Identity Federation Using Multidomain Authentication in PKI

• Main Author: Rasheed, Mohsin
• Format: Others
• Language: English
• Published: KTH, Skolan för informations- och kommunikationsteknik (ICT) 2014
• Subjects: Computer and Information Sciences; Data- och informationsvetenskap
• Online Access: http://urn.kb.se/resolve?urn=urn:nbn:se:kth:diva-177366

Today’s enterprises are facing some basic business challenges for which identity federation solutions are uniquely suited. Most online applications and ecommerce incorporate partner integration that provides to the user secure access to the partner’s site without needing to sign-on again. Additionally, organizations must provide these SSO services without having to add large numbers of users to an enterprise directory or having to manage those identities over time. A trust mechanism must exist in order to allow users who are authenticated in one domain to be trusted in a another domain. Finally, these technical challenges must be managed within the constraints of existing business and legal agreements that define thresholds for acceptable use, risk and indemnification. [14] The purpose of this thesis is to model a framework and to suggest the requirements needed of the Public Key Infrastructure for the multiple domain interoperability. This model describes the relationship between certificate authorities for establishing the trust mechanism through the techniques which are described in details of the design model description.