Identity and access management represent a cross-cutting concern in IT-systems that is en-abling security services such as authentication, SSO, and authorization. This contribution will analyze the applicability of recent technology innovations for service-oriented architectures. An emphasis will be laid on identity federation. Based on this analysis, the presentation will investigate the security architecture of a frame-work for component-based, service-oriented real-time communication services currently be-ing built at Siemens Communications.