To Support Customers in Easily and Affordably Obtaining the Latest Peer-Reviewed Research, Receive a 20% Discount on ALL Publications and Free Worldwide Shipping on Orders Over US$ 295
Additionally, Enjoy an Additional 5% Pre-Publication Discount on all Forthcoming Reference BooksBrowse Titles

Special Offers
- Receive Complimentary Electronic Access to the First, Second, Third, and Fourth Edition of the
  Encyclopedia of Information Science and Technology with the Purchase of the Fifth Edition
  For a limited time, receive the complimentary e-books for the first, second, third, and fourth editions with the purchase of the Encyclopedia of Information Science and Technology, Fifth Edition e-book*. Offer is only valid when purchasing the fifth edition’s hardcover + e-book or e-book only option directly through IGI Global’s Online Bookstore (www.igi-global.com/books) and is not intended for use by book distributors or wholesalers. Contact Customer Service, cust@igi-global.com, for details. Offer expires July 1, 2021.
  Learn More
  Receive a 50% Discount on All IGI Global Major Reference Works in Electronic Format through GOBI
  Until December 31, 2020, you can receive a 50% discount on all Major Reference Works (i.e. encyclopedias, handbooks of research, and research anthologies) in electronic format ordered on the IGI Global InfoSci platform through GOBI. This discount is only applicable on e-books ordered on GOBI through IGI Global's InfoSci platform and e-books are available for PDF and/or ePUB download, unlimited simultaneous users, and no DRM.
  Browse Titles
- IGI Global is Now Offering a 5% Pre-Publication Discount on
  All Reference Books Ordered Through IGI Global’s Online Bookstore*
  To support customers with accessing the latest research, IGI Global is offering a 5% pre-publication discount on all hardcover, softcover, e-books, and hardcover + e-books titles.
  *5% discount offer is eligible on hardcover, softcover, e-books, and hardcover + e-books titles and is automatically applied directly to the shopping cart. Discount offer only valid on purchases made directly through IGI Global’s Online Bookstore and offer expires 30 days after the publication’s release. This automatic discount is not intended for use by book distributors or wholesalers.
  Browse Titles
  Receive Free Shipping on Orders Over US$ 295.00
  Free shipping will be automatically applied to shopping cart orders over US$ 295.00 or more before tax, which can include a combination of print and non-shippable products (i.e. e-books, e-journals, and articles/chapters). It is only available when you order directly through IGI Global’s Online Bookstore and is only valid on standard U.S. and international shipping. There will be additional charges for express shipping and limitations may apply.
  Browse Titles
- Receive a 50% Discount on All Major Reference Works in Electronic Format
  IGI Global is offering a 50% discount on their Major Reference Works when customers order directly through the IGI Global Online Bookstore. This discount includes IGI Global's Handbooks of Research, Research Anthologies, and Encyclopedias, which are ideal for institutions looking for all-encompassing reference sources.Valid until December 31, 2020.
  View Titles
- Offering a 50% Discount on All Individual E-Journal 2021 Subscriptions
  To ensure that institutions can affordably acquire critical content, IGI Global is offering a 50% discount on all individual e-journal 2021 subscriptions through IGI Global’s Online Bookstore and preferred subscription agencies, including EBSCO Subscription Services, LM Information Delivery, Otto Harrassowitz, and more. Valid until December 31, 2020.
  Browse Journals
- Must-Have Resource! InfoSci-Knowledge Solutions Databases
  IGI Global is now offering a new collection of InfoSci-Knowledge Solutions databases, which allow institutions to affordably acquire a diverse, rich collection of peer-reviewed e-books and scholarly e-journals. Ideal for subject librarians, these databases span major subject areas including business, computer science, education, and social sciences.
  Learn More
- Create a Free IGI Global Library Account to Receive an Additional 5% Discount on All Purchases
  Exclusive benefits include one-click shopping, flexible payment options, free COUNTER 5 reports and MARC records, and a 5% discount on single all titles, as well as the award-winning InfoSci^®-Databases.
  Sign Up Now!
Books
Journals
- - Journals
  - Open Access Journals
InfoSci^®-Databases
Articles/Chapters
Publish with Us
Resources
- - Instructors
  - Course Adoption
  - Teaching Cases
  - K-12 Online Learning Collection
  - Authors and Editors
  - eEditorial Discovery^® System
  - Peer Review Process
  - Ethics and Malpractice
  - COPE Membership
  - Fair Use Policy
  - Open Access Publishing
  - Editorial Services
  - FAQ
Catalogs
About Us
Newsroom

Privacy in Identity and Access Management Systems

Andreas Pashalidis (Katholieke Universiteit Leuven, Belgium) and Chris J. Mitchell (Royal Holloway, University of London, UK)

Source Title: Digital Identity and Access Management: Technologies and Frameworks

DOI: 10.4018/978-1-61350-498-7.ch016

OnDemand PDF Download:

Available

$37.50

Current Special Offers

No Current Special Offers

Abstract

This chapter surveys the approaches for addressing privacy in open identity and access management systems that have been taken by a number of current systems. The chapter begins by listing important privacy requirements and discusses how three systems that are being incrementally deployed in the Internet, namely SAML 2.0, CardSpace, and eID, address these requirements. Subsequently, the findings of recent European research projects in the area of privacy for I&AM systems are discussed. Finally, the approach taken to address the identified privacy requirements by ongoing projects is described at a high level. The overall goal of this chapter is to provide the reader with an overview of the diversity of privacy issues and techniques in the context of I&AM.

Chapter Preview

Top

Privacy Requirements For I&Am Systems

The need for user privacy in open I&AM system arises from the need to reduce the risks of unnecessary or otherwise unwanted disclosure of personal information. In recent years, legislation in Europe, both at EU and at national levels, has become an important driver for the introduction of privacy and transparency enhancing techniques within I&AM systems. This is because many of these laws require businesses to follow the principles of data minimization, data protection, and, in some cases, data retention. The data minimization principle requires that personal data is not disclosed to a transacting partner unless that information is strictly needed in order to carry out the transaction. In order to establish such strict necessity, the purpose of disclosure must be specified for each data item to be disclosed. Data protection and retention require that users have access to, and can update, their personal information when it is stored at an organization, but also that organizations have to keep records in a way that facilitates effective investigation of past transactions. In this context, ‘personal data’ is any data that could potentially lead to the identification of an individual, even if this is only possible in combination with additional information.

The following more concrete requirements arise from the requirement to minimize the personal data that is transferred between parties. We say that a privacy-preserving I&AM system should enable its users to:

•
selectively disclose personal data to organizations and other users;
•
create multiple identities or pseudonyms;
•
attach different pieces of personal information to different identities;
•
review data disclosed in the past;
•
maintain different identities towards different organizations;
•
formulate ‘sticky’ policies that follow personal data and that govern under which conditions the data may be disclosed and used;
•
minimize the amount of trust users are required to place in third parties and infrastructural components in general; and
•
provide explicit consent for sharing personal information, and enable users to revoke previously given consent.

Complete Chapter List

Search this Book:

Reset

MLA

APA

Chicago

Export Reference

Privacy in Identity and Access Management Systems

Abstract

Privacy Requirements For I&Am Systems

Complete Chapter List