User consent acquisition system for Japanese Shibboleth-based academic federation (GakuNin)

Authors:
Tananun Orawiwattanakul;Kazutsuna Yamaji;Motonori Nakamura;Toshiyuki Kataoka;Noboru Sonehara
Affiliations:
National Institute of Informatics, 2-1-2 Hitotsubashi, Chiyoda-ku, Tokyo 101-8430, Japan.;National Institute of Informatics, 2-1-2 Hitotsubashi, Chiyoda-ku, Tokyo 101-8430, Japan.;National Institute of Informatics, 2-1-2 Hitotsubashi, Chiyoda-ku, Tokyo 101-8430, Japan.;National Institute of Informatics, 2-1-2 Hitotsubashi, Chiyoda-ku, Tokyo 101-8430, Japan.;National Institute of Informatics, 2-1-2 Hitotsubashi, Chiyoda-ku, Tokyo 101-8430, Japan
Venue:
International Journal of Grid and Utility Computing
Year:
2011

Citing 1
Cited 0

Designing personalized web applications

Proceedings of the 10th international conference on World Wide Web

Quantified Score

Hi-index	0.00

Visualization

Abstract

Shibboleth provides a federated single sign-on and an attribute exchange framework through its use of the security assertion markup language (SAML). One of major challenges for Shibboleth is the release of the user|s information from an identity provider (IdP) to the service provider (SP) without prior consent of the user, and this may not comply with the privacy laws in some countries. This paper presents the requirements of a user consent acquisition system (UCAS) and a discussion on the existing UCASs for utilising GakuNin (Japanese academic federation) and the UCAS that we developed and call uApprove.jp. uApprove.jp is an extension of uApprove to enable users to control the release of optional attributes (user-attribute-filter) and to re-request the user consent if his/her information has changed (attribute-value check).