Presentation is loading. Please wait.

Presentation is loading. Please wait.

Siemens IT Solutions and Services - 2007 Porvoo 12 – Grosseto, October 2007 Update on EU Common Specifications.

Published byJenifer Southmayd Modified over 9 years ago

Similar presentations

Presentation on theme: "Siemens IT Solutions and Services - 2007 Porvoo 12 – Grosseto, October 2007 Update on EU Common Specifications."— Presentation transcript:

1 Siemens IT Solutions and Services - 2007 Porvoo 12 – Grosseto, October 2007 Update on EU Common Specifications

2 Page 2 Oct 07 Siemens IT Solutions and Services Background – The Manchester Ministerial Declaration (2005) About eIDs By 2010 European citizens and businesses shall be able to benefit from secure means of electronic identification […] made available under the responsibility of the Member States but recognized across the EU About eDocs By 2010 Member States will have agreed a framework for […] authenticated electronic documents across the EU Source: http://archive.cabinetoffice.gov.uk/egov2005conference/documents/proceedings/pdf/051124declaration.pdf

3 Page 3 Oct 07 Siemens IT Solutions and Services Background – The i2010 Action Plan (2006) i2010 eGovernment Action Plan: Accelerating eGovernment in Europe for the Benefit of All "Member States recognize the importance of eIDM for ensuring that by 2010 European citizens and businesses will be able to benefit from secure and convenient electronic means, issued at local, regional or national levels and complying with data protection regulations, to identify themselves to public services in their own or in any other Member State" Source: http://eur-lex.europa.eu/LexUriServ/site/en/com/2006/com2006_0173en01.pdf

4 Page 4 Oct 07 Siemens IT Solutions and Services Background: i2010 actions (to promote eID as key enabler for e-Government) 2006 2007 2008 2009 2010 Agree with Member States … on the way to a European eIDM framework by 2010 based on interoperability and mutual recognition of national eIDM Agree common specifications for interoperable eIDM in the EU. Monitor large scale pilots of interoperable eIDMs in cross-border services eSignatures in eGovernment: Undertake review of take- up in public services Review the uptake by the Member States of the European eIDM framework for interoperable eIDMs. Source: http://eur-lex.europa.eu/LexUriServ/site/en/com/2006/com2006_0173en01.pdf

5 Page 5 Oct 07 Siemens IT Solutions and Services The project (eID interoperability for PEGS) represents one of IDABC contributions to the i2010 Action Plan Project details:  Project name: eID Interoperability for PEGS  Project owner: European Commission (IDABC)  Contractor: Siemens IT Solutions and Services (Timelex as subcontractor)  Project start date: January 2007 Entities also involved in the review of the deliverables:  IDABC eID Interoperability Expert Group  i2010 eGovernment sub-group of DG INFSO

6 Page 6 Oct 07 Siemens IT Solutions and Services Main objectives of the project  To analyze the eIDM and authentication interoperability requirements stemming from the pan-European or cross- border eGovernment services  To describe the required interoperability functions in eIDM and provide a comparative assessment of existing eID interoperability models  To derive common specifications for interoperable eIDM in the EU.

7 Page 7 Oct 07 Siemens IT Solutions and Services Status of work (1/2) Done: analysis of main eIDM schemes, available solutions for interoperability and impact on cross-border e-Gov. Country Profiles of MS (with a comprehensive analysis of current eIDM schemes) Report on Analysis and assessment of similarities and differences of eIDM schemes (with respect to both legal and technical aspects) Report on impact on eIDM interoperability (of the similarities and differences of the various eIDM schemes) Report on interoperable eIDM technical solutions (key attributes of each eIDM model for possible use in a cross-border application) Report on comparison and assessment of eIDM solutions interoperability (technical comparison of the respective models)

8 Page 8 Oct 07 Siemens IT Solutions and Services Status of work (2/2) Current & next steps: Multilevel Authentication and Common Specifications models: Draft Common specifications for eIDM interoperable solutions Summary of existing national and other authentication schemes Proposal for multi-level authentication mechanism and a mapping of existing authentication mechanisms Report on the Impact and the implementation of the multi-level authentication mechanism and recommendations for the adoption of a multi-level authentication mechanism

9 Page 9 Oct 07 Siemens IT Solutions and Services Main results (1/5) Complexity of the scenario The country survey revealed an heterogeneous scenario with regard to the adoption and use of identity resources. Particularly, with regard to identity tokens, the study found that out of 32 countries, 28 issue identity cards and only 7 are deploying eID cards (Austria, Belgium, Estonia, Finland, Italy, Portugal and Spain) Even unique identification numbers are not always used, due to privacy concern or other reasons However, almost 50% of the MS are in the process of designing eID cards for future roll-out

10 Page 10 Oct 07 Siemens IT Solutions and Services Main results (2/5) Complexity of the available technologies The preliminary analysis of the existing eIDM schemes and solution models showed a large number of existing solutions, often similar but sometimes very different and even not interoperable. Landscape of IDPs (source: IDABC site)

11 Page 11 Oct 07 Siemens IT Solutions and Services Main results (3/5) Necessity of a country inclusive and user protective approach The proposed specification has to preserve or at least to take into account local preferences and existing infrastructures of 30+ MS A must is the protection of citizen data, so that their amount has to be minimized and an informed consent of their owners clearly obtained; use of general unique identification numbers should be excluded. Data protection regulations should be addressed in a set of standardized policy documents to be used by the application owners. Electronic identity should be defined to be technology neutral, require a minimal data set of user data, comply with legal restrictions and be commonly accepted by all MS Multiple authentication levels supported in favor of trust

12 Page 12 Oct 07 Siemens IT Solutions and Services Main results (4/5) – Common specification of a multilevel authentication model Risk assessment / Definition of required auth. level (on behalf of SPs/Appl. Owners) Registration policies (on behalf of Issuing Authorities) Authentication process (on behalf of citizens/IDPs/SPs) Multilevel Authentication model

13 Page 13 Oct 07 Siemens IT Solutions and Services Multilevel authentication – Example matrix Risk assessment / Definition of required auth. level Registration policy Authentication Process Level 1 Low risk/damages Claim based; no requirements for proving the claimed identity Standard passwords accepted Level 2 Low-medium risk/damages No personal presence of the applicant still acceptable, but basic validation of claimed identity attributes is required Authentication based on ID Tokens (SW or HW) always acceptable; no passwords, except OTPs Level 3 Medium-high risk/damages Personal presence of applicant is required, or availability of official identity resources for secure on-line verification of claimed id OTP is still tolerated, but ID Tokens (SW or HW) strongly recommended Level 4 High risk/damages Personal presence of applicant required; on-line registration only possible if qualified signatures of official identity resources are used Only hard crypto tokens are accepted (e.g. eID cards)

14 Page 14 Oct 07 Siemens IT Solutions and Services Main results (5/5) – Common specification of a Pan European Proxy Service PEPS architecture (source: IDABC site)

15 Page 15 Oct 07 Siemens IT Solutions and Services Copyright © Siemens AG 2006. Alle Rechte vorbehalten. Thank you for your attention! Andrea Biasiol Siemens IT Solutions and Services andrea.biasiol@siemens.com

Download ppt "Siemens IT Solutions and Services - 2007 Porvoo 12 – Grosseto, October 2007 Update on EU Common Specifications."

Similar presentations

Session 3: Safer Services in a Digital Society Security with RFID Gérald Santucci European Commission Head of Unit DG INFSO/D4.

Session 3: Safer Services in a Digital Society Security with RFID Gérald Santucci European Commission Head of Unit DG INFSO/D4.
1 Proposal for a Regulation on Electronic identification and trust services for electronic transactions in the internal market (COM(2012 238 final) {SWD(2012)

1 Proposal for a Regulation on Electronic identification and trust services for electronic transactions in the internal market (COM( final) {SWD(2012)
© fedict 2008. All rights reserved Legal aspects Belgian electronic identity card Samoera Jacobs – November 2008.

© fedict All rights reserved Legal aspects Belgian electronic identity card Samoera Jacobs – November 2008.
S.O.S. eHealth Project Open eHealth initiative for a European large scale pilot of patient summary and electronic prescription Daniel Forslund, Head of.

S.O.S. eHealth Project Open eHealth initiative for a European large scale pilot of patient summary and electronic prescription Daniel Forslund, Head of.
GEOSS Data Sharing Principles. GEOSS 10-Year Implementation Plan 5.4 Data Sharing The societal benefits of Earth observations cannot be achieved without.

GEOSS Data Sharing Principles. GEOSS 10-Year Implementation Plan 5.4 Data Sharing The societal benefits of Earth observations cannot be achieved without.
HIPAA Security Presentation to The American Hospital Association Dianne Faup Office of HIPAA Standards November 5, 2003.

HIPAA Security Presentation to The American Hospital Association Dianne Faup Office of HIPAA Standards November 5, 2003.
A strategy for a Secure Information Society –

A strategy for a Secure Information Society –
1 European Interoperability Framework for pan-European eGovernment Services Paulo Lopes European Commission, Directorate General Information Society Presentation.

1 European Interoperability Framework for pan-European eGovernment Services Paulo Lopes European Commission, Directorate General Information Society Presentation.
EUPAN, Dublin 4 April 2013 EU e-Government Action Plan 2011-2015 Harnessing ICT to promote smart, sustainable & innovative Government.

EUPAN, Dublin 4 April 2013 EU e-Government Action Plan Harnessing ICT to promote smart, sustainable & innovative Government.
1 FPEG Identity theft & payment fraud point 2.2 19 December 2007.

1 FPEG Identity theft & payment fraud point December 2007.
Seminar Open Government in the Making Brussels, 4 October 2012 Andrea Halmos European Commission, DG CONNECT Unit H3 Public Services.

Seminar "Open Government in the Making" Brussels, 4 October 2012 Andrea Halmos European Commission, DG CONNECT Unit H3 Public Services.
Conclusions from e-Health

Conclusions from e-Health
Paul Timmers eGovernment Unit Directorate General Information Society & Media European Commission Public eProcurement and EU eGovernment Developments 13.

Paul Timmers eGovernment Unit Directorate General Information Society & Media European Commission Public eProcurement and EU eGovernment Developments 13.
Interoperability of electronic road toll systems in the EU The European Electronic Toll Service (EETS) Directive 2004/52/EC & Decision 2009/750/EC Charles.

Interoperability of electronic road toll systems in the EU The European Electronic Toll Service (EETS) Directive 2004/52/EC & Decision 2009/750/EC Charles.
European Union Cohesion Policy

European Union Cohesion Policy
© 1998-2003 ITU Telecommunication Development Bureau (BDT) – E-Strategy Unit.. Page - 1 Seminar on Standardization and ICT Development for the Information.

© ITU Telecommunication Development Bureau (BDT) – E-Strategy Unit.. Page - 1 Seminar on Standardization and ICT Development for the Information.
Current trends and perspectives on e-Services for Public Services in Europe European Network Technical Seminar on Efficient e-Services in social security.

Current trends and perspectives on e-Services for Public Services in Europe European Network Technical Seminar on Efficient e-Services in social security.
1 The impact of important Single Market policies on the development of Pan- European Services and Products i2010 Conference Information Society at the.

1 The impact of important Single Market policies on the development of Pan- European Services and Products i2010 Conference Information Society at the.
Cornel Vintila Expert in IT&C policies and regulations, Enterprise Architect, BPM Expert.

Cornel Vintila Expert in IT&C policies and regulations, Enterprise Architect, BPM Expert.
1 The interconnection of business registers Judit Fischer – DG Internal Market and Services Budapest, 14 June 2010.

1 The interconnection of business registers Judit Fischer – DG Internal Market and Services Budapest, 14 June 2010.

Similar presentations

Ads by Google