e-ID in the Cloud with SCIM

Bojan Suzic

Research output: Book/ReportCommissioned report

Abstract

Cloud computing actively transforms the way information technology products and services are designed and delivered. Due to the wide range of benefits introduced with the cloud paradigm, not limited only to domains of increased efficiency, flexibility and scalability, cloud computing has been identified as one of the key technologies and innovation drivers in the industry. Numerous national initiatives and actions confirm the perception of cloud computing as important technology from the standpoint of public authorities, too. Greater flexibility and expanded deployment options introduced with the cloud however open up new use cases and new challenges. One such challenge is the integration of heterogenic cloud services in the organizational identity management processes and infrastructure.
This report provides a general overview of the topic and provides an analysis of the approach introduced with SCIM – the System for Cross-domain Identity Management. Although identity provisioning has been addressed with the SPML standard, its high complexity, limited flexibility and lack of the consideration for cloud cases were identified as main reasons of its low adoption and ceased development. SCIM, which is currently proposed as 2.0 internet draft under the IETF standards track, tries to address identity provisioning in the cloud from a minimalistic and flexible perspective. This report examines the problem of identity provisioning in the cloud, establishes the problem and terminology, and considers prominent use cases. It additionally focuses on identity provisioning considering perspective of eID. The report further deals with the potential integration of SCIM and eID by positioning it in the frame of the Austrian eID solution and STORK-based cross-border context, discussing possible challenges, solutions and further work.
Original languageEnglish
PublisherZentrum für sichere Informationstechnologie - Austria
Number of pages41
Publication statusPublished - 2015

ASJC Scopus subject areas

  • Information Systems
  • Computer Networks and Communications

Cite this