strong authentication and authorisation. stork and stork2.0
DESCRIPTION
Presentation on Strong Authentication and Authorisation at EUNIS 2013 in Riga. This presentation gives also an overview of STORK results and STORK2.0 objectives regarding authorisation.TRANSCRIPT
![Page 1: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/1.jpg)
University Information Systems and the need for strong authentication and authorisation.EUNIS Conference – Riga, Latvia – June 13th, 2013Vicente Andreu NavarroPaúl Santapau Nebot
Universitat Jaume IMember of STORK 2.0 Consortium
Leader of eLearning and Academic Pilot
Stork 2.0 is an EU co-funded project INFSO-ICT-PSP-297263
![Page 2: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/2.jpg)
2
Summary
• Identification and Authentication• Authorisation• Attributes • EU LSPs
![Page 3: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/3.jpg)
3
Identification and Authentication
Is the process of verifying that an identity is bound to the entity that makes an assertion or
claim of identity.
![Page 4: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/4.jpg)
4
Identification and Authentication
This process involves one or several factors
![Page 5: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/5.jpg)
5
Identification and Authentication
• Something you know.
![Page 6: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/6.jpg)
6
Identification and Authentication
• Something you have.
![Page 7: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/7.jpg)
7
Identification and Authentication
• Something you are.
![Page 8: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/8.jpg)
8
Identification and Authentication
• Where you are.
![Page 9: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/9.jpg)
9
Identification and Authentication
• Combination of factors – Something you know– Something you own– Something you are– Where you are
Identity card
Location
Biometrics
Password
TRUST
![Page 10: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/10.jpg)
10
Authorisation
Is the function of specifying access rights to resources, generally associated to access control. It is also related to the enabling of someone to do something. – Access to a web admin panel– Driving license– Food handling permit– Medicine practitioner– …
![Page 11: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/11.jpg)
11
Attributes
• Properties associated to an identity.
User
ID
Name
Surname
Address
Degree
Profession
Certificates
![Page 12: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/12.jpg)
12
Attributes
• More specifically
User
Basic Id Attributes Extended Id Attributes
Name Address
Date of Birth
Academic Life
Financial Life
Health Life
Public Services
DegreesProfession
CertificationsLanguages
Official permits
…Specific Business Attributes
…
![Page 13: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/13.jpg)
13
Identity Attributes
• Where are those attributes?
University
Banks Hospitals
Government
Police Companies
![Page 14: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/14.jpg)
14
Large Scale Pilot - STORK
![Page 15: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/15.jpg)
15
Large Scale Pilot - STORK
17 countries “PEPS/VIDP-Enabled” all over Europe
More than 30 services running
More than 40 different credentials supported
Results2008-2011
![Page 16: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/16.jpg)
16
LSP – STORK 2.0
![Page 17: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/17.jpg)
17
STORK 2.0: The Vision
STORK 2.0 will contribute to the realization of a single European electronic identification, authentication and authorisation area by:
– building on the results of STORK (2008 to 2011)– establishing interoperability of different approaches at national
and EU level, eID for persons, eID for legal entities and the facility to mandate
– Pilots: eLearning, eBanking, eHealth and Public Services for Businesses
![Page 18: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/18.jpg)
Pilot Key Facts
• Participating Countries
18
Czech Republic Slovenia
Greece Spain
Iceland Sweden
Italy Turkey
Lithuania UK
Portugal
![Page 19: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/19.jpg)
Pilot Key Facts
• Pilot Partners
19
Partner Name Full Name
CZ.NIC CZ.NIC, z.s.p.o
HMI Hellenic Ministry of Administration Reform and E-Governance
UAegean University of Aegean - Research Unit
IS-SKRA Registers Iceland
POLITO Politecnico di Torino
CSI CSI-Piemonte
LT-MOI Republic of Lithuanian Ministry of Interior
LT-IS State Enterprise Infostruktura
IST Instituto Superior Tecnico
![Page 20: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/20.jpg)
Pilot Key Facts
• Pilot Partners
20
Partner Name Full Name
IJS Jozef Stefan Institute
ES-UJI Universitat Jaume I
MINHAP Ministerio de Hacienda y Administraciones Públicas
ES-UMU Universidad de Murcia
SE-SU University of Stockholm
TUBITAK Turkiye Bilimsel Arastirmalar Kurumu
TURKSAT Turksat Inc.
UK CO UK Cabinet Office
YAP Yorkshire Authentication Project
![Page 21: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/21.jpg)
21
STORK 2.0 Pilots
eLearning & Academic Qualifications
Cross-border e-Learning environments
eLearning : Shared e-learning environment for joint degrees.
eSurvey Service: for designing and performing opinion surveys that target specific groups of individuals (students, professors, experts,…).
Academic Attribute Verification for Job Selection
TADS: to facilitate the attribute delivery to any party.
Job qualification Service: to facilitate verification of academic qualification for a job.
Job selection Service: to facilitate selection of workers to companies hiring foreign citizens with specific academic qualifications.
![Page 22: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/22.jpg)
Attributes in STORK 2.0Diploma Supplement
22
Name and Surname
Name of Qualification
Main Field of Studies
Overall Qualification
…
![Page 23: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/23.jpg)
Attributes in STORK 2.0
Attributes about current studies
23
Study Year
Current Grade
Courses
…
![Page 24: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/24.jpg)
Attributes in STORK 2.0
Attributes indicating roles
24
Is Student?
Is Academic Staff?
…
![Page 25: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/25.jpg)
Attributes in STORK 2.0
Other attributes– E-mail– Languages– …
25
![Page 26: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/26.jpg)
Attributes in STORK 2.0
26
Nam
eSurname
eID
Date of Birth
Academic AttributesAP SP
STORK 2.0 Infrastructure
![Page 27: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/27.jpg)
27
HOW TO GET INVOLVED…
• Visit STORK 2.0 website www.eid-stork2.eu !
• Subscribe to STORK 2.0 Newsletter!
• Participate & “like” Stork eID Facebook page!
• “Follow” us on Twitter @StorkEid !
• Connect to Stork 2.0 EID LinkedIn page!
• Register in STORK 2.0 online groups!
• Contact us at [email protected] !
![Page 28: Strong authentication and authorisation. STORK and STORK2.0](https://reader036.vdocuments.mx/reader036/viewer/2022062405/5577c503d8b42a1c068b5369/html5/thumbnails/28.jpg)
Thank you for your attention! www.eid-stork2.eu
Stork 2.0 is an EU co-funded project INFSO-ICT-PSP-297263