Skip to Main content Skip to Navigation
Conference papers

Géant-TrustBroker: Dynamic, Scalable Management of SAML-Based Inter-federation Authentication and Authorization Infrastructures

Daniela Pöhn 1 Stefan Metzger 1 Wolfgang Hommel 1
1 MNM-Team - Munich Network Management Team
TUM - Technical University of Munich, LMU - Ludwig-Maximilians University [Munich]
Abstract : We present the concept and design of Géant-TrustBroker, a new service to facilitate multi-tenant ICT service user authentication and authorization (AuthNZ) management in large-scale eScience infrastructures that is researched and implemented by the pan-European research and education network, Géant. Géant-TrustBroker complements eduGAIN, a successful umbrella inter-federation created on top of national higher education federations in more than 20 countries world-wide. Motivated by experiences with real-world limits of eduGAIN, Géant-TrustBroker’s primary goal is to enable a dynamic and highly scalable management of identity federations and inter-federations. Instead of eduGAIN’s federation-of-federations approach, Géant-TrustBroker enables the on-demand establishment and life-cycle management of dynamic virtual federations and achieves a high level of automation to reduce the manual workload for the participating organizations, which so far is one of the most significant obstacles for the adoption of Federated Identity Management, e.g., based on the SAML standard. We contrast Géant-TrustBroker with other state-of-the-art approaches, present its workflows and internal mode of operations and give an outlook to how eduGAIN can be used in combination with Géant-TrustBroker to solve current AuthNZ problems in international research projects and communities.
Document type :
Conference papers
Complete list of metadata

Cited literature [11 references]  Display  Hide  Download

https://hal.inria.fr/hal-01370377
Contributor : Hal Ifip <>
Submitted on : Thursday, September 22, 2016 - 2:27:47 PM
Last modification on : Thursday, September 22, 2016 - 3:10:23 PM

File

978-3-642-55415-5_25_Chapter.p...
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Daniela Pöhn, Stefan Metzger, Wolfgang Hommel. Géant-TrustBroker: Dynamic, Scalable Management of SAML-Based Inter-federation Authentication and Authorization Infrastructures. 29th IFIP International Information Security Conference (SEC), Jun 2014, Marrakech, Morocco. pp.307-320, ⟨10.1007/978-3-642-55415-5_25⟩. ⟨hal-01370377⟩

Share

Metrics

Record views

186

Files downloads

242