Current page:  Goal and Implementation / Vision

Vision

Over the years cloud computing and web services have changed the IT landscape fundamentally. More complex applications, versatile Internet portals and an increase of outsourcing "into the cloud" have made it more incomprehensible for the user to manage all his virtual identities. Although there are various attempts to combine these identities, there are also concerns about privacy, the use of personal data and security.

Based on the principles of infrastructure-as-a-service, platform-as-a-service and software-as-a-service it is just a small step towards identity-as-a-service, which is a dedicated service provider for identity management. However, an attacker would consider such a service as a worthwhile target, and the service has to be protected accordingly. For this purpose it is important not only to guarantee a secure authentication, but also that the connected Internet services can trust and rely on the identity provider.

Unfortunately, most providers offer only authentication by username and password. Especially if weak passwords are not prohibited by the policy, this can lead to an inadequate protection of the virtual identity. In this regard eID Connect offers a much stronger protection by utilizing secure hardware tokens in the form of USB dongles.

Another important aspect beyond the personal data of the users itself, is the validity and the source of said data. In the scope of this project the German ID card is integrated to very users personal information, however it is easily conceivable to apply this mechanism to a wider scope of data verification.