A SERVICE-BASED ACCESS CONTROL MODEL FOR E-GOVERNMENT SYSTEM

ABSTRACT

The advancement of digital, web, and network technologies have resulted in growing adoption of web services (e-government services) by many governments across the world. Benefits Services such as efficient delivery, easy access, improved workflows of processes, and enhanced resource utilization provided by e-government has no doubt increased its popularity amongst citizens and businesses. Consequently, e-government web service has been made susceptible to different forms of security challenges against known system security objectives such as the confidentiality, integrity and availability of web information. In this paper, a mandatory access control (MAC) approach combined with service Need-Based Request scheme is adopted to create a Mandatory Access Control Need-Based Request (MAC-NBR) model to guard against unhindered access to sensitive information on e-government system. The developed security model is able to secure the e-Government system by regulating access to its web services.

Keywords: Access control, digital signature, digital certificate, e-Government, and e-services