eprintid: 1092 rev_number: 2 eprint_status: archive userid: 1 dir: disk0/00/00/10/92 datestamp: 2023-11-09 15:49:15 lastmod: 2023-11-09 15:49:15 status_changed: 2023-11-09 15:38:59 type: conference_item metadata_visibility: show creators_name: Khattak, Z.A. creators_name: Sulaiman, S. creators_name: Manan, J.-L.A. title: A study on threat model for federated identities in federated identity management system ispublished: pub keywords: Federated identity; Identity information; Identity theft; Trust relationship; Trusted computing, Authentication; Crime; Data privacy; Information technology; Network security, Management note: cited By 30; Conference of 2010 International Symposium on Information Technology, ITSim'10 ; Conference Date: 15 June 2010 Through 17 June 2010; Conference Code:81915 abstract: Federated Identity Management (FIM) based on standards allows and facilitates participating federated organizations to share users identity attributes, facilitate authentication and grant or deny service access requests. Using single sign-on facility users authenticates only once to home identity provider and logged into access successive service providing service providers within federation. User's identity theft, misused of user identity information via single sign-on facility in identity providers and service providers, and trustworthiness of subject, identity providers and service providers are active concerns in federated identity management systems. In addition, we had explored trusted computing technology, which covers Trusted Platform Module security features such as Trusted Platform Module Identity, Integrity Measurement and Key certification as well as Trusted Network Connect. In this paper, we presented conceptual threat model for inter-domain web single sign-on in federate identity management system. For this, we set identity theft, misused of identity information, and trust relationship scenarios and in the end, we discussed how trusted computing technology use can effectively resolve identity theft, misused of identity information, and trust relationship concerns in federated identity management system. © 2010 IEEE. date: 2010 official_url: https://www.scopus.com/inward/record.uri?eid=2-s2.0-78049381910&doi=10.1109%2fITSIM.2010.5561611&partnerID=40&md5=02985d2558c1e776a3f37b6a092e4283 id_number: 10.1109/ITSIM.2010.5561611 full_text_status: none publication: Proceedings 2010 International Symposium on Information Technology - Engineering Technology, ITSim'10 volume: 2 place_of_pub: Kuala Lumpur pagerange: 618-623 refereed: TRUE isbn: 9781424467181 citation: Khattak, Z.A. and Sulaiman, S. and Manan, J.-L.A. (2010) A study on threat model for federated identities in federated identity management system. In: UNSPECIFIED.