Abstract
User privacy has become a hot topic within the identity management arena. However, the field still lacks comprehensive frameworks even though most identity management solutions include built-in privacy features. This study explores how best to set up a single control point for users to manage privacy policies for their personal information, which may be distributed (scattered) across a set of network-centric identity management systems. Our goal is a user-centric approach to privacy management. As the number of schemas and frameworks is very high, we chose to validate our findings with a prototype based on the Liberty Alliance architecture and protocols.
Chapter PDF
Similar content being viewed by others
References
Bonneau, J., Preibusch, S.: The Privacy Jungle: On the Market for Data Protection in Social Networks. In: the 8th Workshop on the Economics of Information Security, WEIS 2009 (2009)
Liberty Alliance Project, http://www.projectliberty.org
Kantara Initiative, http://www.kantarainitiative.org
Cantor, S., et al.: Assertions and protocols for the OASIS Security Assertion Markup Language (SAML) Version 2.0. OASIS Standard. OASIS Security Services TC (2005)
Goodner, M., Nadalin, A. (eds.): Web Services Federation Language (WS-Federation) Version 1.2. OASIS Standard. OASIS Web Services Federation (WSFED) TC (2009)
Kainulainen, J., Ranganathan, A. (eds.): Liberty ID-WSF Data Services Template Specification, Version 2.1. Liberty Alliance Project (2006)
Bhargav-Spantzely, A., Camenisch, J., Gross, T., Sommer, D.: User centricity: A taxonomy and open issues. In: The Second ACM Workshop on Digital Identity Management (DIM 2006), pp. 493–527. IOS Press, Amsterdam (2007)
OpenID Web site, http://openid.net/
Light-Weight Identity Web site, http://lid.netmesh.org/wiki/Main_Page
Jones, M., McIntosh, M. (eds.): Identity Metasystem Interoperability Version 1.0. OASIS Standard. Identity Metasystem Interoperability (IMI) TC (2009)
Information Card Foundation, http://informationcard.net
Higgins, http://www.eclipse.org/higgins/
Windows Cardspace, http://www.microsoft.com/windows/products/winfamily/cardspace
Alrodhan, W.A., Mitchell, C.J.: Addressing privacy issues in Cardspace. In: The Third International Symposium on Information Assurance and Security, pp. 285–291. IEEE Computer Society, Washington (2007)
Moses, T. (ed.): Extensible Access Control Markup Language (XACML), Version 2.0. OASIS Standard. OASIS eXtensible Access Control Markup Language (XACML) TC (2005)
Aarts, R., Madsen, P. (eds.): Liberty Id-WSF Interaction Service Specification, Version 2.0-errata-v1.0. Liberty Alliance Project (2007)
OpenSSO, https://opensso.dev.java.net/18
Sun’s XACML Implementation, http://sunxacml.sourceforge.net/
Madsen, P. (ed.): Liberty IGF Privacy Constraints Specification, Version 1.0. Liberty Alliance Project (2009)
Leenes, R., Schallaböck, J., Hansen, M.: PRIME White Paper, Version 3. PRIME Project (2008)
Hewlett-Packard Development Company: HP Virtual Identity and Profile Broker. Hewlett-Packard (2007)
Google Dashboard, http://www.google.com/dashboard/
Article 29 of the Data Protection Working Party, The Future of Privacy - Joint contribution to the Consultation of the European Commission on the legal framework for the fundamental right to protection of personal data, 02356/09/EN (December 01, 2009)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2010 IFIP
About this paper
Cite this paper
del Alamo, J.M., Monjas, M.A., Yelmo, J.C., Miguel, B.S., Trapero, R., Fernandez, A.M. (2010). Self-service Privacy: User-Centric Privacy for Network-Centric Identity. In: Nishigaki, M., Jøsang, A., Murayama, Y., Marsh, S. (eds) Trust Management IV. IFIPTM 2010. IFIP Advances in Information and Communication Technology, vol 321. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-13446-3_2
Download citation
DOI: https://doi.org/10.1007/978-3-642-13446-3_2
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-13445-6
Online ISBN: 978-3-642-13446-3
eBook Packages: Computer ScienceComputer Science (R0)