Title :
Identity Roaming Mechanism for Multiple Trust Domains using SAML v2.0 and Single Federation Bridge
Author :
Cho, Sang Rae ; Cho, Youngseob ; Jin, Seung-Hun
Author_Institution :
Electron. & Telecommun. Res. Inst., Daejeon
Abstract :
SSO Service within a CoT provides a user with simple and convenient authentication service. However, as a number of CoT increases, the user faces the same problem in that the user has to join a website and login to that website in another CoT every time he visits. In this paper, we have proposed noble method of the identity roaming to enable a user to sign up for one web site and extend the connectivity service in a location that is different from the home location where the user was registered and authenticated. We have applied Assertions and Protocols for the OASIS Security Assertion Markup Language (SAML) V2.0 to provide the identity roaming service. We have also devised the concept of Federation Bridge that interconnects distributed CoTs to minimize the trust relationship. We only need to deploy one federation bridge to connect all CoTs in the Web.
Keywords :
Web sites; authorisation; high level languages; protocols; OASIS security assertion markup language; SAML v2.0; SSO service; Website; assertions; authentication service; connectivity service; home location; identity roaming service; interconnects distributed CoT; multiple trust domains; protocols; single federation bridge; Authentication; Bridges; Identity management systems; Information security; LAN interconnection; Markup languages; Protocols; Routing; Subscriptions; Web sites; Circle of Trust; Identity Management; Identity Roaming; Single-Sign-On;
Conference_Titel :
Consumer Electronics, 2007. ISCE 2007. IEEE International Symposium on
Conference_Location :
Irving, TX
Print_ISBN :
978-1-4244-1109-2
Electronic_ISBN :
978-1-4244-1110-8
DOI :
10.1109/ISCE.2007.4382172
