sidebar

EntArch

sidebar

Digital Identity

Tags:

Authentication and authorization :: Authorization policy representation and management :: Confidentiality :: Directories and Identity Management :: Identity provisioning :: Integrity and non-repudiation :: Managing Trust :: OpenID

Digital identity can be discussed in the context of a set of concepts that provide a framework for addressing the important issues involved in developing an organizational identity management strategy.

The following sections provide reference to information about each area in the framework. At first, these are mostly reference to standards documents and articles about standards in each area. I hope to add other references about the general problem areas as well in the future.

Phil Windley

Resources


e-signatures for finserv - management and mechanisms

In an online world it is tough to ensure the security and integrity of electronic signatures. For different scenarios something stronger than username and password is required, since the agreements and transaction consents may high value and high risk to both institution and customer.
- Digital Identity - Integrity and non-repudiation - Authentication and authorization -
10

Java XML Digital Signatures

Extensible Markup Language (XML) technology is now an integral part of web-based business applications. These applications require a fundamentally sound and secure infrastructure to meet the security requirements of confidentiality, endpoint authentication, message integrity, and nonrepudiation. XML signature, XML encryption, XML Key Management Specification (XKMS), Security Assertion Markup Language (SAML), and XML Access Control Markup Language (XACML) are the XML security standards that define XML vocabularies and processing rules to meet these security requirements.
- Digital Identity - Authentication and authorization -
8

Intro to Identity Management Risk Metrics

In this issue of the IEEE Security & Privacy Journal, I have an article on Introduction to Identity Management Risk Metrics it is in the "Build Security In" column that I co-edit with John Steven. The article looks at ways to use metrics to measure and monitor identity's distribution, quality, affiliation, and governance in the enterprise. There are specific tips for identity and security architects on how to locate and use metrics in their identity management processes and systems.
- Digital Identity -
8

A Comprehensive Identity Management Ecosystem and Reference Architecture

To address customer demand for access management capabilities that extend beyond traditional Web-based applications, Oracle has announced the Oracle Extended Identity Management Ecosystem and Reference Architecture. Furthering its support for customers with heterogeneous IT environments, Oracle has teamed with global Independent Software Vendors (ISVs) to deliver a comprehensive blueprint for enterprise security capabilities that span strong authentication, network, legacy and physical access applications. Oracle Identity Management’s support of industry standards such as WS*, XACML, SAML and SPML enable customers and partners to more easily integrate applications with the framework.
- Digital Identity - SAML -
8

Document-level security using DB2 9 pureXML and LBAC

DB2 9 pureXML provides native XML storage and retrieval. In addition, DB2 9 provides a new security protection mechanism called Label Based Access Control (LBAC). Combining these two features can produce a Native XML data store that can protect XML documents at the document level by labeling each document row with an LBAC security label, and assigning users their appropriate access level.
- XML - Digital Identity - Identity provisioning -
8

SAML V2.0 Basics

Eve Maler, May 2005
- Digital Identity -
2

Liberty Alliance Releases Enhanced Framework For Identity-Based Web Services

The Liberty Alliance announced the second-generation version of WSF 2.0, a framework for identity-based Web services. The framework now supports SAML 2.0 and defines how SAML 2.0 can be used to communicate identity information among identity-based Web services.
- Digital Identity - SAML -
2

@gotze