A User-centric Federated Single Sign-on System
Current identity management systems are not concerned with user privacy. Users must assume that identity providers and service providers will ensure their privacy, which is not always the case. This paper proposes an extension of existing Federated Single Sign-On (FSSO) systems that adopts the beneficial properties of the User- Centric Identity Management (UCIM) model. This new identity management system allows the users to control and enforce their privacy requirements while still retaining the convenience of single sign on over a federation of service providers. Coloured Petri Nets are used to formally model the new identity management system to provide assurance that the privacy goals are achieved. To our knowledge, Coloured Petri Nets have not been used to model privacy in identity management systems before.
Impact and interest:
Citation counts are sourced monthly from and citation databases.
These databases contain citations from different subsets of available publications and different time periods and thus the citation count from each is usually different. Some works are not in either database and no count is displayed. Scopus includes citations from articles published in 1996 onwards, and Web of Science® generally from 1980 onwards.
Citations counts from theindexing service can be viewed at the linked Google Scholar™ search.
Full-text downloads displays the total number of times this work’s files (e.g., a PDF) have been downloaded from QUT ePrints as well as the number of downloads in the previous 365 days. The count includes downloads for all files if a work has more than one.
|Item Type:||Journal Article|
|Additional Information:||JNCA - Special Issue on Network and System Security|
|Keywords:||identity management, privacy, private credential, single sign, on, user, centric|
|Subjects:||Australian and New Zealand Standard Research Classification > INFORMATION AND COMPUTING SCIENCES (080000) > DATA FORMAT (080400) > Data Format not elsewhere classified (080499)|
|Divisions:||Past > QUT Faculties & Divisions > Faculty of Science and Technology
Past > Institutes > Information Security Institute
|Copyright Owner:||Copyright 2009 Elsevier|
|Copyright Statement:||Reproduced in accordance with the copyright policy of the publisher.|
|Deposited On:||25 Mar 2008 00:00|
|Last Modified:||29 Feb 2012 13:55|
Repository Staff Only: item control page