Skip to Main Content
Deployment of smart cards for identity verification requires collection of credentials and provisioning of credentials from and to heterogeneous and sometimes legacy systems. To facilitate this process, a centralized identity store called identity management system (IDMS) is often used. To protect the integrity, confidentiality and privacy of the credential data that is collected, stored and disseminated through IDMS, a sophisticated set of policies governing data flows, processing and distribution are required. In this paper, we present a policy specification and enforcement framework using XML, XML schemas and XSLT that was developed for secure management of the infrastructure system used for a large scale smart ID card deployment.
Date of Conference: 2-4 June 2008