search query: @keyword authorization / total: 27
results-list
reference: 6 / 27
« previous | next »
Author:Korkeala, Mauri
Title:Integrating identity management application into identity management system
Publication type:Master's thesis
Publication year:2009
Pages:(12+) 74      Language:   eng
Department/School:Tietotekniikan laitos
Main subject:Ohjelmistotekniikka   (T-106)
Supervisor:Malmi, Lauri
Instructor:Kuusi, Sampo
OEVS:
Electronic archive copy is available via Aalto Thesis Database.
Instructions
close

Reading digital theses in the closed network of the Aalto University Harald Herlin Learning Centre

In the closed network of Learning Centre you can read digital and digitized theses not available in the open network.

The Learning Centre contact details and opening hours: https://learningcentre.aalto.fi/en/harald-herlin-learning-centre/

You can read theses on the Learning Centre customer computers, which are available on all floors.

Logging on to the customer computers

  • Aalto University staff members log on to the customer computer using the Aalto username and password.
  • Other customers log on using a shared username and password.

Opening a thesis

  • On the desktop of the customer computers, you will find an icon titled:

    Aalto Thesis Database

  • Click on the icon to search for and open the thesis you are looking for from Aaltodoc database. You can find the thesis file by clicking the link on the OEV or OEVS field.

Reading the thesis

  • You can either print the thesis or read it on the customer computer screen.
  • You cannot save the thesis file on a flash drive or email it.
  • You cannot copy text or images from the file.
  • You cannot edit the file.

Printing the thesis

  • You can print the thesis for your personal study or research use.
  • Aalto University students and staff members may print black-and-white prints on the PrintingPoint devices when using the computer with personal Aalto username and password. Color printing is possible using the printer u90203-psc3, which is located near the customer service. Color printing is subject to a charge to Aalto University students and staff members.
  • Other customers can use the printer u90203-psc3. All printing is subject to a charge to non-University members.
Location:P1 Ark Aalto     | Archive
Keywords:digital identity
identity management
authentication
authorization
sähköinen identiteetti
identiteetinhallinta
tunnistautuminen
valtuutus
Abstract (eng): Digital identity is a set of attributes for an entity when it is interacting with digital media.
The process of managing those attributes is called identity management and applications which implement the process are called identity management applications.
Service providers are applications that provide other services and use the managed identities.
Identity management systems consist of identity management applications and service providers.

In this thesis an identity management application case was presented and the purpose of this thesis was to study possibilities that could be used to integrate the identity management application into identity management systems and recommended a solution for that.
The work was done in four parts.
At first the available choices for architectures and protocols were presented.
Then criteria that could be used for evaluating the choices were listed and described.
Then the criteria were prioritized by using structured interviews.
Finally the architectures and protocols were evaluated based on the most important criteria.
LDAP and SAML 2.0 were the chosen protocols based on the evaluation.
Support for those should be implemented by improving the application architecture gradually, aiming for a completely independent application for authentication and authorization interface.
Abstract (fin): Sähköinen identiteetti on joukko toimijan ominaisuuksia tämän käyttäessä sähköisiä palveluita.
Identiteetinhallinta on prosessi, jolla näitä ominaisuuksia hallitaan.
Sovelluksia, jotka tekevät identiteetin hallintaa, kutsutaan identiteetinhallintasovelluksiksi.
Palveluntarjoajat ovat sovelluksia, jotka tarjoavat palveluita ja käyttävät hallittuja identiteettejä.
Identiteetinhallintajärjestelmät koostuvat identiteetinhallintasovelluksista ja palveluntarjoajista.

Tässä diplomityössä esiteltiin yksi identiteetinhallintasovellus.
Työn tarkoituksena oli tutkia erilaisia ratkaisuja, joiden avulla sovellus voidaan liittää identiteetinhallintajärjestelmiin ja löytää suositeltavin tapa ratkaisujen joukosta.
Työ tehtiin neljässä osassa.
Ensin esiteltiin ratkaisujen mahdolliset arkkitehtuurit ja protokollat.
Seuraavaksi listattiin ja kuvattiin kriteerit, joita voitaisiin käyttää ratkaisujen arvioimiseen.
Tämän jälkeen kriteerit laitettiin tärkeysjärjestykseen identiteetinhallinnan ammattilaisten rakenteisten haastattelujen perusteella.
Viimeiseksi ratkaisuehdotukset arvioitiin tärkeimpien kriteerien perusteella.
Arvioinnin perusteella LDAP ja SAML 2.0 olivat valitut protokollat.
Tuki protokollille tulee toteuttaa parantaen ratkaisun arkkitehtuuria asteittain.
Tavoitteena on arkkitehtuuri, jossa tunnistus- ja valtuutuspalvelut toimivat omassa sovelluksessaan.
ED:2010-01-11
INSSI record number: 38706
+ add basket
« previous | next »
INSSI