• No results found

Implementation: Single European Market for eidentity

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "Implementation: Single European Market for eidentity"

Copied!
32
0
0

Loading.... (view fulltext now)

Download now ( 32 Page )

Full text

(1)

Intern/Vertraulich 1 17.01.2014

Implementation:

Single European Market for eIdentity

January 16th 2014 Berlin

Dr. Kim Nguyen,

(2)

2 17.01.2014

eIdentity means …

… strong authentication/identification … suitable for eCommerce/eGovernment applications … providing a strong link to an officially verified identity … (HW) token based

(3)

3 17.01.2014

(4)

4 17.01.2014

Do we need this?

Yes, we do …

(5)

5 17.01.2014

Do we need this?

Yes, we do …

(6)

6 17.01.2014

EINFÜHRUNG

Passwords i.e. identities are stolen on a most daily basis

!

! ?

(7)

7 17.01.2014

EINFÜHRUNG

Security is typically not an accepted part of the features… ?

(8)

8 17.01.2014

These were the slides

(9)

9 17.01.2014

EINFÜHRUNG

New topic: consider the country in which the service is provided ?

(10)

10 17.01.2014

Single EU market for eIdentity

Technical

Interoperability Legal Acceptance

User acceptance & -experience

(11)

11 17.01.2014

IAS: CURRENT SITUATION

EU Signature directive 1999/93/EC dated 13.12.1999 No legal acceptance of QES within EU crossborder Mature standards (CEN and ETSI)

No legal framework within EU for eID

Different implementations of eID across Europe

(12)

12 17.01.2014

Single EU market for eIdentity

Technical

Interoperability Legal Acceptance

User acceptance & -experience

(13)

13 17.01.2014

(14)

14 17.01.2014

Single EU market for eIdentity

Technical

Interoperability Legal Acceptance

User acceptance & -experience

(15)

15 17.01.2014 CENTRAL GOVERNMENT ONLINE SERVICES SITUATION TODAY LOCAL GOVERNMENT ONLINE SERVICES BUSINESS ONLINE SERVICES NON PROFIT ORGANISATION ONLINE SERVICES Citizen

Many member states have already introduced eID technology supporting various use cases …

(16)

16 17.01.2014

SITUATION TODAY: SEPARATED E-ID INFRASTRUCTURE

Citizen

Citizen Citizen

Citizen

(17)

17 17.01.2014 Citizen Citizen Citizen Citizen Citizen

Opportunities for public and private sector

(18)

18 17.01.2014

INTEROPERABILITY REQUIREMENTS

There is no common single eID specification valid for the EU Several different implementations are already in place and operating

We need central „translation services“

We need to acknowledge that different trust levels exist in the implemented eID solutions

(19)

19 17.01.2014

DIFFERENT TECHNOLOGIES, BUT ONE UNIFYING APPROACH

(Server) S-PEPS (Citizen) C-PEPS MS spezifisch V-IDP (Virtual- ID-Provider) MS B MS A MS C

Middleware approach Proxy approach

(20)

20 17.01.2014 SOLUTION APPROACH (Server) S-PEPS (Citizen) C-PEPS MS spezifisch MS B MS A MS C

Middleware approach Proxy approach

V-IDP (V-SP) S-PEPS (MS B spezifisch) possible extensions possible extensions direct SP connector AT

MOA ID connector C-PEPS

Modular Authentication Relay Service … … DE eID Service V-IDP (Virtual- ID-Provider) MS D

(21)

21 17.01.2014

SOLUTION APPROACH IN DETAIL (MARS)

DE eID Service V-IDP (V-SP) S-PEPS (MS B spezifisch) possible extensions possible extensions direct SP connector AT

MOA ID connector C-PEPS national

C-PEPS

Modular Authentication Relay Service

Configurable like LEGO® ...

(22)

22 17.01.2014

Single EU market for eIdentity

Technical

Interoperability Legal Acceptance

User acceptance & -experience

(23)

23 17.01.2014

OUR TECHNOLOGY – YOUR PROBLEM

?

?

?

(24)

24 17.01.2014

OUR TECHNOLOGY – YOUR PROBLEM

Crossborder identification and authentication services and eServices are already existing,

they are already functioning und are used daily by millions of people all over the world …

(25)

25 17.01.2014

OUR TECHNOLOGY – YOUR PROBLEM

(26)

26 17.01.2014

BRIDGING THE ID WORLDS

Governmental eID solutions „Proprietary“ ID systems, e.g. username/ password, AppleID, propriatory token …

(27)

27 17.01.2014

BRIDGING THE ID WORLDS

Governmental eID solutions „Proprietary“ ID systems, e.g. username/ password, AppleID, proprietory token …

The future of eID lies within controlled connection between both worlds, e.g. for special use cases (unblocking of accounts, age verification etc)

(28)

28 17.01.2014 IDP (Identity Provider) Service Provider USER 3. Verify ID:

Using various ID sources and verification methods

4. Authentification

Using SAML/internationally accepted and standardized

exchange protocol 2. ID request: Confirmation of official ID requested 1. Service request: Using conventional authentification methods

(29)

29 17.01.2014

For the eID world we have to acknowlegde, that other

authentication systems are already existing and are widely used We have to find the right / complementary use cases where BOTH systems need to interact

This relates especially to administrative use cases like registration, account set up, account unblocking

For the operation of governmental eID solutions we need to provide a seamless integration into other „proprietory“ systems in order to gain acceptance

(30)

30 17.01.2014

(31)

31 17.01.2014

(32)

32 17.01.2014

Hinweis: Diese Präsentation ist Eigentum der Bundesdruckerei GmbH. Sämtliche Inhalte – auch auszugsweise – dürfen nicht ohne die Genehmigung der Bundesdruckerei GmbH vervielfältigt, weitergegeben oder veröffentlicht werden. Copyright 2013 by Bundesdruckerei GmbH.

DISCLAIMER Dr. Kim Nguyen Bundesdruckerei GmbH / D-TRUST GmbH Oranienstr. 91 | 10969 Berlin www.bundesdruckerei.de E-Mail: [email protected] Telefon: +49(0)30-2598-1194

References

Download now ( PDF - 32 Page - 5.39 MB )

Related documents

SDRT and Continuation Semantics

Segmented Discourse Representation Theory (SDRT) [2, 7] provides a dynamic semantics for discourse that exploits a rich notion of discourse structure.. According to SDRT, a text

the new village movement and the compound project in South Korea

The thesis examines a socio-economic policy experiment with social capital for the revitalization of rural villages in South Korea, and singled the definition by Putnam that

Single-port access versus conventional multi-port access total laparoscopic hysterectomy for very large uterus

Single-port access (SPA) laparoscopy results in reduced trauma to the abdominal wall and improved cosmetic effects com- Single-port access versus conventional multi-port access

Today s Readings INFORMATION. Jeremiah Ps , 10-11, Hebrews John MASSTIMES

Hospital chaplains visit patients and their families to address any spiritual needs, to pray, to provide a friendly face and comforting presence, to talk about people’s fears

CFD Study of Reactivity Controlled Compression Ignition (RCCI) Combustion in a Heavy-Duty Diesel Engine

In this paper, a numerical study is carried out to investigate the combustion and emission characteristics of reactivity controlled compression ignition (RCCI) combustion mode in

Reproductive Performance in Dairy Cows Synchronized with the Ovsynch Protocol at Different Stages of the Estrus Cycle

The objectives of the study were to evaluate reproductive performance in cows synchronized with the Ovsynch protocol at different stages of the estrus cycle as detected by

Effects of Cooperative Learning on Students’ Academic Achievement

A few studies have been carried out in local context also, for example Iqbal (2004) conducted a study the examine the effect of cooperative learning on academic achievement on

Government Response to the Justice Committee s Report: The role of the Probation Service

Provision of services to the courts 18 Partnership schemes and the potential to pool resources 19 The role of the probation service in public protection 20 Public confidence