Collaborative Computing: Networking, Applications and Worksharing. 4th International Conference, CollaborateCom 2008, Orlando, FL, USA, November 13-16, 2008, Revised Selected Papers

Research Article

A Federated Digital Identity Management Approach for Business Processes

Download
447 downloads
  • @INPROCEEDINGS{10.1007/978-3-642-03354-4_15,
        author={Elisa Bertino and Rodolfo Ferrini and Andrea Musci and Federica Paci and Kevin Steuer},
        title={A Federated Digital Identity Management Approach for Business Processes},
        proceedings={Collaborative Computing: Networking, Applications and Worksharing. 4th International Conference, CollaborateCom 2008, Orlando, FL, USA, November 13-16, 2008, Revised Selected Papers},
        proceedings_a={COLLABORATECOM},
        year={2012},
        month={5},
        keywords={identity management business process naming heterogeneity interoperability},
        doi={10.1007/978-3-642-03354-4_15}
    }
    
  • Elisa Bertino
    Rodolfo Ferrini
    Andrea Musci
    Federica Paci
    Kevin Steuer
    Year: 2012
    A Federated Digital Identity Management Approach for Business Processes
    COLLABORATECOM
    Springer
    DOI: 10.1007/978-3-642-03354-4_15
Elisa Bertino1,*, Rodolfo Ferrini1,*, Andrea Musci1,*, Federica Paci1,*, Kevin Steuer1,*
  • 1: Purdue University
*Contact email: bertino@cs.purdue.edu, rferrini@cs.purdue.edu, amusci@cs.purdue.edu, paci@cs.purdue.edu, ksteuer@cs.purdue.edu

Abstract

Business processes have gained a lot of attention because of the pressing need for integrating existing resources and services to better fulfill customer needs. A key feature of business processes is that they are built from composable services, referred to as , that may belong to different domains. In such a context, flexible multi-domain identity management solutions are crucial for increased security and user-convenience. In particular, it is important that during the execution of a business process the component services be able to verify the identity of the client to check that it has the required permissions for accessing the services. To address the problem of multi-domain identity management, we propose a multi-factor identity attribute verification protocol for business processes that assures clients privacy and handles naming heterogeneity.