A technical report has recently been published by two HP Labs colleagues (Jun Li and Alan Karp) on “Zebra Copy: A Reference Implementation of Federated Access Management”. It might be of interest to the Identity Management community.
Jun and Alan discuss some of the issues involved in using Federated Identity Management in Service Oriented Architecture (SOA) contexts and argue that a better approach would be based on a “Federated Access Management”.
The abstract of their report follows:
“Federated Identity Management (FIdM) is being applied to Services Oriented Architecture (SOA) deployments that cross enterprise boundaries. These systems have been found to be inflexible, unscalable, and difficult to use, manage, and upgrade. We contend that a major reason for these difficulties is that FIdM solves the wrong problem. Specifically, FIdM says nothing about federating access policies. What is needed instead of FIdM is a system for Federated Access Management (FAccM). This report demonstrates the benefits of FAccM over FIdM for SOA deployments and includes a step-by-step explanation of code needed to deploy, manage, and use a sample service.”
No comments:
Post a Comment