Title: A user-centric and federated Single-Sign-On IAM system for SOA e/m-frameworks

Authors: Athanasios Karantjias, Nineta Polemi, Teta Stamati, Drakoulis Martakos

Addresses: Department of Computer Science, University of Piraeus, Greece. ' Department of Computer Science, University of Piraeus, Greece. ' Department of Informatics and Telecommunications, National and Kapodistrian University of Athens, Greece. ' Department of Informatics and Telecommunications, National and Kapodistrian University of Athens, Greece

Abstract: Nowadays, the need for more user-centric privacy-aware transactions raises specific challenges that Service Oriented Architectures (SOA) need to address, including the problems of managing users| personal identification information and ensuring privacy and anonymity in the e/m-environment. This paper presents a targeted, user-centric and federated Single-Sign-On Identity Management System (IAM) called SecIdAM, and a mobile implementation framework for building privacy-aware, interoperable and secure mobile applications with respect to the way that the trust relationship among the involved entities, users and SOAs is established. Moreover, it analyses a user-transparent m-process, simulating the registration, negotiation of policies and identification information preferences, and user|s authorisation sessions, as integrated in the IST European programme SWEB for the public sector.

Keywords: e-government; m-government; e-privacy; m-privacy; service oriented architecture; SOA; federated access; single-sign-on; interoperability; XML cryptography; extensible mark up language; anonymity; PII; personal identification information; identity management systems; SecIdAM; user-centric; mobile implementation frameworks; privacy awareness; secure applications; security; trust; transparency; registration procedures; policy negotiation; identification information preferences; user authorisation; SWEB; cross border m-services; European Union; electronic privacy; Western Balkans; public sector; mobile government; mobile services; electronic government; mobile privacy; usability.

DOI: 10.1504/EG.2010.033589

Electronic Government, an International Journal, 2010 Vol.7 No.3, pp.216 - 232

Published online: 06 Jun 2010 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article