Upload
truongkien
View
226
Download
2
Embed Size (px)
Citation preview
1cryptovision’s eGovernment Solutionscv cryptovision GmbH | T: +49 (0) 209.167-24 50 | F: +49 (0) 209.167-24 61 | info(at)cryptovision.com
Make the Digital Evolution become Reality: cryptovision’s eGovernment Solutions
Adam Ross, Ben Drischcryptovision GmbH
2cryptovision’s eGovernment Solutions
The evolution of cryptovision● staff● product portfolio● demo setup
“From ECC specialist to solution provider”
A journey through time
Agenda
3cryptovision’s eGovernment Solutionscryptovision/jNet Banking Offering
cryptovision
Headquarters:Gelsenkirchen, Germany
Subsidiary:New York City, USA
Sales Offices:Silicon Valley, USA; Vienna, Austria
Founded:1999 by Markus & Andreas Hoffmeister
Focus:IT Security, Cryptography, PKI
Customer Base:hundreds of customers worldwide
5cryptovision’s eGovernment Solutions
Mission: Transfer Elliptic CurveCryptography (ECC)from research to practice
1999 – The Beginning
6cryptovision’s eGovernment Solutions
Technology Chain
Terminal Clients ServerDocuments
CardApplications Middleware Security
ApplicationsSecurity
Infrastructure
7cryptovision’s eGovernment Solutions
library/sc:● crypto library with ECC
on smart card chip with only symmetric (3DES) crypto engine
sc/interface:●mature PKCS#11 module●mobile CSP and
Microsoft signature●User Tool and Admin
Tool
CA server:● core components for
certificate authorities
1999 – Product Portfolio
ECC wheel
9cryptovision’s eGovernment Solutions
First EAC ePass with Austia Cardand ABnote for BSI
2003/2004 – The Dawn of EAC
cv provides cryptolibrary with ECC toGolden Reader Tool
… still used in our demos
10cryptovision’s eGovernment Solutions
library/sc:● crypto libraries with ECC
and RSA for various card manufacturers
● eID/ePass protocols like AA, BAC, EAC
PKIntegrated:● IDM meets PKI●C++ based and requires
Novell IDM●Huge project for Star
Alliance
2003/2004 – Product Portfolio
sc/interface:●mature PKCS#11 module●mobile CSP and
Microsoft signature●User and Admin Tool
12cryptovision’s eGovernment Solutions
Moving from smart card crypto libraries to applications:● Single applets for ICAO MRTDs and PKI/SSCD● First Version of ePasslet Suite
2009/2010 – Introduction of ePasslet Suite
13cryptovision’s eGovernment Solutions
ePasslet Suite:● JCOP based first version● ICAO MRTD● ISO Driving License● PKI/SSCD with MoC● German eID
PKIntegrated:●New CMS component,
OCSP, SCEP, PKItoolsNew CAmelot solution:● Java based PKI for
Enterprise and eID
2009/2010 – Product Portfolio
sc/interface:● supports a lot of new cards●Minidriver, Tokend,
Biometrics, Register Tool● First OEM licensees,
mass rollouts
14cryptovision’s eGovernment Solutions
ePasslet Suite
EuCCEuropean Citizen Card
GeIDBSI TR03127
eHICCWA 15974
IDLISO 18013
eVREU Directive 99/37/EC
ICAO MRTD with BACICAO Doc 9303
ICAO MRTD with BAC/EACBSI TR03110 V 1.11
ePass/eID with SAC/EACv1/EACv2BSI TR03110 V 2.1 ePKI
PKCS#15, Full ISO 7816
eID demo
16cryptovision’s eGovernment Solutions
● Stripping down the functionality of the German eID card to make it usable with standard middleware(remove TA/CA, add PACE to P15 standard, …)
● Define own standard eID/Governance offering and demonstrations with partners● Bundesdruckerei GO-ID card● Imprimerie Nationale demonstrator
● Addressing mobile platforms
2014-2016 – Technological development
17cryptovision’s eGovernment Solutions
ePasslet Suite v3.0:●Modular Configurations●Secure key injection
(GIDS)● new eIDAS functionality●CC certifiable at EAL5+
CAmelot:● Large scale eID projects●New workflow engine●New PKI client
Easy and transparent certificate generation/renewal for users
2014/2016 – Product Portfolio
sc/interface:●Virtual smart card●BDr GO-ID card supportSCalibur:● own eID middleware SDK● initial Android version
Avalon demo
18cryptovision’s eGovernment Solutions
ePasslet Suite:●Own EMV offering● LDS 2.0● FIDO Authentication● Transport, Purse
CAmelot:● IDM/DB integration
(IBM, Oracle, NetIQ)● Key migration from other
CAs● FIDO server
Outlook – Product Portfolio
sc/interface:●Extended Biometic support●PIV supportSCalibur:● Full Android version● Full distributed version
19cryptovision’s eGovernment Solutions
Using Mobile Devices
2011: Mobile device sales overtake PCs2014: Mobile exceeds PC (for internet usage)
● 3 ways to use a mobile device for eID:a) As complement to an actual eID document
b) As replacement with internal security HW
c) As replacement without security hardware
20cryptovision’s eGovernment Solutions
Future Terminal Devices
There is also demand for flexible and affordable terminals● using OTS hardware components● Being easily programmable (common OS)
Image source: Credence ID
21cryptovision’s eGovernment Solutions
Solution Transformation
Evolve from technology specialist to solution provider● Identify gaps and design solutions for● eID card applications● Middleware● PKI
● Extend our partner network● Setup a showroom with full eID document life-cycleSell, execute and master the growth