干旱区生态环境知识资源中心

This paper presents a personal authentication sign-on mechanism using oasis SAML standard with citizen ID smart card. In Thailand a number of web application style online public service have been developed to serve a better service for citizens. The most frequently used user authentication mechanism is password. The users need to remember their unique password. And for security reason they may need to change their password periodically. If single sign-on solution is not deployed they may need to remember a number of different passwords for different system. It is not effective for the real situation user authentication methodology. However single sign-on solution need to be open-standard, product neutral and developer independent to allow widely deployment. The Organization for the Advancement of Structured Information Standards (OASIS) has developed SAML standard which can be used as an open-standard for sign on mechanism. In addition since the year 2004 Thai citizens older than 15 years old are required to have citizen ID card by law to certify his/her citizenship. Thai citizen ID card has a microchip as a secured personal information storage and personal authentication device called smartcard. In this paper we proposed the user authentication sign-on mechanism using oasis SAML standard with Thai citizen ID card. We developed software system based on this proposed mechanism. This prototype development software has been used in a number of government agencies in order to enhance the effectiveness of public service.