
	Where results make sense

Topic: Federated identity

Related Topics

identity element

trigonometric identities

sexual identity

identity matrix

Christian Identity

secret identities

identity theft

Dissociative identity disorder

gender identity disorder

identity function

Subscriber Identity Module

In the News (Sat 28 Nov 09)

Northern Trust

Marvin Harrison

Peter Chernin

Gary Locke

Match Play

Penelope Cruz

Mickey Rourke

AR Rahman

Danny Boyle

Hugh Jackman

	SourceID \| SAML, Liberty Alliance, WS-Federation \| Federated Identity Management
		Federated identity infrastructure enables cross-boundary single sign-on, dynamic user provisioning and identity attribute sharing.
		By providing for identity portability, identity federation affords end-users with increased simplicity and control over the movement of personal identity information while simultaneously enabling companies to extend their security perimeter to trusted partners.
		New identity federation standards provide companies with the foundation for securing their outsourced business processes, hosted applications and web services while simultaneously addressing a host of other security, management and integration challenges.
	www.sourceid.org (578 words)

	weaverluke (Site not responding. Last check: 2007-10-03)
		In this sense, identity and reputation can be understood as intrinsic properties of the exchange of data itself: People express the virtual aspects of their relationships both as they access, re-contextualise and propogate others' data on the one hand, and through providing access to their own data on the other.
		Identity is much better described as an emergent property of a relationship than as an objective, and hence ownable thing.
		This is where identity concepts might nicely supplement the grid concept: every person's view of the grid looks different according to their own identity in relation to each resource/service.
	www.i-together.net /weaverluke/weblog.html (1768 words)

	The Identity Corner (Site not responding. Last check: 2007-10-03)
		In my previous post, I reported on the alternative identity architecture that is proposed in the final LSE report on digital identity.
		The final LSE report on digital identity does more than merely critique the currently envisioned UK identity solution: it also outlines an alternative identity architecture that addresses all identified security and privacy shortcomings.
		The details of this proposed identity architecture are provided in a series of figures, which I am reproducing below from the LSE report together with their captioning.
	www.idcorner.org (1385 words)

	Technology News: News: Federated Identity Standards: Confused?
		Federated identity is a set of mechanisms through which companies can share identity information between secure networks.
		Federation means that local identities and their associated data stay in place, but they are linked together through higher-level mechanisms.
		The move toward federated identity standards began because enterprise identity management companies started to ask how they could obtain single sign-on usernames to and from their partner organizations.
	www.technewsworld.com /perl/story/33197.html (1701 words)

	Dr. Daniel Geer (Site not responding. Last check: 2007-10-03)
		The issue of identity is certainly growing unignorable, and I congratulate your sense of timing in making this the focus of today's discussions.
		I conclude that any identity system that purports to be universal or, which is more, at once both permanent and location (context) independent, is either brilliant or insane.
		Tacking authorizations onto the assertion of identity is nevertheless a commonplace necessity, but there is an odd "gotcha" there, viz., the irreducible vulnerability of any system to Denial of Service (DOS) attacks is proportional to the amount of labor that system must expend before it can make its authorization decision.
	www.simc-inc.org /archive0002/February02/Speakers/geer-keynote.htm (1933 words)

	Glenbrook Opinion : Liability and Federated Identity: Much Ado About Nothing (Site not responding. Last check: 2007-10-03)
		What I question are identity guarantees in large-scale circles of trust, where the link between the identity provider and the relying party is arms length at best.
		The identity provider will, in essence, say to other members of the federation: "I think this is the person who claims to be Sally—for whatever it's worth to you!" The lack of liability behind that assertion isn't good or bad; it's just the way it will probably work.
		The identity provider is willing to do this either as a service to the (common) customer, or to get compensation (from the service provider), or for some combination of these motives.
	www.glenbrook.com /opinions/federated-liability.html (1344 words)

	Liberty Alliance
		Federated network identity is the key to reducing this friction and realizing new business taxonomies and opportunities, coupled with new economies of scale...[it creates a] rich, fertile federated identity infrastructure...
		Federation expands the scope of damage due to identity theft.
		Prior to federation of my identity, this wasn't possible unless I was foolish to use the same username and password on each of the sites.
	www.rds.com /essays/20020904-liberty.html (2458 words)

	Kim Cameron's Identity Weblog (Site not responding. Last check: 2007-10-03)
		In the identity metasystem, the relying party could indicate in its policy that it requires several sets of identity claims- one indicating who the user is, and another indicating where the user is. The claims might come from different authorities (e.g.
		In case you are new to this conversation, Catalyst is the Burton Group's conference on identity and security as cross-cutting concerns driving the future of the enterprise.
		In a previous posting I said, "the use of government smart cards in establishing digital identity is optional and under the control of the person described." Apparently my distinction between use of the card for digital identity and bricks and mortar identity wasn't at all obvious, so let me try again.
	www.identityblog.com (10261 words)

	Life With Alacrity: Security Archives
		Federated identity is another area for potential expansion.
		Federated network identity also has real applicability in the business world, as is shown by the work being done by Liberty Alliance.
		Beyond business processes and federated identity there are many other areas that the security industry should be considering, as it moves beyond the business of fear.
	www.lifewithalacrity.com /security/index.html (8519 words)

	James Kobielus' Blog
		Identity theft is fast becoming the most ferocious new bete noire of the cyberworld, crowding out spyware, spam, and viruses for that dubious honor.
		My sense is that identity ontologies among asserting and relying parties overlap when they share commonly recognized identity authorities (e.g., PKI root CAs, authoritative directories, SAML authentication authorities), who establish and sustain the shared trust, federation, risk management, and policy framework within which parties can interact for their mutual advantage.
		As to Razzel’s notion of identity “micro-formats,” it seems to me that this is applicable to environments wherein end-entities are their own authorities, issuing assertions (or “self-declarations”) on their own behalf and in self-declared assertion formats (or in one-off or one-time or ad-hoc per-relationship formats).
	jkobielus.blogspot.com (13105 words)

	Andre Durand - Federated Identity Management : Recent Thoughts
		No doubt our government issued identities will at some point be linked (federated) as part of their attempt to stop the flow of potential terrorists into this country.
		Ping Identity Corporation (www.pingidentity.com) was founded by Andre Durand after his friend Craig taunted him with pictures from the Caribbean whilst he sat stuck in snowy Denver.
		The Identity Provider Hub starts to seem to me like its becoming early client/server with a "heavy client" or "thick client" (chose your term) feel, allowing it to be used across carefully controlled boundaries where setup, enrollment, and structure must still be enforced outside the system itself.
	www.andredurand.com (5239 words)

	webservices.xml.com: The Liberty Alliance
		For individuals, network identity is the sum of their financial, medical, and personal data, all of which must be carefully protected.
		The problem with the current state of network identity is that the burden of maintaining these islands of identity falls on the individual.
		Federated identity will address these issues, removing from Web users some of the burden of maintaining their identity on the Web, allowing businesses interacting with these users to offer new holistic experiences.
	webservices.xml.com /pub/a/ws/2003/04/01/liberty.html (1359 words)

	Phil Windley's Technometria
		Dick is the founder of SXIP and a proponent of user-centric identity.
		Identity 2.0 is analogous to how credentials work in the real world: distributed and user controlled—the driver’s license bureau doesn’t know where you’re presenting its credentials and who’s accepting them.
		Providing identity services between people, websites, and organizations that may or may not have any kind of formalized relationship is a different problem than providing authentication and authorization services within a single organization.
	www.windley.com (7583 words)

	XML.com: SAML 2: The Building Blocks of Federated Identity
		A full identity management solution will also define mechanisms for, amongst other aspects, provisioning (the establishment and subsequent management of accounts and associated privileges), authentication (how an entity proves their right to lay claim to a particular identity), or access control (how the rules for specifying what individual identities are allowed to do are captured).
		Standards for federated identity are critical since proprietary mechanisms for distributed identity management means companies must build one-off links for each business partner they wish to do business with.
		SAML 2.0 unifies the previous disparate federated identity building blocks of SAML 1.1 with input from both higher education's Shibboleth initiative and Liberty's Identity Federation Framework (Liberty ID-FF).
	www.xml.com /pub/a/2005/01/12/saml2.html (2302 words)

	XML & Web Services Magazine - Positive Identification (Site not responding. Last check: 2007-10-03)
		Of course, such a universal single sign-on for all network resources is impractical, but industry technology initiatives are advancing to enable federated identity management within trusted networks.
		Overlapping vendor strategies and standards initiatives leave the final shape of networked identity management still uncertain, but movement forward on several fronts suggests that further progress toward a unified standard is possible.
		"Identity federation is a benefit to everybody; CTOs save on system administration and consumers love the convenience," said Esther Dyson, the industry analyst and editor of Release 1.0, which recently published a three-part analysis of identity management technology.
	www.fawcette.com /xmlmag/2002_10/magazine/features/sjohnston (535 words)

	Microsoft to show off ID federation \| CNET News.com
		"Federated identity lets companies securely extend their applications to suppliers and external users," he said.
		However, to share identity between sites on the Web and between servers inside a company only three options currently exist: the security assertion markup language (SAML) 1.1, the WS-Security standard or the Liberty Alliance's standard, which has become the base for the next version of SAML, 2.0.
		Such identity services promise to allow partners to share secure access to services by letting a person who signs in to one server access any other partner's server without having to sign in.
	news.com.com /2100-7347-5219584.html (738 words)

	Andre Durand - Federated Identity Management : Recent Thoughts
		To the contrary, federation is particularly strong for enabling a scalable infrastructure for the sharing of dynamic attributes (attributes which are more dynamic than those carried with long-lived credentials).
		Leveraging the strong PKI authentication for session-based assertions (aka -- not performing strong-auth everywhere, but instead porting that strong-auth via federation assertions within a particular user session) is also a likely outcome of the convergence of the two technologies.
		Federated authentication represents a methodology for extending authentication to multiple ‘replying parties’ via short-lived authentication assertions.
	www.andredurand.com /2004/09/17.html (601 words)

	11/12/03 - SUN'S JAVA ENTERPRISE SYSTEM PROVIDES IMMEDIATE SUPPORT FOR NEXT GENERATION OF LIBERTY ALLIANCE ...
		The Java System Identity Server was the industry's first commercial-grade identity management solution to support both SAML and the Liberty Phase 1 protocols.
		A federated identity architecture allows an authenticated identity to seamlessly take part in targeted Web services from multiple organizations or Web domains that have business agreements in place.
		This brings greater efficiencies for employee identity management, creates new market and revenue opportunities between business partners, and increases the end-user's control over identity information while facilitating their access to valuable Web services.
	www.sun.com /smi/Press/sunflash/2003-11/sunflash.20031112.4.html (783 words)

	Digital Identity World :: Digital Identity, Digital ID
		Identity is undergoing both growth and change at an increasing pace.
		The emergence of compliance as a driver marks the most significant change yet for identity - the emergence of a universal application.
		While much of this has to do with the evolution of identity technology itself, much of it also has to do with larger cycles that are happening in the world that are causing identity to "get a push" from things not directly related to it.
	www.digitalidworld.com (1029 words)

	PCWorld.com - Liberty Alliance Moves Into Phase Two
		The Phase 2 Liberty Identity Federation Framework finalizes a draft standards document that was released in April and that Liberty Alliance hopes will make Web services easier to deploy and will ensure that services comply with laws for securing privileged user information.
		With a robust identity framework that allows companies to securely exchange useful information about user demographics and preferences, telecommunications companies will find it easier to market and sell new services such as games, restaurant recommendations, and applications, Blum said.
		Formerly known as Sun ONE Identity Server, the Java System Identity Server integrates directory services, access management, user management, single sign-on, and user self-service, along with federated identity using the Liberty Alliance Phase 2 specifications, Allavarpu said.
	www.pcworld.com /news/article/0,aid,113385,00.asp (863 words)

	Linux in Government: Understanding Federated Identity Management \| Linux Journal
		Partners in a federated identity management (FIM) system depend on one another to authenticate their respective users and vouch for their access and privileges to services.
		Without ATandT's federated identity management system, each service provider would require you to have a separate ID and password.
		At the moment, federated identity management is becoming the next buzz word on the street.
	www.linuxjournal.com /article/8431 (2033 words)

	RSA launches identity manager \| CNET News.com
		The security software maker's Federated Identity Manager, released Monday, supports SAML 1.0 and 1.1, two widely used standards for identity federation, and it is expected to support the Liberty Alliance ID-FF 1.2 specification.
		Identity federation helps companies share trusted digital identities across corporate networks.
		RSA compares a federated identity to a passport--a credential that a country provides to an individual and which is trusted and accepted as proof of identity by other countries.
	news.com.com /2100-1029-5209995.html (348 words)

	Nokia - Ping Identity Corporation Announces Investment through Innovent, an entrepreneurial innovation unit of Nokia - ... (Site not responding. Last check: 2007-10-03)
		Ping Identity Corporation (www.pingidentity.com), a privately held software company developing infrastructure solutions for digital identity in support of federated identity management, today announced the closing of a strategic investment through Innovent, an entrepreneurial innovation unit of Nokia (NYSE: NOK).
		Ping Identity develops software solutions for federated identity management and is the founding sponsor of SourceID (www.sourceid.org), an open source project delivering the first Liberty Alliance compliant Single Sign-On toolkit.
		Ping Identity Corporation is also the driving force behind the PingID Network (www.pingid.com), a member-owned identity network operator.
	press.nokia.com /PR/200301/889683_5.html (525 words)

	The Laws of Identity (Site not responding. Last check: 2007-10-03)
		We have undertaken a project to develop a formal understanding of the dynamics causing digital identity systems to succeed or fail in various contexts, expressed as the Laws of Identity.
		Taken together, these laws define a unifying identity metasystem that can offer the Internet the identity layer it so obviously requires.
		Those of us who work on or with identity systems need to obey the Laws of Identity.
	www.identityblog.com /stories/2004/12/09/thelaws.html (268 words)

	The Virtual Quill
		Good post on the Identity Trail by Hilary Young called "Confessions of a closet Airmiles collector." It's about the differences between privacy and anonymity, the tradeoffs we make of privacy for meterial/financial advantage and why there is no "one size fits all" answer to the questions about identity privacy.
		It's not exactly a defense of RFID as Identity technology, but Bill Glover's post to the O'Reilly blog site ("RFID Hysteria") does carry that much more weight as it's coming from a place not known for it's defense of business or business practices.
		User-centric identity is an idea whose time has come, it's time that the corporate world recognized it.
	vquill.com (1282 words)

	Burton Group Catalyst NA 2003 Agenda Detail (Site not responding. Last check: 2007-10-03)
		Based on Burton Group's enterprise IdM model, the first day of the conference will define identity management in distinct terms, describe the process of managing the identity life cycle, and outline the challenges that enterprises face as they build IdM infrastructure.
		Shewchuk will discuss federated identity in relation to the Web services framework and composable, service-oriented architectures.
		The intersection of provisioning systems, meta-directories, and virtual directories is one of the more interesting areas of convergence in the identity management market.
	www.burtongroup.com /catalyst/catna03/dssdetail.asp (1313 words)

Try your search on: Qwika (all wikis)