Home // INFOCOMP 2014, The Fourth International Conference on Advanced Communications and Computation // View article

A SAML Metadata Broker for Dynamic Federations and Inter-Federations

Authors:
Daniela Pöhn
Stefan Metzger
Wolfgang Hommel

Keywords: Federated Identity Management; SAML; Shibboleth; Inter-Federation; Trust-Management

Abstract:
We present the design and concept for a new service to enable multi-tenant information and communications technology (ICT) service user authentication and authorization (AuthNZ) management in the research and education environment, called Géant-TrustBroker. Géant-TrustBroker complements eduGAIN, an umbrella inter-federation established on top of the national higher education federations in more than 20 countries worldwide by the pan-European research and education network GÉANT. Motivated by real-world limitations of eduGAIN, Géant-TrustBroker enables on-demand establishment of dynamic virtual federations, reducing the manual workload for the participating organisations by a high level of automation. Manual interaction is only necessary when organisational trust-building measures, such as signing a formal contract between providers, are necessary. Furthermore, the efforts of converting user information attributes to the format of a service provider is reduced by a conversion rule repository. We contrast Géant-TrustBroker with other state-of-the-art approaches and present its core workflow and the internal technical architecture.

Pages: 132 to 137

Copyright: Copyright (c) IARIA, 2014

Publication date: July 20, 2014

Published in: conference

ISSN: 2308-3484

ISBN: 978-1-61208-365-0

Location: Paris, France

Dates: from July 20, 2014 to July 24, 2014