Trust negotiation in identity management

Abhilasha Bhargav-Spantzel; Anna C. Squicciarini; Elisa Bertino

doi:10.1109/MSP.2007.46

Trust negotiation in identity management

Abhilasha Bhargav-Spantzel
, Anna C. Squicciarini
, Elisa Bertino

College of Information Sciences and Technology

Research output: Contribution to journal › Review article › peer-review

58 Scopus citations

Abstract

The significance of federated identity management system (IdM) for protection of user information, is discussed. Federated identity management system provides a group or organizations, mechanisms for managing and gaining access to user identity information. IdM systems involve two types of entities: identity providers and service providers. An IdP manages user authentication and user-identity-relevant information while service provider (SP) of system specifies and enforces the access-control policies for protection of user information resources. The IdM system provide the user information needed to satisfy the requesting SP's access-control policies using differentiated privacy preferences of user to protect user information. IdM technology and automated trust-negotiation (ATN) techniques establish trust between negotiating parties online through bilateral credential disclosure for protection of user information.

Original language	English (US)
Pages (from-to)	55-63
Number of pages	9
Journal	IEEE Security and Privacy
Volume	5
Issue number	2
DOIs	https://doi.org/10.1109/MSP.2007.46
State	Published - Mar 2007

All Science Journal Classification (ASJC) codes

Computer Networks and Communications
Electrical and Electronic Engineering
Law

Access to Document

10.1109/MSP.2007.46

Cite this

@article{789b61e19d1b48a09d14940569ed4e18,

title = "Trust negotiation in identity management",

abstract = "The significance of federated identity management system (IdM) for protection of user information, is discussed. Federated identity management system provides a group or organizations, mechanisms for managing and gaining access to user identity information. IdM systems involve two types of entities: identity providers and service providers. An IdP manages user authentication and user-identity-relevant information while service provider (SP) of system specifies and enforces the access-control policies for protection of user information resources. The IdM system provide the user information needed to satisfy the requesting SP's access-control policies using differentiated privacy preferences of user to protect user information. IdM technology and automated trust-negotiation (ATN) techniques establish trust between negotiating parties online through bilateral credential disclosure for protection of user information.",

author = "Abhilasha Bhargav-Spantzel and Squicciarini, \{Anna C.\} and Elisa Bertino",

year = "2007",

month = mar,

doi = "10.1109/MSP.2007.46",

language = "English (US)",

volume = "5",

pages = "55--63",

journal = "IEEE Security and Privacy",

issn = "1540-7993",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

number = "2",

}

TY - JOUR

T1 - Trust negotiation in identity management

AU - Bhargav-Spantzel, Abhilasha

AU - Squicciarini, Anna C.

AU - Bertino, Elisa

PY - 2007/3

Y1 - 2007/3

N2 - The significance of federated identity management system (IdM) for protection of user information, is discussed. Federated identity management system provides a group or organizations, mechanisms for managing and gaining access to user identity information. IdM systems involve two types of entities: identity providers and service providers. An IdP manages user authentication and user-identity-relevant information while service provider (SP) of system specifies and enforces the access-control policies for protection of user information resources. The IdM system provide the user information needed to satisfy the requesting SP's access-control policies using differentiated privacy preferences of user to protect user information. IdM technology and automated trust-negotiation (ATN) techniques establish trust between negotiating parties online through bilateral credential disclosure for protection of user information.

AB - The significance of federated identity management system (IdM) for protection of user information, is discussed. Federated identity management system provides a group or organizations, mechanisms for managing and gaining access to user identity information. IdM systems involve two types of entities: identity providers and service providers. An IdP manages user authentication and user-identity-relevant information while service provider (SP) of system specifies and enforces the access-control policies for protection of user information resources. The IdM system provide the user information needed to satisfy the requesting SP's access-control policies using differentiated privacy preferences of user to protect user information. IdM technology and automated trust-negotiation (ATN) techniques establish trust between negotiating parties online through bilateral credential disclosure for protection of user information.

UR - https://www.scopus.com/pages/publications/34047093851

UR - https://www.scopus.com/pages/publications/34047093851#tab=citedBy

U2 - 10.1109/MSP.2007.46

DO - 10.1109/MSP.2007.46

M3 - Review article

AN - SCOPUS:34047093851

SN - 1540-7993

VL - 5

SP - 55

EP - 63

JO - IEEE Security and Privacy

JF - IEEE Security and Privacy

IS - 2

ER -

Trust negotiation in identity management

Abstract

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this