This Article 
 Bibliographic References 
 Add to: 
2009 Fourth International Conference on Internet and Web Applications and Services
User-Centric Identity Management in Heterogeneous Federations
Venice/Mestre, Italy
May 24-May 28
ISBN: 978-0-7695-3613-2
Over the past years web applications increased in number and complexity (driven by “Web 2.0” paradigm). Users need to manage different passwords to authenticate at these applications. Modern Web-based Single Sign-On solutions that reduce the complexity for usage and management of the users’ credentials can be categorized in federated (typically SAML) or user-centric identity management (e.g., OpenID). On the one hand federated identity management is secure and most prevalent (especially in scientific communities). On the other hand user-centric approaches offer better usability and maintainability. While establishing federated identities for the Max Planck Society using the SAML-based Shibboleth system several extensions have been made to support the integration in different federations and allowing various authentication mechanisms being used by the 80 autonomous institutes. This paper describes the extensions by introducing an “IdP Proxy” that combines advantages of both federated and user-centric identity management functions.
Index Terms:
Identity Management, Shibboleth, OpenID, SAML, Web-based Single Sign-On
Sebastian Rieger, "User-Centric Identity Management in Heterogeneous Federations," iciw, pp.527-532, 2009 Fourth International Conference on Internet and Web Applications and Services, 2009
Usage of this product signifies your acceptance of the Terms of Use.