An Analysis of sSven Concepts and Design Flaws in Identity Management Systems

Calixto das Chagas, João José; Ferraz, Felipe

Home // ICSEA 2015, The Tenth International Conference on Software Engineering Advances // View article

An Analysis of sSven Concepts and Design Flaws in Identity Management Systems

Authors:
João José Calixto das Chagas
Felipe Ferraz

Keywords: Management;flaws;Identity;design;Security.

Abstract:
–Identity management uses models to accredit, manage and use digital identities. These models connect isolated islands of authentication and authorization systems in a federated system. However flaws in the design and concept of these models, such as identity theft and even users’ lack of confidence in truly using these models, can lead systems that use its benefits to being non-successful on the market. This article presents an analysis of seven design and concept flaws of the identity management model of the main tools on the market, including Security Assertion Markup Language (SAML), OpenID, Microsoft CardSpace and an academic framework called Inter-Cloud Identity Management (ICEMAN).

Pages: 349 to 354

Copyright: Copyright (c) IARIA, 2015

Publication date: November 15, 2015

Published in: conference

ISSN: 2308-4235

ISBN: 978-1-61208-438-1

Location: Barcelona, Spain

Dates: from November 15, 2015 to November 20, 2015