| Article found | Fact |
|---|
|
Secure, Reliable, Transacted Web Services [FS03]
|
-
allows a set of organizations to establish a single, virtual security domain. For example, a travel agent, an airline and a hotel chain may set up such a federation. An end-user that "logs into" any member of the federation has
effectively logged into all of the members. WS-Federation defines several models for providing federated security through
protocols between WS-Trust and WS-SecureConversation topologies.
- Additionally, customers often have "properties" when they deal with an enterprise. An example is a preference for window or aisle seats, or a midsize car. WS-Federation allows the members to set up a federated property space. This allows each participant to have secure controlled access to each member's property information about the end-users.
- Properties and information about individuals may be closely held for privacy protection or because the information provides a competitive advantage to a specific member. To support these requirements, WS-Federation supports a pseudonym model. Users that have authenticated to the travel agency have agency generated "aliases" in their interactions with the airline or
hotel. This protects the privacy of the end-user and the competitive advantage that the travel agency may gain by knowing user properties.
|
