Upload
michal-tabor
View
745
Download
1
Embed Size (px)
Citation preview
©Copyright 2015 Michał Tabor 1
The main purpose for the eIDAS is supporting business
Michał Tabor, CISSPTrusted Information Consulting Ltd.
Motivation
One slide presented on #CA-Day 9.06.2015 by Andrea Servida
What eIDAS is about?
Slide from Andrea Servida presentation – 9.06.2015
©Copyright 2015 Michał Tabor
How to support business?
Help to deliver convenient and usable services to customers
©Copyright 2015, PIIT & Michał Tabor
52015-06-11
6
#eIDAS Trust Service
Trust Service
creation
certification
verification
validation
preservation
delivery
combination of trust servies
provided for remuneration
©Copyright 2015 Michał Tabor
Business process
Securing transactions
Employee - consultant
Employer
Need of contract
Trustworthy contract
1. eSignature
2. Registred
Delivery
6. Archive
placement
3. Bank a
ccount
confirm
ation
4. SMS
Authentication
5. Regis
tred
Delivery
Trust Service
©Copyright 2015 Michał Tabor
Trustworthy document
Trust Service
EvidenceElectronic Identification
Evidence
Trust Service creates evidence
ElectronicSignature
ElectronicSeal
Evidence Protection
Means
eIDAS opportunity
Electronic Signature
Electronic Seal
Electronic signature
Used to protect evidence created by humans
Electronic signature
Evidence from systems is signed by the people to protect origin
Electronic seal
Evidence from systems is sealed automatically to protect origin
Electronic signature
Evidence from systems is signed by the people to protect origin
Electronic seal
Evidence from systems is sealed automatically to protect origin
16
eIDAS Trust Sevice - Evidence gathering
certification
verification
validation
preservation
delivery
EVIDENCE
EVIDENCE
EVIDENCE
EVIDENCE
EVIDENCE
EVIDENCE
WORKFLOW
creation
Electronic seal protects evidence from trust services
EVIDENCE
Qualified Seal
QTScreation
QTSvalidation
QTSpreservation
QTSdelivery
Certification Sig or Seal
QTSverification
18
Creator of an Electronic Seal
Legal person creates eSeal
Creator with eSeal guarantees authenticity of evidence
Seal proves integrity of sealed evidence
eSEAL creating data must remain under control of a creator
eIDAS doesn’t specify how controls should be implemented
Seal creation data „sole control” models
• Sealing is on own site• Full control over sealing device
Creator of the seal owns sealing device
• Device secured for sealing• Policy determines what is sealed
Creator of the seal distributes his sealing device
20
Device
Sealing Device
Evidence: What
Evidence: When
Evidence: Where
Document
Event
Evidence
Creator of a seal – takes responsibility for a evidence
prepared by device
ElectronicSeal created by manufacturer✔
21
#insurance case
Captured photo
GPS Time
GPS Localization
Collecting evidence of an accident
TIMEPLACE
22
Evidence – Handwritten
document
Time
Hand signature
Document
Handwritten signature
Handwritten signature secured with electronic seal
Expected documentation
Trust Service
EvidenceElectronic Identification
24
Electronic Sealprotects evidence
Let’s accept in public services
electronic documents resulting from various trust services and secured by qualified electronic seal
Public service
Qualified Seal
Qualified Signature
Trust Service
Start
©Copyright 2015, PIIT & Michał Tabor
262015-06-11
Trust Service
USER Service
Trust service is a gateway between user and service
(commercial or public)
BusinessSupport
27
Michał Tabor
[email protected]: @michal_tabor
Trusted Information Consulting Ltd. is the member of Polish Chamber of Information Technology and Telecommunications
The main purpose for the eIDAS is supporting
business