Versions Compared

Old Version 5

changes.mady.by.user Rami Sellami

Saved on

compared with

New Version 6

changes.mady.by.user Rami Sellami

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Cookbook/ materialsVersionLocation
Identity & Authorization Management (I.AM) - Overview1.0https://www.ehealth.fgov.be/ehealthplatform/file/view/c87f7d093e56ff1054c73d6aae09e0bb?filename=ehealth_i.am_-_overv
Identity & Authorization Management (I.AM) - Identity Provider (IDP)1.0https://www.ehealth.fgov.be/ehealthplatform/fr/data/file/view/d43784683d86392e68f1a95b860f721170f30c7b?name=ehealth_i.am_-_idp_v1.0.pdf
CSAM Youtube channel-https://www.youtube.com/channel/UCzMGudd9xdMeGjYpbpjsXFw

General information

In the figure below, we provide an overview about the interaction between the different services of the e-health platform involved in the IAM. It is noteworthy that the presented architecture is dedicated to the WebSSO solution. 

Authentication process overview (interaction between the different services of the eHealth platform)Image RemovedImage Added


Basic flow

FlowSpecification


Use case ID

ATH-UC-06-BF

Use case name

Authentication using itsme

Actors

  • Citizen

  • Healthcare giver
  • Representative of an institution

Short Description

This use case denotes the authentication of a user via itsme


1 (High)

Must have: The system must implement this goal/ assumption to be accepted.

Pre-Conditions

  • The citizen has not an account

  • The citizen has:

    • a phone number

    • an account in itsme

    • a smartphone with the application itsme

    • a five secure code to confirm the operation on itsme

Post-Conditions

  • The user is authenticated

  • The user has access to the services of the mobile application

Steps (basic flow)

0

The user accesses to the WebSSO application interface to authenticate him/herself

1

The user chooses to connect via itsme 


2The user enters his/her phone number recognized by itsme

3The user connects to the itsme application and confirms the operation

4The user sends his/her credentials

5

The application sends an access request to the SP

6

The SP sends an authentication request to the IDP


7

The IDP checks the identity of the user with the AA 


8

The IDP sends a response message to the SP to inform it that the user is identified


9

The SP returns a response message to the application to enable the authentication


10

The user is authenticated and can use the the services of the mobile application

Exceptions (exception flows)

  • The phone number of the user is not recognized by itsme

  • The creation is aborted (e.g. loss of connection, the session is expired)

Frequency

  • Every time the user needs to authenticate to the mobile application

...