Open Identity Management Framework for Mashup
会议名称:《2010 IEEE 2nd Symposium on Web Society》
会议日期:2010年
学科分类:08[工学] 080402[工学-测试计量技术及仪器] 0804[工学-仪器科学与技术]
关 键 词:Mashup Identity Management OpenID OAuth
摘 要:正Mashups have emerged as a Web 2.0 phenomenon,connecting disjoint applications together to provide unified ***, scalable access control for mashups is *** enable a mashup to gather data from legacy applications and services,users must give the mashup their login names and passwords for those *** is not user-centric and the all-or- nothing approach violates the principle of least privilege and leaves users vulnerable to misuse of their credentials by malicious mashups. To overcome the limitations,this paper proposes an open identity framework,which leverages open identity protocol such as OpenID and *** framework can bring benefits to all the roles involved in the system in a non-intrusive and usercentric *** is a good design principle,and it is also the attitude and sprit of *** think that a mashup system based on open technologies could make the composition of services easier and accelerate the on-boarding of service ***,more customers might also be attracted by the openness of the system.