Title :
Attribute Aggregation in Federated Identity Management
Author :
Chadwick, David W. ; Inman, George
Author_Institution :
Univ. of Kent, Canterbury
fDate :
5/1/2009 12:00:00 AM
Abstract :
Most federated identity management systems are limited by users´ ability to choose only one identity provider per service session. A proposed linking service lets users securely link their various identity provider (IdP) accounts, enabling the system to aggregate attributes from multiple authoritative sources automatically without requiring users to authenticate separately to each IdP.
Keywords :
authorisation; message authentication; attribute-based access control; authoritative sources; authorization; digital identity attributes; federated identity management; identity provider accounts; role-based access control; Aggregates; Authorization; Certification; Cryptography; Databases; Identity management systems; Privacy; Public key; Relays; Strips; Attribute aggregation; CardSpace; Identity management systems; Liberty Alliance; Linking service; SAML; Security & privacy;
DOI :
10.1109/MC.2009.143
