Skip to main content
Log in

On the security of international data exchange services for e-governance systems

  • Aufsätze
  • Published:
Datenschutz und Datensicherheit - DuD Aims and scope Submit manuscript

Abstract

The effects of globalisation and information welfare combined with the increasing mobility of individuals lead to a number of challenges to modern states. In order to guarantee a smooth, secure, uninterrupted organisational flow, governments and their subsidiaries need to cooperate and exchange data on individuals and organisations across national borders. However, insufficiently secured communication of such data imposes security threats which may endanger the individual’s privacy. Currently, several states within Europe develop and operate e-governance systems. These are primarily designed to allow the exchange of data within the institutions of one state. However, examples such as the Estonian e-governance backbone system X-Road strive towards an EU-wide expansion. Technical solutions for the transnational exchange of data between governmental institutions are an unavoidable part of the future of cyberspace. Despite the fact that EU specifications exist, the discrepancy between specification and implementation becomes immanent. This article explores some of the general aspects of the design of secure transnational data exchange frameworks. A comparative analysis of existing e-governance systems within Europe is given based on defined security aspects. It is explored how decisions made in the design may affect the security of the underlying network and its components. The challenges of transnational data exchange frameworks are discussed.

This is a preview of subscription content, log in via an institution to check access.

Access this article

Price excludes VAT (USA)
Tax calculation will be finalised during checkout.

Instant access to the full article PDF.

Similar content being viewed by others

References

  1. European Commission — Directorate General for Communications Networks, Content & Technology. Digital Agenda for Europe. A Europe 2020 Initiative. [Online] 26 03 2015. [Cited: 03 04 2015.] http://ec.europa.eu/digital-agenda/en/digital-agenda-europe-2020-strategy.

  2. Bishop, Matthew A. Introduction to Computer Security. Boston, MA, USA: Addison-Wesley, 2004. ISBN 10: 0321247442.

    Google Scholar 

  3. Sommerville, Ian. Part 2 — Dependability and Security. Software Engineering. Boston, MA, USA: Pearson, 2010.

    MATH  Google Scholar 

  4. Bock, Martin Rost and Kirsten. Privacy By Design und die Neuen Schutzziele — Grundsaetze, Ziele und Anforderungen. Datenschutz und Datensicherheit. 2011, 1.

    Google Scholar 

  5. Hansen, Marit. Top 10 Mistakes in System Design from a Privacy Perspective and Privacy Protection Goals. [book auth.] Jan and Crispo, Bruno and Fischer- Hübner, Simone and Leenes, Ronald and Russello, Giovanni Camenisch. Privacy and Identity Management for Life. s.l.: Springer Berlin Heidelberg, 2012. IFIP Advances in Information and Communication Technology.

    Google Scholar 

  6. ISA — European Commission on Interoperability Solutions for European Public Administrations. Annex 2 to the Communication from the Commission to the European Parliament, the Council, the European Economic and Social Committee and the Committee of Regions ‘Towards interoperability for European public services’. Bruxelles: ISA — European Commission on Interoperability Solutions for European Public Administrations, 2010. COM(2010) 744 final.

    Google Scholar 

  7. ePractice Editorial European Dynamics S.A. eGovernment in Estonia — eGovernment Factsheet. [https://joinup.ec.europa.eu/sites/default/files/f4/4f/1b/eGov%20in%20EE%20-%20April%202014%20-%20v.16.0.pdf] s.l.: European Commission — ePractice — European Dynamics S.A., Apr 2014.

    Google Scholar 

  8. Cybernetica AS. X-Road — Cybernetica AS. X-Road — Cybernetica AS. [Online] Cybernetica AS. [Cited: 03 04 2015.] http://cyber.ee/en/e-government/x-road/.

  9. Papaemmanuel, Louis. eGovlab is piloting an innovative data exchange layer of e-services for Sweden. [Online] eGovlab. [Cited: 03 04 2015.] http://egovlab.eu/index.php?option=com_easyblog&view=entry&id=46&Itemid=81&lang=en.

  10. Republic of Estonia — Information System Authority. Protocol for Data Exchange Between Databases and Information Systems — Requirements for Information Systems and Adapter Servers. Estonia: s.n., 2014. Y-597-2.

    Google Scholar 

  11. Republic of Estonia Information System Authority. X-Road 5 — Security Server User’s Guide. Estonia: Republic of Estonia, 2010.

    Google Scholar 

  12. ePractice Editorial European Dynamics S.A. eGovernment in Austria - eGovernment Factsheet. [https://joinup.ec.europa.eu/sites/default/files/00/64/f5/eGov%20in%20AT%20-%20April%202014%20-%2016.0.pdf] s.l.: European Commission — ePractice — European Dynamics S.A., Apr 2014.

    Google Scholar 

  13. Fabasoft AG. Fabasoft — eGov Suite. [Online] Fabasoft AG. [Cited: 03 04 2015.] http://www.egov-suite.com/index_en.html.

  14. Eibl, Herwig, Karning, Kustor, Ledinger, Leitold, Medimorec, Pirker, Reichstädter, Rupp, Scheidbach, Wagner-Leimbach. Administration on the Net — The ABC guide of eGovernment in Austria. [ed.] Dept. I/11) Pirker (Austrian Federal Chancellery. Vienna, Austria: MediaGuide Verlags-GesmbH, 1150 Vienna, 2011. ISBN-13: 978-3-200-02352-9.

    Google Scholar 

  15. Freitter, Michael M., Gradwohl, Nikolaus and Denner, Rainer. Empfehlung für das XML-Schema zu EDIAKT II. [Online] Sep 2005. [Cited: 03 04 2015.] http://reference.e-government.gv.at/uploads/media/ediakt-II-1-1-0-2005-1214.pdf.

  16. Fabasoft AG. Fabasoft eGov-Suite References. [Online] Fabasoft. [Cited: 03 04 2015.] http://www.egov-suite.com/en/references.html.

  17. E-Government Innovationszentrum (EGIZ). E-Government Innovationszentrum. Buergerkartenumgebung MOCCA. [Online] E-Government Innovationszentrum. [Cited: 03 04 2015.] https://www.egiz.gv.at/en/schwerpunkte?view=kernthema&catid=9&id=9.

  18. Connert, Grandits, Kotschy, Posch, Siegl. Portalverbundvereinbarung. Austria: e-Government Bund-Länder-Gemeinden, 2002. http://www.ref.gv.at/uploads/media/pvv1.0-21112002.pdf.

    Google Scholar 

  19. Hörbe, Rainer, Freidl, Hildegard and Pfläging, Peter. Sicherheitsklassen für den Zugriff von Benutzern auf Anwendungen. Austria: e-Government Bund-Länder-Gemeinden — Arbeitsgruppe Q-PV, 2008. SecClass v. 2.1.0.

    Google Scholar 

  20. Bundesverwaltungsamt. Bundesverwaltungsamt — DVDV. — Deutsches Verwaltungsdiensteverzeichnis —. [Online] [Cited: 03 04 2015.] http://www.bva.bund.de/DE/Organisation/Abteilungen/Abteilung_BIT/Leistungen/IT_Produkte/DVDV/node.html.

  21. ePractice Editorial European Dynamics S.A. eGovernment in Germany — eGovernment Factsheet. [https://joinup.ec.europa.eu/sites/default/files/e8/da/6d/eGov%20in%20DE%20-%20April%202014%20-%20v.16.0.pdf] s.l.: European Commission — ePractice — European Dynamics S.A., May 2014.

    Google Scholar 

  22. Bundesamt für Sicherheit in der Informationstechnik. Sicherheitsbewertung zur Spezifikation OSCI-Transport 1.2. s.l.: Bundesamt für Sicherheit in der Informationstechnik (BSI), 2002.

    Google Scholar 

  23. Bundesverwaltungsamt. Bundesverwaltungsamt —. Das Verbindungsnetz DOI. [Online] [Cited: 03 04 2015.] http://www.bva.bund.de/DE/Organisation/Abteilungen/Abteilung_BIT/Leistungen/IT_Produkte/VerbindungsnetzDOI/ProjektDOI/projektdoi_node.html.

  24. Yan, Zheng. Trust Modeling and Management in Digital Environments: From Social Concept to System Development. s.l.: IGI Global, 2010. ISBN: 978-1615206827.

    Book  Google Scholar 

  25. Natural Privacy Preservation Protocol for Electronic Mail. Hartmannn, Kim and Steup, Christoph. Tallinn, Estonia: NATO CCD COE Publications, 2012. ISBN: 978-9949-9040-8-2.

  26. European Union Agency for Network and Information Security (ENISA). Trusted e-ID Infrastructures and services in EU — TSP services, standards and risk analysis report. s.l.: European Union Agency for Network and Information Security, 2013. DOI: 10.2824/27048.

    Google Scholar 

Download references

Author information

Authors and Affiliations

Authors

Corresponding author

Correspondence to Kim Hartmann.

Additional information

Kim Hartmann specialised in computer security and mathematical modelling. Research on: Protocol analysis, secure network design principles, risk assessment and analysis of critical network infrastructures.

Christoph Steup researcher at the Otto-von-Guericke University in Magdeburg. His research interests include safety and security of Distributed Event-based Systems and Wireless Sensor Networks.

Rights and permissions

Reprints and permissions

About this article

Check for updates. Verify currency and authenticity via CrossMark

Cite this article

Hartmann, K., Steup, C. On the security of international data exchange services for e-governance systems. Datenschutz Datensich 39, 472–476 (2015). https://doi.org/10.1007/s11623-015-0452-2

Download citation

  • Published:

  • Issue Date:

  • DOI: https://doi.org/10.1007/s11623-015-0452-2

Keywords

Navigation