Main Nav

Identity management refers to the policies, processes, and technologies that establish user identities and enforce rules about access to digital resources. In a campus setting, many information systems–such as e-mail, learning management systems, library databases, and grid computing applications–require users to authenticate themselves (typically with a username and password). An authorization process then determines which systems an authenticated user is permitted to access. With an enterprise identity management system, rather than having separate credentials for each system, a user can employ a single digital identity to access all resources to which the user is entitled. Federated identity management permits extending this approach above the enterprise level, creating a trusted authority for digital identities across multiple organizations. In a federated system, participating institutions share identity attributes based on agreed-upon standards, facilitating authentication from other members of the federation and granting appropriate access to online resources. This approach streamlines access to digital assets while protecting restricted resources. [Source: 7 Things You Should Know About Federated Identity Management]

Suggested Resources

  • Economic Tussles in Federated Identity Management, First Monday, October 2012. The authors present an economic perspective of stakeholder incentives that sheds light on why some applications have embraced FIM while others have struggled.
  • 2011 ECAR Identity Management in Higher Education Report
  • Identity & Access Management Working Group: This EDUCAUSE working group operates an open mailing list for general discussion of Identity and Access Management (IAM) topics and maintains a website with additional resources and links.
  • Identity Management Wiki: The Identity & Access Management Working Group is also actively developing a wiki on Identity Management. Topics include: technical issues (e.g., authorization or authentication), legal and government issues (e.g., CALEA or HEOA), account management, and IAM software vendors.
  • IAM Online: IAM Online is a new monthly series delivering interactive education on Identity and Access Management (IAM), including federated identity management essentials, advanced issues in IAM, and hot topics from the EDUCAUSE Identity and Access Management Working Group. Experts will provide overviews, answer questions and lead discussions.
  • InCommon: The InCommon Federation eliminates the need for researchers, students, and educators to maintain multiple passwords and usernames. Online service providers no longer need to maintain user accounts. Identity providers manage the levels of their users' privacy and information exchange. InCommon uses SAML-based authentication and authorization systems (such as Shibboleth®) to enable scalable, trusted collaborations among its community of participants.
  • Shibboleth®: The Shibboleth System is a standards based, open source software package for web single sign-on across or within organizational boundaries. It allows sites to make informed authorization decisions for individual access of protected online resources in a privacy-preserving manner.

Updated October 2012

Latest News

Five Pilot Projects Receive Grants to Promote Online Security and Privacy

InCommon will be heavily involved in a $1.8 million grant awarded to Internet2 to build a consistent and robust privacy infrastructure. Partners include Carnegie Mellon, Brown, University of Texas...
Virginia Tech First to Achieve Bronze and Silver Assurance

Virginia Tech has become the first identity provider to achieve Bronze and Silver certification as part of the InCommon Assurance Program.
Recommended IAM Sessions at EDUCAUSE 2012

The annual EDUCAUSE Conference in Denver will provide an opportunity to explore the range and depth of issues that campuses must consider as they build...
Advance CAMP: Identity Services Summit IV (Oct. 4-5, 2012)

Advance CAMP will be held October 4-5, 2012, after the Internet2 Fall Member Meeting in Philadelphia, PA. The meeting will feature an unconference-style agenda, providing substantial time for...
NSTIC Welcomes Trusted Federal Systems as Secretariat of the Identity Ecosystem Steering Group (IESG)

A major milestone in the implementation of the NSTIC, "Trusted Federal Systems (TFS) will facilitate collaboration among multiple stakeholders to help drive the creation of consensus standards...
The Future of Federated Identity: Or, Whither SAML?

Eve Maler, an expert on emerging identity and security at Forrester Research, discusses the past, present, and future of SAML in this webinar recording.

Library Items on this Topic

View All
Keyword Search within this topic

EDUCAUSE Library Items for Federated Identity Management

Showing 51 - 60 of 67 Results

Sort by:

Relevancy | Title | Date
Privacy, Security, Interoperability, and Ease-of-Use Are Guiding Principles of NSTIC
April 15, 2011

The White House released today the National Strategy for Trusted Identities in Cyberspace (NSTIC) .  At an event held at the U.S. Chamber of Commerce in Washington, D.C. attended by 200 i…
Federated Identity: Leveraging Shibboleth to Access On- and Off-Campus Resources
January 16, 2008 | A session at the EDUCAUSE Mid-Atlantic Regional Conference 2008

More and more institutions are using Shibboleth to address both their on-campus and third-party access requirements. This case study will provide information about federated identity management (sp…

CIC Identity Management Conference Session: Federated Identity Management and Sharing Resources
January 1, 2006

A blog posting discussing the CIC Chief Information Officers conference on Identity Management. A blog posting discussing the CIC Chief Information Off…
Leveraging Your Existing Campus Systems to Access Partner Resources: Federated Identity Management and Tales of Campus Participation
October 12, 2006 | A session at the EDUCAUSE 2006 Annual Conference

Campuses can leverage investments in single-sign-on systems to access external systems and information resources partners. Panelists will explain InCommon federation participation, what it means fo…

Federated Identity Management: Addressing the Risky Business
April 11, 2006 | A session at the Security 2006

Accessing restricted resources held by a partner can be risky for both parties. This presentation will include a discussion of national and international federations, what the policy dimensions are…

Can't We All Just Get Along? Achieving Federated Identity Management at the University of California
April 4, 2005 | A session at the Security 2005

The University of California has piloted a unified identity and access management infrastructure for the UC system, allowing campus users to access participating campuses services using their campu…

Federated Identity Management: The Shibboleth Approach
March 22, 2005 | A session at the EDUCAUSE Midwest Regional Conference 2005

The Shibboleth software system enables Web-based, interinstitutional resource sharing by leveraging campus identity management systems. Creating a larger trust community of collaborating institutio…

Federated Identity Management: The Shibboleth Approach
March 8, 2005 | A session at the NERCOMP Annual Conference 2005

The Shibboleth system simplifies the management of Web-based interinstitutional resource sharing by leveraging campus identity management systems and the trust framework provide by federations. Thi…

Federated Identity Management: Managing Access to Resources in Texas
February 17, 2005 | A session at the EDUCAUSE Southwest Regional Conference 2005

Institutions implementing identity management should consider how their local policies, processes, and technology deployments can be leveraged to participate in broader higher education federations…

Shibboleth: Federated Identity Management
January 1, 2004

Shibboleth, a standards- and Web-based inter-institutional authorization architecture and software, enables federated resource sharing. This session will provide an overview of Shibboleth, federati…

Research and Publications

Conferences and Events

Career Development

Focus Areas and Initiatives

Connect and Contribute

About EDUCAUSE

Close


Current Issue
May/June 2013
EDUCAUSE Review

Publications

Research

Close


Annual Conference
October 15–18, 2013
Register now!

Events for all Levels and Interests

Whether you're looking for a conference to attend face-to-face to connect with peers, or for an online event for team professional development, see what's upcoming.

See All Events

Close

EDUCAUSE Institute
Leadership/Management Programs
Explore More

Career Center

Find or Post a Job

Leadership and Management Programs

EDUCAUSE Institute
Advanced Programs
Project Management

 

Fellowships and Awards

Fellowships
Awards Programs

Getting Involved

Mentoring
Volunteer
Speak at an Event

 

 

Jump Start Your Career Growth

Explore EDUCAUSE professional development opportunities that match your career aspirations and desired level of time investment through our interactive online guide.

Advance Your Career

 

Close

Latest Topics

EDUCAUSE organizes its efforts around three IT Focus Areas

 

Enterprise and Infrastructure

Enterprise and
Infrastructure

Policy and Security

Policy and
Security

Teaching and Learning

Teaching and
Learning

 

Join These Programs If Your Focus Is

Close

From the Blogs
Grit
by
Diana Oblinger

Find Others

Share Ideas

Get on the Higher Ed IT Map

Employees of EDUCAUSE member institutions and organizations are invited to create individual profiles.
 

Create Your Profile

 

Close

2013 Strategic Priorities

  • Connected Learning
  • Enterprise IT
  • Foundations


Learn More >

Uncommon Thinking for the Common Good™

EDUCAUSE is the foremost community of higher education IT leaders and professionals.
 

Discover Membership