The electronic identities for natural persons become increasingly important to build services both at national level or in cross-border scenarios. To efficiently and securely handle them, several European Union (EU) Member State countries have developed various electronic identity systems. The eIDAS Network (implementing the European eIDAS Regulation 910/2014) connects such systems in a unified Pan-European infrastructure to allow citizens’ access to cross-border services within EU with their national authentication credentials. While the eIDAS Network as well as the main actors involved (eIDAS-Nodes, Identity and Service Providers) are known, its integration with entities providing other citizen attributes to the eIDAS Network is still an open issue.We propose ATEMA, an attribute enablement module, which combines citizen authentication via eIDAS Network with the retrieval of additional citizen data from national Attribute Providers. ATEMA implements two different solutions exploiting different technologies and standards to support the user consent management and the authorization of the released data, like the OAuth 2.0 protocol. With a prototype implementation, we detail the two solutions and their integration with the Italian eIDAS-Node and with an Attribute Provider at Politecnico di Torino (Italy) providing academic attributes.
ATEMA: An attribute enablement module for attribute retrieval and transfer through the eIDAS Network / Berbecaru, Diana; Cameroni, Cesare. - ELETTRONICO. - (2020), pp. 532-539. (Intervento presentato al convegno 2020 24th International Conference on System Theory, Control and Computing (ICSTCC) tenutosi a Sinaia, Romania nel 8-10 October 2020) [10.1109/ICSTCC50638.2020.9259642].
ATEMA: An attribute enablement module for attribute retrieval and transfer through the eIDAS Network
Berbecaru, Diana;Cameroni, Cesare
2020
Abstract
The electronic identities for natural persons become increasingly important to build services both at national level or in cross-border scenarios. To efficiently and securely handle them, several European Union (EU) Member State countries have developed various electronic identity systems. The eIDAS Network (implementing the European eIDAS Regulation 910/2014) connects such systems in a unified Pan-European infrastructure to allow citizens’ access to cross-border services within EU with their national authentication credentials. While the eIDAS Network as well as the main actors involved (eIDAS-Nodes, Identity and Service Providers) are known, its integration with entities providing other citizen attributes to the eIDAS Network is still an open issue.We propose ATEMA, an attribute enablement module, which combines citizen authentication via eIDAS Network with the retrieval of additional citizen data from national Attribute Providers. ATEMA implements two different solutions exploiting different technologies and standards to support the user consent management and the authorization of the released data, like the OAuth 2.0 protocol. With a prototype implementation, we detail the two solutions and their integration with the Italian eIDAS-Node and with an Attribute Provider at Politecnico di Torino (Italy) providing academic attributes.File | Dimensione | Formato | |
---|---|---|---|
09259642.pdf
accesso riservato
Tipologia:
2a Post-print versione editoriale / Version of Record
Licenza:
Non Pubblico - Accesso privato/ristretto
Dimensione
927.67 kB
Formato
Adobe PDF
|
927.67 kB | Adobe PDF | Visualizza/Apri Richiedi una copia |
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
https://hdl.handle.net/11583/2853657