Paper Info
Title
Attribute Aggregating System for Shibboleth Based Access Management Federation
Abstract
In a federation, single sign-on (SSO) for web applications can be achieved by performing authentication at the user's home organization called identity provider (IdP) and authorization at the service provider (SP). The IdP provides the user's information to the SP though the attribute exchange and the SP assigns the authorized access level for the user according to the data in the attributes. The SP trusts the attributes sent from the trusted IdP. However, the authorized access level of the user is limited in some circumstance when the trusted IdP cannot provide enough user's information to the SP. This study develops an attribute aggregating system that integrates user's information from different IdPs which is operated by different federated domain. Currently, our developed system is implemented in the Japanese academic society federation called Informatics Square.
Year
DOI
Venue
2010
10.1109/SAINT.2010.14
Applications and the Internet
Keywords
Field
DocType
identity provider,authorized access level,attribute exchange,access management federation,sp trust,service provider,developed system,enough user,different idps,japanese academic society federation,attribute aggregating system,different federated domain,application programming interface,informatics,internet,web application,authorisation,organizations,authorization,authentication
Access management,Single sign-on,World Wide Web,Authentication,Computer science,Computer security,Shibboleth,Identity provider,Service provider,Web application,The Internet
Conference
ISBN
Citations 
PageRank 
978-0-7695-4107-5
3
0.42
References 
Authors
1
5
Name
Order
Citations
PageRank
Kazutsuna Yamaji12913.88
Toshiyuki Kataoka2162.15
Motonori Nakamura311930.15
Tananun Orawiwattanakul4153.49
Noboru Sonehara521644.18