The autonomic management of federated authorization infrastructures (federations) is seen as a means for improving the monitoring and use of a service provider's resources. However, federations are comprised of independent management domains with varying scopes of control and data ownership. The focus of this paper is on the autonomic management of federated identity providers by service providers located in other domains, when the identity providers have been diagnosed as the source of abuse. In particular, we describe how an autonomic controller, external to the domain of the identity provider, exercises control over the issuing of privilege attributes. The paper presents a conceptual design and implementation of an effector for an identity provider that is capable of enabling cross-domain autonomic management. The implementation of an effector for a SimpleSAMLphp identity provider is evaluated by demonstrating how an autonomic controller, together with the effector, is capable of responding to malicious abuse. © 2013 IFIP International Federation for Information Processing.
CITATION STYLE
Bailey, C., Chadwick, D. W., De Lemos, R., & Siu, K. W. S. (2013). Enabling the autonomic management of federated identity providers. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 7943 LNCS, pp. 100–111). https://doi.org/10.1007/978-3-642-38998-6_14
Mendeley helps you to discover research relevant for your work.