

An Abstract
SonicBee, the Common Ground movement, VNG and the Municipality of The Hague together developed innovation in the field of access management. This brings opportunities for interoperability between municipalities, citizens, businesses, and chain partners and evolved from the need for a new, modern joint information facility for the exchange of data. This workshop provides insights into the architecture, applications and associated innovative approach to access governance based on Zero Trust and PBAC (Policy Based Access Control) principles.
The current system for data exchange in municipalities makes it difficult to innovate quickly and flexibly, to comply with privacy legislation and to handle data efficiently. This stands in the way of improving municipal services. The Common Ground movement is looking at innovation opportunities for greater interoperability. An important part of this is the data landscape, where functionality is accessed through APIs. In the analysis of this architecture, one aspect is barely touched upon: The Access aspect is not appropriately co-developed. Given the requirements that the government places on the provision of information (such as the Digital Government Act, AVG, Security), this can at least be called remarkable.
SonicBee and the Municipality of The Hague has performed a proof of architecture (the POA) to demonstrate that it is possible to unlock an existing API in which access is not explicitly modeled. This is done in an effective and efficient way through innovative ‘zero trust architecture’ concepts, such as Policy Based Access Control. Security and privacy are thus demonstrably realized in accordance with legal requirements. The POA proves that this is technically possible and opens doors for municipalities for interoperability in an autonomous and secure way.
During the presentation at One Conference the working principles from the developments in the field of Identity & Access Management are explained and how these principles can be applied in practice in an existing application landscape.