In a complex cloud environment, how should a cloud security professional differentiate the functions of an identity provider (IdP) and a relying party (RP) in the context of a federated identity management system, especially considering the dynamic nature of cloud services?