25 April 2018
visit www.ebaday.com

US banks give cautious welcome to Liberty/SAML network ID specs

09 July 2003  |  5012 views  |  0 biometrics - thumbprint

US bank-backed Financial Services Technology Consortium (FSTC) has given a cautious welcome to the Liberty Alliance and SAML specifications for developing single sign-on digital identity standards.

The FSTC report follows a six-month evaluation of current industry initiatives in identity management. The review evaluated financial industry requirements against the Oasis Security Assertion Markup Language V1.0 specification (SAML) and Liberty Alliance Identity Federation Framework V1.1 specification, which incorporates SAML.

"While both specifications are strong technical foundations for building network identity customer relationships, these technologies are only part of a complete network identity solution," says Zachary Tumin, FSTC executive director. "Financial institutions must pay as much attention, if not more, to traditional industry concerns such as risk exposure, liability, auditing, customer support, and compliance issues."

Results were based on an analysis of business and technology requirements for three typical financial industry use cases: employee single sign-on to enterprise partners, business-to-business single sign-on, and business-to-consumer account aggregation.

The FSTC suggests the employee to enterprise partner scenario fits well with both technologies, and "appears to provide a suitable opportunity for early industry adoption". For business-to-business use, Liberty and SAML are equally considered "well suited" to the support the needs of financial institutions in the business supply chain. In account aggregation, the report concludes that the use of SAML technologies would offer financial institutions an option to eliminate the sharing of confidential customer credentials.

FSTC members that contributed to the development of the report include financial institutions such as Citigroup, Fidelity, JPMorgan Chase, University Bank, and Wells Fargo. Technology vendors providing input include Digital Resources Group, eONE Global, Hewlett-Packard, Niteo Partners, Sun Microsystems, and Yodlee.

"While both Liberty and SAML technologies provide much promise for our industry, standards bodies and technology vendors still need to make it easier for financial institutions to develop and deploy network identity solutions," says Jim Salters, director of technology initiatives and project development at FSTC. "Interoperability and performance, for example, are two areas of concern."

Comments: (0)

Comment on this story (membership required)

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board: sign up now

Related stories

HP agrees £8.3 million bid for Baltimore SelectAccess

HP agrees £8.3 million bid for Baltimore SelectAccess

07 July 2003  |  3421 views  |  0 comments
UK financial services plans crackdown on ID fraud

UK financial services plans crackdown on ID fraud

17 June 2003  |  6154 views  |  0 comments
Top US banks explore Web services for cash management

Top US banks explore Web services for cash management

21 May 2003  |  7567 views  |  0 comments
New members and New Year push for Liberty Alliance ID group

New members and New Year push for Liberty Alliance ID group

07 January 2003  |  3394 views  |  0 comments
Liberty Alliance appoints Amex man Barrett president

Liberty Alliance appoints Amex man Barrett president

25 September 2002  |  3437 views  |  0 comments
FSTC joins Liberty Alliance as e-wallet spotlight turns on Amazon

FSTC joins Liberty Alliance as e-wallet spotlight turns on Amazon

29 August 2002  |  4186 views  |  0 comments
Liberty Alliance releases first set of Web identity specs

Liberty Alliance releases first set of Web identity specs

16 July 2002  |  3257 views  |  0 comments

Related company news

 

Related blogs

Create a blog about this story (membership required)
Visit http://response.ncr.comVisit www.nextgenbanking.co.ukvisit www.ebaday.com

Top topics

Most viewed Most shared
Top tier banks pass first transactions on trade finance blockchainTop tier banks pass first transactions on...
14951 views comments | 21 tweets | 28 linkedin
TransferWise becomes first non-bank to open settlement account with BofE RTGSTransferWise becomes first non-bank to ope...
11498 views comments | 18 tweets | 32 linkedin
'Fake data' will make banks vulnerable - Accenture'Fake data' will make banks vulnerable - A...
9864 views comments | 26 tweets | 36 linkedin
Irish central bank tunes in to fintechIrish central bank tunes in to fintech
8961 views comments | 20 tweets | 21 linkedin
Major card schemes zero in on single 'buy' button for online commerceMajor card schemes zero in on single 'buy'...
8861 views comments | 20 tweets | 36 linkedin

Featured job

Six-Figure Base + OTE + Benefits
London, UK

Find your next job