%0 Journal Article %1 10.1109/ICCGI.2007.5 %A Delessy, Nelly %A Fernandez, Eduardo B. %A Larrondo-Petrie, Maria M. %C Los Alamitos, CA, USA %D 2007 %I IEEE Computer Society %J Computing in the Global Information Technology, International Multi-Conference on %K design identity language management patterns rhiz08 rhizome %P 31 %R http://doi.ieeecomputersociety.org/10.1109/ICCGI.2007.5 %T A Pattern Language for Identity Management %V 0 %X The development of software has recently changed significantly. With the ubiquity of computing, users may need to access a wider range of applications, which may not know them in advance. Thus there is a need for dynamic trust establishment and identity exchange protocols and whatever security model is used must support these aspects. As a way to make these concepts more precise and concrete, we define architectural patterns for identity management. These patterns can then be used directly in the software development cycle, as proposed by different methodologies. The Identity Provider pattern centralizes the administration of a security domain?s subjects. The Circle of Trust pattern represents a federation of service providers that share trust relationships. The Identity Federation pattern allows to federate multiple identities across multiple organizations under a common identity. This pattern relies on the SAML Assertion pattern, which provides a unifying format for communicating identity information between different security domains.

@article{10.1109/ICCGI.2007.5, abstract = {The development of software has recently changed significantly. With the ubiquity of computing, users may need to access a wider range of applications, which may not know them in advance. Thus there is a need for dynamic trust establishment and identity exchange protocols and whatever security model is used must support these aspects. As a way to make these concepts more precise and concrete, we define architectural patterns for identity management. These patterns can then be used directly in the software development cycle, as proposed by different methodologies. The Identity Provider pattern centralizes the administration of a security domain?s subjects. The Circle of Trust pattern represents a federation of service providers that share trust relationships. The Identity Federation pattern allows to federate multiple identities across multiple organizations under a common identity. This pattern relies on the SAML Assertion pattern, which provides a unifying format for communicating identity information between different security domains.}, added-at = {2009-02-04T18:10:58.000+0100}, address = {Los Alamitos, CA, USA}, author = {Delessy, Nelly and Fernandez, Eduardo B. and Larrondo-Petrie, Maria M.}, biburl = {https://www.bibsonomy.org/bibtex/2f687120acf070bb20cc5b2b7ed2eb648/stevenw}, doi = {http://doi.ieeecomputersociety.org/10.1109/ICCGI.2007.5}, interhash = {a77a18acd806e74eff28563b86308d39}, intrahash = {f687120acf070bb20cc5b2b7ed2eb648}, journal = {Computing in the Global Information Technology, International Multi-Conference on}, keywords = {design identity language management patterns rhiz08 rhizome}, pages = 31, publisher = {IEEE Computer Society}, timestamp = {2009-02-04T18:10:58.000+0100}, title = {A Pattern Language for Identity Management}, volume = 0, year = 2007 }