Trustworthy Communication Channels for the Electronic Safe

Authors

  • Christian Breitenstrom
  • Martin Unger
  • Andreas Penski

Keywords:

trusted computing, electronic safe, privacy enhancing technology

Abstract

The transition from the traditional task oriented delivery of single government services to a process‑oriented delivery of well sized service bundles is common for modern eGovernment implementations. Concerning the European Services Directive (DIRECTIVE 2006/123/EC) these service bundles are tailored to cover the needs of companies trying to offer their services in other EU member states. Nevertheless this approach is applicable to many other life circumstances. As process oriented service chains require well suited data capture and data sharing mechanisms, the Electronic Safe as a fundamental eGovernment infrastructure comes into play. The Electronic Safe is seen from a citizens viewpoint as a unique instrument, that makes it easy to control data flows between the citizen and her communication partners in a trustworthy and privacy conserving way. Previous work showed how to implement such a critical infrastructure in a decentralized and distributed manner, to satisfy strong confidentiality and privacy requirements. This paper focuses on the ability to bind the functionality of the Electronic Safe to the trustworthiness of its underlying hardware and software stack including its secure communication channels. We show how to use the mutual attestation mechanisms designed by the Trusted Computing Group (TCG) with the Safe Infrastructure and their communication protocols, while keeping the privacy features that the Safe Owner appreciates.

Downloads

Published

1 Dec 2010

Issue

Vol. 8 No. 2 (2010)

Section

Articles

License

Open Access Publishing

The Electronic Journal of e-Government operates an Open Access Policy. This means that users can read, download, copy, distribute, print, search, or link to the full texts of articles, crawl them for indexing, pass them as data to software, or use them for any other lawful purpose, without financial, legal, or technical barriers other than those inseparable from gaining access to the internet itself. The only constraint on reproduction and distribution, and the only role for copyright in this domain, is that authors control  the integrity of their work, which should be properly acknowledged and cited.

Creative Commons License

This Journal is licensed under a Creative Commons Attribution-NoDerivatives 4.0 International License.