The User-Centric Vision Matches Credentials Exchanges

The users must face two main concerns in their digital lives, interactions and privacy, especially in identity federation architectures. Their environment and requestor client largely influence these concerns. A rich user environment issued from a user-centric vision on identity management architectures may be helpful for usability and privacy. In this paper we expose facts about the identity federation and the user digital life concepts. We then shape a user environment dedicated to identity management, and we establish some assumptions about future user environments and identity credentials implementations.

[1]  Christophe Gravier,et al.  Interoperability between Heterogeneous Federation Architectures: Illustration with SAML and WS-Federation , 2007, 2007 Third International IEEE Conference on Signal-Image Technologies and Internet-Based System.

[2]  Christophe Gravier,et al.  Complex federation architectures: stakes, tricks & issues , 2008, CSTST.

[3]  David Chaum,et al.  Security without identification: transaction systems to make big brother obsolete , 1985, CACM.

[4]  Siddharth Bajaj,et al.  Web Services Federation Language (WS- Federation) , 2003 .

[5]  Jan Camenisch,et al.  Design and implementation of the idemix anonymous credential system , 2002, CCS '02.

[6]  Stefan A. Brands,et al.  Rethinking Public Key Infrastructures and Digital Certificates: Building in Privacy , 2000 .

[7]  John Hughes,et al.  Security Assertion Markup Language (SAML) 2.0 Technical Overview , 2004 .

[8]  Birgit Pfitzmann,et al.  Privacy in Enterprise Identity Federation - Policies for Liberty Single Signon , 2003, Privacy Enhancing Technologies.

[9]  Jan Camenisch,et al.  Design and implementation of theidemixanonymous credential system , 2002, CCS 2002.

[10]  Rudolf Schmid,et al.  Organization for the advancement of structured information standards , 2002 .

[11]  Ahmad-Reza Sadeghi,et al.  Proving a WS-federation passive requestor profile with a browser model , 2005, SWS '05.

[12]  Thomas Groß,et al.  Security analysis of the SAML single sign-on browser/artifact profile , 2003, 19th Annual Computer Security Applications Conference, 2003. Proceedings..