Solving identity delegation problem in the e-government environment

Sánchez García, Sergio; Gómez Oliva, Ana; Pérez Belleboni, Emilia y Pau de la Cruz, Iván (2011). Solving identity delegation problem in the e-government environment. "International Journal of Information Security", v. 10 (n. 6); pp. 351-372. ISSN 1615-5262. https://doi.org/10.1007/s10207-011-0140-7.

Descripción

Título: Solving identity delegation problem in the e-government environment
Autor/es:
  • Sánchez García, Sergio
  • Gómez Oliva, Ana
  • Pérez Belleboni, Emilia
  • Pau de la Cruz, Iván
Tipo de Documento: Artículo
Título de Revista/Publicación: International Journal of Information Security
Fecha: 2011
Volumen: 10
Materias:
Palabras Clave Informales: Digital identity, Identity delegation, Proxy certificate, X.509, SAML
Escuela: E.U.I.T. Telecomunicación (UPM) [antigua denominación]
Departamento: Ingeniería y Arquitecturas Telemáticas [hasta 2014]
Licencias Creative Commons: Reconocimiento - Sin obra derivada - No comercial

Texto completo

[img]
Vista Previa
PDF (Document Portable Format) - Se necesita un visor de ficheros PDF, como GSview, Xpdf o Adobe Acrobat Reader
Descargar (5MB) | Vista Previa

Resumen

At present, many countries allow citizens or entities to interact with the government outside the telematic environment through a legal representative who is granted powers of representation. However, if the interaction takes place through the Internet, only primitive mechanisms of representation are available, and these are mainly based on non-dynamic offline processes that do not enable quick and easy identity delegation. This paper proposes a system of dynamic delegation of identity between two generic entities that can solve the problem of delegated access to the telematic services provided by public authorities. The solution herein is based on the generation of a delegation token created from a proxy certificate that allows the delegating entity to delegate identity to another on the basis of a subset of its attributes as delegator, while also establishing in the delegation token itself restrictions on the services accessible to the delegated entity and the validity period of delegation. Further, the paper presents the mechanisms needed to either revoke a delegation token or to check whether a delegation token has been revoked. Implications for theory and practice and suggestions for future research are discussed.

Más información

ID de Registro: 14035
Identificador DC: http://oa.upm.es/14035/
Identificador OAI: oai:oa.upm.es:14035
Identificador DOI: 10.1007/s10207-011-0140-7
URL Oficial: http://link.springer.com/article/10.1007/s10207-011-0140-7?null
Depositado por: Memoria Investigacion
Depositado el: 20 Dic 2012 19:19
Ultima Modificación: 21 Abr 2016 13:30
  • Open Access
  • Open Access
  • Sherpa-Romeo
    Compruebe si la revista anglosajona en la que ha publicado un artículo permite también su publicación en abierto.
  • Dulcinea
    Compruebe si la revista española en la que ha publicado un artículo permite también su publicación en abierto.
  • Recolecta
  • e-ciencia
  • Observatorio I+D+i UPM
  • OpenCourseWare UPM