Federated Identity Management System (Dictionary Entry)

Owned by David Doret, created
Last updated: 30-16-2021
2 min read

Federated Identity Management System

Alternative Forms

  • Federated IdMS

Definitions

Definition 1

A Federated Identity Management System is a system composed of multiple Identity Service Providers and multiple Service Providers that composes a group of trusted organizations and allows cross-domain accesses.

It is distinct from a Centralized Identity Management System because it is composed of multiple Identity Service Providers.

Quotes

Federated Cloud IDMS Federated Cloud identity management system is the realization of federated identity management model that enables the subscribers of multiple organizations to use the same identification information for acquiring access to all the networks within any particular trusted group of enterprises (Cao and Yang 2010; Chen et al. 2012; Jøsang et al. 2005). Federated Cloud Identity management system has received significant attention from the IT industry because of its design agility that inherently allows cross-domain access to its users by eliminating the need of creating additional user accounts for external parties (Arias-Cabarcos et al. 2012; Shin et al. 2009; Suriadi et al. 2009). Federated IDMS follows the distributed storage architecture, where identity information is stored at multiple locations. The workflow of user request and service provider’s response is depicted in Figure 5, where (1) CSC forwards an authentication request to the CSP1, (1.1), the CSP1 being a federated IDMS, forwards the authentication request to the CSP2 for the collection of CSC’s identity credentials. As a next step, (1.2) CSP2 forwards the authentication request to the next IdP and retrieves the required attributes from its Identity data store. Finally, an authentication response is created and sent back to the requesting CSP. This process continues until it collects all the attributes required for authentication. In a federated IDMS, CSC’s authentication request results in the linking of their information across multiple IdPs, so as to enhance security.

(, p. 7)

Bibliography

See Also

Follow us on LinkedIn | Discuss on Slack | Support us with Patreon | Sign-up for a free membership.

This wiki is owned by Open Measure, a non-profit association. The original content we publish is licensed under a Creative Commons Attribution 4.0 International License.