论文信息 - User-centric identity governance across domain boundaries

User-centric identity governance across domain boundaries

Identity management is a set of viable technologies for supporting electronic interactions requiring identity information in the digital world. Although numerous elemental technologies have been developed in support of emerging standards and specifications, there has been little research on identity governance across domain boundaries from the user's viewpoint. It is thus still difficult for users to understand how their own identity information is being maintained, used, and propagated. An identity management framework is described for tracing the history of how a user's identity information is handled after it is transferred across domains of control. With this framework, organizations that manage identity information can improve accountability for their data practices and thereby increase their trustworthiness. The framework also enables users to control and optimize the propagation of their identity information in a user-centric manner.

Hidehito Gomi | Hidehito Gomi

[1] Jeff Hodges,et al. Assertions and Protocol for the OASIS Security Assertion Markup Language (SAML) V2. 0 , 2001 .

[2] Shigeru Hosono,et al. A delegation framework for federated identity management , 2005, DIM '05.

[3] Lorrie Faith Cranor,et al. The platform for privacy preferences , 1999, CACM.

[4] Marc Langheinrich,et al. The platform for privacy preferences 1.0 (p3p1.0) specification , 2002 .

[5] Siani Pearson,et al. Towards accountable management of identity and privacy: sticky policies and enforceable tracing services , 2003, 14th International Workshop on Database and Expert Systems Applications, 2003. Proceedings..

[6] Dogan Kesdogan,et al. Privacy enhancing identity management: protection against re-identification and profiling , 2005, DIM '05.

[7] Elisa Bertino,et al. A privacy preserving assertion based policy language for federation systems , 2007, SACMAT '07.

[8] M. Ahamad,et al. Towards a User-Centric Identity-Usage Monitoring System , 2008, 2008 The Third International Conference on Internet Monitoring and Protection.

[9] Gail-Joon Ahn,et al. Managing privacy preferences for federated identity management , 2005, DIM '05.

[10] Bart De Decker,et al. Enhancing privacy in identity management systems , 2007, WPES '07.