loading
Papers

Research.Publish.Connect.

Paper

Authors: Jorge Navas and Marta Beltrán

Affiliation: Department of Computing, ETSII, Universidad Rey Juan Carlos, Madrid and Spain

ISBN: 978-989-758-378-0

Keyword(s): e-Government, Federated Identity Management (FIM), Mobile Connect, OpenID Connect, Privacy, SAML, Threat Modelling.

Abstract: The ability to verify citizens’ identity and to authenticate and to authorize them when accessing to e-Government services (such as on-line voting, licence renewal or tax payment) is crucial for the digital transformation of public administrations. Governments need identity management mechanisms valid across different services, platforms, devices, technologies and even physical borders. Federated Identity Management (FIM) can help in ensuring secure identity management, in improving citizens’ experience and in increasing services’ accessibility. But this comes with a price since relying on Identity Providers, whether public or private, poses new privacy threats that has to be faced. This paper presents a threat model of the most promising and extended FIM specifications, OpenID Connect and Mobile Connect, when used as federated identity management solutions for e-Government services. A set of three improvements is proposed to avoid these threats or to mitigate their impacts, taking in to account both, specification and implementation aspects. Furthermore, guidelines and recommendations in order to improve future versions of the specifications and/or their implementations are provided for developers, providers and policy makers. (More)

PDF ImageFull Text

Download
CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 3.227.240.31

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Navas, J. and Beltrán, M. (2019). Potential Impacts in Citizens’ Privacy of using Federated Identity Management to Offer e-Government Services.In Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - Volume 2: SECRYPT, ISBN 978-989-758-378-0, pages 350-355. DOI: 10.5220/0007797703500355

@conference{secrypt19,
author={Jorge Navas. and Marta Beltrán.},
title={Potential Impacts in Citizens’ Privacy of using Federated Identity Management to Offer e-Government Services},
booktitle={Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - Volume 2: SECRYPT,},
year={2019},
pages={350-355},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0007797703500355},
isbn={978-989-758-378-0},
}

TY - CONF

JO - Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - Volume 2: SECRYPT,
TI - Potential Impacts in Citizens’ Privacy of using Federated Identity Management to Offer e-Government Services
SN - 978-989-758-378-0
AU - Navas, J.
AU - Beltrán, M.
PY - 2019
SP - 350
EP - 355
DO - 10.5220/0007797703500355

Login or register to post comments.

Comments on this Paper: Be the first to review this paper.