1 / 5

The Identity Provider Selection WG

The Identity Provider Selection WG. How to solve the evolution from 3 to 4 authentication actors. The Traditional Authentication Tryptic. Identity Provider. Relying Party. A strong relationship exists between one RP and one IdP The RP adresses one IdP The user has few IdPs.

mercury
Télécharger la présentation

The Identity Provider Selection WG

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. The Identity Provider Selection WG How to solve the evolution from 3 to 4 authentication actors

  2. The Traditional Authentication Tryptic Identity Provider Relying Party • A strong relationship exists between one RP and one IdP • The RP adresses one IdP • The user has few IdPs

  3. The Actual Authentication Tryptic: the trends Identity Providers Relying Party • But the RP sees more and more Identity Providers to address… • And has to manage an increasing diversity of IdPs and their respective protocols…  The selection of the IdP for a user becomes crucial

  4. The Next Authentication Quatuor Relying Party Identity Provider ISA* • RP want to address many IdPs to increase their audience • The ISA is able to reconcile the 3 actors and their respective expectations * ISA: Identity Provider Selection Agent

  5. The IdP Selection WorkGroup Aims at Defining: • Possibility for the RP to delegate the selection of the user's IDP to an ISA and express some criteria to be considered for that selection process. • Discovery of the user's preferred IDP(s) by ISA. • Possibility for the ISA to obtain user's IDP(s) capabilities as well as other data (metadata). • GUI and UX guidelines for SP and ISA.

More Related