Denmark Overview - RUB-NDS/FutureTrust GitHub Wiki

Denmark introduces its national eID and digital signature scheme called NemID[1]. The project lunched in 2010 and was finished in 2013. NemID is free for charge for Danish citizens and enables the authentication for both public and private services via smartcard.

NemID deviates from the usual SSO protocols using cryptographically signed authentication tokens. NemID is based on a username/password authentication on arbitrary webpages combined with a two-factor authentication scheme generated by the NemID card.

The NemID protocol (DanID)

In the following, the integration of NemID on a Service Provider and the communication with the Identity Provider will be described.

The NemID JavaScript client integration flow (DanID)

Figure 1: The NemID JavaScript client integration flow (DanID)

  1. In the first step, the Service Provider must call an iframe pointing to the NemID JavaScript client URL.
  2. The NemID JavaScript client transmits a SendParameters message to the Service Provider page to indicate when it is ready to receive its parameters.
  3. The Service Provider page transmits a message containing the client’s initialization parameters.
  4. The client initializes based on the parameters and the user can interact with it.
  5. Based on the user’s action, the Service Provider page receives either a signed message or a response code indicating what prevented the user from completing the operation.

Additionally, as part of the adoption of the eIDAS Regulation, the Danish Agency for Digitasation lunched a pilot project to estimate the technological challenges of cross-country eID-based authentication.

The result of the project was the possibility to login on to a Swedish online service using a Danish NemID, which was shown at CeBIT 2015. Currently, Denmark works on an eID gateway implementing the eIDAS Regulation. It is expected that the project is completed by September 2018[2].

References

1. ^ https://www.nets.eu/dk-da/kundeservice/nemid-tjenesteudbyder/The-NemID-service-provider-package
2. ^ https://www.digst.dk/Servicemenu/English/News/In-the-future-Danes-will-be-able-to-use-NemID-to-log-on-to-foreign-public-online-services

⚠️ **GitHub.com Fallback** ⚠️