IEEE Internet Computing
First experiences using XACML for access control in distributed systems
Proceedings of the 2003 ACM workshop on XML security
Web Services Are Not Distributed Objects
IEEE Internet Computing
The MyProxy online credential repository: Research Articles
Software—Practice & Experience - Grid Security
CredEx: User-Centric Credential Management for Grid and Web Services
ICWS '05 Proceedings of the IEEE International Conference on Web Services
ShibGrid: Shibboleth Access for the UK National Grid Service
E-SCIENCE '06 Proceedings of the Second IEEE International Conference on e-Science and Grid Computing
A heterogeneous network access service based on PERMIS and SAML
EuroPKI'05 Proceedings of the Second European conference on Public Key Infrastructure
Hi-index | 0.00 |
Due to the increasing number of service providers, the grouping of these providers following the federation concept and the use of the Single Sign On (SSO) concept are helping users to gain a transparent access to resources, without worrying about their locations. However, current industry and academic production only provide SSO in cases with homogeneous underlying security technology. This paper deals with interoperability between heterogeneous security technologies. The proposed model is based on the Credential Translation Service that allows SSO authentication even heterogeneous security technologies are considered. Therefore, the proposed model provides authentication credentials translation and attribute transposition and, as a consequence, provides authorization involving different kinds of credentials and permissions in the federation environment. By making use of Web Services, this study is strongly based on concepts introduced in the SAML, WS-Trust and WS-Federation specifications.