Securing Online Access to e-Government Services Through Federated ID
The subject of online identity is a complex and sometimes sensitive matter. When personal data is exchanged online, security is required to protect and stop the information exchanged being compromised. If online security is not addressed and secure services compromised, then users will lose trust and stop or limit usage. A Federated Identity Model (FIM) is a service solution offering identity as a service. A FIM brings in another level to the online authentication eco-system using an identity provider as a third party to authenticate an identity on the service providers behalf. The concept of a FIM is to create a trust framework between both the user and service provider. Through third party authentication the user knows the website is authentic and the service provider knows the identity they are serving is legitimate. Although not a new concept, offering identity as a service through a FIM is now gaining traction within the government market, seen as a solution to not only improve the security surrounding the authentication of digital identities, but also as a means of enabling extended accessibility, mobility, and usability through the cloud and mobile devices.
This report will address the emergence of FIMs within the government and e-government sectors, providing ABI Research’s insight into federated identity, the current work that is being conducted to create an online trusted framework/ecosystem and the likely future of FIMs being used to access e-government services. Also included within this study is analysis of the likely methods of online authentication, whether authentication will be completed using already existing smart card credential such as national ID and payment cards, mobile solutions and more traditional methods of authentication through user names and passwords.
Table of Contents
- 1. FEDERATED IDENTITY MANAGMENT GAINING TRACTION IN E-GOVERNMENT
- 1.1. FIM Definition
- 1.2. FIM Introduction
- 1.3. Forecast Introduction
- 2. FEDERATED IDENTITY TRENDS, DRIVERS, DRAWBACKS, AND TECHNOLOGY
- 2.1. Federated Identity Is Not a New Idea
- 2.1.1. Common Misconceptions of FIMs
- 2.2. E-government
- 2.3. Use of Existing Credentials
- 2.4. Trends in Adoption
- 2.5. FIM Advantages
- 2.6. FIM Drawbacks
- 2.7. Open Sourced/Published Specifications behind Federated Identities
- 2.7.1. SAML
- 2.7.2. OpenID
- 2.7.3. OAuth
- 2.8. What Is Driving Mobile Authentication?
- 2.9. Case Studies of Identities on Mobile Devices
- 2.9.1. United States Encouraging BYOD for Federal Employees
- 2.9.2. Finland Allowing Digital ID Storage on Smart Devices
- 2.10. Could A FIM Provide a True International Digital ID Framework?
- 2.11. Federated Identity Working Groups
- 2.11.1. National Strategy for Trusted Identities in Cyberspace
- 2.11.2. Identity Ecosystem Steering Group
- 2.11.3. Project STORK
- 2.12. Cloud Computing
- 2.13. FIM Use in Government Summary
- 3. ALTHOUGH IN ITS INFANCY, FEDERATED ID IS SET FOR RAPID ADOPTION IN THE GOVERNMENT SPACE
- 3.1. Increasing Coverage of E-government
- 3.2. Mobile Devices as the Future of Accessing E-government Services
- 3.3. National ID Cards
- 3.4. Potential Role of Banks and Financial Institutions
- 3.5. One Step Too Far - What Measures Could Possibly Hinder Federation Success?
- 3.6. OpenID Will Have Limited Use in Government Applications
- 3.7. OpenID Providers May Have More Success in the Enterprise Market
- 3.8. Who Stands to Benefit and Which Type of Organization Will Win Out?
- 3.9. Strategic Recommendations
- Government Federated ID Overview, Worldwide Forecast: 2013 to 2018
- E-government Service Coverage, Worldwide, Forecast: 2013 to 2018
- Government Federated ID Overview (Smartphone & Tablets Combined), Worldwide Forecast: 2013 to 2018
- Government Federated ID Smart National ID Card Overview, Worldwide Forecast: 2013 to 2018
- Government Federated ID Payment Smart Card Overview, Worldwide Forecast: 2013 to 2018
- FIM Block Diagram