Privacy in Identity & Access Management Systems

This paper surveys the approaches for addressing privacy in open identity and access management systems that have been taken by a number of current systems. The paper begins by listing important privacy requirements and discusses how three systems that are being incrementally deployed in the Internet, namely SAML 2.0, CardSpace, and eID, address these requirements. Subsequently, the findings of recent European research projects in the area of privacy for I&AM systems are discussed. Finally, the approach taken to address the identified privacy requirements by ongoing projects is described at a high level. The overall goal of this paper is to provide the reader with an overview of the diversity of privacy issues and techniques in the context of I&AM.

Provided by: University of London Topic: Security Date Added: Feb 2011 Format: PDF

Find By Topic