Personal Identification in the Web Using Electronic Identity Cards and a Personal Identity Provider

Abstract : This paper presents a new paradigm for implementing the authentication of individuals within Web sessions. Nowadays many countries have deployed electronic identity cards (eID tokens) for their citizens’ personal identification, but these are not yet well integrated with the authentication of people in Web sessions. We used the concept of Personal Identity Provider (PIdP) to replace (or complement) the role ordinarily given to institutional Identity Providers (IdPs), which are trusted third parties to which service providers delegate the identification and the authentication of their clients. By running locally on a citizen’s computer, the PIdP paradigm is well suited to assist his/her eID-based authentication. In this paper we describe an eID-based authentication protocol handled by a PIdP, its implementation and its integration in a production scenario (a campus-wide, Shibboleth IdP-based authentication infrastructure used in University of Aveiro).
Type de document :
Communication dans un congrès
David Naccache; Damien Sauveron. 8th IFIP International Workshop on Information Security Theory and Practice (WISTP), Jun 2014, Heraklion, Crete, Greece. Springer, Lecture Notes in Computer Science, LNCS-8501, pp.160-169, 2014, Information Security Theory and Practice. Securing the Internet of Things. 〈10.1007/978-3-662-43826-8_12〉
Liste complète des métadonnées

Littérature citée [4 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01400938
Contributeur : Hal Ifip <>
Soumis le : mardi 22 novembre 2016 - 16:24:23
Dernière modification le : mercredi 23 novembre 2016 - 08:47:43
Document(s) archivé(s) le : mardi 21 mars 2017 - 03:00:36

Fichier

978-3-662-43826-8_12_Chapter.p...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

André Zúquete, Hélder Gomes, Cláudio Teixeira. Personal Identification in the Web Using Electronic Identity Cards and a Personal Identity Provider. David Naccache; Damien Sauveron. 8th IFIP International Workshop on Information Security Theory and Practice (WISTP), Jun 2014, Heraklion, Crete, Greece. Springer, Lecture Notes in Computer Science, LNCS-8501, pp.160-169, 2014, Information Security Theory and Practice. Securing the Internet of Things. 〈10.1007/978-3-662-43826-8_12〉. 〈hal-01400938〉

Partager

Métriques

Consultations de la notice

141

Téléchargements de fichiers

31