Abstract
The substantiative experimental study of private information box project of Japanese e-Government proved the effectiveness of the New Authentication Extension Technology to combine different social infrastructures to create new Secure services between Public Sector and Private Sector(Citizen). Though there are still issues to cope with outside of the realm of technology including accountability of each participants and the level of the service, OpenID and SAML are key federated identity protocols. Both SAML and OpenID define mechanisms in support of expressing assurance information on protocol messages, respectively Authentication Context and the Provider Authentication Policy Extension (PAPE). In deployment scenarios that require proxying from one of the protocols to the other, it becomes necessary to map to and from the corresponding assurance mechanisms. This paper provides theoretical and experimental study on this mapping and related issues.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Authentication Context for the OASIS Security Assertion Markup Language (SAML) V2.0 (2005), http://docs.oasis-open.org/security/saml/v2.0/saml-authn-context-2.0-os.pdf
Federal Identity, Credentialing, and Access Management, OpenID 2.0 Profile (2009), http://www.idmanagement.gov/documents/ICAM_OpenID20Profile.pdf
Hori, M., Ohashi, M.: Implementing Adaptive Collaborative Telework in Public Administration. In: Hori, M., Ohashi, M. (eds.) eAdoption and the Knowledege Economy: Issues, Applications, Case Studies, pp. 708–714. IOS Press, Amsterdam (2004a)
Hori, M., Ohashi, M.: Applying XML Web Services into health care management. In: Proceedings of the 38th Annual Hawaii Conference on System Science, Hawaii (2005a)
Hori, M., Ohashi, M.: Adaptive Collaboration:The Road Map to Leading Telework to a More Advanced and Professional Working Format. The Journal of the IPSI BgD Transaction on Advanced Research Issues in Computer and Engineering, IPSI Bgd Internet Research Society, 6–42 (2005b)
Hori, M., Ohashi, M.: The Municipality’s Role for Building of the Regional Health & Medical Welfare Information Services System. Journal of Policy & Culture 13 (2006a)
Hori, M., Ohashi, M.: On the Study of Collaborative Telework in the Infosocionomics Society. Journal of Policy & Culture 13 (2006b)
Hori, M., Ohashi, M.: Citizen-Centric s-Healthcare Management Based on the XML Web Services. In: Cunningham, P., Cunningham, M. (eds.) Exploiting the Knowledge Economy, Issues, Applications, Case Studies, pp. 957–964. IOS press, Amsterdam (2006c)
Hori, M., Ohashi, M., Ssuzuki, S.: Citizen-Centric Approach and healthcare Management Base on the XML Web Serrvices. In: Proceedings of the 12th European Conference on Information Technology Evaluation, p. 241 (2005)
Madsen, P., Sakushima, T.: Deployment Guide for Proxying Assurance between OpenID and SAML v3, OpenID, Kantara Initiative Deployment Guideline draft (2010)
Ministry of Economics,Trade and Industry edited, Report of Digital Citizen Project (2010)
National Institute of Standards and Technology (NIST), Electronic Authentication Guideline, NIST Special Publication (SP) 800-63, Version 1.0.2 (2006), http://csrc.nist.gov/publications/nistpubs/800-63/SP800-63V1_0_2.pdf , Draft Revision 1, http://csrc.nist.gov/publications/PubsDrafts.html/SP-800-63-Rev.%201
Office of Management and Budget (OMB), E-Authentication Guidance for Federal Agency, OMB Memorandum 04-04, 13 (2003), http://www.whitehouse.gov/omb/memoranda/fy04/m04-04.pdf
Ohashi, M. (ed.): The Report of Society for the Advance Study on e-Society, The Society of the Basis for e-Community (2003a)
Ohashi, M. (ed.): Knowledge-Based Collaborative Work, The Report of Supplementary Budget Project of the Ministry of Post and Telecommunications (2003b)
Ohashi, M. (ed.): The Report of the Advanced Studies for the Social Capital of e-Society, The Society of theBasis for the e-Community (2004)
Ohashi, M. (ed.): XML Web Services for Next Generation & A view of Citizen Centric. Kinokuniya Co. Ltd., Japan (2005)
Ohashi, M., Hori, M.: The Theory of Economics for Network Societ, pp. 2–5, 106–118. Kinokuniya Co., Ltd., Japan (2005)
Ohashi, M., Hori, M.: Security Management Services Based on Authentication Roaming between Different Certificate Authorities. In: Proceeding of CENTRIS 2009, pp. 201–214 (2009)
OpenID Foundation Japan CX Working Group edited, Contract Exchange (CX) Extension Use Cases and Requirements (2009)
OpenID Provider Authentication Policy Extension 1.0 (2008), http://openid.net/specs/openid-provider-authentication-policy-extension-1_0.html
Sakimura, N., Sakushima, T., Nara, H., Blackmer, S.: Contract Exchange Extension 1.0 Draft 1, Kantara Initiative Deployment Guideline draft (2010)
SAML V2.0 Identity Assurance Profiles Version 1.0 Committee Draft01 (2009), http://www.oasis-open.org/committees/download.php/36496/sstc-saml-assurance-profile-cd-01.pdf
Web Services Initiative,Web Services Application Guideline, pp.29–31, 66 (2005)
Web Services Initiative, The Report of Web2.0 and Citizen Centric Technology (2007)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2010 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Ohashi, M., Sakimura, N., Sakushima, T., Hori, M. (2010). On the Substantiative Experiment Study of Proxing Assurance between OpenID and SAML: Technical Perspective for Private Information Box Project of Japanese e-Government. In: Quintela Varajão, J.E., Cruz-Cunha, M.M., Putnik, G.D., Trigo, A. (eds) ENTERprise Information Systems. CENTERIS 2010. Communications in Computer and Information Science, vol 110. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-16419-4_39
Download citation
DOI: https://doi.org/10.1007/978-3-642-16419-4_39
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-16418-7
Online ISBN: 978-3-642-16419-4
eBook Packages: Computer ScienceComputer Science (R0)