An Approach towards Digital Signatures for e-Governance in India

Jain, Vijay; Kumar, R. K. Senthil; Saquib, Zia

doi:10.1145/2846012.2846014

Cited by 10 publications

(8 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Different authentication protocols to test are adopted by the various departments for their projects. For authentication, identification is important because, ultimately, the identity of the user will be proved in the authentication [37,56]. e proposed protocols and methods identified in NeAF are as follows:…”

Section: Authentication Protocols E Organizations Build Information and Communication Technology-(ict-) Basedmentioning

confidence: 99%

Lightweight Technical Implementation of Single Sign-On Authentication and Key Agreement Mechanism for Multiserver Architecture-Based Systems

Anand

Khemchandani²,

Sabharawal

et al. 2021

Security and Communication Networks

View full text Add to dashboard Cite

Authentication is the primary and mandatory process for any Information and Communication Technology (ICT) application to prove the legitimacy of the genuine user. It becomes more important and crucial for public platforms like e-governance platforms. The Government of India is transforming the country into Digital India through various e-governance initiatives based on ICT. For authentication, National e-Authentication Framework (NeAF) was proposed by the Indian government which is a policy framework for authentication. This framework does not provide any technical and unified solution for authentication systems while it is based on centralized verification data. In this paper, we proposed a solution for the authentication which provides the unified authentication solution for the Indian e-governance system with existing infrastructure. This solution also provides the features such as scalability, security, and transparency based on distributed computing and working on multiserver architecture. This solution also fulfills the need of the current Indian government to provide multiple e-governance services through a single smart card.

show abstract

Section: Authentication Protocols E Organizations Build Information and Communication Technology-(ict-) Basedmentioning

confidence: 99%

Lightweight Technical Implementation of Single Sign-On Authentication and Key Agreement Mechanism for Multiserver Architecture-Based Systems

Anand

Khemchandani²,

Sabharawal

et al. 2021

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…There are now more than 600 CAs in more than 50 countries [24]. The CA is a single point of failure [ 14] and rogue certi cates can be issued with malicious intent, affecting the entire PKI [TOR,08].…”

Section: B) Managing the Private Keysmentioning

confidence: 99%

“…Wang, Bai and Hu, 2015 suggest several signature approaches to make the certi cation process go as long as one of the certi cate authorities is not compromised. A Paper-Based Approach to Electronic Governance Electronic Signatures in India [24] Electronic signatures are stored in HSMs and smart cards can be lost.…”

Section: B) Managing the Private Keysmentioning

confidence: 99%

“…The rest of the article is organized as follows: This section provides a useful overview for literature in the eld of PCI. The solution to handle CA's MITM attacks implements multiple signatures [10] using the aadhar number [24] provided by UIDAI to authenticate the online entity prior to authentication, 3.I will explain in the part. The CA / Sub CA certi cate generation algorithm is described in Sect.…”

Section: B) Managing the Private Keysmentioning

confidence: 99%

See 1 more Smart Citation

A Novel Framework for Efficient Multiple Signature on Certificate with Database Security

Tanwar¹,

Badotra

Rana³

2021

Preprint

View full text Add to dashboard Cite

PKI gives undeniable degree of safety by transferring the key pair framework among the clients. By constructing, a PKI we combine digital identities with the digital signatures, which give an end-to-end trust model. Basically, PKI is an attempt, which can simulate the real-world human analyzation of identity and reliability in a computerized fashion. In any case, the existing applications are centered on a tight trust model which makes them inadequate as an overall device for trust examination. After years of research, development and deployment, PKI still facing strong technical and organizational challenges such as attacks against Certificate Authorities (CA). CAs are the primitive component of PKIs which plays powerful role in the PKI model. CA must be diligent, creditable and legitimate. In any case, a technocrat who picks up control on a CA can use CA's certificate to issue bogus certificate and impersonate any site, such as - DigiNotar, GobalSign, Comodo and DigiCert Malaysia. In this paper we proposed an approach to reduce the damage of compromised CA/CA’s key by imposing Multiple Signatures (MS) after verifying/authenticating user’s information. One single compromised CA is not able to issue a certificate to any domain as multiple signatures are required. Private key and other perceptive information are stored in the form of object/blob. Without knowing the structure of class no one can access the object and object output stream. Proposed MS achieve better performance over existing MS schemes and control fraudulent certificate issuance with more database security. The proposed scheme also avoids MITM attack against CA who is issuing certificate to whom which is using the following parameters such as identity of Sender, Receiver, Timestamp and Aadhar number.

show abstract

“…This system uses a layered security structure with combined technologies, including a usage control scheme called Enterprise Digital Right Management (E-DRM) to prevent the illegal use and leaking of data, a counterfeit prevention technology using a 2-D bar code to prevent illegal data modification and a Public Key (PKI) scheme to ensure the authenticity of the data [27]. • A prototype is being tested by the government of India in that the proposal is an integrated digital signature approach based on cloud computing to enable electronic authentication and data security in the transaction phase of digitized services [42].…”

mentioning

confidence: 99%

Best Practices and Methodologies to Promote the Digitization of Public Services Citizen-Driven: A Systematic Literature Review

Leão

Canedo

2018

Information

View full text Add to dashboard Cite

Governments at all levels have a mandate to provide services, protect society, and make the economy prosper. While this is a long-term goal, citizens are now expecting greater and faster delivery of services from government. This paper presents a systematic literature review of service digitization carried out by the governments of several countries, which was motivated by the lack of primary studies in the literature related to the identification of the processes and methodologies adopted by these governments and private companies to provide their services to the citizen. This work also contributes to the identification of best practices, technologies and tools used for the provision and evaluation of digitized services provided and how governments are evaluating the gains from digitization. These results of this systematic literature review serve as inputs to guide current and future research of the Brazilian Government in the construction of a digital platform for the provision of its services directed to the citizen, seeking to analyze their needs and improving the services currently provided.

show abstract

An Approach towards Digital Signatures for e-Governance in India

Cited by 10 publications

References 14 publications

Lightweight Technical Implementation of Single Sign-On Authentication and Key Agreement Mechanism for Multiserver Architecture-Based Systems

Lightweight Technical Implementation of Single Sign-On Authentication and Key Agreement Mechanism for Multiserver Architecture-Based Systems

A Novel Framework for Efficient Multiple Signature on Certificate with Database Security

Best Practices and Methodologies to Promote the Digitization of Public Services Citizen-Driven: A Systematic Literature Review

Contact Info

Product

Resources

About