The electronic identities for natural persons become increasingly important to build services both at national level or in cross-border scenarios. To efficiently and securely handle them, several European Union (EU) Member State countries have developed various electronic identity systems. The eIDAS Network (implementing the European eIDAS Regulation 910/2014) connects such systems in a unified Pan-European infrastructure to allow citizens’ access to cross-border services within EU with their national authentication credentials. While the eIDAS Network as well as the main actors involved (eIDAS-Nodes, Identity and Service Providers) are known, its integration with entities providing other citizen attributes to the eIDAS Network is still an open issue.We propose ATEMA, an attribute enablement module, which combines citizen authentication via eIDAS Network with the retrieval of additional citizen data from national Attribute Providers. ATEMA implements two different solutions exploiting different technologies and standards to support the user consent management and the authorization of the released data, like the OAuth 2.0 protocol. With a prototype implementation, we detail the two solutions and their integration with the Italian eIDAS-Node and with an Attribute Provider at Politecnico di Torino (Italy) providing academic attributes.

ATEMA: An attribute enablement module for attribute retrieval and transfer through the eIDAS Network / Berbecaru, Diana; Cameroni, Cesare. - ELETTRONICO. - (2020), pp. 532-539. (Intervento presentato al convegno 2020 24th International Conference on System Theory, Control and Computing (ICSTCC) tenutosi a Sinaia, Romania nel 8-10 October 2020) [10.1109/ICSTCC50638.2020.9259642].

ATEMA: An attribute enablement module for attribute retrieval and transfer through the eIDAS Network

Berbecaru, Diana;Cameroni, Cesare
2020

Abstract

The electronic identities for natural persons become increasingly important to build services both at national level or in cross-border scenarios. To efficiently and securely handle them, several European Union (EU) Member State countries have developed various electronic identity systems. The eIDAS Network (implementing the European eIDAS Regulation 910/2014) connects such systems in a unified Pan-European infrastructure to allow citizens’ access to cross-border services within EU with their national authentication credentials. While the eIDAS Network as well as the main actors involved (eIDAS-Nodes, Identity and Service Providers) are known, its integration with entities providing other citizen attributes to the eIDAS Network is still an open issue.We propose ATEMA, an attribute enablement module, which combines citizen authentication via eIDAS Network with the retrieval of additional citizen data from national Attribute Providers. ATEMA implements two different solutions exploiting different technologies and standards to support the user consent management and the authorization of the released data, like the OAuth 2.0 protocol. With a prototype implementation, we detail the two solutions and their integration with the Italian eIDAS-Node and with an Attribute Provider at Politecnico di Torino (Italy) providing academic attributes.
2020
978-1-7281-9809-5
File in questo prodotto:
File Dimensione Formato  
09259642.pdf

accesso riservato

Tipologia: 2a Post-print versione editoriale / Version of Record
Licenza: Non Pubblico - Accesso privato/ristretto
Dimensione 927.67 kB
Formato Adobe PDF
927.67 kB Adobe PDF   Visualizza/Apri   Richiedi una copia
Pubblicazioni consigliate

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11583/2853657