Privacy in enterprise identity federation - policies for Liberty 2 single sign on

Privacy in Enterprise Identity Federation - Policies for Liberty Single Signon

Privacy in Enterprise Identity Federation

Cross-domain identity management is gaining significant interest in industry. A recent example is the Liberty Alliance’s specifications for single signon of users across a federation of enterprises. These specifications stress that the federation process is voluntary for the users and that privacy is preserved, e.g., by using pseudonyms. We evaluate the privacy of these specifications in detail...

A Brief Introduction to Liberty

For the man on the street, the businesswoman in her o ce, the shopper or investor at home, identity on the Internet is a straightforward idea with a complex solution. Using Amazon, there is one sign-on and password; using United Airlines, another; connecting to L.L. Bean, yet another, and with Fidelity Investments, a fourth. Within the enterprise, each service | on-line corporate travel, 401(k)...

Enhancing Consumer Privacy in the Liberty Alliance Identity Federation and Web Services Frameworks

Internet usage has been growing significantly, and the issue of online privacy has become a correspondingly greater concern. Several recent surveys show that users’ concern about the privacy of their personal information reduces their use of electronic businesses and Internet services; furthermore, many users choose to provide false data in order to protect their real identities. Identity feder...

A Delegation Framework for Liberty

Building support for delegation services into an identity federation system enhances its flexibility and scalability. Users may need to delegate all (or a subset) of their access rights or privileges to other parties in the system. However, the Liberty Alliance, an industry consortium that aims to build open standard-based specifications for identity federation systems, does not include delegat...