IZUM and libraries offer their users numerous information services and most of them require user login. Login is carried out on the basis of a username and password and enables the user’s authentication and authorisation. IZUM manages such a mechanism based on identity data and other information about the members within the COBISS system. This year, a single sign-on system was introduced via the Shibboleth software component and the COBISS AAI Federation.
The concept of authentication and authorisation infrastructure represents a shift from the standard ways of “omnia mea mecum porto”, where every information service or application (both web and desktop) maintains its own system of user data. A system built on mutual trust separates the authentication part from the authorisation part.