IDA Secure Communications Platforms : TESTA and PKI Gzim Ocakoglu European Commission - DG Enterprise Ankara, 25 September 2003 Turkey IDA Info-Day AM

IDA Secure IDA Secure Communications Communications

Platforms :Platforms :TESTA and PKITESTA and PKI

Gzim OcakogluGzim OcakogluEuropean Commission - DG European Commission - DG

EnterpriseEnterprise

Ankara, 25 September 2003Ankara, 25 September 2003

Turkey IDA Info-DayAM Session, September 25, 2003


2

Outline

• TESTA at a glanceTESTA at a glance

• Sectoral projects using TESTASectoral projects using TESTA

• What is TESTA? What is TESTA?

• TESTA todayTESTA today

• The PKI serviceThe PKI service

• The future of TESTAThe future of TESTA


3

TESTA at a glanceVocabulary...

Sectoral applications


4

• New users coming soon ….. - Justice and Home Affairs (VISA,SIS II)

- Environmental protection (PROCIV NET) - Energy and Transport (SafeseaNet, TachoNet) - ...

• Employment and Social Employment and Social AffairsAffairs– EURESEURES– TESSTESS

• AgricultureAgriculture– CATS/STATELCATS/STATEL

• TransportTransport– Care IICare II

• FisheriesFisheries– FidesFides

• Regional PolicyRegional Policy– Structural funds (SFC)Structural funds (SFC)

• Health and consumer Health and consumer protectionprotection– Eudra projectsEudra projects– EuphinEuphin

• Justice and Home AffairsJustice and Home Affairs– EURODACEURODAC

• TradeTrade– SIGLSIGL

• StatisticsStatistics– DatashopDatashop– StatelStatel

• Financial IntelligenceFinancial Intelligence– FIUNETFIUNET

• Humanitarian aidHumanitarian aid– HOLIS (14 points)HOLIS (14 points)

• General applicationsGeneral applications– IntraCommIntraComm– CircaCirca

Sectoral Projects using TESTA


5

What is What is TESTA ?TESTA ?


6

TESTA principlesTESTA principles

TTrans rans EEuropean uropean SServices for ervices for TTelematics elematics between between AAdministrationsdministrations

• IP protocol on MPLSIP protocol on MPLS

• Separation from the InternetSeparation from the Internet

• Registered but non-Internet routable Registered but non-Internet routable address rangeaddress range

• Private domain-names (eu-admin.net)Private domain-names (eu-admin.net)


7

TESTA : Benefits, TESTA : Benefits, Contractors, budgetContractors, budget

• Secured telecommunications services with Secured telecommunications services with warranted Service Level Agreements (SLA)warranted Service Level Agreements (SLA)

• Network service and generic services Network service and generic services delivered by Equantdelivered by Equant

• Support services (advice, help desk) Support services (advice, help desk) provided by Unisysprovided by Unisys

• Duration of the contract until 2004Duration of the contract until 2004

• Global potential value: € 28,5 million EuroGlobal potential value: € 28,5 million Euro


8

EuroDomain

EuroGate

EuroGate

EuroGate

EuroGate

EuroGate

EU Agencies

National Network

EU Institutions

Direct connectedsectors

ExternalDial-up services

TESTA: a domain-based approach


9

EuroDomain

EuroGate

EuroGate

EuroGate

EuroGate

EuroGate

National Network

National agency

National agency

National agency

Direct connectedsectors

TESTA : a domain-based approach


10

EuroDomain

EuroGate

EuroGate

EuroGate

EuroGate

EuroGate

EU Agencies

National Network

EU Institutions

PKI

NTP

DNSMailrelay

Portal Circa

ExternalDial-up services Direct connected

sectors

Generic servicesGeneric services


11

Cost sharingCost sharing• All costs covered by IDA forAll costs covered by IDA for

– National administrative networksNational administrative networks

– EU institutions and EU agenciesEU institutions and EU agencies

• Cost sharing forCost sharing for– Direct to TESTA connected local administrationsDirect to TESTA connected local administrations

• Back-bone costs are covered by IDABack-bone costs are covered by IDA

• Local loop costs not covered by IDA (Leased line, router, Local loop costs not covered by IDA (Leased line, router, monitoring, installation)monitoring, installation)


12

BelgiumBelgium

DenmarkDenmark

GermanyGermany

GreeceGreece

SpainSpain

IrelandIreland

United KingdomUnited Kingdom

ItalyItaly

LuxembourgLuxembourg

NetherlandsNetherlands

AustriaAustria

PortugalPortugal

FinlandFinland

France (in process)France (in process)

Sweden (in process)Sweden (in process)

IcelandIceland

NorwayNorway

Connected Member States

+


13

Connected Acceding Countries

Czech Republic - 05 06 2003

Estonia - 30 06 2003

Malta 25 08 2003

Poland 27 06 2003

Slovenia 24 04 2003

Cyprus to be connected end of Sept 2003

Slovakia : in the process

Hungary : in the process


14

Council of the Council of the European UnionEuropean Union

European ParliamentEuropean Parliament

European European CommissionCommission

Court of auditorsCourt of auditors

Court of JusticeCourt of Justice

European Economic European Economic and Social Committeeand Social Committee

Committee of the Committee of the regionsregions

Expected :Expected :

European European Investment BankInvestment Bank

Connected EU institutions


15

Connected EU Connected EU agenciesagencies

CEDEFOPCEDEFOP European Centre for the Development of Vocational TrainingEuropean Centre for the Development of Vocational Training

EUROFOUNDEUROFOUND European Foundation for the Improvement of Living and European Foundation for the Improvement of Living and Working ConditionsWorking Conditions

EEAEEA European Environment AgencyEuropean Environment Agency

ETFETF European Training FoundationEuropean Training Foundation

EMCDDAEMCDDA European Monitoring Centre for Drugs and Drug AddictionEuropean Monitoring Centre for Drugs and Drug Addiction

EMEAEMEA European Agency for the Evaluation of Medicinal ProductsEuropean Agency for the Evaluation of Medicinal Products

OHIMOHIM Office for Harmonisation in the Internal Market (Trade Marks and Office for Harmonisation in the Internal Market (Trade Marks and Designs)Designs)

EU-OSHAEU-OSHA European Agency for Safety and Health at WorkEuropean Agency for Safety and Health at Work

CPVOCPVO Community Plant Variety OfficeCommunity Plant Variety Office

CdTCdT Translation Centre for the Bodies of the European UnionTranslation Centre for the Bodies of the European Union

EUMCEUMC European Monitoring Centre on Racism and XenophobiaEuropean Monitoring Centre on Racism and Xenophobia

EAREAR European Agency for ReconstructionEuropean Agency for Reconstruction

EUROJUSTEUROJUST


16

TESTA todayTESTA today


17

Activities on Network Activities on Network ::ExtensionExtension• Connect national networks in all Connect national networks in all Member StatesMember States

• Connect Accession and Candidate Connect Accession and Candidate Countries Countries

• Integrate new usersIntegrate new users Environmental protection (PROCIV NET)Environmental protection (PROCIV NET)

Energy and Transport (SafeSeaNet, TachoNet)Energy and Transport (SafeSeaNet, TachoNet)

Activities on Security: Enhancements

• On the EurodomainOn the Eurodomain– Add line-encryption (on-going)Add line-encryption (on-going)

– Prepare for TESTA security accreditationPrepare for TESTA security accreditation

• For the border to local domainsFor the border to local domains– Formulation of general security framework Formulation of general security framework

for the Local Domain Connection Pointsfor the Local Domain Connection Points



19

Activities on Quality: Enhancements

• On TESTA services and TESTA On TESTA services and TESTA environmentenvironment– Enhance resiliency of generic servicesEnhance resiliency of generic services

– Portal and newsletterPortal and newsletter

– Workbook and applications guidelinesWorkbook and applications guidelines

• With end to end approachWith end to end approach– Promote SLAs in local domains through Promote SLAs in local domains through

TESTA MoUTESTA MoU


20


21

The IDA PKI The IDA PKI ServiceService


22

The IDA PKI project

• Objectives of the Public Key Infrastructure (PKI)Objectives of the Public Key Infrastructure (PKI)– ready to use by all networks of the IDA programmeready to use by all networks of the IDA programme

– adaptable or extensible to the specific requirements of some adaptable or extensible to the specific requirements of some networksnetworks

– enable the members of a user community to access other IDA enable the members of a user community to access other IDA networks with the same certificate (subject to access rights networks with the same certificate (subject to access rights control)control)

• Set-up steps for each user communitySet-up steps for each user community– requirements analysisrequirements analysis

– definition of organisation and servicesdefinition of organisation and services

– service set-upservice set-up

– routine management of the infrastructureroutine management of the infrastructure


23

Technology Solution :IDA PKI Service

• Web-based applications:Web-based applications:– protection of web-based information repositories and protection of web-based information repositories and

client/server communicationsclient/server communications

• Secure messaging:Secure messaging:– secure e-mailsecure e-mail

– electronic signatureselectronic signatures

– authenticationauthentication

– integrityintegrity

– confidentialityconfidentiality

Message

Encryption

Secret (session)

key

Encrypted

message


24

TESTA the futureTESTA the future


25

TESTA post 2004 - Objective

• To define what TESTA will become after To define what TESTA will become after 2004 as an “IDA communication platform”2004 as an “IDA communication platform”

• To define the needs of communication at To define the needs of communication at the European levelthe European level– the growing need for the exchange of information the growing need for the exchange of information

between European administrationsbetween European administrations

– the growing need of a secure and resilient platform the growing need of a secure and resilient platform


26

TESTA post 2004 Working method

• TESTA Steering CommitteeTESTA Steering Committee

– Participants : IDA, EC DI, Major Sectors (DG JAI, Participants : IDA, EC DI, Major Sectors (DG JAI, DG TAXUD), the Council, …DG TAXUD), the Council, …

• TESTA Expert Group MeetingsTESTA Expert Group Meetings

– The group will meet 2 or 3 times and will give The group will meet 2 or 3 times and will give regular feedback to the TAC WHAM and the TACregular feedback to the TAC WHAM and the TAC

• previous meetings held on 10/12/2002, previous meetings held on 10/12/2002, 09/09/200309/09/2003

• next meeting foreseen on 01/10/2003next meeting foreseen on 01/10/2003

• An Info-Day with private sector in 4Q2003An Info-Day with private sector in 4Q2003


27

THANK YOU!THANK YOU!• TESTA web siteTESTA web site

– http://testa.eu-admin.net (via TESTA access)http://testa.eu-admin.net (via TESTA access)• IDA web site IDA web site

– http://europa.eu.int/ISPO/ida/http://europa.eu.int/ISPO/ida/• TESTA CIRCA interest groupTESTA CIRCA interest group

– http://forum.europa.eu.int/Members/irc/ida/testa/http://forum.europa.eu.int/Members/irc/ida/testa/home (restricted access)home (restricted access)

• IDA project managementIDA project management– European Commission, DG Enterprise D.2European Commission, DG Enterprise D.2– [email protected]@cec.eu.int

Documents

IDA Secure Communications Platforms : TESTA and PKI Gzim Ocakoglu European Commission - DG Enterprise Ankara, 25 September 2003 Turkey IDA Info-Day AM