e-ID in the Cloud with SCIM

Bojan Suzic

Research output: Book/ReportCommissioned reportResearch

Abstract

Cloud computing actively transforms the way information technology products and services are designed and delivered. Due to the wide range of benefits introduced with the cloud paradigm, not limited only to domains of increased efficiency, flexibility and scalability, cloud computing has been identified as one of the key technologies and innovation drivers in the industry. Numerous national initiatives and actions confirm the perception of cloud computing as important technology from the standpoint of public authorities, too. Greater flexibility and expanded deployment options introduced with the cloud however open up new use cases and new challenges. One such challenge is the integration of heterogenic cloud services in the organizational identity management processes and infrastructure.
This report provides a general overview of the topic and provides an analysis of the approach introduced with SCIM – the System for Cross-domain Identity Management. Although identity provisioning has been addressed with the SPML standard, its high complexity, limited flexibility and lack of the consideration for cloud cases were identified as main reasons of its low adoption and ceased development. SCIM, which is currently proposed as 2.0 internet draft under the IETF standards track, tries to address identity provisioning in the cloud from a minimalistic and flexible perspective. This report examines the problem of identity provisioning in the cloud, establishes the problem and terminology, and considers prominent use cases. It additionally focuses on identity provisioning considering perspective of eID. The report further deals with the potential integration of SCIM and eID by positioning it in the frame of the Austrian eID solution and STORK-based cross-border context, discussing possible challenges, solutions and further work.
LanguageEnglish
PublisherZentrum für sichere Informationstechnologie - Austria
Number of pages41
StatusPublished - 2015

Keywords

    ASJC Scopus subject areas

    • Information Systems
    • Computer Networks and Communications

    Cite this

    Suzic, B. (2015). e-ID in the Cloud with SCIM. Zentrum für sichere Informationstechnologie - Austria.

    e-ID in the Cloud with SCIM. / Suzic, Bojan.

    Zentrum für sichere Informationstechnologie - Austria, 2015. 41 p.

    Research output: Book/ReportCommissioned reportResearch

    Suzic, B 2015, e-ID in the Cloud with SCIM. Zentrum für sichere Informationstechnologie - Austria.
    Suzic B. e-ID in the Cloud with SCIM. Zentrum für sichere Informationstechnologie - Austria, 2015. 41 p.
    Suzic, Bojan. / e-ID in the Cloud with SCIM. Zentrum für sichere Informationstechnologie - Austria, 2015. 41 p.
    @book{557b997608b34dfeb0842d52404bf9db,
    title = "e-ID in the Cloud with SCIM",
    abstract = "Cloud computing actively transforms the way information technology products and services are designed and delivered. Due to the wide range of benefits introduced with the cloud paradigm, not limited only to domains of increased efficiency, flexibility and scalability, cloud computing has been identified as one of the key technologies and innovation drivers in the industry. Numerous national initiatives and actions confirm the perception of cloud computing as important technology from the standpoint of public authorities, too. Greater flexibility and expanded deployment options introduced with the cloud however open up new use cases and new challenges. One such challenge is the integration of heterogenic cloud services in the organizational identity management processes and infrastructure.This report provides a general overview of the topic and provides an analysis of the approach introduced with SCIM – the System for Cross-domain Identity Management. Although identity provisioning has been addressed with the SPML standard, its high complexity, limited flexibility and lack of the consideration for cloud cases were identified as main reasons of its low adoption and ceased development. SCIM, which is currently proposed as 2.0 internet draft under the IETF standards track, tries to address identity provisioning in the cloud from a minimalistic and flexible perspective. This report examines the problem of identity provisioning in the cloud, establishes the problem and terminology, and considers prominent use cases. It additionally focuses on identity provisioning considering perspective of eID. The report further deals with the potential integration of SCIM and eID by positioning it in the frame of the Austrian eID solution and STORK-based cross-border context, discussing possible challenges, solutions and further work.",
    keywords = "eid, scim, uma, authentication, osiam, cloud, assurance, privacy, integration, authorization",
    author = "Bojan Suzic",
    year = "2015",
    language = "English",
    publisher = "Zentrum f{\"u}r sichere Informationstechnologie - Austria",
    address = "Austria",

    }

    TY - BOOK

    T1 - e-ID in the Cloud with SCIM

    AU - Suzic, Bojan

    PY - 2015

    Y1 - 2015

    N2 - Cloud computing actively transforms the way information technology products and services are designed and delivered. Due to the wide range of benefits introduced with the cloud paradigm, not limited only to domains of increased efficiency, flexibility and scalability, cloud computing has been identified as one of the key technologies and innovation drivers in the industry. Numerous national initiatives and actions confirm the perception of cloud computing as important technology from the standpoint of public authorities, too. Greater flexibility and expanded deployment options introduced with the cloud however open up new use cases and new challenges. One such challenge is the integration of heterogenic cloud services in the organizational identity management processes and infrastructure.This report provides a general overview of the topic and provides an analysis of the approach introduced with SCIM – the System for Cross-domain Identity Management. Although identity provisioning has been addressed with the SPML standard, its high complexity, limited flexibility and lack of the consideration for cloud cases were identified as main reasons of its low adoption and ceased development. SCIM, which is currently proposed as 2.0 internet draft under the IETF standards track, tries to address identity provisioning in the cloud from a minimalistic and flexible perspective. This report examines the problem of identity provisioning in the cloud, establishes the problem and terminology, and considers prominent use cases. It additionally focuses on identity provisioning considering perspective of eID. The report further deals with the potential integration of SCIM and eID by positioning it in the frame of the Austrian eID solution and STORK-based cross-border context, discussing possible challenges, solutions and further work.

    AB - Cloud computing actively transforms the way information technology products and services are designed and delivered. Due to the wide range of benefits introduced with the cloud paradigm, not limited only to domains of increased efficiency, flexibility and scalability, cloud computing has been identified as one of the key technologies and innovation drivers in the industry. Numerous national initiatives and actions confirm the perception of cloud computing as important technology from the standpoint of public authorities, too. Greater flexibility and expanded deployment options introduced with the cloud however open up new use cases and new challenges. One such challenge is the integration of heterogenic cloud services in the organizational identity management processes and infrastructure.This report provides a general overview of the topic and provides an analysis of the approach introduced with SCIM – the System for Cross-domain Identity Management. Although identity provisioning has been addressed with the SPML standard, its high complexity, limited flexibility and lack of the consideration for cloud cases were identified as main reasons of its low adoption and ceased development. SCIM, which is currently proposed as 2.0 internet draft under the IETF standards track, tries to address identity provisioning in the cloud from a minimalistic and flexible perspective. This report examines the problem of identity provisioning in the cloud, establishes the problem and terminology, and considers prominent use cases. It additionally focuses on identity provisioning considering perspective of eID. The report further deals with the potential integration of SCIM and eID by positioning it in the frame of the Austrian eID solution and STORK-based cross-border context, discussing possible challenges, solutions and further work.

    KW - eid

    KW - scim

    KW - uma

    KW - authentication

    KW - osiam

    KW - cloud

    KW - assurance

    KW - privacy

    KW - integration

    KW - authorization

    M3 - Commissioned report

    BT - e-ID in the Cloud with SCIM

    PB - Zentrum für sichere Informationstechnologie - Austria

    ER -