Publication:
Enabling SAML for dynamic identity federation management

Loading...
Thumbnail Image
Identifiers
ISSN: 1868-4238 (Print)
ISSN: 1868-422X (Online)
ISBN: 978-3-642-03840-2
ISBN: 3-642-03840-9
Publication date
2009-08-31
Defense date
Advisors
Tutors
Journal Title
Journal ISSN
Volume Title
Publisher
Springer
Impact
Google Scholar
Export
Research Projects
Organizational Units
Journal Issue
Abstract
Federation in identity management has emerged as a key concept for reducing complexity in the companies and offering an improved user experience when accessing services. In this sense, the process of trust establishment is fundamental to allow rapid and seamless interaction between different trust domains. However, the problem of establishing identity federations in dynamic and open environments that form part of Next Generation Networks (NGNs), where it is desirable to speed up the processes of service provisioning and deprovisioning, has not been fully addressed. This paper analyzes the underlying trust mechanisms of the existing frameworks for federated identity management and its suitability to be applied in the mentioned environments. This analysis is mainly focused on the Single Sign On (SSO) profile. We propose a generic extension for the SAML standard in order to facilitate the creation of federation relationships in a dynamic way between prior unknown parties. Finally, we give some details of implementation and compatibility issues.
Description
Proceedings of: The Second IFIP WG 6.8 Joint Conference, WMNC 2009, Gdansk, Poland, September 9-11, 2009
Keywords
SAML, Federation, Identity management
Bibliographic citation
Jozef Wozniak et al. (eds.), Wireless and Mobile Networking: Second IFIP WG 6.8 Joint Conference, WMNC 2009, Gdansk (Poland), September 9-11 (pp. 173-184). Proceedings. Boston: Springer, 2009