Name
Title | ||
|---|---|---|
Privacy Preserved Attribute Aggregation to Avoid Correlation of User Activities across Shibboleth SPs |
Abstract | ||
|---|---|---|
Privacy is one of the most important issues in Identity Federation, a technology in which local IDs and credentials such as passwords managed at one site may be used to access many online services, including cloud services provided outside of users' organization. Attribute aggregation is an advanced technique that may be employed in identity federation, collecting attributes about a user from multiple distinct identities to provide a complete picture about a user necessary for some services. However, conventional methods of attribute aggregation require a persistent shared unique ID. This may restrict the use of federated identity for some services because these unique ID's could be used by bad actors to correlate user activity or user data. This paper proposes a new method of attribute aggregation that doesn't require a universal unique ID. SAML, a widely used federated identity standard, is used as the basis for this work. This privacy-preserving attribute aggregation technique has been validated with a successful implementation for the open source federated identity software project Shibboleth. |
Year | DOI | Venue |
|---|---|---|
2013 | 10.1109/COMPSACW.2013.52 | COMPSAC Workshops |
Keywords | Field | DocType |
identity federation,avoid correlation,multiple distinct identity,attribute aggregation,federated identity standard,privacy preserved attribute aggregation,user data,shibboleth sps,persistent shared unique id,user activities,federated identity software project,user activity,privacy-preserving attribute aggregation technique,federated identity,cloud computing,correlation,cloud services,message authentication,switches,organizations,privacy,passwords,data privacy,authorisation,authentication,public domain software | Single sign-on,World Wide Web,Message authentication code,Computer security,Computer science,Shibboleth,Federated identity,Password,Information privacy,Privacy software,Cloud computing | Conference |
Citations | PageRank | References |
3 | 0.51 | 0 |
Authors | ||
5 | ||
Name | Order | Citations | PageRank |
|---|---|---|---|
| Motonori Nakamura | 1 | 119 | 30.15 |
| Takeshi Nishimura | 2 | 11 | 4.12 |
| Kazutsuna Yamaji | 3 | 29 | 13.88 |
| Hiroyuki Sato | 4 | 3 | 0.51 |
| Yasuo Okabe | 5 | 281 | 50.18 |