Home | Personalisaiton (Summary)
Full Text: Page 1 | Page 2 | Page 3 | Page 4

Uses of authentication in libraries
Libraries currently need to authenticate users if they are to be allowed to remove items from the library. Libraries increasingly offer databases on their web-sites to which one would otherwise have to subscribe, and to which the suppliers may require that access is restricted.

Since their web-sites can be accessed from any PC they must have a way of restricting access to registered users. Libraries etc. will have to make policy decisions about how much of their information needs to be protected and to what degree. Authentication may also be needed for the following purposes:

  • to enable remote access to the library’s web-site.

  • to controlling access to limited resources.

  • to make charges for e.g. document supply.

  • to provide security from internet hackers.

  • to ensure privacy for email users.

  • to protect networked on-line databases from unauthorised use. This is often a condition of the supply of such resources.

Payment systems
Libraries may wish to charge users who make use of their facilities from remote locations and will need a higher level of security for this function than for others. They may also want to charge other libraries for interlibrary loans. There are electronic systems of payment involving the use of smartcards and PCs or substitutes for PCs such as digital televisions.

  • Value may be held in an encrypted file on a PC or equivalent and protected by a password. It may be transferable to another PC using currently available technology.

  • All systems of electronic transaction using smartcards are experimental and it is not yet certain how much these systems will cost users. In the long run they will save banks money.

  • Until the technology settles down there may be problems with the compatibility of different payment systems.

  • Smartcards are hard to counterfeit, though they can be stolen and their loss is the equivalent to losing cash as the value cannot be refunded.

  • Several different payment mechanisms can be combined on the same smartcard e.g. Visa, Mastercard etc.

  • Money can be transferred over the telephone - this may well be of use to libraries. Money can also be transferred from one card to another.

  • Payment using a smartcard will be quick, as validation is not necessary, and anonymous as information about the buyer is not transferred with the payment. In this it resembles the use of cash.

  • They may be reloadable i.e. value can be uploaded and the card can be reused indefinitely.

Under the EC Telematic for Libraries programme, some projects involved the investigation of payment systems for use by libraries. There is a lengthy discussion of various systems of electronic payment to be found on the Diffuse site. There are standards on electronic transactions e.g. CEPS Common Electronic Purse Specifications and EEP European Electronic Purse.

In general a number of conditions for electronic charging systems are required:

  • There must be some evidence that the apparent originator of an electronic transaction is the authenticated user associated with that ID – (non-repudiation).

  • There must be evidence that the intended recipient of a message really got it – (evidence of receipt).

  • There must be evidence that an electronic communication was not tampered with in transit.

Home | Personalisation (Summary)
Full Text: Page 1 | Page 2 | Page 3 | Page 4


Select a country to view information on public libraries


Digital Guidelines Manuals
Click here to view


The PULMAN
Online Database of Education Resources


Private Section for PULMAN partners only.
Click here to Enter

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Last updated 11/05/2004
Site best viewed with IE 4.0 or above