To Federate or Not To Federate: A Reputation-Based Mechanism to Dynamize Cooperation in Identity Management Articles uri icon

publication date

  • April 2014

start page

  • 1769

end page

  • 1786

issue

  • 3

volume

  • 75

international standard serial number (ISSN)

  • 0929-6212

electronic international standard serial number (EISSN)

  • 1572-834X

abstract

  • Identity Management systems cannot be centralized anymore. Nowadays, users have multiple accounts, profiles and personal data distributed throughout the web and hosted by different providers. However, the online world is currently divided into identity silos forcing users to deal with repetitive authentication and registration processes and hindering a faster development of large scale e-business. Federation has been proposed as a technology to bridge different trust domains, allowing user identity information to be shared in order to improve usability. But further research is required to shift from the current static model, where manual bilateral agreements must be pre-configured to enable cooperation between unknown parties, to a more dynamic one, where trust relationships are established on demand in a fully automated fashion. This paper presents IdMRep, the first completely decentralized reputation-based mechanism which makes dynamic federation a reality. Initial experiments demonstrate its accuracy as well as an assumable overhead in scenarios with and without malicious nodes.

keywords

  • Identity managementT
    rust and reputation management
    Identity federation
    Cooperative systems