An identity framework for providing access to FIWARE OAuth 2.0-based services according to the eIDAS European regulation

Alonso González, Álvaro and Pozo Huertas, Alejandro and Choque, Johnny and Bueno Perea, Gloria and Salvachúa Rodríguez, Joaquín and Díez Fernández, Luis Francisco and Marín, Jorge and Chas Alonso, Pedro Luis (2019). An identity framework for providing access to FIWARE OAuth 2.0-based services according to the eIDAS European regulation. "IEEE Access", v. 7 ; pp. 88435-88449. ISSN 2169-3536. https://doi.org/10.1109/ACCESS.2019.2926556.

Description

Title: An identity framework for providing access to FIWARE OAuth 2.0-based services according to the eIDAS European regulation
Author/s:
  • Alonso González, Álvaro
  • Pozo Huertas, Alejandro
  • Choque, Johnny
  • Bueno Perea, Gloria
  • Salvachúa Rodríguez, Joaquín
  • Díez Fernández, Luis Francisco
  • Marín, Jorge
  • Chas Alonso, Pedro Luis
Item Type: Article
Título de Revista/Publicación: IEEE Access
Date: 19 July 2019
ISSN: 2169-3536
Volume: 7
Subjects:
Freetext Keywords: Access Control; eIDAS; electronic identification; identity; FIWARE
Faculty: E.T.S.I. Telecomunicación (UPM)
Department: Ingeniería de Sistemas Telemáticos [hasta 2014]
Creative Commons Licenses: Recognition - No derivative works - Non commercial

Full text

[img]
Preview
PDF - Requires a PDF viewer, such as GSview, Xpdf or Adobe Acrobat Reader
Download (2MB) | Preview

Abstract

Secure electronic identification (eID) is one of the key enablers of data protection, privacy, and the prevention of online fraud. However, until now, the lack of common legal basis prevented European Member States from recognizing and accepting eIDs issued in the other Member States. The electronic identification and trust services (eIDAS) regulation provides a solution to these issues by ensuring the cross-border mutual recognition of eIDs. FIWARE is a European initiative that provides a rather simple yet powerful set of application programming interfaces (APIs) that ease the development of smart applications in multiple vertical sectors and oriented to the future internet. In this paper, we propose a model that enables the connection of FIWARE OAuth 2.0-based services with the eID authentication provided by eIDAS reference. Thanks to this model, services already connected with an OAuth 2.0 identity provider can be automatically connected with eIDAS nodes for providing eID authentication to European citizens. For validating the proposed model, we have deployed an instance of the FIWARE identity manager connected to the Spanish eIDAS node. Then, we have registered two services, a private videoconferencing system, and a public smart city deployment, and extended their functionalities for enriching the user experience leveraging the eID authentication. We have evaluated the integration of both services in the eIDAS network with real users from seven different countries. We conclude that the proposed model facilitates the integration of generic and FIWARE-based OAuth 2.0 services to the eIDAS infrastructure, making the connection transparent for developers.

More information

Item ID: 63965
DC Identifier: http://oa.upm.es/63965/
OAI Identifier: oai:oa.upm.es:63965
DOI: 10.1109/ACCESS.2019.2926556
Official URL: https://ieeexplore.ieee.org/abstract/document/8754671
Deposited by: Memoria Investigacion
Deposited on: 04 Oct 2020 10:53
Last Modified: 04 Oct 2020 10:53
  • Logo InvestigaM (UPM)
  • Logo GEOUP4
  • Logo Open Access
  • Open Access
  • Logo Sherpa/Romeo
    Check whether the anglo-saxon journal in which you have published an article allows you to also publish it under open access.
  • Logo Dulcinea
    Check whether the spanish journal in which you have published an article allows you to also publish it under open access.
  • Logo de Recolecta
  • Logo del Observatorio I+D+i UPM
  • Logo de OpenCourseWare UPM