Challenges in federated identity management in the aviation domain

About Federated Identity Management (FIM) • FIM — provides cross-organizational, role-based access controls — transformation of local user credentials into standards-based security token that a remote system can trust • Exchange some token to establish user identity on a remote system — Can use attributes in token to determine user roles and privileges • How can identity federation be useful? — Don´t have to replicate or synchronize local user repositories — Users need to remember/maintain fewer logon credentials — Dynamic access improves efficiency and security • 2 Parts — Business agreement and technical implementation — Federated identity ensures that a user´s or system´s trusted identity provides a secure means of identifying all entities across systems and enterprises regardless of where the data flows. It also provides and audit trail on what people and systems accessed the data.