Chadwick, David W., Inman, George (2009) Attribute Aggregation in Federated Identity Management. IEEE Computer, . pp. 182-196. (doi:10.1109/mc.2009.143) (The full text of this publication is not currently available from this repository. You may be able to access a copy if URLs are provided) (KAR id:30603)
| The full text of this publication is not currently available from this repository. You may be able to access a copy if URLs are provided. | |
| Official URL: http://www.cs.kent.ac.uk/pubs/2009/3026 |
Abstract
Abstract We describe how in todays federated identity management (FIM) systems, such as CardSpace and Shibboleth, service providers (SPs) rely on identity providers (IdPs) to authenticate the users and provide their identity attributes. The SPs then use these attributes for granting or denying users access to their resources. Unfortunately most FIM systems have one significant limitation, which is that the user can only use one IdP within a single SP session, when in many scenarios the user needs to provide attributes from multiple IdPs. We describe how this can be achieved through the introduction of a new service called a linking service. The conceptual model of the linking service is described as well as the mapping of its messages onto todays standard protocols (SAML, Liberty Alliance and WS-*).
| Item Type: | Article |
|---|---|
| DOI/Identification number: | 10.1109/mc.2009.143 |
| Uncontrolled keywords: | determinacy analysis, Craig interpolants |
| Subjects: | Q Science > QA Mathematics (inc Computing science) > QA 76 Software, computer programming, |
| Divisions: | Divisions > Division of Computing, Engineering and Mathematical Sciences > School of Computing |
| Depositing User: | David Chadwick |
| Date Deposited: | 21 Sep 2012 09:49 UTC |
| Last Modified: | 09 Mar 2023 11:32 UTC |
| Resource URI: | https://kar.kent.ac.uk/id/eprint/30603 (The current URI for this page, for reference purposes) |
University of Kent Author Information
Chadwick, David W..
| Creator's ORCID: |
 https://orcid.org/0000-0003-3145-055X
|
|---|---|
| CReDIT Contributor Roles: |
- Export to:
- RefWorks
- EPrints3 XML
- BibTeX
- CSV
- Depositors only (login required):
Altmetric
Altmetric
