Home
This Wiki documents existing governmental and commercial eID services. It investigates the usage of authentication schemes and protocols and their security properties. In particular, it concentrates on three major protocols: SAML, OpenID, and OpenID Connect. It shows how these protocols are used in different countries, which authentication methods are used, and how the issued authentication tokens are transported over secure channels.
It is divided into the following sections:
- Analysis Overview
- Supported Authentication Methods
- Detailed Analysis of Supported Protocols
- Security of the Transport Layer
The following partners contributed to this analysis:
- Vladislav Mladenov (Ruhr University Bochum)
- Juraj Somorovsky (Ruhr University Bochum)
- Daniel Hirschberger (Ruhr University Bochum)
- Jan Rimkus (Ruhr University Bochum)
- Burçin Bozkurt Günay (Tübitak)
- Elif Üstündağ Soykan (Tübitak)
- Nuno Ponte (Multicert)
- Herbert Leitold (The Secure Information Technology Center – Austria)
- Jens Urmann (Giesecke & Devrient)
- Christoph Zehetner (The Federal Computing Centre of Austria)
- Mikheil Kapanadze (Public Service Development Agency)
We invite further stakeholders to contribute to this research.
