ISA

ISA programme:

Secure-related initiatives

Miguel Alvarez Rodrguez

Click to edit Master title style12 and effective electronic cross-border and cross-sector interaction between European public administrations. share and re-use existing successful or newInteroperability solutions, common services and generic tools. IT systems allow smooth implementation of Community policies and activities.

EfficientEuropean publicadministrationsFlexible andinterlinkedInteroperability Solutions for Public AdministrationsObjectives2The ISA programmeClick to edit Master title style2

3Actions. Quick overviewKey enablers for secure eGOV services: Cluster of eID-related actions and tools for eSigning

Secure telecommunication network: sTESTA

eTrustEx: Secure exchange of DOCs

Click to edit Master title style341. Action 1.5 STORKs sustainabilitySTORK, the LSP on eID came to an end in 2011.

The project implemented and deployed in various MS a federated platform based on common specification and assurance model.

Aimed to the provision of electronic identification services related to citizens accessing to eGovernment applications in cross-borders set-ups.

ISA programme was appointed for the sustainability of STORKs results in the short/ medium-term.

Click to edit Master title style41. STORK Sustainability. Continuous maintenance and upgrade of STORK reference components (PEPS and VIDP modules) to the most common operating environments.

Update of the technical specs (SAML profile and QAA model) according to upcoming needs.

5

Click to edit Master title style1. STORK Sustainability.Top Reasons to use STORK:

Easy-to-deploy solution for the provision and consumption of secure identity services of national and foreign citizens.Access to a Reference interoperability technical solution for the mutual recognition of eID at European level.It can be used as a service or as tool: Flexible interoperable solution that can handle any type of electronic identities and assurance levels.Solution maintained and supported by the EC and many MS.

6

Click to edit Master title style

72. ECAS-STORK integrationThe problemMS officials and civil servants from all over Europe need to access EC corporate applicationsUse of ECAS credentials since national eIDs are not recognised by the EC applications. A first proof of concept demonstrating the integration of ECAS with STORK project was funded by IDABC programme and executed in 2011.

The current situationECAS-STORK integration already in production modeIn use already by CIRCABC and the eJustice Portal

Click to edit Master title style782. ECAS-STORK integrationBeneficiaries and anticipated benefitsEuropean Institutions and Agencies will benefit from ECAS integration with STORK with a minimal impact, by accepting higher assurance eID mechanisms from the MS and by increasing the trust and confidence on the user's identities

For MS's public administrations, consistency is increased since the same credentials are used to access both national information systems and European Commission information systems.

Levels of security are aligned as well with those provided by MS.Click to edit Master title style892. ECAS-STORK integration

Click to edit Master title style9

Objectives

Public officials should be able to log to EC applications and be granted access based on their role or position in a national administration. Extend ECAS multi factor authentication to a federated authorisation solution

Access to EC Applications using the national model for authorisation and ECAS-STORK.

3. Action 1.18: Federated Authorisation across public administrationsClick to edit Master title style1. ContextMain milestones of the ISA Action 1.18

We are here nowClick to edit Master title style #

Future versions based on incoming requirements and lessons learntIntegration in ECAS Production

Pilot with at least one Member State connecting to one EC Application

Get buy-in from stakeholders (Demo)The picture below presents the objectives of the current phaseon short and long term.At least 5 stakeholdersAt least one EC applicationAt least one MS applicationTo be decided3. ObjectiveClick to edit Master title style134. Action 1.9: DSS toolThis action supports development of a software tool DSS (Digital Signature Software) that creates and verifies legally binding electronic signatures.

The tool makes use of the MS Trust Status Lists (TSLs) to check the trustworthiness of the signing certificates.

Open source.

Available to all MS and for any electronic procedure.

Reuse of tools is cost savingClick to edit Master title style13144. DSS: TSL & eSignature creation/ verification toolsThe legal basisComitology Decision 2009/767/EC defined "Trust Lists" (TSL) as means to facilitate technical recognition of qualified electronic certificates cross-border.Under that Decision each Member States has to establish, maintain and publish in a secure way a trust list of certification service providers issuing qualified certificates to the publicDecision 2011/ 130/ EC establishes minimum technical requirements for the interoperable cross-border processing of documents signed electronically by competent authorities under Directive 2006/123/EC Click to edit Master title style14FrameworkRealised in JavaOpen Source under LGPLMain goalsSignature creationSignature validationValidation report according to validation policy ETSI TS 102 853 Interoperable Formats EU-wideXAdES / PAdES / CAdESASiC-SLevelsBES to LTVPackagingdetached, enveloped, enveloping

4. DSS tool: Technical featuresClick to edit Master title style164. DSS: Beneficiaries and benefits

Public administrations,Tool allowing the governance of the MS trusted lists Easier setting up of secure eGoverment servicesSolution to enhance trust and implement interoperable e-signatures for national & cross border completion of administrative formalitiesPossibility to validate electronically signed documents coming from different competent authorities

For business and citizens, Higher levels of trust and confidence on electronic transactionsAccess to fully-fledged transactional public services, saving timeClick to edit Master title style165. What is sTESTA?sTESTA (secured Trans European Services for Telematics between Administrations) is a communication platform to exchange electronic data between European and Member States administrations in a secure, reliable and efficient wayFacilitate cooperation between public administrations in various policy areas. Consolidate existing networks by providing a secure, reliable and flexible communication service layer.Exchange both unclassified and classified information (up to "EU RESTRICTED ").

The sTESTA service platform is the continuation of the service infrastructure initiated and developed under the IDA, and IDABC programmes of the ECClick to edit Master title styleISA CG 2012-03-28 - Pres 417Goal Platform to support the secure exchange of documents between Public Administrations at national and European level, so as to:

Reduce overall costs of digital data exchangeEnable the digitisation of business processesSecure digital data exchangePromote and re-use of interoperable solutionsUsable as a tool or as a service: e-TrustEx can be installed by the Public Administration or used as a service on the cloud. Open source

e-TrustExe-PRIORCIPA e-Delivery6. e-TrustExClick to edit Master title style186. e-TrustEx main features:Services for sending documents:Binary files (structured and unstructured documents up to 100MB)Groups of binary files (up to 500 documents of up to 100 MB each).

Services for retrieval of documents: InboxQuery

Security: End-to-end encryption (GUI only)End-to-end integrity (GUI only)Point-to-Point integrity e-TrustExe-PRIORCIPA e-DeliveryClick to edit Master title style19Thank You !!!Click to edit Master title styleSEMIC 2014 Athens, 9 April

http://semic.euClick to edit Master title style