Title :
Universal Identity Management Model Based on Anonymous Credentials
Author :
Zhang, Yang ; Chen, Jun-liang
Author_Institution :
State Key Lab. of Networking & Switching Technol., Beijing Univ. of Posts & Telecommun., Beijing, China
Abstract :
The relationship-focused and credential-focused identity management are both user-centric notions in Service-oriented architecture (SOA). For composite services, pure user-centric identity management is inefficient because each sub-service may authenticate and authorize users and users need participate in every identity provisioning transaction. If the above two paradigms are unified into the universal identity management model where identity information and privileges are delegatable, user-centricity will be more feasible in SOA. This paper aims to extend WS-Federation to build a universal identity management model based on anonymous credentials, which provides the delegation of anonymous credentials and combines identity metasystem to support easy-to-use, consistent experience and transparent security. In addition, the concept of self-generated pseudonym is introduced to construct efficient anonymous delegation model.
Keywords :
authorisation; software architecture; user interfaces; anonymous credentials; authentication; authorization; credential-focused identity management; relationship-focused identity management; self-generated pseudonym; service-oriented architecture; universal identity management; user-centric notions; Authentication; Identity management systems; Medical services; Privacy; Service oriented architecture; Identity Management; Identity Metasystem; Privacy Concerns of Service-Oriented Solutions; Privilege Delegation;
Conference_Titel :
Services Computing (SCC), 2010 IEEE International Conference on
Conference_Location :
Miami, FL
Print_ISBN :
978-1-4244-8147-7
Electronic_ISBN :
978-0-7695-4126-6
DOI :
10.1109/SCC.2010.46
