Piloting and testing are integral parts of CREDENTIAL and a major focus during the third project phase. The deployment of developed CREDENTIAL tools on a European scale in a highly distributed environment with different stakeholder and user groups involved is a challenging task. The piloting and testing action aims to validate the technical and economic viability of the novel cloud based CREDENTIAL identity wallet in a near to operational environment. To evaluate and validate the capabilities of CREDENTIAL tools and bring developed components to market readiness, scenes for e-Government solutions, e-Health services and e-Business applications will be set up. Detailed piloting requirements and plans will be elaborated during the project.
The eGovernment pilot considers citizens who want to remotely pay taxes or request financial support from their local tax office. For instance, the pilot considers a citizen of country A living abroad in another country B, who needs to pay local taxes in country B. Now, he can use his electronic identity card of country A to securely and strongly authenticate himself to the tax portal of country B, potentially using STORK and eIDAS to perform this cross-border authentication.
The CREDENTIAL platform is now used to host authentic personal data that goes beyond the data that is stored on the national eID card. For instance, such data might include pay slips or certificates of registration. The user can now grant the tax authority of country B access to this data. As granting access rights can also be done for documents that will be added to the wallet in the future, the user can easily file certain required documents later without having to contact the tax authority again, but by simply uploading the data to the CREDENTIAL wallet.
The eHealth pilot is concerned with a data sharing platform between patients, doctors, and further parties, in particular in the context of Type 2 Diabetes. Namely, the developed components will allow patients to record their health data (blood sugar level, weight, blood pressure, etc.) using external mobile devices. The data measured on these devices will be collected by a CREDENTIAL eHealth mobile app, which remotely stores this data in the CREDENTIAL wallet. The user can then define who is allowed to access which parts of this medical data, to share specific parts of the measurements, e.g., with the family doctor, diabetologist, nutritionist, or personal trainer. Based on the data they see, they can then provide recommendations back to the user.
Because of the confidentiality of medical data, it is of prime importance that only legitimate users are able to access a user's data. Furthermore, because of the potential consequences of wrong recommendations, the authenticity and integrity needs to be guaranteed.
The eBusiness pilot showcases how easy the privacy offered by existing solutions can be enhanced through the integration of modular libraries implementing CREDENTIAL's technologies. Encrypted mails are a requirement for many companies to protect their data and inventions, but they also represent a significant challenge when employees go on vacation. Currently, employees have to expose their private key material so that a substitute can still read and answer incoming mail. In contrast, with proxy re-encryption, an employee generates a re-encryption key for a substitute before leaving, with which the mail server is able to translate incoming mail during the absence.