Federated Authentication and Authorisation in the Social Science Domain

Author

Watt, John ; Sinnott, Richard O. ; Inman, George ; Chadwick, David

Author_Institution

Nat. e-Sci. Centre, Univ. of Glasgow, Glasgow, UK

fYear

2011

fDate

22-26 Aug. 2011

Firstpage

541

Lastpage

548

Abstract

The use of Shibboleth as a mechanism for implementing federated authentication is commonplace in many countries. The ability of Shibboleth to transmit extra information about a user, including licenses, roles and other attributes, is not exploited for many reasons, mainly because institional Identity Providers (IdPs) are not maintainable sources of fine grained authorisation information. The JlSC-funded Shintau project has produced an extension to the Shibboleth profile which allows a user to link information from more than one IdP together utilising a custom Linking Service (LS). This paper describes both the application and independent evaluation of this software by the National e-Science Centre (NeSC) at the University of Glasgow within the context of the ESRC-funded Data Management through e-Social Science (DAMES) project.

Keywords

authorisation; social sciences computing; ESRC-funded data management; Shibboleth profile; e-social science project; federated authentication; fine grained authorisation information; institional identity providers; linking service; social science domain; Authentication; Authorization; Educational institutions; Joining processes; Licenses; Portals;

fLanguage

English

Publisher

ieee

Conference_Titel

Availability, Reliability and Security (ARES), 2011 Sixth International Conference on

Conference_Location

Vienna

Print_ISBN

978-1-4577-0979-1

Electronic_ISBN

978-0-7695-4485-4

Type

conf

DOI

10.1109/ARES.2011.83

Filename

6045974