Privacy in Identity & Access Management Systems
This paper surveys the approaches for addressing privacy in open identity and access management systems that have been taken by a number of current systems. The paper begins by listing important privacy requirements and discusses how three systems that are being incrementally deployed in the Internet, namely SAML 2.0, CardSpace, and eID, address these requirements. Subsequently, the findings of recent European research projects in the area of privacy for I&AM systems are discussed. Finally, the approach taken to address the identified privacy requirements by ongoing projects is described at a high level. The overall goal of this paper is to provide the reader with an overview of the diversity of privacy issues and techniques in the context of I&AM.