Browsing by Author "Malinen, Jussi"
Now showing 1 - 1 of 1
- Results Per Page
- Sort Options
- Identity information transfer and federation on Ubilogin Authentication Server
School of Science | Master's thesis(2010) Malinen, JussiIncreasing number of user accounts and segmentation of user identity information into separate identity silos is becoming problematic both for users and service providers. Identity federation is a way to mitigate this problem, by enabling single sign-on between services and identity information sharing between identity silos. In this thesis we examine four specific identity federation scenarios and present a number of use cases for each and we lay out an evaluation criteria for the use cases. Then Ubilogin, a federated single sign-on system by Ubisecure Solutions, is evaluated against the requirements of each use case and a number of possible models for improving the system are analyzed. Especially pseudonym support and federation partner discovery are discussed and changes recommended. Also two different models for handling the external federation links, direct federation and central IDP proxy, are analyzed and central proxy is found to be a useful model in many situations. The changes were implemented by a group including the author and the new version of Ubilogin is evaluated again against the use case criteria. Also a new tool called Federation Manager is introduced and is found to be useful in simplifying handling of the certain use cases.