Managing The Development Of Secure Identification - Investigating A National e-ID Initiative Within A Public e-Service Context

This paper investigates the management of developing electronic identification (e-ID) within a public e-service context. e-ID is an important key enabler for secure identification, authentication and digital signing via the Internet and a part of e-service design. As users, and citizens, we become reliant on electronic solutions that give us a certain level of utility and trust, and use e-ID solutions to interact with local and central government in an e-service context. The management of e-ID development in a national context is the case in focus for investigation. Such development initiatives, and especially inter-organizational projects, face a number of challenges. Therefore it is a need for a more thorough understanding of e-ID development within a public e-service context. The purpose is to analyse the contemporary management of e-ID development in Sweden from: a) an e-government systems development life-cycle perspective and b) a project challenge and critical success factor perspective. This study concludes that there are significant challenges involved in managing integrated e-ID development. Challenges involve the organization and management of the program and can be traced back to e-government and general project management literature, but based on this study one can question, e.g. governance models, centralization, and a narrow focus on a technical artefact. Important implications from this paper are a call for further contextual studies of e-ID development, putting the user and organizational setting, path dependency, and governance models in focus.FUSe - Future Safe Electronic Identificatio

Security and confidentiality approach for the Clinical E-Science Framework (CLEF)

CLEF is an MRC sponsored project in the E-Science programme that aims to establish policies and infrastructure for the next generation of integrated clinical and bioscience research. One of the major goals of the project is to provide a pseudonymised repository of histories of cancer patients that can be accessed by researchers. Robust mechanisms and policies are needed to ensure that patient privacy and confidentiality are preserved while delivering a repository of such medically rich information for the purposes of scientific research. This paper summarises the overall approach adopted by CLEF to meet data protection requirements, including the data flows and pseudonymisation mechanisms that are currently being developed. Intended constraints and monitoring policies that will apply to research interrogation of the repository are also outlined. Once evaluated, it is hoped that the CLEF approach can serve as a model for other distributed electronic health record repositories to be accessed for research

ICTs and development: A capability perspective of Nigeria's experience with the National Identity Project

This thesis was submitted for the degree of Doctor of Philosophy and awarded by Brunel University.This study is about the impact of information and communications technologies (ICT) in developing countries, in light of development expectations in healthcare, education, commerce, government services, and other activities that can improve the lives of citizens. However, the deployment of these ICTs have not always resulted in the anticipated ends i.e. development outcomes. Also, expectations and deployment experiences vary amongst developing countries - indicating a need to understand what is locally relevant, meaningful and achievable within development initiatives. These ideas are explored within this study, with intent to contribute to a better understanding of the dynamics of ICTs and Development. The study is particularly concerned with the current efforts at deploying a National Identity system in Nigeria, in light of failed attempts over the past 34 years. This is an essential initiative due to the lack of a secure, reliable, or cost effective system of identification within the country (e.g. international passports and drivers’ licenses). The case is explored using Sen’s Capability Approach (CA) to development, which advocates the expansion of people’s freedoms (and opportunities) to engage in valued activities that improve lives. The unique application of the CA for a comprehensive study of the deployment and outcomes of the National Identity system constitutes a theoretical contribution (amongst others) to research - in light of previous applications which only evaluate the latter. Also, the findings reveal deep seated socio-cultural issues (such as corruption and tribalism) as sources of commonly reported technical and managerial problems within IS projects. These offer useful insights and advice for both policy makers and practitioners involved with the ICTs and Development agenda.This study was funded by the Engineering and Physical Sciences Research Council, and the Department of Information Systems and Computing at Brunel University

Clustering tales from the Greek construction sector: lessons from experience

The idea of increasing regional and national economic competitiveness through the implementation of cluster strategies is not something new. In each business sector, in each country, the creation of clusters has been used to capitalise on sector characteristics and address country specific productivity needs. While clusters have met with significant success in many context, the Greek context and in particularly the Greek Construction sector has not been so fruitful. This paper, through the development of a conceptual framework, questionnaires with 92 firms and interviews with 10 key firms, sought to investigate the critical success factors for the creation of a cluster within the challenging context of the Greek construction sector. Using evidence of good practicefrom other European countries facing similar challenges and the empirical data, the findings indicated a series of factors which firms could adopt, mitigate against or manage to help improve the potential success of the cluster. The findingstherefore have important implications for interventions not only by the state and local authorities that will encourage construction firms to participate in a cluster, but also by the managers/owners/practitioners for the creation of the required foundations for their participation in an environment where competitors cooperate

Homo Datumicus : correcting the market for identity data

Effective digital identity systems offer great economic and civic potential. However, unlocking this potential requires dealing with social, behavioural, and structural challenges to efficient market formation. We propose that a marketplace for identity data can be more efficiently formed with an infrastructure that provides a more adequate representation of individuals online. This paper therefore introduces the ontological concept of Homo Datumicus: individuals as data subjects transformed by HAT Microservers, with the axiomatic computational capabilities to transact with their own data at scale. Adoption of this paradigm would lower the social risks of identity orientation, enable privacy preserving transactions by default and mitigate the risks of power imbalances in digital identity systems and markets

Current state of e-services in Saudi Arabia: the case of intermediaries in facilitating government services in Madinah city

The government of Madinah has launched ‘Khdamatec’ electronic Offices (e-Offices) concept under their national electronic Government (e-Government) modernisation agenda to facilitate service delivery to citizens and seamless interaction to communicate their needs. By offering e-Offices around the government departments, Madinah government hopes to increase accessibility of e-Government services and make steps forward to electronic age, encourage Medina' citizens to participate and use e-Services and bridging digital divide. However, the empirical findings illustrate that the adoption and diffusion of the e-Office concept and e-Government in the wider context at a lethargic pace. This paper highlights some of the challenges faced by the Madinah city in implementing the e-Office concept and e-Government

Trusted Computing and Secure Virtualization in Cloud Computing

Large-scale deployment and use of cloud computing in industry is accompanied and in the same time hampered by concerns regarding protection of data handled by cloud computing providers. One of the consequences of moving data processing and storage off company premises is that organizations have less control over their infrastructure. As a result, cloud service (CS) clients must trust that the CS provider is able to protect their data and infrastructure from both external and internal attacks. Currently however, such trust can only rely on organizational processes declared by the CS provider and can not be remotely verified and validated by an external party. Enabling the CS client to verify the integrity of the host where the virtual machine instance will run, as well as to ensure that the virtual machine image has not been tampered with, are some steps towards building trust in the CS provider. Having the tools to perform such verifications prior to the launch of the VM instance allows the CS clients to decide in runtime whether certain data should be stored- or calculations should be made on the VM instance offered by the CS provider. This thesis combines three components -- trusted computing, virtualization technology and cloud computing platforms -- to address issues of trust and security in public cloud computing environments. Of the three components, virtualization technology has had the longest evolution and is a cornerstone for the realization of cloud computing. Trusted computing is a recent industry initiative that aims to implement the root of trust in a hardware component, the trusted platform module. The initiative has been formalized in a set of specifications and is currently at version 1.2. Cloud computing platforms pool virtualized computing, storage and network resources in order to serve a large number of customers customers that use a multi-tenant multiplexing model to offer on-demand self-service over broad network. Open source cloud computing platforms are, similar to trusted computing, a fairly recent technology in active development. The issue of trust in public cloud environments is addressed by examining the state of the art within cloud computing security and subsequently addressing the issues of establishing trust in the launch of a generic virtual machine in a public cloud environment. As a result, the thesis proposes a trusted launch protocol that allows CS clients to verify and ensure the integrity of the VM instance at launch time, as well as the integrity of the host where the VM instance is launched. The protocol relies on the use of Trusted Platform Module (TPM) for key generation and data protection. The TPM also plays an essential part in the integrity attestation of the VM instance host. Along with a theoretical, platform-agnostic protocol, the thesis also describes a detailed implementation design of the protocol using the OpenStack cloud computing platform. In order the verify the implementability of the proposed protocol, a prototype implementation has built using a distributed deployment of OpenStack. While the protocol covers only the trusted launch procedure using generic virtual machine images, it presents a step aimed to contribute towards the creation of a secure and trusted public cloud computing environment