Solving identity delegation problem in the e-government environment |
| |
Authors: | Sergio S??nchez Garc??a Ana G??mez Oliva Emilia P??rez Belleboni Iv??n Pau de la Cruz |
| |
Affiliation: | 1. T>SIC Group, DIATEL, Polytechnic University of Madrid, Ctra. Valencia Km. 7, 28031, Madrid, Spain
|
| |
Abstract: | At present, many countries allow citizens or entities to interact with the government outside the telematic environment through
a legal representative who is granted powers of representation. However, if the interaction takes place through the Internet,
only primitive mechanisms of representation are available, and these are mainly based on non-dynamic offline processes that
do not enable quick and easy identity delegation. This paper proposes a system of dynamic delegation of identity between two
generic entities that can solve the problem of delegated access to the telematic services provided by public authorities.
The solution herein is based on the generation of a delegation token created from a proxy certificate that allows the delegating
entity to delegate identity to another on the basis of a subset of its attributes as delegator, while also establishing in
the delegation token itself restrictions on the services accessible to the delegated entity and the validity period of delegation.
Further, the paper presents the mechanisms needed to either revoke a delegation token or to check whether a delegation token
has been revoked. Implications for theory and practice and suggestions for future research are discussed. |
| |
Keywords: | |
本文献已被 SpringerLink 等数据库收录! |
|