9 eEpoch Services

Information about 9 eEpoch Services

Published on October 31, 2007

Author: Ming

Source: authorstream.com

Content

Which services are to be prepared for connection to Interoperable eID? :  Which services are to be prepared for connection to Interoperable eID? eEpoch 2nd Conference Issy-les-Moulineaux 24th September 2003 Vicente Sebastián (ETRA I+D) Content:  Content Context of eEpoch IOP specifications Non-technological approach Technological approach How IOP will be demonstrated in practice Context of eEpoch:  Context of eEpoch Context of eEpoch:  Context of eEpoch eEpoch aims at being the proof of concept of the results of the work done by the the eEurope Smart Card Charter on Global Interoperability Framework for IAS with SmartCards. eEpoch is a complete test field because the presence of: Industry Governments / Administrations Service providers Context of eEpoch:  Context of eEpoch There is a common intention to carry out trials to face the actual constraints and problems to guarantee IOP at pan-European scale from all the points of view. eEpoch has two complementary working lines to address all the necessary aspects: Non-technical specifications Technical specifications The process in eEpoch:  The process in eEpoch We are following a progressive approach throughout series of meetings with pilots and technical partners. In those meetings all the aspects that can be related with the IOP of the e-services are analyzed and compared: Applications and existing services Architectures Technologies Actors and stakeholders Legal restrictions … IOP specifications:  IOP specifications GIF input:  GIF input The scope of eEpoch is with regards IAS. The work for IOP Specifications uses as inputs the GIF that provides both smart card communities and e-service communities with the necessary concepts and guidance on the tools required for access to e‑services and for security of transactions over the Internet where special “high-end” requirements must be fulfilled concerning identification, authentication (tokens and persons), non-repudiation (by electronic signature), encryption and integration with other applications. GIF references:  GIF references GIF Part 1: Contextual and conceptual modelling: An in depth modelling of the smart card, its environment and interoperability issues with regards to identification, authentication and electronic signature; GIF Part 2: Requirements for IAS functional interoperability A list of functional requirements and interoperability prerequisites to be used together with Part 1 for establishing a set of specifications for interoperability at IAS level GIF references:  GIF references GIF Part 3: Recommendation for IOP specifications guidance for enabling, implementing and operating IAS inter-operability; GIF Part 4: Deployment strategies for generic IAS an overview of business plan elements, organisational issues, and system development processes for mass deployment strategies. Non-technological approach:  Non-technological approach Assumed interoperability architecture:  Assumed interoperability architecture The interoperability is projected on a 4-layer architecture, in which is card: smartcard containing the EID/IAS application Infrastructure: terminals and network, connecting cards, EID/IAS application, E-service and PKI E-service: web based or web-emulated front office application, containing any e-service that requires strong authentication and/or qualified electronic signature Certificate: PKI Methodology:  Methodology Based on the methodology of “on-us” “not-on-us” used in the GIF. The attribute is assigned to each item according it is used/owned in/by the pilot or not. The following situations are presented by the eEpoch pilots. eEpoch map:  Certificate verification interoperability means the capability to check any certificate at request of the e-service involved, with the certificate authority. Services interoperability means that services from on-us and not-on-us environments can be accessed, and connected the any of the interoperable IAS-services eEpoch map Infrastructure interoperability is covering the terminal (or card reader with so called middleware software) the networks between the servers involved The card interoperability means the capability to handle on-us and not-on-us cards and to make the connections Technological approach:  Technological approach Identification Autentication & Signature IOP:  Identification Autentication & Signature IOP Functional Mapping of GIF on E-Sign K Part 2 – Requirements for IAS Functional Interoperability GIF Part 3: Recommendation for IOP specifications Part 1 – Basic Requirements. Application Interface for Smartcards used as Secure Signature Creation Devices, CEN/ISSS WS/E-Sign Group K Draft CWA Card IOP:  Card IOP Specifications apply to Native cards and Open Platforms (like JavaCards) It is being specified a new architecture to support IOP Certificate IOP:  Certificate IOP Classical approach: CA-CA cross certification Appropriate for a reduced and defined group of actors Inappropriate for a large and flexible group: Cross certifying n [6] pilot site CAs requires n(n-1)/2 [15] mutual cross-certification and n(n-1) [30] certificates to install in browsers. Certificate IOP:  Certificate IOP The eEpoch PKI model will be structured as a list of trusted CAs. A CA known as “Pan European CA” will certify the trusted list How IOP will be demonstrated in practice :  How IOP will be demonstrated in practice Interoperability Matrix:  Interoperability Matrix Bologna:  Bologna Bologna offers for the pilot two browser based services: A service for entrepreneurs wanting to establish a company in Bologna, A service for owners of actual properties in Bologna, wanting to handle their local taxes. Accepted by Spain Rome Issy Issy-les-Moulineaux:  Issy-les-Moulineaux The e-service that is offered by Issy is on ‘e-ticketing’. Announcements of cultural events takes place via internet technology. It requires authentication and qualified signature when e-payment. Accepted by Bologna Spain Rome:  Rome Rome offers for the pilot that authenticated citizens, who use the service of INSP online access to their data in the INSP database Accepted by Bologna Israel Israel:  Israel Israel offers three services National Insurance Form, to be signed by on-us cards via not-on-us infrastructure Tourist application, with order to be signed, by not on us cards via not-on-us infrastructure E-voting, with e-authentication to prevent double voting per person, for on-us and not-on-us cards, via on-us and not-on-us infrastructure Accepted by Rome Spain Spain:  Spain Spain makes a browser based document available to formalise denounces, and offers that it will be signed with not-on-us certificate. Accepted by Bologna Issy Rome Conclusions:  Conclusions The specification for the IOP of eServices in eEpoch is addressing all the actual problems and constraints. Some barriers are out of the scope of eEpoch The conclusions based on the analysis of the e-services offered in eEpoch will be of reference for new services. Thank you.:  Thank you. More info in www.eepoch.net

Related presentations


Other presentations created by Ming

Cigarette Ad Presentation
03. 10. 2007
0 views

Cigarette Ad Presentation

poverty
29. 11. 2007
0 views

poverty

Ancient Rome
29. 10. 2007
0 views

Ancient Rome

Nature of the Mark Beast
31. 10. 2007
0 views

Nature of the Mark Beast

AIS pps
05. 11. 2007
0 views

AIS pps

BMI2 SS07 Class06 MRI
14. 11. 2007
0 views

BMI2 SS07 Class06 MRI

IR Sensor
15. 11. 2007
0 views

IR Sensor

TS16949
16. 11. 2007
0 views

TS16949

Urolithiasis
19. 11. 2007
0 views

Urolithiasis

ECCROct18 06
20. 11. 2007
0 views

ECCROct18 06

los angeles
02. 11. 2007
0 views

los angeles

7FocusOnFriendship
27. 12. 2007
0 views

7FocusOnFriendship

Valstyne c
06. 11. 2007
0 views

Valstyne c

arnold2
07. 01. 2008
0 views

arnold2

moni01
07. 01. 2008
0 views

moni01

Intertestamental Period
11. 12. 2007
0 views

Intertestamental Period

attwood
04. 01. 2008
0 views

attwood

20 Noordende
06. 11. 2007
0 views

20 Noordende

pmo satcom 0502
07. 11. 2007
0 views

pmo satcom 0502

grames ws2002
23. 11. 2007
0 views

grames ws2002

ferrous metallurgy
03. 01. 2008
0 views

ferrous metallurgy

Bb7 Student Orientation
17. 12. 2007
0 views

Bb7 Student Orientation

ISIBANG 2007 01 31 jk
30. 10. 2007
0 views

ISIBANG 2007 01 31 jk

nmrc
01. 11. 2007
0 views

nmrc

TH08282007bridgesFin al
01. 01. 2008
0 views

TH08282007bridgesFin al

ANanni ISPPD2006 02Apr06
20. 02. 2008
0 views

ANanni ISPPD2006 02Apr06

sb climate summit 2
24. 02. 2008
0 views

sb climate summit 2

AMIC UNESCO Session 1
27. 02. 2008
0 views

AMIC UNESCO Session 1

apt2003
04. 12. 2007
0 views

apt2003

Carlson
05. 03. 2008
0 views

Carlson

aca2002 future
19. 11. 2007
0 views

aca2002 future

2003 ECO 11
14. 03. 2008
0 views

2003 ECO 11

FulbrightWorkshop1
27. 03. 2008
0 views

FulbrightWorkshop1

20070201 nznog07 apnic update
30. 03. 2008
0 views

20070201 nznog07 apnic update

Hadiths
18. 12. 2007
0 views

Hadiths

Shu Li Cheng
13. 12. 2007
0 views

Shu Li Cheng

Debt and Health
13. 04. 2008
0 views

Debt and Health

Falcon Asilomar 3 28 06
04. 10. 2007
0 views

Falcon Asilomar 3 28 06

flex arm hang
28. 11. 2007
0 views

flex arm hang

04helsinki kidwai
23. 11. 2007
0 views

04helsinki kidwai

FocusShow
28. 09. 2007
0 views

FocusShow

R M SOC 15 3 06
21. 11. 2007
0 views

R M SOC 15 3 06

metodologiaOA
28. 12. 2007
0 views

metodologiaOA

validation
01. 11. 2007
0 views

validation

Intro to methodology12 July
30. 11. 2007
0 views

Intro to methodology12 July

Pamukkale 070423
21. 11. 2007
0 views

Pamukkale 070423

farm and ranch survival kit
30. 12. 2007
0 views

farm and ranch survival kit

Enigma 1
04. 01. 2008
0 views

Enigma 1

Browne GisinTerminology
06. 11. 2007
0 views

Browne GisinTerminology

Arthropod part 2
16. 11. 2007
0 views

Arthropod part 2