01 - PEOFIAMP: Privacy Enhancements for Open Federated Identity/Access Management Platforms

Motonori Nakamura, Takeshi Nishimura, Kazu Yamaji (National Institute of Informatics), Hiroyuk Sato (The University of Tokyo), Yasuo Okabe (Kyoto University), Takao Yamasaki, Tsuyoshi Minami, Nat Saikimura (Nomura Research Institute)

There are two popular open Identity Federation Platforms which are widely deployed in the world nowadays. One is SAML based platform which is supported by Shibboleth, SimpleSAMLphp, etc. for academic field. The other is OpenID based platform for commercial and personal field. There are many content/service providers participating in Academic Identity Federations in the world. But there still much more popular service providers which are utilizing only OpenID based Identity Federation
mechanism. There is, therefore, a possibility to realize Academic/Student Discount Services by mutual cooperation among Academic field and Commercial field.
A project called SITF (Student Identity Trust Framework) in Japan was started in early 2012 to realize student discount services by such cooperation, and we have been discussing about technologies, policies and some privacy issues to be considered. Then we got a fund from the MIC (Ministry of Internal Affairs and Communications, Japan) by proposing an R&D project for a call about network security of Strategic International
Cooperation R&D Promotion Program in FY2012. The project started since October 2012, and finished in March 2013.
This poster presents outline of our R&D project to approach privacy issues which should be solved to deploy Identity Federation Platforms much broader, especially for supporting academic/student discount services by cooperation with commercial service providers. We have four working items in SAML part: 1. Asynchronous back-channel attribute query ― to confirm the user’s affiliation is not changed, 2. Attribute aggregation without ePPN, and adding feature of Attribute Provider selection ― to avoid user’s activity correlation among SPs, 3. Limited disclosure of attributes among IdP and SP ― to realize, for example, traditional showing physical ID card model
which does not tell user’s activities to IdPs, and 4. Prevention of duplicated
academic/student discount per user without using global unique ID ― to realize requirement from SPs to offer special discount once per real user. We also developed SAML-OpenID gateway which supports OpenID Connect, the newest protocol specification, to utilize commercial service with academic/student discount from universities and research institutes.

Download file