A federated authentication schema among multiple identity providers

Simple item page
UDC.coleccionInvestigaciónes_ES
UDC.departamentoCiencias da Computación e Tecnoloxías da Informaciónes_ES
UDC.endPage9es_ES
UDC.grupoInvRedes de Neuronas Artificiais e Sistemas Adaptativos -Informática Médica e Diagnóstico Radiolóxico (RNASA - IMEDIR)es_ES
UDC.issue7es_ES
UDC.journalTitleHeliyones_ES
UDC.startPage1es_ES
UDC.volume10es_ES
dc.contributor.authorAlmeida, João Rafael
dc.contributor.authorZúquete, André
dc.contributor.authorPazos, A.
dc.contributor.authorOliveira, José Luís
dc.date.accessioned2024-06-27T17:43:17Z
dc.date.available2024-06-27T17:43:17Z
dc.date.issued2024-04
dc.description.abstract[Abstract]: Single Sign-On (SSO) methods are the primary solution to authenticate users across multiple web systems. These mechanisms streamline the authentication procedure by avoiding duplicate developments of authentication modules for each application. Besides, these mechanisms also provide convenience to the end-user by keeping the user authenticated when switching between different contexts. To ensure this cross-application authentication, SSO relies on an Identity Provider (IdP), which is commonly set up and managed by each institution that needs to enforce SSO internally. However, the solution is not so straightforward when several institutions need to cooperate in a unique ecosystem. This could be tackled by centralizing the authentication mechanisms in one of the involved entities, a solution raising responsibilities that may be difficult for peers to accept. Moreover, this solution is not appropriate for dynamic groups, where peers may join or leave frequently. In this paper, we propose an architecture that uses a trusted third-party service to authenticate multiple entities, ensuring the isolation of the user's attributes between this service and the institutional SSO systems. This architecture was validated in the EHDEN Portal, which includes web tools and services of this European health project, to establish a Federated Authentication schema.es_ES
dc.description.sponsorshipJRA is funded by the National Science Foundation (FCT), under the grant SFRH/BD/147837/2019. The EHDEN project has received funding from the Innovative Medicines Initiative 2 Joint Undertaking (JU) under grant agreement No. 806968 (supported by the European Union and EFPIA).es_ES
dc.description.sponsorshipPortugal. Foundation for Science and Technology; SFRH/BD/147837/2019es_ES
dc.identifier.citationAlmeida, J. R., Zúquete, A., Pazos, A., & Oliveira, J. L. (2024). A federated authentication schema among multiple identity providers. Heliyon, 10(7). https://doi.org/10.1016/j.heliyon.2024.e28560es_ES
dc.identifier.doi10.1016/j.heliyon.2024.e28560
dc.identifier.issn2405-8440
dc.identifier.urihttp://hdl.handle.net/2183/37526
dc.language.isoenges_ES
dc.publisherElsevieres_ES
dc.relation.projectIDinfo:eu-repo/grantAgreement/EC/H2020/806968es_ES
dc.relation.urihttps://doi.org/10.1016/j.heliyon.2024.e28560es_ES
dc.rightsAtribución-NoComercial 4.0 Internacionales_ES
dc.rights.accessRightsopen accesses_ES
dc.rights.urihttp://creativecommons.org/licenses/by-nc/3.0/es/*
dc.subjectFederated authenticationes_ES
dc.subjectSSOes_ES
dc.subjectIdPes_ES
dc.subjectOAuth 2.0es_ES
dc.subjectELIXIR AAIes_ES
dc.titleA federated authentication schema among multiple identity providerses_ES
dc.typejournal articlees_ES
dspace.entity.typePublication
relation.isAuthorOfPublicationfa192a4c-bffd-4b23-87ae-e68c29350cdc
relation.isAuthorOfPublication.latestForDiscoveryfa192a4c-bffd-4b23-87ae-e68c29350cdc

Files

Original bundle

Now showing 1 - 1 of 1
Thumbnail Image
Name:
Almeida_Joao_Rafael_2024_A_federated_authentication_schema_among_multiple_identity_providers.pdf
Size:
704.31 KB
Format:
Adobe Portable Document Format
Description:
Download

Collections

Investigación (FIC)