Change search
ReferencesLink to record
Permanent link

Direct link
Integrated security administration in a global information system: From Research to Reality
KTH, School of Information and Communication Technology (ICT).
2004 (English)In: Proceedings of the International Information Technology Conference, 2004Conference paper (Refereed)
Abstract [en]

This paper describes an integrated security administration for global organizations and electronic government systems. It integrates certification systems, authorization systems, registration systems and smart card systems. Many organizations today are having departments all over the world. Employees, employers and customers have to access information located in different countries. This complicates management of security systems for the organizations. The challenges that the organization face include providing authentication, authorization, protection of information, non-repudiation, integrity, privacy and other security services in the global environment. Today, organizations usually install certification, authorization, smart card, and registration systems and apply them separately without sharing common data and without any common security administration procedures. Thus, a new employee or citizen, who needs registration services, a smart card, a public key certificate, and authorization attributes must usually identify her multiple times and must perform registration procedure at four different administration stations. In this research, we designed an integrated security administration procedure for all four-security systems, where we register users only once and the four security systems share all relevant security data and procedures. Therefore, the new integrated security administration is more efficient than existing procedures and it is simpler to manage and saves administration costs. This system bases on the Security Assertion Markup Language (SAML). SAML is an XML-based framework for exchanging security information. The research has achieved two goals: functional integration of data and security administration procedures and visual integration through a common security administration interface. These results are of high interest and importance when managing different components of an integrated security system.KEYWORDSPKI System, authorization, SAML, Directory system, smart card system, certification authority and attribute authority

Place, publisher, year, edition, pages
Keyword [en]
PKI System, authorization, SAML, Directory system, smart card system, certification authority and attribute authority
National Category
Computer and Information Science
URN: urn:nbn:se:kth:diva-34518OAI: diva2:421803
QC 20110609Available from: 2011-06-09 Created: 2011-06-09 Last updated: 2011-06-09Bibliographically approved

Open Access in DiVA

fulltext(209 kB)83 downloads
File information
File name FULLTEXT01.pdfFile size 209 kBChecksum SHA-512
Type fulltextMimetype application/pdf

Search in DiVA

By author/editor
Mwakalinga, JeffyYngström, Louise
By organisation
School of Information and Communication Technology (ICT)
Computer and Information Science

Search outside of DiVA

GoogleGoogle Scholar
Total: 83 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Total: 45 hits
ReferencesLink to record
Permanent link

Direct link