Solving identity delegation problem in the e-government environment

Sánchez García, Sergio and Gómez Oliva, Ana and Pérez Belleboni, Emilia and Pau de la Cruz, Iván (2011). Solving identity delegation problem in the e-government environment. "International Journal of Information Security", v. 10 (n. 6); pp. 351-372. ISSN 1615-5262. https://doi.org/10.1007/s10207-011-0140-7.

Description

Title: Solving identity delegation problem in the e-government environment
Author/s:
  • Sánchez García, Sergio
  • Gómez Oliva, Ana
  • Pérez Belleboni, Emilia
  • Pau de la Cruz, Iván
Item Type: Article
Título de Revista/Publicación: International Journal of Information Security
Date: 2011
ISSN: 1615-5262
Volume: 10
Subjects:
Freetext Keywords: Digital identity, Identity delegation, Proxy certificate, X.509, SAML
Faculty: E.U.I.T. Telecomunicación (UPM)
Department: Ingeniería y Arquitecturas Telemáticas [hasta 2014]
Creative Commons Licenses: Recognition - No derivative works - Non commercial

Full text

[img]
Preview
PDF - Requires a PDF viewer, such as GSview, Xpdf or Adobe Acrobat Reader
Download (5MB) | Preview

Abstract

At present, many countries allow citizens or entities to interact with the government outside the telematic environment through a legal representative who is granted powers of representation. However, if the interaction takes place through the Internet, only primitive mechanisms of representation are available, and these are mainly based on non-dynamic offline processes that do not enable quick and easy identity delegation. This paper proposes a system of dynamic delegation of identity between two generic entities that can solve the problem of delegated access to the telematic services provided by public authorities. The solution herein is based on the generation of a delegation token created from a proxy certificate that allows the delegating entity to delegate identity to another on the basis of a subset of its attributes as delegator, while also establishing in the delegation token itself restrictions on the services accessible to the delegated entity and the validity period of delegation. Further, the paper presents the mechanisms needed to either revoke a delegation token or to check whether a delegation token has been revoked. Implications for theory and practice and suggestions for future research are discussed.

More information

Item ID: 14035
DC Identifier: http://oa.upm.es/14035/
OAI Identifier: oai:oa.upm.es:14035
DOI: 10.1007/s10207-011-0140-7
Official URL: http://link.springer.com/article/10.1007/s10207-011-0140-7?null
Deposited by: Memoria Investigacion
Deposited on: 20 Dec 2012 19:19
Last Modified: 21 Apr 2016 13:30
  • Logo InvestigaM (UPM)
  • Logo GEOUP4
  • Logo Open Access
  • Open Access
  • Logo Sherpa/Romeo
    Check whether the anglo-saxon journal in which you have published an article allows you to also publish it under open access.
  • Logo Dulcinea
    Check whether the spanish journal in which you have published an article allows you to also publish it under open access.
  • Logo de Recolecta
  • Logo del Observatorio I+D+i UPM
  • Logo de OpenCourseWare UPM