Enhancing Public Digital Identity System (SPID) to Prevent Information Leakage

Buccafurri, Francesco; Fotia, Lidia; Lax, Gianluca; Mammoliti, R.

doi:10.1007/978-3-319-22389-6_5

Cited by 6 publications

(3 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…to access Italian university portals or the services offered by ministries and governmental agencies. As mentioned in [38], SPID is a public identity system which permits public and private entities to act as IdP, provided that they are accredited by the Agency for Digital Italy (AgID). The SPID IdPs have to ensure a suitable procedure for the initial identification of citizens, and have to provide authentication credentials called SPID credentials of different levels of security.…”

Section: A Authentication Through Spid In Italymentioning

confidence: 99%

Providing Login and Wi-Fi Access Services With the eIDAS Network: A Practical Approach

2020

View full text Add to dashboard Cite

The digital identity (or electronic identity) of a person is about being able to prove upon authentication who one is on the Internet, with a certain level of assurance, such as by means of some attributes obtained from a trustworthy Identity Provider. In Europe, the eIDAS Network allows the citizens to authenticate securely with their national credentials and to provide such personal attributes when getting access to Service Providers in a different European country. Although the eIDAS Network is more and more known, its integration with real operational services is still at an initial phase. This paper presents two eIDAS-enabled services, Login with eIDAS and Wi-Fi access with eIDAS, that we have designed, implemented, deployed, and validated at the Politecnico di Torino in Italy. The validation study involved several undergraduate students, who have run the above services with their authentication credentials and platforms and with minimal indications on their usage. The results indicate that the services were beneficial. Several advantages exist both for the users and for the Service Providers, such as resistance to some security attacks and the possibility to adopt the service without prior user registration (e.g. for short meetings, or in public places). However, some students expressed doubts about exploiting their national eID for Wi-Fi access, mainly in connection with usability and privacy issues. We discuss also these concerns, along with advantages and disadvantages of the proposed services. INDEX TERMS cross-border authentication, eIDAS Regulation, electronic identification, Login service, Wi-Fi access service.

show abstract

Section: A Authentication Through Spid In Italymentioning

confidence: 99%

Providing Login and Wi-Fi Access Services With the eIDAS Network: A Practical Approach

2020

View full text Add to dashboard Cite

show abstract

“…In [12], the authors propose a modification of SPID to allow user authentication by preserving the anonymity of the identity provider which grants the authentication credentials. This approach solves a problem different from the one we address.…”

Section: Related Workmentioning

confidence: 99%

A Warning on Software Interoperability in e-Health

Lax¹

2019

IJMLC

Self Cite

View full text Add to dashboard Cite

Software interoperability refers to how a software system can be used with other software systems. One of the most relevant challenges in 2017 to reach software interoperability in e-health is to develop a standardized way of identifying patients. The recent Regulation (EU) N. 910/2014, eIDAS for short, enables secure mutual identification between citizens and public authorities, and this is achieved by a cooperative approach defined by the eIDAS Interoperability Architecture. In this paper, we analyze this software architecture and show that it may results in a privacy problem, if the identification procedure regards a health service. Moreover, a solution to this problem is proposed, which is based on a modification of the protocol defined by the eIDAS Interoperability Architecture to reach the goal of the anonymity of the service requested by the patient.

show abstract

“…However, there have been issues with the accessibility of the system, with some users experiencing difficulty obtaining and using the smart card. Additionally, there have been concerns about data privacy and security breaches (Buccafurri et al, 2015).…”

mentioning

confidence: 99%

National Digital Identity: Current Landscape, Emerging Technologies and Future Directions

Zulkifli¹,

Abidin²,

Ariff³

et al. 2023

IJARBSS

View full text Add to dashboard Cite

The proliferation of digital services has led to an increasing demand for secure and reliable digital identity verification, resulting in the development of national digital identity (NDI) systems. These systems provide individuals with a trusted method of verifying their online identity, a necessary prerequisite for accessing a wide range of services, such as banking, healthcare and government services. This review paper takes an in-depth look at the evolution of NDI systems and the advanced technologies that have improved their security and reliability. It looks at the notable NDI systems and digital identity programmes that have been introduced in different countries and analyses both their successes and limitations. In addition, the paper examines emerging technologies such as blockchain and their potential impact on NDI systems. Based on the assessment of these systems and technologies, practical recommendations and best practises are provided for the future development and implementation of NDI systems in other countries.

show abstract

Enhancing Public Digital Identity System (SPID) to Prevent Information Leakage

Cited by 6 publications

References 12 publications

Providing Login and Wi-Fi Access Services With the eIDAS Network: A Practical Approach

Providing Login and Wi-Fi Access Services With the eIDAS Network: A Practical Approach

A Warning on Software Interoperability in e-Health

National Digital Identity: Current Landscape, Emerging Technologies and Future Directions

Contact Info

Product

Resources

About