Using Federated Identity Management in a Business-Process-Management System - Requirements, Architecture, and Implementation [report]

Jens Müller, Klemens Böhm
Identity management is a key component of informationsystem security. In the context of service-oriented architectures (SOA), federated identity management (FIM) is important. Nowadays, businessprocess management (BPM) is used for diverse applications to orchestrate activities of web services and humans in SOA. Involving humans in business processes implies a notion of identity. Nevertheless, the relationship between FIM and BPM has not been systematically examined until now. We perform such an
more » ... We perform such an analysis, which yields the characteristics of FIM concepts in BPM. Based on standards for BPM, access control and FIM, we propose an architecture of a BPM system with FIM support and discuss design alternatives. The system implements FIM concepts based on declarative configuration, taking the run-time context of business processes into account. Finally, we describe our implementation of the architecture based on the ZXID open-source library.
doi:10.5445/ir/1000024474 fatcat:yoowmc6fcfblvpz2kj4ff7umnu