European Workshop on Trust & Identity

In cooperation with GeantLogo184x80

EIW 2013 Wed Session 1A

eID and Government stuff

Are there some differences at Enterprise Level
1) Will enterprises join the eID idea?
2) Vendors strategies vs. Concepts vs. Needs
3) Requirements on E-Level

many different discussions here.

The enterprises think on how can we use that.
Vendors think how can we implement it

Developing products and solutions within the federated identity area.

Solutions of strong authentication and identity management and provisioning services. How can we use this SAML stuff.

beginning of 2000 federated identity management
go for identity management business - rules and rights management

Cloud services arise - bring own device/mobile.
Enterprise is thinking how can we use it....involve our identitites to use these services.

Address the customers - find strategies how they can implement such services.

"just deal with the authentication" no basic

all the


Fortune 500 - using system for IdM
cross boarder between enterprise - rights and roles outside the core services.
access management is done by the employers

What rights and who has it.
Service rights.

Using Federated Identity Management Concepts. Several Technical solutions...trying to solve these issues - Use MSFT - special protocols...when works with another big company - want to join their efforts. Ping...doesn't work together — > no common conecept.

Roles and rights management within IdM everywhere - not designed - not to define. On attribute level could be quite fine.


What does "join" mean in the question...
Projects like STORK/NSTIC coming from governmental use case.
Enterprises have really good IdM concepts - notification - identification.

Will bring their identities into outside world of the


Target "electronic identity" - there is an eID system...how can I join.


Small percentage only have

Enterprise has rich set of attributes.
Issue of i


Missing the Use-cases
missing use-cases...


Enterprise <--- relation, pay, work --> employer Enterprise need to provisions for there employees to get access to many systems Enterprise needs federation (SAML) for the Governments

  • Have administrative capacity and is good at
  • But not available in all places, e.g. some places in Africa

How do the state ID relate to the enterprise ID? When is my ID mine?

  • Which attributes are mine

The different between Enterprise and Government ID is that it is different attribute-sets: Health and Education

  • where do they fit?

== What are the, multi-countrie initiatives

  • STORK 1&2 <---- Central one in Europe
  • Prime privateLife
  • FutureID
  • SEDDIC <--- a lobby

== STORK Comments ==

  • STORK started as academic discussion/implementation
  • STORK-1 was government id for cross-boarder
  • Main result of STORK was that countries started to talk to each other
  • STORK-2 includes banking concept
  • There is a huge mismatch between Academic and Business cases

Where can we find the STORK use-cases?

  • How did STORK fail?
    • one thought they only focus on the in front of computer use cases
  • what use cases did they have?

== Who should provide eIDs? ==

  • In the nordic countries banks have positive trust
  • There is a negative trust towards bank in middle Europe
    • Who do you trust in middle Europe?
  • A heat map over Europe would be interesting

== Japan Comments

  • eID concept, thinking about smart card similar to passports
  • 800 hi-ed trying to outsource identity with federation (SAML)
    • Might be possible to use for commercial use cases too

Note takers: Kaliya, Samuel