research-article

Cross-identifier domain discovery service for unrelated user identities

Authors:
Marcin Dabrowski

AGH University of Science and Technology, Krakow, Poland

AGH University of Science and Technology, Krakow, Poland
View Profile

,
Piotr Pacyna

AGH University of Science and Technology, Krakow, Poland

AGH University of Science and Technology, Krakow, Poland
View Profile

DIM '08: Proceedings of the 4th ACM workshop on Digital identity managementOctober 2008Pages 81–88https://doi.org/10.1145/1456424.1456438

Published:31 October 2008Publication History

DIM '08: Proceedings of the 4th ACM workshop on Digital identity management

Pages 81–88

ABSTRACT

Interoperable Identity Management systems are prerequisite for novel user-centric services, which strongly rely on user identity attributes and security services. Future Identity Management systems have to include a discovery framework which will enable dynamic and automatic exchange of user identity attributes between services from different key-business areas, e.g. Internet, healthcare, e-government, e-banking, entertainment, etc. The framework should allow federating different user identities so that any of them would be sufficient to bootstrap trust relation between the user and any service. The first and fundamental step to achieve the two goals is the discovery of multiple user identities, usually unrelated to each other and hosted by a distributed environment of independent identifier domains. Current discovery mechanisms are intra-identifier domain oriented, i.e. they focus on discovering identity- and identity-based services for a given identity described by known identifier valid inside certain identifier domain. This paper proposes a discovery mechanism which overcomes this constraint and allows for inter-identifier domain (inter-federation) discovery of user identities. To the best of our knowledge, it is the first proposition that crosses the border of an identifier domain (and federation) and allows for discovery of completely unrelated identities of the user.

References

R. Radhakrishnan, "Identity & Security. A Common Architecture & Framework for SOA and Network Convergence", Futuretext, 2007 Google ScholarDigital Library
Liberty Alliance Project, "Liberty ID-WSF Discovery Service SpecificationGoogle Scholar
Focus Group on Identity Management, "Report on Identity Management Use Cases and Gap Analysis", ITU-T, 2007Google Scholar
P. Windley: "Digital Identity ", O'Reilly, 2005 Google ScholarDigital Library
L. Jean Camp: Digital Identity, IEEE Technology and Society Magazine, Fall 2004Google ScholarCross Ref
D.V. Thanh, I. Jorstadt, "The Ambiguity of Identity", Teletronikk, Vol.3, 2007Google Scholar
Audun Jøsang, John Fabre, Brian Hay, James Dalziel , Simon Pope1, "Trust Requirements in Identity Management", Proceedings of the 2005 Australasian workshop on Grid computing and e-research -- Volume 44, 2005 Google ScholarDigital Library
M. Dabrowski, P. Pacyna, "Generic and complete, three-level Identity Management Model", accepted for publication and presentation at The Second International Conference on Emerging Security Information, Systems and Technologies (SECURWARE 2008), August 25--31, 2008 -- Cap Esterel, France Google ScholarDigital Library
Anonymous -- P2P.org, http://www.anonymous-p2p.org/Google Scholar
Yadis Specification 1.0Google Scholar
XRI 2.0 ResolutionGoogle Scholar
Shibboleth Architecture -- Technical OverviewGoogle Scholar
Liberty Alliance Project, "Access to Identity-Enabled Web Services in Cross-Border, Inter-Federation ScenariosGoogle Scholar

Index Terms

Cross-identifier domain discovery service for unrelated user identities
1. Information systems
  1. Information retrieval
    1. Information retrieval query processing

Recommendations

Distributed identity discovery service for non-federated systems
MoMM '08: Proceedings of the 6th International Conference on Advances in Mobile Computing and Multimedia

Today, multiple digital identities of a person are managed by independent identity providers. These identities are unlinked with each other, therefore existing identity discovery mechanisms are restricted to discovery by way of a known identifier, ...
Read More
OpenID identity discovery with XRI and XRDS
IDtrust '08: Proceedings of the 7th symposium on Identity and trust on the Internet

The work examines the identity discovery problems that needed to be addressed by the OpenID 2.0 protocol in order to enable a user-centric Internet identity layer. The paper illustrates how the OASIS XRI and XRDS specifications were applied to help ...
Read More
A framework for preserving privacy in cloud computing with user service dependent identity
ICACCI '12: Proceedings of the International Conference on Advances in Computing, Communications and Informatics

The widespread focus on the Cloud Computing has necessitated the corresponding mechanisms to ensure privacy and security. Various attempts have been made in the past to safeguard the privacy of the individual or agency trying to utilize the services ...
Read More

Comments

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

Published in
DIM '08: Proceedings of the 4th ACM workshop on Digital identity management
October 2008
112 pages
ISBN:9781605582948
DOI:10.1145/1456424
Program Chairs:
Elisa Bertino
CERIAS, Purdue University, USA
,
Kenji Takahashi
NTT, Japan
Copyright © 2008 ACM
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]
Sponsors
In-Cooperation
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
- Published: 31 October 2008
Permissions
Request permissions about this article.
Request Permissions

Check for updates
Author Tags
discovery
federation
identifier domain
identity
identity discovery
Qualifiers
- research-article
Conference

Acceptance Rates
Overall Acceptance Rate16of34submissions,47%
Upcoming Conference
CCS '24

Sponsor:

sigsac

ACM SIGSAC Conference on Computer and Communications Security

October 14 - 18, 2024

Salt Lake City , UT , USA
Funding Sources
Other Metrics
View Article Metrics

Article Metrics
- 5
  Total Citations
  View Citations
- 359
  Total Downloads
- Downloads (Last 12 months)2
- Downloads (Last 6 weeks)0
Other Metrics
View Author Metrics
Cited By
View all

PDF Format

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Cross-identifier domain discovery service for unrelated user identities

DIM '08: Proceedings of the 4th ACM workshop on Digital identity management

ABSTRACT

References

Cited By

Index Terms

Recommendations

Distributed identity discovery service for non-federated systems

OpenID identity discovery with XRI and XRDS

A framework for preserving privacy in cloud computing with user service dependent identity