User Privacy with Composite Applications

LE ROUX's picture
Submitted by LE ROUX on Wed, 2012-05-23 09:56

Composite applications contain multiple services used in combination. In order to do so, they are using user-centric federated identies.

How we may achieve the goal of a flexible, user-centric identity management infrastructure which will allow the user to quickly determine what information will be revealed to which parties and for what purposes, how trustworthy those parties are and how they will handle the information, and what the consequences of sharing their information will be?

Group audience: 
Cloud
Interesting!
0 users have voted.

Comments

Engberg's picture
Submitted by Engberg on Wed, 2012-05-23 18:30

Thay are not trustworthy - what you do is to ensure that no party is able to identify the citizen so all parties act as one. Especially if it goes into cloud.

SAML is otherwise dangerous as it provides the abolity to scale attacks so successfull penetration in one systems spreads to other systems. This can only be mitigated through logical isolation so nothing you lean in one context can be reused to attack another context/system.

Interesting!
0 users have voted.

Going Local

Belgie / Belgique
Česká republika
Danmark
Deutschland
Eesti
España
France
Hrvatska
Ireland
Italia
Latvija
Lietuva
Luxembourg
Magyarország
Malta
Nederland
Österreich
Polska
Portugal
România
Slovenija
Slovensko
Suomi
Sverige
United Kingdom
Ελλάδα
Κύπρος
България

People

casang2's picture
Hensley Peterson's picture
Loankanassy's picture
Valentina Bazzarin's picture
katarzyna.szkuta's picture
rebentisch's picture
JacintaArcadia's picture
uzurutuza's picture
Kasper Peters's picture
lpujol's picture
ozanamblog's picture
annalisa.deluca's picture
Digital Agenda Assembly engagement
glqxz9283 sfy39587stf02 mnesdcuix8
glqxz9283 sfy39587stf03 mnesdcuix8
glqxz9283 sfy39587stf04 mnesdcuix8