Safeguarding the Future of Federations: Fixing the Attribute Crisis
Time 04/24/17 04:30PM-05:30PM
Room Mount Vernon A
Multi-lateral federations – like InCommon – face one significant strategic threat: institutional identity providers that do not release attributes to service providers in the federation. IDP and federation operators find themselves caught between cries of "free the attributes!" from their relying parties and calls to "minimize identity exposure" by those concerned with data privacy and institutional risk. As this situation continues unabated, the value proposition for federation is slowly, but steadily, eroded.
This session’s content will be appropriate for anyone who has responsibility for an Identity and Access Management program, from the practitioner to the executive.
We will provide an overview of the problem and the context around it. It will lead to discussion of the way that various IDP operators are addressing it, including participation in the Research & Scholarship Entity Category and a demonstration of a user-consent tool created at Duke University. Finally, participants will be encouraged to discuss local challenges and strategize with colleagues about how to address them.
Primary track Trust and Identity