Memorias de investigación
Communications at congresses:
Improvements of Pan-European IDM Architecture to Enable Identity Delegation Based on X.509 Proxy Certificates and SAML
Year:2010

Research Areas
  • Electronic technology and of the communications

Information
Abstract
To foster the secure use of telematic services provided by public institutions, most European countries ¿ and others in the rest of the world ¿ are promoting electronic identification systems among their citizens to enable fully reliable identification. However, in today¿s globalized environment, it is becoming more common for citizens and entities of a given country, with their own electronic credentials under the legal framework of their country, to seek access to the public services provided by other countries with different legal frameworks and credentials. At present, a number of projects in the European Union are attempting to solve the problem through the use of pan-European identity management systems that ensure interoperability between the public institutions of different Member States. However, the solutions adopted to date are inadequate, for they do not envision all possible cases of user interaction with institutions. Specifically, they fail to address a very important aspect provided in different national legal systems, namely delegation of identity, by which a citizen can authorize another to act on his or her behalf in accessing certain services provided by public institutions. This paper provides a thorough analysis of problems of delegation and proposes an architecture based on X.509 Proxy Certificates and SAML assertions to enable delegation in provision of services in the complex and heterogeneous environment presented by the public institutions of the European Union as a whole.
International
Si
Congress
WISTP'2010 Work shop in Information Security Theory and Practices
960
Place
Passau (GERMANY)
Reviewers
Si
ISBN/ISSN
978-3-642-12367-2
10.1007/978-3-642-12368-9_13
Start Date
12/04/2010
End Date
14/04/2010
From page
183
To page
198
Information Security Theory and Practices. Security and Privacy of Pervasive Systems and Smart Devices Lecture Notes in Computer Science, 2010, Volume 6033/2010
Participants

Research Group, Departaments and Institutes related
  • Creador: Grupo de Investigación: Sistemas Telemáticos para la Sociedad de la Información y el conocimiento
  • Departamento: Ingeniería y Arquitecturas Telemáticas