Leveraging social networks to gain access to organisational resources

Authors:
David W. Chadwick;George L. Inman;Kristy W.S. Siu;Mohammad Sadek Ferdous
Affiliations:
University of Kent, Canterbury, United Kingdom;University of Kent, Canterbury, United Kingdom;University of Kent, Canterbury, United Kingdom;University of Kent, Canterbury, United Kingdom
Venue:
Proceedings of the 7th ACM workshop on Digital identity management
Year:
2011

Citing 3
Cited 0

Reasoning about naming systems

ACM Transactions on Programming Languages and Systems (TOPLAS)
Cross-domain authorization for federated virtual organizations using the myVocs collaboration environment

Concurrency and Computation: Practice & Experience
Attribute Aggregation in Federated Identity Management

Computer

Quantified Score

Hi-index	0.00

Visualization

Abstract

We describe a federated identity management service that allows users to access organisational resources using their existing login accounts at social networking and other sites, without compromising the security of the organisation's resources. We utilise and extend the Level of Assurance (LoA) concept to ensure the organisation's site remains secure. Users are empowered to link together their various accounts, including their organizational one with an external one, so that the strongest registration procedure of one linked account can be leveraged by the other sites' login processes that have less stringent registration procedures. Coupled with attribute release from their organizational account, this allows users to escalate their privileges due to either an increased LoA, or additional attributes, or both. The conceptual and architectural designs are described, followed by the implementation details, the user trials we carried out, and a discussion of the current limitations of the system.