The current online world needs to confirm user’s identities. This need, and the vast amount of online services available, has brought different single-sign-on solutions, but they are still based on the user/password combination, normally using one time passwords through a second authentication channel to strengthen the authentication.
To avoid the risk of relying only on the traditional combination of user/password, the concept of identity assurance services and identity management were introduced.
The identity assurance services provide the level of certainty an authentication request has, in order to decide which sort of services will be afterwards granted.
Identity management (IdM) services include the identity assurance concept and add the control of user information and security-related operations. The user information allows IdM to authenticate users and to define which data are authorized to access and/or which actions they can perform.
In this context the aim of the PIDaaS project is to create an innovative identity management service, including the identity assurance service, relying on biometric traits as one of the most important factor for the identity assurance and including other meta-data (obtained from hardware, software and network) to better define the level of certainty of the authentication request.
From the end-user point of view, biometrics solves the risk of impersonations and reduces the complexity of the authentication process (as the use of user/password combination will no longer be necessary).
From the service provider point of view, biometrics solves the risk of fraud and provides the best way to allow clients access to sensitive data (highly interesting especially in e-health and e-citizen services).
PIDaaS project will create an identity management service, including the identity assurance service based on different factors in order to determine the level of authentication certainty and to provide to the end users the control of whom and how can use their information can be utilized besides the authentication itself and demonstrate and evaluate this identity management service in in three different scenarios :
- e-commerce (Lithuania-Finland)
- e-health (Spain, Catalunya)
- e-citizen (Italy)
The selected scenarios have been identified by the industry as the sectors on which innovation is a key factor to boost the market.