Abstract
This paper is derived from research work conducted within eMayor project, funded by the EU committee (IST-2003-507217). Motivation of the project was the fact that small and medium sized governmental organizations (SMGOs) interact frequently with citizens and/or businesses, to offer paper-based and electronic services utilizing a limited number of resources (e.g. employees and funds). SMGOs also interact with each other, in local or cross-border transactions, to exchange information on behalf of citizens, businesses or the organization itself. Main objectives of eMayor are to build a secure, interoperable, cost-effective and open e-government platform, addressing the needs of SMGOs. The core of the eMayor platform will be built upon state-of-the-art web-services technology which enables the interoperability with existing web-services already provided by governmental organizations. However, the problem of heterogeneity of security, access control, privacy and process flow policies among the different organization remains, both on national and international level. To provide full interoperability a framework which solves the addressed issues and provides transparent coordination of different policy enforcement mechanisms is needed. Such a framework, enforcing security and access-control policies across a decentralized network of governmental organizations is discussed in this paper. First the system architecture of eMayor platform is introduced. Thereafter, general and specific security requirements that apply to an interoperable e-government platform are discussed and the trust model together with the roles which pose different authentication and authorization attributes are depicted. Results of the requirements analysis provide input for platform design. Policy enforcement mechanisms together with an overview of security solutions on identified communication channels are presented. Deployment of chosen technologies, specifically for distributed e-Government structures, is introduced taking into account the possible extensions in order to provide higher level of security standards. The paper concludes with final objectives on policy enforcement framework and outlines the work in progress.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
eMayor Consortium, Municipal Services –Analysis, Requirements and Usage scenarios (2004)
eMayor Consortium, eMayor System Design (2004)
Information technology, Open Distributed Processing - Reference Model: Architecture, ISO (1996)
Blinov, M., Patel, A.: An application of the reference model for open distributed processing to electronic brokerage, Computer Standards and Interfaces. Elsevier Science, Amsterdam (2003)
German Federal Ministry of Interior, SAGA - Standards and Architectures for e-government Applications, version 2.0 (December 2003)
Information Technology, Open Distributed Processing - Reference Model: Enterprise Viewpoint, ISO (2001)
Core Specification, eXtensible Access Control Markup Language (XACML) Version 1.1, OASIS (2003)
Core Specification, Security Assertion Markup Language (SAML) Version 1.1, OASIS (2004)
Cerami, E.: Web Services Essentials. O’Reilly, Sebastopol (2002)
Rosenberg, J., Remy, D.: Securing Web Services with WS-Security, SAMS (2004)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2005 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Oikonomidis, N., Tcaciuc, S., Ruland, C. (2005). Provision of Secure Policy Enforcement Between Small and Medium Governmental Organizations. In: Katsikas, S., López, J., Pernul, G. (eds) Trust, Privacy, and Security in Digital Business. TrustBus 2005. Lecture Notes in Computer Science, vol 3592. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11537878_15
Download citation
DOI: https://doi.org/10.1007/11537878_15
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-28224-2
Online ISBN: 978-3-540-31796-8
eBook Packages: Computer ScienceComputer Science (R0)