IEEE Internet Computing
First experiences using XACML for access control in distributed systems
Proceedings of the 2003 ACM workshop on XML security
Trust-serv: model-driven lifecycle management of trust negotiation policies for web services
Proceedings of the 13th international conference on World Wide Web
Adaptive trust negotiation and access control
Proceedings of the tenth ACM symposium on Access control models and technologies
Deploy, adjust and readjust: supporting dynamic reconfiguration of policy enforcement
Middleware'11 Proceedings of the 12th ACM/IFIP/USENIX international conference on Middleware
Deploy, adjust and readjust: supporting dynamic reconfiguration of policy enforcement
Proceedings of the 12th International Middleware Conference
Hi-index | 0.00 |
Federation can be perceived as a security foundation accommodating federated identity management solutions. In this paper we analyse the structure and function of federations with the aim of revealing the essential elements and architecture principles of federation models. Firstly, we identify some fundamental concepts that underpin the structure and operation of a trust realm. Then we analyse how these aggregate to provide for identity management and trust brokerage in a federation. We then explain various federation models in terms of these concepts. Finally, we examine the current state of Web-based federation standards and products, indicate specific research challenges for the next generation of federation-enabling technology. The paper targets an audience of research professionals and practitioners with some security and software engineering background who wish to find out more about federation models, and it can also be useful to (security) architects and consultants who are considering different federation architecture options for their projects.