I (and two colleagues of mine) have just published a HP Labs Technical Report providing more details about our vision of “Identity Assurance”, in particular in Federated Identity Management contexts (see my previous related post: http://h20325.www2.hp.com/blogs/mcm/archive/2007/03/27/2876.html) and related technologies.
Given the current status of Federated Identity Management solutions, we believe that more work is required to convey trust among the stakeholders (i.e. IdPs, SPs and end-users) both by communicating the nature of the assurance framework and that risks are successfully being mitigated. We aim at improving assurance when managing identities also by automating key enforcement points. Here is the link to our technical report: http://www.hpl.hp.com/techreports/2007/HPL-2007-47.html
Enjoy and feel free to comment …
No comments:
Post a Comment