Title: Optimise data exchange between government administrations while ensuring privacy rights
Authors: Christophe Gaie
Addresses: Centre Interministériel De Services Informatiques Relatifs, Aux Ressources Humaines, Paris, France
Abstract: Nowadays, federated single sign-on systems are widely used in the context of web services. Private firms such as Google or Facebook highly contribute to the growth of this authentication system, especially in the context of e-commerce. However, the identity management is still a concern in the context of public services where identities are distinct between ministries or governmental services. Although countries developed federated single sign-on services such as France Connect for the French Administration, these mechanisms often require the explicit approval of the citizen. This consent aims to protect privacy rights defined by the general data protection regulation (GDPR) but it also prevents independent data exchange in the administration which would provide better efficiency. In the present article, we propose to enhance the existing FSSO system by introducing an identity translation mechanism based on personal marks or prints. This enables to perform administrative procedures while dispensing of the user consent.
Keywords: index terms; federated single sign-on; FSSO; general data protection regulation; GDPR; privacy, public services; France Connect.
International Journal of Business Intelligence and Systems Engineering, 2021 Vol.1 No.4, pp.347 - 357
Received: 13 Jul 2021
Accepted: 31 Jan 2022
Published online: 10 May 2022 *