Achieving interoperability between federated identity management systems: A case of study

Catuogno, Luigi; Galdi, Clemente

doi:10.3233/jhs-140499

Cited by 9 publications

(12 citation statements)

References 35 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Authentication and authorization are one of the mechanisms used in computer security to validate if the user has the right credentials and permission to access a system. However, authenticating and authorization also known as identification, is one of the common problems in computer security [4]. Although many researches have been done to improve the authentication standards, passwords is still common authentication mechanism [4].…”

Section: Related Workmentioning

confidence: 99%

“…However, authenticating and authorization also known as identification, is one of the common problems in computer security [4]. Although many researches have been done to improve the authentication standards, passwords is still common authentication mechanism [4]. Using passwords as an authentication mechanism increases complexity in an enterprise environment since forgetting passwords from time and again can lead to inefficiency while accessing systems.…”

Section: Related Workmentioning

confidence: 99%

“…The concept of SaaS, PaaS and IaaS has also changed the way different authorization and authentication mechanism worked. The mechanism to store identities across different systems using SaaS, PaaS and IaaS is also known as federated identity management [4]. With cloud-based applications and the need to access applications anywhere at any time has brought in changes in the traditional authentication mechanism and developed different standards that are also known as SSO standards.…”

Section: Related Workmentioning

confidence: 99%

“…So every time a user needs to access a system they need to enter the password. The use of password-based authentication and classical authorization techniques are described below  Alpha numeric passwords are used which sometimes can be easy to guess so an unauthorized user may also access the system [4].  Since different system may have different passwords the user has to memorize all the password or maintain a list somewhere else which can be stolen or lost  Some system with password-based authentication allows grammars in passwords which provides a way for attacks like dictionary attacks [4]  Two factor authentications can be a better approach but not all the systems follow two factors authentications.…”

Section: Related Workmentioning

confidence: 99%

“…Remembering passwords and usernames can lead to issues where the user can forget their credentials or lose their credentials for certain system, which might fall into the hands of an intruder. Single Sign On (SSO) provides a better functionality for managing authentication and authorizations to applications, by not having the user re-enter the credential every time they need to login [4]. SSO provides a single source of authentication mechanism which provides the user a single platform to enter their credentials to access different applications and also discourages the need to maintain multiple credentials to access different systems [5].…”

Section: Introductionmentioning

confidence: 99%

See 4 more Smart Citations

Towards Adoption of Authentication and Authorization in Identity Management and Single Sign On

Joshi¹,

Cha²,

Sardari³

2018

Adv. sci. technol. eng. syst. j.

View full text Add to dashboard Cite

Identity and Access Management (IAM) and Single Sign on (SSO) are two security concepts that are related to each other. IAM governs the user access in an organization whereas SSO facilitates the user by authenticating to one centralized application and not having to re-authenticate when trying to access other applications. This paper addresses the different benefits that an IAM and SSO tool can provide to reduce the security risk within an organization. Since, authentication and authorization are one of the major concerns in the cyber security; this paper analyzes common problems that are faced during authentication and authorization. We have also analyzed prior researches that have been done in the IAM and SSO space along with conducting a survey to understand the different issues and benefits of IAM and SSO. From the survey that has been conducted, we have addressed different issues when implementing IAM and SSO solutions along with understanding the architecture, in which these solutions have been deployed into. The surveys conducted have been compared with prior researches done in IAM and SSO space to understand the benefits that the solution provides. The results from the survey have been analyzed to provide the best practices when implementing IAM and SSO solutions along with the benefits provided by the solution.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Towards Adoption of Authentication and Authorization in Identity Management and Single Sign On

Joshi¹,

Cha²,

Sardari³

2018

Adv. sci. technol. eng. syst. j.

View full text Add to dashboard Cite

show abstract

Considerations for trustworthy cross-border interoperability of digital identity systems in developing countries

Ibor,

Hooper,

Maple

et al. 2024

AI & Soc

View full text Add to dashboard Cite

In developing nations, the implementation of Foundational Identity Systems (FIDS) has optimised service delivery and inclusive economic growth. Cross-border e-government will gain traction as developing countries increasingly look to identity federation and trustworthy interoperability through FIDS for the identification and authentication of identity holders. Despite this potential, the interoperability of FIDS in the African identity ecosystem has not been well-studied. Among the difficulties in this situation are the intricate internal political dynamics that have led to weak institutions, suggesting that FIDS could be used for political purposes; additionally, citizens’ or identity holders’ habitual low trust in the government raises concerns about data security and privacy protection. Similarly, vendor lock-in, cross-system compatibility, and ambiguous legislative rules for data exchange are other concerns. Interoperability is fundamentally necessary as a precondition for e-government services and serves as the foundation for the best possible service delivery in the areas of social security, education, and finance, as well as gender equality as demonstrated by the European Union (EU). Moreover, the integration of cross-border FIDS and an ecosystem of effective data governance will be created by unified data sharing via an interoperable identity system. Thus, in this study, we point to the challenges, opportunities, and requirements for cross-border interoperability in an African setting. Furthermore, we investigated current interoperability solutions such as the EU’s eIDAS and Estonian X-Road and proposed an approach for scoping requirements to achieve a fully functional interoperable identity ecosystem in the African setting. Our findings show that interoperability in the African identity ecosystem is essential for expanding the scope of e-government throughout the continent and for bolstering the smooth authentication and verification of identity holders for inclusive economic growth.

show abstract

Microsoft Azure active directory for next level authentication to provide a seamless single sign-on experience

Subbarao¹,

Raju

Anjum

et al. 2021

Appl Nanosci

View full text Add to dashboard Cite

Achieving interoperability between federated identity management systems: A case of study

Cited by 9 publications

References 35 publications

Towards Adoption of Authentication and Authorization in Identity Management and Single Sign On

Towards Adoption of Authentication and Authorization in Identity Management and Single Sign On

Considerations for trustworthy cross-border interoperability of digital identity systems in developing countries

Microsoft Azure active directory for next level authentication to provide a seamless single sign-on experience

Contact Info

Product

Resources

About