Title :
FAME: Adding Multi-Level Authentication to Shibboleth
Author :
Nenadic, Aleksandra ; Zhang, Ning ; Chin, Jay ; Goble, Carole
Author_Institution :
University of Manchester, UK
Abstract :
The paper describes the design of FAME (Flexible Access Middleware Extension) architecture aimed at providing multi-level user authentication service for Shibboleth, which is endorsed by the Joint Information Systems Committee (JISC) as the next generation authentication and authorisation infrastructure for the UK Higher Education community. FAME derives authentication assurance level based upon the strength of the authentication token and protocol used by the user when authenticating and feeds it to the PERMIS authorisation decision engine via Shibboleth to enable more fine-grained access control. In this way, access to resources is controlled according to the strength of the authentication method so that more sensitive resources may require users to identify themselves using a higher level of authentication.
Keywords :
Access control; Authentication; Authorization; Computer architecture; Computer science; Cryptography; Engines; Feeds; Middleware; NIST;
Conference_Titel :
e-Science and Grid Computing, 2006. e-Science '06. Second IEEE International Conference on
Conference_Location :
Amsterdam, The Netherlands
Print_ISBN :
0-7695-2734-5
DOI :
10.1109/E-SCIENCE.2006.261044
