Change search
ReferencesLink to record
Permanent link

Direct link
Integrated Security System for E-Government based on SAML Standard
KTH, School of Information and Communication Technology (ICT).
KTH, School of Information and Communication Technology (ICT).
2004 (English)In: Proceedings of Information Security South Africa ISSA2004, 2004Conference paper (Refereed)
Abstract [en]

This paper describes an integrated security system for electronic-government services. Many governments are transforming manual government services to electronic government services. This transformation is in most cases done without involving users of the services. This makes users of these services have little trust in the e-government. Security is in most cases not addressed from the early stages of e-government development. Some governments depend on security solutions from private vendors and these governments do not have full control of security. E-government services have different levels of classification and so they require different types of authentication and authorization methods. Most e-government systems today use one form of authentication in all types of services without considering the different sensitivity levels. All countries have different levels of e-literacy and users with low levels of e-literacy do not understand some of today‘s e-government security systems. This security system provides multiple authentication methods. Some e-government services require simple authentication while other highly classified transactions demand strong authentication. This security system provides multiple authorization schemes, information integrity schemes and digital signature schemes. These schemes can be configured to accommodate different e-literacy levels. The system integrates a registration system, a certification system, an authorization system, and a smart card system. It bases on the Security Assertion Markup Language (SAML) standard, which is an XML-based framework for exchanging security information. The system can be integrated in existing e-government systems and can be built-in in new e-government systems. Information of different levels of classification can be stored in same websites and can be accessed through multiple authentication and authorization methods. This system enables the society to perform secure e-government transactions and accommodates different e-literacy levels.

Place, publisher, year, edition, pages
2004.
Keyword [en]
Attribute certificate, integrated security system, e-literacy, assertion, and anonymity
National Category
Information Science
Identifiers
URN: urn:nbn:se:kth:diva-34474OAI: oai:DiVA.org:kth-34474DiVA: diva2:421692
Note
QC 20110609Available from: 2011-06-09 Created: 2011-06-09 Last updated: 2011-06-09Bibliographically approved

Open Access in DiVA

fulltext(269 kB)177 downloads
File information
File name FULLTEXT01.pdfFile size 269 kBChecksum SHA-512
21768b4aaa6ef9a6f1cfee5af9736df13c16be51a59360bf4ec55d1c6876a8b58ce4e5a00358ee3450a924b84cb98aeef4a6ef308a2a3df19e526eb207958f0e
Type fulltextMimetype application/pdf

Search in DiVA

By author/editor
Mwakalinga, G. JeffyYngström, Louise
By organisation
School of Information and Communication Technology (ICT)
Information Science

Search outside of DiVA

GoogleGoogle Scholar
Total: 177 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Total: 71 hits
ReferencesLink to record
Permanent link

Direct link