A Flexible Security System for Enterprise and e-Government Portals
نویسندگان
چکیده
Web-based systems like enterprise and e-government portals pose special requirements to information security. Today’s portal platforms provide some security functionality, mainly targeting at supporting a single-sign-on for the underlying applications. We argue that singlesign-on is not sufficient, but rather a mature security service is needed as a central authorization instance. As access control is needed on different levels of a portal architecture, only this allows an integrated approach to security management. We present CSAP (Communication Security, Authentication, and Privacy), a flexible security system for enterprise and e-government portals. CSAP was originally developed within the EUfunded research project “Webocracy”. Meanwhile, various enhancements to CSAP have been made, which are being discussed in this paper. The major enhancement is a Metadata-based Access Control facility (MBAC) which allows more flexibility in highly open and heterogeneous systems. We use CSAP within two portal prototypes, one in an enterprise one in an e-government context, which are being presented as case studies.
منابع مشابه
Nortel Unified Security Framework for corporate and government security
Every IT security professional should be up-to-date on the challenges to corporate and government security — and the latest recommendations to address those challenges. Executive summary Today’s virtual enterprise faces a security paradox. The ports and portals that welcome mobile users, customers and business partners into the trusted internal network also, if not appropriately secured, welcom...
متن کاملIdentifying and Ranking Technology-Telecommunications Context of Information Security anagement System in E-Government Using Fuzzy AHP Approach
In recent years, many security threats have entered into the organizations’ information and changed the organizational performance resulting in their exorbitant costs. This question is of particular importanceabout government agencies that use information and Internet systems. This issue enabled the top managers of organizations to implement a security system and minimize these costs. Using In...
متن کاملE-service quality model for Indian government portals: citizens' perspective
Purpose – E-government implementation evolves through different stages of maturity, enforcing changes in strategies at each level. The transitions of service maturity phases pose continuous challenges to service providers in assessing the e-service quality of web-based services used in government. This study is conducted to propose a multi item scale for assessing the e-service quality of gover...
متن کاملSecurity Challenges For Expanding E-governments’ Services
In the scope and vision of using and expanding the types of services e-government portals can offer to citizens, one of the major challenges and possible barriers is the security concern. Unlike typical websites that include largely data to browse and download, such portals are expected to have sensitive private personal data about country citizens. The threat of possible intrusion or identity ...
متن کاملIncorporating the Biometric Voice Technology into the E-Government Systems to Enhance the User Verification
Many courtiers around the world have started their e-government programs. E-government portals will be increasingly used by the citizens of many countries to access a set of services. Currently, the use of the e-government portals arises many challenges; one of these challenges is the security issues. E-government portals security is a very important characteristic in which it should be taken i...
متن کامل