Abstract | ||
---|---|---|
In a federation, single sign-on (SSO) for web applications can be achieved by performing authentication at the user's home organization called identity provider (IdP) and authorization at the service provider (SP). The IdP provides the user's information to the SP though the attribute exchange and the SP assigns the authorized access level for the user according to the data in the attributes. The SP trusts the attributes sent from the trusted IdP. However, the authorized access level of the user is limited in some circumstance when the trusted IdP cannot provide enough user's information to the SP. This study develops an attribute aggregating system that integrates user's information from different IdPs which is operated by different federated domain. Currently, our developed system is implemented in the Japanese academic society federation called Informatics Square. |
Year | DOI | Venue |
---|---|---|
2010 | 10.1109/SAINT.2010.14 | Applications and the Internet |
Keywords | Field | DocType |
identity provider,authorized access level,attribute exchange,access management federation,sp trust,service provider,developed system,enough user,different idps,japanese academic society federation,attribute aggregating system,different federated domain,application programming interface,informatics,internet,web application,authorisation,organizations,authorization,authentication | Access management,Single sign-on,World Wide Web,Authentication,Computer science,Computer security,Shibboleth,Identity provider,Service provider,Web application,The Internet | Conference |
ISBN | Citations | PageRank |
978-0-7695-4107-5 | 3 | 0.42 |
References | Authors | |
1 | 5 |
Name | Order | Citations | PageRank |
---|---|---|---|
Kazutsuna Yamaji | 1 | 29 | 13.88 |
Toshiyuki Kataoka | 2 | 16 | 2.15 |
Motonori Nakamura | 3 | 119 | 30.15 |
Tananun Orawiwattanakul | 4 | 15 | 3.49 |
Noboru Sonehara | 5 | 216 | 44.18 |