New Authentication Concepts for Electronic Identity Tokens
نویسندگان
چکیده
The national funded project [BioP@ss] researches the possibilities of an IP based smart card interface based on the international smart card application interface standards [CEN 15480] and [ISO/IEC 24727]. Instead of the classical APDU based communication a TCP/IP based web service communication with the smart card is established. This solution offers the benefit that this interface relies on well established standardized Internet protocols and hence reduces the necessity of an intermediate middleware implementation which translates web service calls into APDU’s. Additionally, we define a [SAML(v2.0)] profile, which allows the implementation of an Identity Provider directly on a smart card.
منابع مشابه
Proposed Framework for an Interoperable Electronic Identity Management System
Several Member States in the European Union (EU)have rolled out electronic identity (eID) tokens for their citizens. The main objective of these eID tokens is to equip citizens with a tool for Identification, Authentication and electronic Signatures (IAS) for online transactions. Member States have invested heavily in building the infrastructure and the e-government services supporting eID toke...
متن کاملIdentification in Cyberspace as a Main Challenge of e-Government (A Legal Approach to e-Identity Management System)
The penetration and growth of the Internet, as a key technology of the 21st century, caused to some major changes in all individual and social aspects of human life. Some of these changes, which associated with the evolution and changes in the concepts, including legal and political ones, have become a challenge. Identity as a legal and Government as a political concepts are in those fields whi...
متن کاملElectronic Identity Cards for User Authentication - Promise and Practice
Electronic identity (eID) cards promise to supply a universal, nation-wide mechanism for user authentication. Most European countries have started to deploy eID for government and private sector applications. Are government-issued electronic ID cards the proper way to authenticate users of online services? We use the German eID project as a showcase to discuss eID from an application perspectiv...
متن کاملDigital Identity and it's Implication for Electronic Government
The present use of identity concepts is analyzed. A requirements analysis for \identity" reveals the diierent identity properties necessary in various administrative and business processes. A classiication of identity tokens is given and compared with passport identity and established forms of digital identities. A fundamental problem with digital signature identity schemes is explained. Implem...
متن کاملReverse Fuzzy Extractors: Enabling Lightweight Mutual Authentication for PUF-Enabled RFIDs
RFID-based tokens are increasingly used in electronic payment and ticketing systems for mutual authentication of tickets and terminals. These systems typically use cost-effective tokens without expensive hardware protection mechanisms and are exposed to hardware attacks that copy and maliciously modify tokens. Physically Unclonable Functions (PUFs) are a promising technology to protect against ...
متن کامل