Identity as a Service - Towards a Service-Oriented Identity Management Architecture

Service-oriented architecture (SOA) will form the basis of future information systems. Web services are a promising way to implement SOA enabling the loose coupling of functionality at service interfaces. The focus in SOA changes from traditional software systems to reusable, business-relevant services. Considering the cross-cutting concern of identity management (IdM), it is still an open issue how to construct an SOA-aware IdM architecture enabling "identity as a service" and how to loosely couple the IdM services with SOA's core concern part. In this paper we present a blueprint for a service-oriented identity management architecture featuring interoperability by applying existing standards. Our solution has been tested and evaluated in an implementation case study.

[1]  Quanyuan Wu,et al.  Secure Communication and Access Control for Web Services Container , 2006, 2006 Fifth International Conference on Grid and Cooperative Computing (GCC'06).

[2]  Markus Voß,et al.  Regeln für serviceorientierte Architekturen hoher Qualität , 2006, Informatik-Spektrum.

[3]  Mike Neuenschwander,et al.  Identity Management Market: Identity management market shifts - who's out there? , 2006 .

[4]  James Pasley,et al.  How BPEL and SOA Are Changing Web Services Development , 2005, IEEE Internet Comput..

[5]  Ali Arsanjani,et al.  Service-oriented modeling and architecture , 2004 .

[6]  Adam Bosworth Developing Web services , 2001, Proceedings 17th International Conference on Data Engineering.

[7]  Jin Tong,et al.  Attributed based access control (ABAC) for Web services , 2005, IEEE International Conference on Web Services (ICWS'05).

[8]  Roy Grønmo,et al.  Model-driven Web services development , 2004, IEEE International Conference on e-Technology, e-Commerce and e-Service, 2004. EEE '04. 2004.

[9]  Eric. Newcomer,et al.  Understanding SOA with Web Services , 2004 .

[10]  Christian Emig,et al.  SOA-Aware Authorization Control , 2006, 2006 International Conference on Software Engineering Advances (ICSEA'06).

[11]  Han Tao A XACML-based access control model for Web service , 2005, Proceedings. 2005 International Conference on Wireless Communications, Networking and Mobile Computing, 2005..

[12]  Ramaswamy Chandramouli,et al.  The Queen's Guard: A Secure Enforcement of Fine-grained Access Control In Distributed Data Analytics Platforms , 2001, ACM Trans. Inf. Syst. Secur..

[13]  Anura Gurugé,et al.  Universal Description, Discovery, and Integration , 2004 .

[14]  Nataraj Nagaratnam,et al.  Web Services Security ( WS-Security ) Version 1 . 0 05 April 2002 , 2002 .

[15]  Asuman Dogac,et al.  Using SAML and XACML for Web Service Security&Privacy , 2008 .

[16]  Christian Emig,et al.  Development of SOA-Based Software Systems - an Evolutionary Programming Approach , 2006, Advanced Int'l Conference on Telecommunications and Int'l Conference on Internet and Web Applications and Services (AICT-ICIW'06).

[17]  Christian Emig,et al.  An Access Control Metamodel for Web Service-Oriented Architecture , 2007, International Conference on Software Engineering Advances (ICSEA 2007).

[18]  Adam Bosworth Developing Web Service , 2001, ICDE 2001.