Journal of the Institute of Electronics and Information Engineers (전자공학회논문지)

The Institute of Electronics and Information Engineers (대한전자공학회)
권호 표지
DOI QR코드

DOI QR Code

A Federation Policy Development Method for Generating Domestic ID Federation

국내 ID 연합 생성을 위한 연합 정책 개발 방안

  • Wang, Gicheol (Aerospace ICT Research Department, Electronics and Telecommunications Research Institute)
  • 왕기철 (한국전자통신연구원 위성항공ICT연구부)
  • Received : 2015.08.06
  • Accepted : 2016.07.26
  • Published : 2016.08.25
Download PDF
⟨ Previous Next ⟩

Abstract

ID federation provides users various benefits such as employing multiple services with only single authentication and mitigating management burden of service providers that individually preserve account information of users. To keep up with this international trend, efforts for making the domestic ID federation is ongoing to provide users in the domestic research and education community seamless network connectivity and to support tetherless extension of research environment. In this paper, we analyze the foreign ID federation policies and compare them as a underlying work for making the domestic ID federation. Besides, we suggest some contents that should be included in the domestic ID federation policy. To activate the coming domestic ID federation, we need to first have a well-made federation policy. Then, we need to aggressively promote the domestic ID federation, develop various and fascinating services, and build a convenient support system for technology and service.

ID 연합은 사용자에게 다양한 서비스를 한번의 인증만으로 제공하고 서비스 제공자들에게는 사용자 정보의 개별적 관리 부담을 경감시켜주는 이점들을 제공한다. 이에 따라 국내에서도 연구 및 교육 공동체의 사용자들에게 솔기 없는 네트워크 연결성을 제공하고 제한 없는 연구 환경의 확장을 지원하기 위해 국내 ID 연합의 생성이 진행되고 있다. 본 논문에서는 국내 ID 연합 생성을 위한 기본 작업으로서 국외 ID 연합 정책들을 분석하고 비교한다. 또한, 국내의 환경을 고려하여 국내 ID 연합 정책에 포함되어야 할 내용들을 자세히 제시한다. 향후에 국내 ID 연합의 활성화를 위해서는 잘 만들어진 연합정책은 물론 적극적인 홍보, 다양한 서비스 발굴, 편리한 기술 및 서비스 지원체계 수립이 병행되어야 한다.

Keywords

References

  1. J. Kallela, "Federated Identity Management Solutions," Technical Report, TKK T-110.5190, 2008, www.cse.tkk.fi/en/publications/B/1/papers/Kallela_final.pdf
  2. Y. Cho, S. Jin, P. Moon, and ,"Internet ID Management System based on ID Federation: e-IDMS," The Institute of Electronics Engineers of Korea - Telecommunications, vol. 47, no. 7, pp. 104-114, Jul. 2006.
  3. E. Birrell and F. B. Schneider, "Federated Identity Management Systems: A Privacy-Based Characterization," IEEE Security & Privacy, 11(5), pp. 36-48, Sep.-Oct. 2013.
  4. M. Vermezovic et al., "Identity Federation Policy template document," Ver. 0.3, Dec. 10, 2012.
  5. Z. Yoash, Y. Brauch, and A. Aliper, "IIF(IUCC Identity Federation): Identity Federation Policy," Ver 1.2, Sep. 21, 2014.
  6. S. Jaque and A. Lara, "COFRe: Comunidad Federada REUNA: Identity Federation Rules", Ver. 2.1, Oct. 10, 2013.
  7. S. Jaque and A. Lara, "COFRe: Comunidad Federada REUNA: WebSSO Identity Provider Organizations Appendix", Ver 2.0, Dec. 17, 2012.
  8. S. Jaque and A. Lara, "COFRe: Comunidad Federada REUNA: WebSSO Services Provider Appendix", Ver 2.0, Dec. 17, 2012.
  9. D. Hernan and S. Garcia, "Columbian Federation of Identity for Research and Education (ColFIRE): Identity Federation Policy," Ver. 1.2, Aug. 29, 2014.
  10. A. Martinez, "MATE Federation Model for Access to Technology and Education: Identity Federation Policy," Ver 0.0, Jul. 15, 2014.
  11. A. Martinez, "MATE Federation Model for Access to Technology and Education: Federation Operator Practice: Metadata Registration Practice Statement," Ver 0.0, Sep. 2, 2014.
  12. Federaton Policy Best Practice, https://wiki.refeds.org/display/FBP/Federation+Policy+Best+Practice
  13. L. Tekeni, K. Thomson, R. A. Botha, "Concerns Regarding Service Authorization by IP Address Using eduroam," in Proc. of Information Security for South Africa (ISSA 2014), pp. 1-6, Johannesburg, South Africa, Aug. 2014.

Cited by

  1. A Study on the Establishment of Integrated Authentication System for National R&D Research Outcomes Registration vol.21, pp.9, 2016, https://doi.org/10.9728/dcs.2020.21.9.1725