Abstract
Cross-domain identity management is gaining significant interest in industry. A recent example is the Liberty Alliance’s specifications for single signon of users across a federation of enterprises. These specifications stress that the federation process is voluntary for the users and that privacy is preserved, e.g., by using pseudonyms. We evaluate the privacy of these specifications in detail. We point out ambiguities and propose a concrete privacy policy together with a few changes to the Liberty processing rules. Our analysis demonstrates that identity-management policies are non-trivial even in a limited context. We also discuss how such low-tech proposals from industry relate to high-tech privacy-enhancing proposals from the research community.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Chaum, D.: Security without Identification: Transaction Systems to make Big Brother Obsolete. Communications of the ACM 28/10, 1030–1044 (1985)
Camenisch, J., Lysyanskaya, A.: An efficient system for non-transferable anonymous credentials with optional anonymity revocation. In: Pfitzmann, B. (ed.) EUROCRYPT 2001. LNCS, vol. 2045, pp. 93–117. Springer, Heidelberg (2001)
Camenisch, J., Van Herreweghen, E.: Design and Implementation of the Idemix Anonymous Credential System. In: 9th ACM Conference on Computer and Communications Security (CCS), pp. 21–30
Clauß, S., Pfitzmann, A., Hansen, M., Van Herreweghen, E.: Privacy- Enhancing Identity Management. The IPTS Report (67) (2002), http://www.jrc.es/pages/iptsreport/vol67/english/IPT2E676.html
IBM: Enterprise Security Architecture using IBM Tivoli Security Solutions (April 2002), http://www.redbooks.ibm.com/abstracts/sg246014.html
Kormann, D.P., Rubin, A.D.: Risks of the Passport Single Signon Protocol. Computer Networks 33, 51–58 (2001)
Liberty Alliance Project: Liberty Architecture Overview, Version 1.0, July 11 (2002)
Liberty Alliance Project: Liberty Protocols and Schemas Specification, Version 1.0, July 11 (2002)
Liberty Alliance Project: Liberty Bindings and Profiles Specification, Version 1.0, July 11 (2002)
Microsoft Corporation: Various.NET Passport documentation (started 1999), in particular Technical Overview (September 2001), and SDK 2.1 Documentation and http://www.passport.com , http://www.passport.com
Pfitzmann, B., Waidner, M.: Privacy in Browser-Based Attribute Exchange. In: ACM Workshop on Privacy in the Electronic Society. post conference, Washington. ACM (November 2002)
Pfitzmann, B., Waidner, M.: BBAE − A General Protocol for Browser-based Attribute Exchange. IBM Research Report RZ 3455 (# 93800) (September 2002), http://www.zurich.ibm.com/security/publications/2002.html
OASIS Security Assertion Markup Language (SAML). Committee specification 01 (May 2002) (started January 2001), http://www.oasis-open.org/committees/security/docs
Shibboleth-Architecture Draft v05 (May 2002), http://middleware.internet2.edu/shibboleth/docs/draft-internet2-shibboleth-arch-v05.pdf
Slemko, M.: Microsoft Passport to Trouble. Rev. 1.18 (November 2001), http://alive.znep.com/~marcs/passport/
Westin, A.F.: Privacy and Freedom. Atheneum, New York (1967)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2003 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Pfitzmann, B. (2003). Privacy in Enterprise Identity Federation. In: Dingledine, R. (eds) Privacy Enhancing Technologies. PET 2003. Lecture Notes in Computer Science, vol 2760. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-40956-4_13
Download citation
DOI: https://doi.org/10.1007/978-3-540-40956-4_13
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-20610-1
Online ISBN: 978-3-540-40956-4
eBook Packages: Springer Book Archive