This is a great article and I have been talking about it for several months when presenting about digital identity. It was written by Drummond Reed and Eve Maler and I read it in December.(I am doing this more and more now). It has finally been published here is the abstract but it actually costs $19 – uggg.
Digital identities can be associated with everything from people to software applications to entire companies, but human digital identities prove the most interesting and challenging. Human digital identities can simplify network usage and enable new classes of applications, but they also introduce security and privacy risks. Federated identity management addresses scenarios in both enterprise and consumer contexts by defining how to dynamically distribute identity information and delegate identity tasks across security domains. This article explains federated identity’s components, discusses security and privacy risks and architectural challenges, surveys the SAML, OpenID, and InfoCard protocols, and reviews new developments in federated identity management.