WS-Federation
WS-Federation (Web Services Federation) is an Identity Federation specification, developed by a group of companies: BEA Systems, BMC Software, CA Inc. (along with Layer 7 Technologies now a part of CA Inc.), IBM, Microsoft, Novell, Hewlett Packard Enterprise, and VeriSign. Part of the larger Web Services Security framework, WS-Federation defines mechanisms for allowing different security realms to broker information on identities, identity attributes and authentication.[1] WS-Federation focuses on federated identity and trusting authentication tokens across different realms, privileged password management is concerned with the security, control, and audit of high-risk account passwords within an IT environment.[2]
Associated specifications
The following draft specifications are associated with WS-Security:
- WS-SecureConversation
- WS-Federation
- WS-Authorization
- WS-Policy
- WS-Trust
- WS-Privacy
References
- Broeckelmann, Robert (2018-02-27). "Understanding WS-Federation — Passive Requestor Profile". Medium. Retrieved 2023-09-19.
- "Privileged Password Management - the comprehensive guide". www.oneidentity.com. Retrieved 2023-09-19.
External links
- WS-Federation 1.2 specification
- Whitepaper: Understanding WS-Federation
- Whitepaper: Federation of Identities in a Web Services world