Change search
ReferencesLink to record
Permanent link

Direct link
Integrated Security System for E-Government based on SAML Standard
KTH, School of Information and Communication Technology (ICT).
KTH, School of Information and Communication Technology (ICT).
2004 (English)In: Proceedings of Information Security South Africa ISSA2004, 2004Conference paper (Refereed)
Abstract [en]

This paper describes an integrated security system for electronic-government services. Many governments are transforming manual government services to electronic government services. This transformation is in most cases done without involving users of the services. This makes users of these services have little trust in the e-government. Security is in most cases not addressed from the early stages of e-government development. Some governments depend on security solutions from private vendors and these governments do not have full control of security. E-government services have different levels of classification and so they require different types of authentication and authorization methods. Most e-government systems today use one form of authentication in all types of services without considering the different sensitivity levels. All countries have different levels of e-literacy and users with low levels of e-literacy do not understand some of today‘s e-government security systems. This security system provides multiple authentication methods. Some e-government services require simple authentication while other highly classified transactions demand strong authentication. This security system provides multiple authorization schemes, information integrity schemes and digital signature schemes. These schemes can be configured to accommodate different e-literacy levels. The system integrates a registration system, a certification system, an authorization system, and a smart card system. It bases on the Security Assertion Markup Language (SAML) standard, which is an XML-based framework for exchanging security information. The system can be integrated in existing e-government systems and can be built-in in new e-government systems. Information of different levels of classification can be stored in same websites and can be accessed through multiple authentication and authorization methods. This system enables the society to perform secure e-government transactions and accommodates different e-literacy levels.

Place, publisher, year, edition, pages
Keyword [en]
Attribute certificate, integrated security system, e-literacy, assertion, and anonymity
National Category
Information Science
URN: urn:nbn:se:kth:diva-34474OAI: diva2:421692
QC 20110609Available from: 2011-06-09 Created: 2011-06-09 Last updated: 2011-06-09Bibliographically approved

Open Access in DiVA

fulltext(269 kB)180 downloads
File information
File name FULLTEXT01.pdfFile size 269 kBChecksum SHA-512
Type fulltextMimetype application/pdf

Search in DiVA

By author/editor
Mwakalinga, G. JeffyYngström, Louise
By organisation
School of Information and Communication Technology (ICT)
Information Science

Search outside of DiVA

GoogleGoogle Scholar
Total: 180 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Total: 71 hits
ReferencesLink to record
Permanent link

Direct link