Identity Propagation (Dictionary Entry)

Quotes

Account propagation: Synchronize or replicate accounts to the cloud provider, usually from directory services.

Identity Propagation: Some applications require that pieces of identity propagate to other systems. This replication objective is simple: applications may replicate the identity for better performance, cost, or simple failure defense system. More complex applications may require a unifed identity directory where an identity created by some application may be used in another application. Ideally, a propagation must occur after each change in some identity, and the propagation must occur in a reliable way to avoid the problems of safety and consistency [33].

Identity propagation provides a mechanism to allow a user identity from an external security realm to be preserved, regardless of where the identity information was created, strengthening accountability across distributed environments.
(...)
The term distributed identity represents user identity information, for example, an X.500 distinguished name and associated LDAP realm, that originates from a remote system. The distributed identity is created in one system and is passed to one or more other systems over a network.
(...)
Identity propagation allows the distributed identity to be preserved, regardless of where the identity information was created, for use during authorization and for auditing purposes. The distributed identity is part of the identity context that is carried with a request from the external client application to the server, and it is incorporated in the access control of the server as part of the authorization process (...)

Bibliography

See Also