Web Services, Web 2.0 & SOA - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Web Services, Web 2.0 & SOA


Identity Standards Rely on Trust Among Companies



 By: Cameron Sturdevant
2005-08-22
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Web Services, Web 2.0 & SOA story.


Rate This Article:
Poor Best
Opinion: To succeed, federated identity products and identity-based Web services need true interoperability.

The Liberty Alliance Project, a consortium that advocates for federated identity standards and identity-based Web services, last week announced the results of the first SAML 2.0 interoperability tests.

Ill come back to the whys and wherefores of the tests in a moment. But the most important outcome of the tests likely has more to do with ensuring interoperability among organizations that adopt federated identity products than between the products that were actually tested.

IT managers who are currently implementing federated identity projects tell me that arranging the legal and procedural relationships—the human part of federated identity—is actually more significant and more challenging than putting the technology in place.

Extending trust to another entity—be it a parts supplier, bill processor, billing department or fleet dispatcher—creates risk as well as efficiency.

Nothing in the Security Assertion Markup Language tests just conducted by the Liberty Alliance will help senior management balance the scales between risk and payoff—not that the Liberty Alliance is making such a claim.

Resource Library:

By issuing an announcement that eight companies essentially made the SAML grade, the Liberty Alliance is saying that organizations that choose to trust partners are much more likely to get technology that will support that decision.

Thats an important step down the federated identity path, and its one that IT managers should pay close attention to.

Coming back to the tests themselves, it appears that the Liberty Alliance is making significant progress toward its goal of achieving technical interoperability.

We will leave aside, for the moment, that the tests are conducted in a very insulated environment. Most schoolchildren would likely welcome the ability to do a "dry run" test, to have one-on-one meetings with test officials while testing is in progress and to retain sole control over the release of their grades.

According to a Liberty Alliance spokesperson, no one who came to the test failed.

So, one conclusion we can reach is that the SAML 2.0 specification is still at a delicate stage of commercial implementation but appears to support interaction among different vendors products (given enough tender, loving care).

Not a bad place to be in the process. More vendors will have a chance to participate in the next conformance event, slated to take place in Tokyo in November. (The dry run will likely be held in late October, for those who like to be superprepared.)

Click here to read more about SAML 2.0.

The tests I referred to at the beginning of this column were hosted by the IEEE-Industry Standards and Technology Organization and held in Piscataway, N.J., last month.

During the tests, vendors were asked to demonstrate interoperability with one or more of Libertys specifications, including Identity Web Services Framework Version 1.1 and SAML 2.0 OASIS specs.

Since the combination of technologies covered by these specifications is fundamental to providing Web services and asserting attributes and authorization information, passing the tests shows that, at a basic level, the products actually can talk to one another.

Now we come back to the human side of creating a trusted relationship between two organizations: The importance of interoperability to federated identity comes down to finger-pointing. Or, more specifically, a reduction in the amount of finger-pointing.

If IT managers can implement products that actually conform to the standards they purport to conform to, federated identity projects stand a much better chance of success.

More than most IT undertakings, federated ID projects get few chances for a "do over." Failed attempts at coupling, especially when tried-and-true (although, quite possibly, more expensive) procedures are already available, could spell death for attempts to get companies to use federated tools.

Hopefully, tests like these will accelerate the pace of the technology and enable companies to implement tools that tip the risk-versus-benefit scales in favor of greater productivity.

Peter Coffee returns to Epicenters Sept. 5. Technical Director Cameron Sturdevant can be contacted at cameron_sturdevant@ziffdavis.com.

Check out eWEEK.coms for the latest news, reviews and analysis in Web services.



  Reader Comments: Identity Standards Rely on Trust Among Companies
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Web Services, Web 2.0 & SOA Articles          >>> More By Cameron Sturdevant
 


x}kw89v2zۑȶkbIK'{!m䐔;~gƭG:}o["PU( Aȅ=%XXcӱGoMzIj}ݻ@AizNU sJe>HwW7nSS;^> \?g#Q;Y|}^~jN .hѲ LIlG tyK%yHCGu)pC(DsXqD'H*#'x8׽i/DeO‡^b&{Bq25;^7;0k|Ba5w0vK]K8$#M-G ؓ ۭ@5lvy!rs#gߎz$fPrNWw#205ARZ"[XdTZ wӑc)u8r `p)jDtGL: nK> P:x }3~bA2xflQO*! lpa+j)y'C< ۱ȭC ¿{׳߂#}|3mgE-"'l,Rۆ@ظ?0$OL"3N9ˡ,Fp0-s|i #M-jZUQ bkG╻iΝoĩqcg͸޺KB)(N>̑#Ko -%u`(:퓫^w6 ާ;yԸ}  d}+5UJ`Z. G$_g6ttAX}AF j|%R+ i٥z4Nr ])2 ,ԐYۭlniu˫vEv l,aR422V,]鬙&ȏU5u{ڻ9m}j G|D  Wh N/f O{uH|?-|kh2`=v8LwjT ?N/[d[/'$'uDO0do-Ynus$BJGX*,>JAͼ94oߦA朊@w[@0k:j56kiFuf!`N¼N49Vϡ蟙$Wm4@r1XSl؅ RMGo4x M XRU>hI"E[fT}O%ތEĆ> z%Kus7pcKfe՜Ӆ]Wa oY#L .ϱVsuJn:~S3G#вnZ V)b1WJPX=*‹JMU~ _1p-~~f0B m] :V}E0`ivz?sϩa.nۉ9~t$AG66^lzK $ ,70}H{@zQI4oIp{4ڭ.,%_ >< 9zNj$>6(Zχ`S˦/M@B9;ǻޚC<Q]ӑ4}aqjQ?]*~ =w= X_ X.{s6G~>2-01%ޥ6N\KQo Ч dQJ d$@!-i]R@Az68 -8,rrl++~#y-#!bTLZ'9Tv{B#™:CT/΍gR1eb -d[b~Il eV&vϏxbB|#'bXr`Y \h+|i)lc lԨ[6؛Ţrir>Ѥ75c0uu=^A-|' :'4$f.*dyJ0sO=sE h? OuK:\f335{00q}c] k2oiB7 ƙ9 R g?fx0-qڛ9wICװ DؙZU{gm1Jhq˸>q,?XĞ=8[%0wM^^.V꺰'uBŜL|vjN 0|p4'Z>pbZ`/R7Mg#RXO%}T5&CSl ԑq,YXTı,.0}6u(MEZ"^@#@&"#'ѠcD8q_(+ SGaOQ*#؉Wkh@S4e2fL4_0-x8SJD%xXPr'RL*i~Ò?DFCizi}~هF9#*!__$HHo?YDjPVVR娨V*߬ǷSO@H.Cg2ޗg8CzQoÿ>+!f8hc0SMw®C.>#]\aQa3Ɩ=4FXXoH]M;H̎OƚR*%)ϐPc0u.*' L-`Gwf^=/YQwSmf18D"sL.?^@+Z &|o|ɺIPɑ1Yd:w@ݐ 1,n`w]0>AG50qHG&;3E68S uW:.5-r ?Ť֊k[S GťR #]&5}-tq]U*jAe/E+^> (t0Ȉ%=Gl2۩p>tV}P@K!n6 7}&-nov=OYyr dZKp|]avKreH˷"gf\>r)&q3旁 /hy2檦dL4Ω,68H]ӞyM}bO>=jTc'o2\$t#>Y?LWEnkPow(* xg4sDcK6jM+'&GlEմZYk-g}X#2␜n=!OR-4SK8n7=R.R 2=ctY89e}[?nH#oh 靦2I*"EeB8NY HXL*r_ kRUG 4DB(}tnPzQrZ%W&j[}$PU]|TMFBR%%~nﴠcEZ`ЯxLl 銠%\{ i0o(Q󩋗r3["X6DД7Ϩ3Rb  kQhce[fw`2W,iI<r/鉚źRafg y|#ZJ0iUI+T Z}̡2e{Sі$¾̓G\\7hctD0|7=#S$.FRiEmT)玾ߓJtLqC` H\WKdQ"Y rrjT GrF2R@BZNbx<'b{H '`+Tgn_\'GWƒ"'! M+53,`jBUܘ㏌&н~>^*oP@/I6C.:;b4Fޏ.}4O}f}0q3n^=hAQaZrҸGZ`>"UˇWSio0.[-tJj2m&A)hQ?rfWϋi^0lgAhy- @$+ǽp:ͫIwŏv%%{.;z܉C䄬W!yN.ZͫFSLo2XGZ[?ֈ4FD!B*.g ^|%V}Xq!slP6<]ּO1Ok7OtExW(hLVfsF;.0?xԾh,z?"i^_w jEާp!ASB9kթ-xOӖO|BXaJ;DLa2߄u?Is6uYX$<3OђN)tJȓÓ!F=)*چIդ28I5F4A2 uIH? Md4XPWl Pق/ jÚ]e /.iw6D20&@v\e0Ӑ`q0h4/‰@P V QגZ4ҫoeW!9 |@s`~zv`N5gs \:`Acn ~U osW8{JM<:㪏U3f]yE<.ď%㇆3MQLy1h]f09nJs nu#s5yׅO>4dT/'yVz7~QW{.}_?H/K턟ݖycP]OKSϑ%٘ΧBEWU-*ln$jYpJR/+w|621@7YUd3D?ye1}doxzoѯo=إ<A?''Lw.z@z@oqw{Zg%QJ=,qM@jjiIr\"~^YZ䑽DXHڃ}AuULmquOxcNZy‡i襖N<?79wBf#FVާA39bqlĨ`fox?ܴafX@`+CC-,VP/Q1:,`Ch emM=,TO͸f[O F48vv0Uz̏'$Қ&'R|$iZ(WG= ͼv@5☗0-|!p,GP;#c 5qKM[˞6olsh/K/2y&f >@sK.~T&rI0-O0 Mxh[ EX=,g+;pi\`(uDK/B)wzc=J:}X֌Ǣѧo~t?EPP 2Uhgg24v}c'$d>m[+==^Rb"bl^_u-=!sy_7~A8^b2yIb5ƍmk>e>m٧R#$-̴ophU-<*]B1߇Ժ- XQB%H0$!H"@~lz3C+TIna149DŽl32dEOnxm7%rP$nLتNT@FR %|p9789 X-P=_pV$ Kr/nMNk9;fhyH1)'~ol|c;w5T2&3PO`Gl9k%ltW3qn>HR}iȯ(:p o,Mono6XGW6-ǹRfx.ۘIm?Ix~x06CdGVe> z$$X-nl]uKN('tXZm)N_Fk\ L Y :̤TP >tmJg&!H_&xj؉]jo%/PBJ0w4g<i<'"cRU:EmLUZ q Ld;I򜵐XGټЋ[^>[RGtL]xH5Kxzd.~ Bw/gRymf @W@x _{ Ez 25^ʖXB+`zx.FS(z_%ѫD YA=B%֍mrK~Koooo~.b6t0 oE/[A1g!;msaZֳ Q} #1Z&bgLd9iSEkZ @B?hĴe/g$~F͗[%ݗ0ki/cakyq|1M46|iWi/zR[ӕxM;3a}KFXQd8>ZSɊe];!ACjRmxcۚ\31>zA`TN/|I8R#Lg8# 0_<8QdҖ5i[$qVltz&,^\.jM:|93uBa?(/FvvQE:g3іWʕح68VC:1!D (OL{=O}s+Ld:d7  7(G*&/'ۊNsnJ(aZ&Z4>(C^PB^$’M=1Ir1ꚚrMm @h~PZC O]c)I5ˋCAE! :?mͤ<؎7׭Ta8FSYhE]!ncbצj\ZbiE.c 2uuWHk̘xAp4vlNz yԥ:BM}EmTBhr F,GZj>Am3#mz^C GJk&ڏj=!v c` -K.қ-≠D37:S}sÑ7x^E8acYcSqESb}dGZM)RӰp-|ri?NRuzB9wIf jRv(1盖smS? wсH.:N#V¯m9ʉVܞVk+ 6irB'یh%=mP 4&{:SO L%& J!47\#P |°,C7ˏR(kUeQb+Y!kb^}<ҡ]+qܒ:idw |L`߄8G :{ћrPZ-!F/|T2/b=#-ɤ#f6`< zZ̥7a?= dN8C joEֹIz# ,@ eꊍ\DQ p6Z, C}AEk0h]*˴,P_o~-\waί,~oaO 2huLX)]Q.3%e'`z c1zS?!m#!k^bΑ<͸޺p+53n Ft8Z3*F2*mG&~I79kN-i`Ik@JxN6")(0'1Cdx [ 6#&|Mq(݂ۘb~]; s1JK\-C@e=Dq掙xy䜥@bHP,%@3 "PV: 1Cx~bJ ͍$M9\na`:x"(S[]ă04]w7s(pW'N#L{b47̲kR>ɖàzEQp#ߛSgY0غ9P+AguUq VH+^@03:%X? &O=lFLn r5Y4UE'WA%ǭ5¶-r5uN?.?˫vwk|j5ۼ6ideAκN) C9B*rK xU" /%qx&q'Q~\;,\FyS &ufpYmn8~(hOuɀ\#4[EEF(Q Q~WO͌2ʑO(?\~9ˠ{7si>(3v7~Q?o.akt2Ƨw2N|o'O'>Nv3~OP~Q7([Fy;0݌t3 ^~eK /3޿>3 2o(_3*>e )~P~U{uF$)cf5/qvJEsQ^53T}~)Pݳg賲+F/_˰̠sk=2Я!ednleҾ<&R+ ]Q%5Mk[I2nP+ȣ_zi k{JyHGW4<< X1rnm|#MDr&߲jOG U*AlZ`3ݶ.o0.@<E!c,jϗ070aňkCMHn_!mx'Gú"9<'$}'r >r瑅adakf t?]9 ֟)Gy1_=ic x&˷51K ,,f\d~Of@L VvT`kоxNƳD#Y#X[Nƀ_Pot#byyy98a]Xn94(Joē}"'p ?-mgvlCnܙ%MO_1qON@U~=G"2cX =旲=GcQx/Ma{Mă nʽ$9=ASh4M뚈βR[j9.KPRJVm.Q ?n`n6R7K}x.^| 3.u,sD북e֜zLU"zʴ៴{Dq+Nvޒۍ־( ;><=ضhFʪv\r#tfP/K7"i½oPm JO0wCw , CQ6`>̤c? `nwfں=Pŗ;19 m'#84B<ԼlQ޺qml.a; +C&:bf:γ@\W (|x7A{;z>Ku-JnvDg>6كl2h}.!Xs#Q%` <{;ܨNaeVb0%yM&nhp ?dt;b[p?xE*QTD K)Ybd㜙/-rxgsgxm+LWvm:yDt[-] E he/y!w'k$~El=fu{+Wrcdk{fz*LpeXl'!RMk+We$ցi/>Θ]PnãÍGXƸӭ[+ qy6`;Щ0D\NXeܜ1ǛtD]hT[)**36 9/ߵ33pݼ®"vyXOA4gX3' ȱ ya1 g{y{~kC'>f kL~sxyz!}őYX&7I /O C7Ѱ0K{,luEG%RXRNCa 0A S:%br]̀zs cJ\gGۂ~e8LgѸ8K1E~#V+KQw;+[ȀH>Y[D5Rb&(=zLk|FXKc!%̱`=b^8qe Qs|J9j轋Iȝgz^4}jsX#`*#F"Z*bJ؉ZqpR.C79Ih>eS#'@n0\|m d9[\Oօt\j9/bY4~>\99.@OI"cXM1}aE|iOS<'\B;Wa%P?|Zk/oYY;ΚCRI>Qmv<}JaE e遢%!N[i B";w<=mw'+=={`o gs7*OРtMjez'14ɋmEg,3lW'5X-lu; o]F'e1RU>\JRSk$5XVf\NN wE&l)vsml-6C-{*