Identity Management Architecture: Paradigms and Models

This paper provides an overview of identity management architecture from the viewpoint of paradigms and models. The definition of identity management architecture has been discussed, paradigms are classified by the development stage and core design principle transmission of the architecture which include network centric paradigm, service centric paradigm, and user centric paradigm; models are grouped by components varying and functions changing to isolated model, centralized model, and federated model. These paradigms and models have no collisions among them for they are views of identity management from different viewpoint.

Download Full-text

User-Centric Identity Management Architecture Using Credential-Holding Identity Agents

Digital Identity and Access Management ◽

10.4018/978-1-61350-498-7.ch005 ◽

2011 ◽

pp. 78-96 ◽

Cited By ~ 1

Author(s):

Daisuke Mashima ◽

David Bauer ◽

Mustaque Ahamad ◽

Douglas M. Blough

Keyword(s):

Identity Management ◽

Management Systems ◽

Online Identity ◽

Fine Grained ◽

Identity Disclosure ◽

Management Architecture ◽

Identity Management Systems ◽

Risk Scoring ◽

User Centric ◽

And Performance

The pervasive use of digital identities in today’s cyberspace has led to an increasing interest in the area of identity management. Recently proposed user-centric identity management systems have accomplished higher-level of user control over online identity credentials. However, while the lack of a central authority that governs the entire system requires users to be responsible for their own digital identity credentials, the existing user-centric identity management systems still have problems in terms of security, privacy, and system availability. In this chapter, we present an identity management architecture that addresses these problems. Our scheme relies on user-controlled identity agents. Identity agents realize fine-grained control over online identity disclosure by using a minimal-disclosure identity credential scheme and also improve users’ awareness over their credential usage via an identity-usage monitoring system that includes a real-time risk scoring mechanism. A proof-of-concept implementation is shown and evaluated in terms of security, user-centricity, and performance.

Download Full-text

Building Privacy into the Infrastructure: Towards a New Identity Management Architecture

SSRN Electronic Journal ◽

10.2139/ssrn.2740719 ◽

2016 ◽

Author(s):

A. Michael Froomkin

Keyword(s):

Identity Management ◽

Management Architecture

Download Full-text

uPort Open-Source Identity Management System: An Assessment of Self-Sovereign Identity and User-Centric Data Platform Built on Blockchain

2020 IEEE International Symposium on Systems Engineering (ISSE) ◽

10.1109/isse49799.2020.9272223 ◽

2020 ◽

Author(s):

Nitin Naik ◽

Paul Jenkins

Keyword(s):

Open Source ◽

Management System ◽

Identity Management ◽

Data Platform ◽

Identity Management System ◽

User Centric

Download Full-text

User-centric identity management: An oxymoron or the key to getting identity management right?

Information Polity ◽

10.3233/ip-2010-0193 ◽

2010 ◽

Vol 15 (4) ◽

pp. 291-297

Author(s):

Malcolm Crompton

Keyword(s):

Identity Management ◽

User Centric

Download Full-text

A Mobile-Based Attribute Aggregation Architecture for User-Centric Identity Management

Architectures and Protocols for Secure Information Technology Infrastructures - Advances in Information Security, Privacy, and Ethics ◽

10.4018/978-1-4666-4514-1.ch010 ◽

2014 ◽

pp. 266-287

Author(s):

Alexandre B. Augusto ◽

Manuel E. Correia

Keyword(s):

Identity Management ◽

Personal Health Records ◽

The Internet ◽

Digital Identity ◽

End User ◽

Massive Growth ◽

Private Data ◽

Real Value ◽

User Centric ◽

The Web

The massive growth of the Internet and its services is currently being sustained by the mercantilization of users’ identities and private data. Traditional services on the Web require the user to disclose many unnecessary sensitive identity attributes like bankcards, geographic position, or even personal health records in order to provide a service. In essence, the services are presented as free and constitute a means by which the user is mercantilized, often without realizing the real value of its data to the market. In this chapter the auhors describe OFELIA (Open Federated Environment for Leveraging of Identity and Authorization), a digital identity architecture designed from the ground up to be user centric. OFELIA is an identity/authorization versatile infrastructure that does not depend upon the massive aggregation of users’ identity attributes to offer a highly versatile set of identity services but relies instead on having those attributes distributed among and protected by several otherwise unrelated Attribute Authorities. Only the end user, with his smartphone, knows how to aggregate these scattered Attribute Authorities’ identity attributes back into some useful identifiable and authenticated entity identity that can then be used by Internet services in a secure and interoperable way.

Download Full-text

Taking Public Health Learning Global through Branding and Identity Management

Branding and Sustainable Competitive Advantage ◽

10.4018/978-1-61350-171-9.ch003 ◽

2012 ◽

pp. 24-45 ◽

Cited By ~ 1

Author(s):

Shalin Hai-Jew

Keyword(s):

Public Health ◽

Identity Management ◽

State University ◽

Global Public Health ◽

The Public ◽

Graduate Degrees ◽

Online Branding ◽

Kansas State University ◽

Potential Methods ◽

Definition Of

“Pathways to Public Health” involves undergraduate and graduate degrees offered fully online through Kansas State University (K-State) to both meet the needs of traditional-age learners and professionals in the public health field who will need formal credentialing. This curriculum offers learning with global implications and has a wide potential to benefit global learners. In light of this, this chapter explores potential methods for online branding and identity management for this course series as a central analytical aspect of the program’s development and launch. This chapter will address the following issues: an environmental scan of the global public health environment; the definition of the core identity; a branding strategy using the World Wide Web (WWW), Internet, and Web 2.0 affordances (to reach both internal and external “publics”); an initial risk assessment; legal considerations; work implications of the global branding; the engagement of students and graduates in the branding outreach, and the maintenance of this brand over time.

Download Full-text

User-Centric Identity, Trust and Privacy

Trust in E-Services ◽

10.4018/978-1-59904-207-7.ch012 ◽

2011 ◽

pp. 293-322

Author(s):

Jean-Marc Seigneur ◽

Christian Damsgaard Jensen

Keyword(s):

Identity Management ◽

Multiple Identities ◽

Computational Trust ◽

Trust Transfer ◽

User Centric ◽

Linked Evidence

This chapter introduces entification as a means of allowing the users of e-services to create and manage multiple pseudonyms in a decentralized way; thereby limiting the ability to link transactions and users, whilst mitigating attacks due to the ownership of multiple identities. The entification framework fills the gap between the identity and the computational trust/reputation layers. It is difficult to safely assess linked evidence about multiple virtual identities because there might be overcounting of overlapping trust pieces of evidence. The entification framework uses a new mechanism, called trust transfer, to mitigate this issue, and allows the users to trade privacy for trust. Such a framework is essential in a world where more and more e-services want to rely on user-centric identity management.

Download Full-text

Cyber-Identities and Social Life in Cyberspace

Handbook of Research on Social Software and Developing Community Ontologies ◽

10.4018/978-1-60566-208-4.ch003 ◽

2010 ◽

pp. 27-39 ◽

Cited By ~ 8

Author(s):

Eleni Berki ◽

Mikko Jäkälä

Keyword(s):

Social Life ◽

Virtual Communities ◽

Identity Management ◽

Virtual Community ◽

Social Boundaries ◽

Social Software ◽

Future Research ◽

Future Research Agenda ◽

Information And Communication ◽

Definition Of

Information and communication technology gradually transform virtual communities to active meeting places for sharing information and for supporting human actions, feelings and needs. In this chapter the authors examine the conceptual definition of virtual community as found in the traditional cyberliterature and extend it to accommodate latest cybertrends. Similar to the ways that previous social and mass media dissolved social boundaries related to time and space, cyber-communities and social software seem to also dissolve the boundaries of identity. This, in turn, questions the trust, privacy and confidentiality of interaction. The authors present a way of classifying and viewing self-presentation regarding cyber-identity management in virtual communities. It is based on the characteristics that cyber-surfers prefer to attribute to themselves and accordingly present themselves to others. In so doing, the authors coin the terms for five distinct phenomena, namely nonymity, anonymity, eponymity, pseudonymity and polynymity. They subsequently compare and contrast these terms, summarising information from their investigation, and outlining emerging questions and issues for a future research agenda.

Download Full-text