Research Article
Performance Evaluation of Identity and Access Management Systems in Federated Environments
@INPROCEEDINGS{10.1007/978-3-642-10485-5_7, author={Frank Schell and Jochen Dinger and Hannes Hartenstein}, title={Performance Evaluation of Identity and Access Management Systems in Federated Environments}, proceedings={Scalable Information Systems. 4th International ICST Conference, INFOSCALE 2009, Hong Kong, June 10-11, 2009, Revised Selected Papers}, proceedings_a={INFOSCALE}, year={2012}, month={5}, keywords={identity and access management federated identity management access control scalability}, doi={10.1007/978-3-642-10485-5_7} }- Frank Schell
Jochen Dinger
Hannes Hartenstein
Year: 2012
Performance Evaluation of Identity and Access Management Systems in Federated Environments
INFOSCALE
Springer
DOI: 10.1007/978-3-642-10485-5_7
Abstract
Identity and access management (IAM) systems are used to assure authorized access to services in distributed environments. The architecture of IAM systems, in particular the arrangement of the involved components, has significant impact on performance and scalability of the overall system. Furthermore, factors like robustness and even privacy that are not related to performance have to be considered. Hence, systematic engineering of IAM systems demands for criteria and metrics to differentiate architectural approaches. The rise of service-oriented architectures and cross-organizational integration efforts in federations will additionally increase the importance of appropriate IAM systems in the future. While previous work focused on qualitative evaluation criteria, we extend these criteria by metrics to gain quantitative measures. The contribution of this paper is twofold: i) We propose a system model and corresponding metrics to evaluate different IAM system architectures on a quantitative basis. ii) We present a simulation-based performance evaluation study that shows the suitability of this system model.