Presentation is loading. Please wait.

Presentation is loading. Please wait.

Evolution in cross-border interoperability of eSignatures and eID Tarvi Martens SK, Estonia.

Published byGary Bell Modified over 8 years ago

Similar presentations

Presentation on theme: "Evolution in cross-border interoperability of eSignatures and eID Tarvi Martens SK, Estonia."— Presentation transcript:

1 Evolution in cross-border interoperability of eSignatures and eID Tarvi Martens SK, Estonia

2 Let’s read the title again! “Evolution in cross-border interoperability of eSignatures and eID” Prerequisites: eID eSignature Evolution Cross-border interoperability

3 European eID landscape

4 eSignature landscape

5 Summary of current situation eID deployment: Some countries are leading Some countries have “odd” solutions and/or are stalled Number of countries have plans Number of countries do not even have a plan Deployment: 5-10 years eSignature practice: Used mostly in closed systems No common understanding of “free-flowing digitally signed file”

6 Use of eID & eSignature in Estonia ID-card launched 6 years ago Rollout “completed”, 1M+ cards out Common system for eSignatures, widely accepted and deployed for 5+ years All major e-services support ID-card Internet voting deployed. ~80 000 users

7 Cross-border interoperability eID uptake low Even worse with eSignatures <1% of transactions cross-border Cross-border interoperability ???

8 Manchester declaration By 2010 European citizens and businesses shall be able to benefit from secure means of electronic identification that maximise user convenience while respecting data protection regulations. By 2010 Member States will have agreed a framework for reference to and where appropriate the use of authenticated electronic documents across the EU, as appropriate in terms of necessity and applicable law

9 The road to Nirvana i2010

10 Drivers behind interop Political eProcurement Service Directive Business eBanking etc. General Common understanding of digital signature Standardization in industry (cards, tools etc.)

11 Evolution: yes! Technically repeatedly piloted IDABC Bridge/Gateway v.1. European Bridge-CA (TeleTrust, Germany) Euro-PKI, GUIDE,... openvalidation.org Initatives to be observed today De Norske Veritas e-notary service Spanish eGov Validation Gateway eApostille Upcoming IDABC Bridge/Gateway v.2. Upcoming eID Large Scale Project

12 Organizational issues Paper-ID interoperability works! Miracles happen in border points Organizational set-up of Paper-ID interop: ICAO sets standards Continuous information exhange by network of MoIA-s to the borderguards etc. Organizational set-up of eID interop ??? Standards are not strict and not imposed Continuous information exhange is missing completely

13 Need for (foreign) eID info Collecting and managing eID/service info is a daily job, not project-based What info is needed ? Certificate validity (reference) Certificate semantics Certificate quality (!!!) Hardware token vs. software certificate Quality of service provider & certificate Context of certificate issuance......

14 Handling foreign eID Certification & validation service providers “Identity hub” Certificate quality / semantics / validity Service Provider “What certificate is that?” foreign user

15 eSignature handling Certification & validation service providers “Identity hub” Certificate quality / semantics / validity “E-notary” “What certificate is that?” Digital signing software providers “translation” and assessment “What document is that?”

16 Who will run the Indentity Hub ? EC does not have mandate (yet) Single MS cannot afford it (to cover all Europe/World) No actual demand (read: need covered with money) Low volume of international transactions Uptake of national eID-s is still underway We need clear political agreement to create such a service in EU level In future we can envisage situation where every MS runs its own “e-borderguard”

17 The Other Direction - Harmonization Standardization European Citizen Card (ECC) Common middleware OpenSC Windows Vista plug-and-play for smartcards Various approaches and initiatives to solve differences in middleware layer

18 Legal problems There is no eAuthentication Directive National legislations hardly touch the subject SP: “Who to sue if I will make wrong assessment on certificate inheritance/validity ?”

19 Bottom Line We need to create and distribute eID-s first Preferably PKI-based qualified certificates Then teach holders of eID-s to use them Estonian case: penetration ≠ usage But interop shall be addressed NOW Withouht vision, political will and hard work there would never been such thing as EU

20 Thank You! tarvi@sk.ee

Download ppt "Evolution in cross-border interoperability of eSignatures and eID Tarvi Martens SK, Estonia."

Similar presentations

1 Proposal for a Regulation on Electronic identification and trust services for electronic transactions in the internal market (COM(2012 238 final) {SWD(2012)

1 Proposal for a Regulation on Electronic identification and trust services for electronic transactions in the internal market (COM( final) {SWD(2012)
Conclusions from e-Health

Conclusions from e-Health
Paul Timmers eGovernment Unit Directorate General Information Society & Media European Commission Public eProcurement and EU eGovernment Developments 13.

Paul Timmers eGovernment Unit Directorate General Information Society & Media European Commission Public eProcurement and EU eGovernment Developments 13.
Current trends and perspectives on e-Services for Public Services in Europe European Network Technical Seminar on Efficient e-Services in social security.

Current trends and perspectives on e-Services for Public Services in Europe European Network Technical Seminar on Efficient e-Services in social security.
Taxpayers registration and e-services provided by the Estonian Tax and Customs Board Karin Aleksandrov Chief Expert Service Management Department.

Taxpayers registration and e-services provided by the Estonian Tax and Customs Board Karin Aleksandrov Chief Expert Service Management Department.
European Electronic Identity Practices Country Update of Finland Speaker: Päivi Pösö Date: 26.5.2005.

European Electronic Identity Practices Country Update of Finland Speaker: Päivi Pösö Date:
Siemens IT Solutions and Services - 2007 Porvoo 12 – Grosseto, October 2007 Update on EU Common Specifications.

Siemens IT Solutions and Services Porvoo 12 – Grosseto, October 2007 Update on EU Common Specifications.
EGovernment Vision, Policies and Implementations in Austria Prof. Dr. Reinhard Posch CHIEF INFORMATION OFFICER.

EGovernment Vision, Policies and Implementations in Austria Prof. Dr. Reinhard Posch CHIEF INFORMATION OFFICER.
Digital Identity Group May 2012. GIXEL  GIXEL is the professional association of electronic component and system industries in France. It brings together.

Digital Identity Group May GIXEL  GIXEL is the professional association of electronic component and system industries in France. It brings together.
1 14 th May 2008 How can pan-European Public Services Benefit from CIP ICT PSP Pilot on eID Dr. Davorka Šel Ministry of Public Administration SLOVENIA.

1 14 th May 2008 How can pan-European Public Services Benefit from CIP ICT PSP Pilot on eID Dr. Davorka Šel Ministry of Public Administration SLOVENIA.
Digital Stamps of Companies Tarvi Martens SK, Estonia.

Digital Stamps of Companies Tarvi Martens SK, Estonia.
Stork is an EU co-funded project INFSO-ICT-PSP-224993 www.brz.gv.at STORK PRESENTATION STORK eGov Symposium Bern 09.Nov.2010 Dipl.-Ing. (FH) Klaus J. John.

Stork is an EU co-funded project INFSO-ICT-PSP STORK PRESENTATION STORK eGov Symposium Bern 09.Nov.2010 Dipl.-Ing. (FH) Klaus J. John.
Internet Voting in Estonia Tarvi Martens Project Manager National Electoral Committee.

Internet Voting in Estonia Tarvi Martens Project Manager National Electoral Committee.
Setting Processes for Electronic Signature 1 The ”W-SPES Project” and the “Leuven Report on the Electronic Signatures Directive” – Putting the Project.

Setting Processes for Electronic Signature 1 The ”W-SPES Project” and the “Leuven Report on the Electronic Signatures Directive” – Putting the Project.
European Electronic Identity Practices Country Update of …………… Speaker: Date:

European Electronic Identity Practices Country Update of …………… Speaker: Date:
European Electronic Identity Practices Country Update of Belgium Speaker: Maes F. Date: 25 May 2005.

European Electronic Identity Practices Country Update of Belgium Speaker: Maes F. Date: 25 May 2005.
Stork is an EU co-funded project INFSO-ICT-PSP-224993 Secure Identity Across Borders Linked Secure Electronic Identity Across Europe! STORK – 4 TH I NDUSTRY.

Stork is an EU co-funded project INFSO-ICT-PSP Secure Identity Across Borders Linked Secure Electronic Identity Across Europe! STORK – 4 TH I NDUSTRY.
Certification Authority. Overview  Identifying CA Hierarchy Design Requirements  Common CA Hierarchy Designs  Documenting Legal Requirements  Analyzing.

Certification Authority. Overview  Identifying CA Hierarchy Design Requirements  Common CA Hierarchy Designs  Documenting Legal Requirements  Analyzing.
UbIdentity Ubiquitous Identity Management in the Cloud 20/03/2014 Dan BUTNARU Product Line Manager Trusted Identity.

UbIdentity Ubiquitous Identity Management in the Cloud 20/03/2014 Dan BUTNARU Product Line Manager Trusted Identity.
August 2004 Providing Industry-wide Security and Identity Management Solutions.

August 2004 Providing Industry-wide Security and Identity Management Solutions.

Similar presentations

Ads by Google