint

Enhances the user experience & minimizes impact to the customer’s operating environment as they expand third-party community interactions.

• Custom branding

• Business process deployment

• Integration with internal systems or cloud services

22

Exostar ‘On-boarding’ Concepts – Zero Approval Self Serv.

23

24

Exostar ‘On-boarding’ Concepts – Zero Approval Self Serv.

Learning points - What has been achieved

25

Streamline Provisioning

SSO experience

Flexible invitation & registration options

Ability to scale with over 300,000 active users

Improve Partner Relationships

Easier to engage, common process for all interactions

Easier to collaborate on projects and understand priorities

Clear messaging on how to engage

Optimize Partner Interaction

Reduce compliance risks & protect intellectual property

Simplify on-boarding to collaboration spaces & systems

Common access point to shared information across business units, IT systems & external services

Foster Innovation

Promote awareness of ongoing research & opportunities

Establish communities of expertise through social interactions & activity sharing

Develop new solutions such as Track and Trace for Serialisation

26

Stuart RobertsonDirector EMEA CustomersExostar LLC

Stuart.Robertson@Exostar.com+44 (0)7849 829 754

Thank You!