User:Lokinazg/sandbox

Common Secure Access Management , (CSAM) is a set of policies, identies, agreements and rules to organise identity and access management within public and private large organizations.

Belgian Context
Government agencies hare now offering online services to citizens and companies like:
 * e-Administration services of municipalities
 * Multifunctional Social Security declaration for employers
 * Tax-on-web
 * Medical files
 * Fine management

In Belgium, that opportunity of electronic identity card (eID) was used to obtain a physical key for registering and authenticating on a federal portal and translating the generic CSAM solution of Forgerock into a national e-government interfacing with most of the administrations of the country and some non-profit organisations.

Lately, in 2017, a bank association founded itsme ® behind 'Belgian Mobile ID' company and offering to use mobile app for authentication. Some addition methods are still proposed too

It exists 3 levels of authentication representing a security leveal ('LOA'):
 * High : eID and itsme ®
 * Substantial : eMail, Smartphone secured application Androïd/IOS and SMS plus Commercial Certificates and Token
 * Low : Login/Password (limited use)

Commercial Certificates and Token will be abandonned into begin 2024.

Uses of CSAM

 * Identification ;
 * Authentication ;
 * Authorisation ;
 * Roles management.