Rich Identity Provisioning Agenda Introduction Research questions - PowerPoint PPT Presentation

Rich Identity Provisioning Agenda • Introduction • Research questions • Related work • RIP architecture • Open source components • Conclusion UvA-SNE-RP2 presentation 1

Rich Identity Provisioning introduction: trigger Digital identity: business Digital identity: web shop Digital identity: social UvA-SNE-RP2 presentation 2

Rich Identity Provisioning introduction: trigger Digital identity: business - colleagues - business card Digital identity: web shop - name - address - bank Digital identity: social - friends - photos UvA-SNE-RP2 presentation 3

Rich Identity Provisioning introduction: trigger Digital identity: business - colleagues - business card Digital identity: web shop - name - address - bank Digital identity: social - friends - photos UvA-SNE-RP2 presentation 4

Rich Identity Provisioning introduction: trigger Identity Provider Identity Provider A B Digital identity: business Identity Provider C Digital identity: web shop Digital identity: social UvA-SNE-RP2 presentation 5

Rich Identity Provisioning Research Questions 1.What architecture fits best to a user-centric identity provisioning system regarding Web access? 2.What open source components fit into such a system? UvA-SNE-RP2 presentation 6

Rich Identity Provisioning Related work Reports on issues regarding Identity provisioning ● User-centric :Data-store architecture ● Security :Trusted module (SmartCard) ● Privacy :Cross-layer privacy Project: ● Global architecture answer research questions UvA-SNE-RP2 presentation 7

Rich Identity Provisioning RIP Architecture SP resources RIP Architecture Access & Policy services Protocols Identity Provider (IdP) Identity Policy Audit Data Storage services Synchronization Virtualization Identity Data services inControl Audit User services User UvA-SNE-RP2 presentation 8

Rich Identity Provisioning RIP Architecture SP IdP TTP audit context user PDS context - policy - audit managed personal Virtual device sync SmartCard UvA-SNE-RP2 presentation 9

Rich Identity Provisioning RIP Architecture user managed personal Minimal disclosure Rich sharing - private information - personal information Using Ontologies (Vocabularies) - FOAF UvA-SNE-RP2 presentation 10

Rich Identity Provisioning Open source components Implementation Identifier used Minimal Disclosure Rich Sharing BrowserID e-mail address √ SQRL site-specific key √ TiQR QR code √ U-prove key √ OpenID URI √ WebFinger e-mail address √ WebID URI √ UvA-SNE-RP2 presentation 11

Rich Identity Provisioning Conclusion RIP Architecture fits to a user-centric identity provisioning system ● User controls personal digital identities ● IdP selection context-based Open source components that fit into the architecture ● Minimal disclosure ● Rich sharing UvA-SNE-RP2 presentation 12

Rich Identity Provisioning UvA-SNE-RP2 presentation 13