System for Cross-domain Identity Management: Definitions, Overview, Concepts, and Requirements

Khasnabish, Bhumip; Zeltsan, Zachary; Nadalin, Anthony; Hunt, Phil

doi:10.17487/rfc7642

Cited by 4 publications

(1 citation statement)

References 2 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Otherwise, the management of such data (including comparing and coordinating events) becomes too cumbersome. honorificPrefix/honorificSuffix [28] Dependent attribute combination An example of an attribute combination that is dependent of the region, e.g. in English the academic title Ph.D. is usually written as a suffix, while in Croatian the analogous "dr.sc."…”

Section: Attribute Namementioning

confidence: 99%

Geographic dependency of identity-associated data

Djerasimović

2018

Automatika

View full text Add to dashboard Cite

A consequence of the proliferation of private and identity data in a globalized world is the emergence of geographically dependent data representations-data in various systems in the world cannot always be captured and processed in the exact same form and individuals often transform data they are making available to systems so it would conform with locally used scripts, languages or constraining rules. Data representation as well as semantics of that data may vary across language and state domains and subjects associated with that data may in different locations be granted different rights stemming from that data. Current systems are mostly built on an attribute-based model of identity and we propose extending this model to include this naturally occurring dependency. Analysing some of the most popular protocols and standards for identity management in current use we have grouped frequently used identity attributes according to their geographic dependency to illustrate what kind of geographic dependencies can be found. We argue for a simple model where data representation and semantics are dependent of the geographic location of data interpretation. Also, we provide an example of extending an existing protocol of identity data exchange with the introduced geographic aspects.

show abstract

Section: Attribute Namementioning

confidence: 99%

Geographic dependency of identity-associated data

Djerasimović

2018

Automatika

View full text Add to dashboard Cite

show abstract

System for Cross-Domain Identity Management (SCIM): Survey and Enhancement With RBAC

Baumer¹,

Müller²,

Pernul³

2023

IEEE Access

View full text Add to dashboard Cite

Identity harmonization for federated HPC, grid and cloud services

Ertl

Stevanovic

Hayrapetyan

et al. 2016

2016 International Conference on High Performance Computing &Amp; Simulation (HPCS)

View full text Add to dashboard Cite

With the increasing acceptance of multiple authentication mechanisms, federated infrastructures need to provide means of keeping consistency between multiple user identities. Although the current authentication and authorization infrastructures are designed to support multiple ways of authentication (SAML, OpenID Connect, X.509), they are missing unified protocols and interfaces to harmonize multiple user identities. This article introduces the concept of identity harmonization for federated cloud services. Our approach is based on the standardized System for Cross-domain Identity Management (SCIM) protocol. We add the support for account linking and per-service verification. Furthermore, the concept is put into context of currently existing federated infrastructures and is exemplified within a federated e-infrastructure currently developed in the course of the INDIGO-Datacloud project. The concept is evaluated in the INDIGO testbed in terms of deployability, scalability, provisioning and deprovisioning of user accounts, as well as maintenance and integration effort.

show abstract

System for Cross-domain Identity Management: Definitions, Overview, Concepts, and Requirements

Cited by 4 publications

References 2 publications

Geographic dependency of identity-associated data

Geographic dependency of identity-associated data

System for Cross-Domain Identity Management (SCIM): Survey and Enhancement With RBAC

Identity harmonization for federated HPC, grid and cloud services

Contact Info

Product

Resources

About