Presentation is loading. Please wait.

Presentation is loading. Please wait.

Legislation and Market Forces: PKI Drivers for the U. S. Mortgage Industry November 27, 2006 R. J. Schlecht Director, Industry Technology – Security &

Published byIsaac Golden Modified over 8 years ago

Similar presentations

Presentation on theme: "Legislation and Market Forces: PKI Drivers for the U. S. Mortgage Industry November 27, 2006 R. J. Schlecht Director, Industry Technology – Security &"— Presentation transcript:

1 Legislation and Market Forces: PKI Drivers for the U. S. Mortgage Industry November 27, 2006 R. J. Schlecht Director, Industry Technology – Security & Compliance

2 Secure Identity Services Accreditation Corporation SISAC Develops baseline standards for auditing and accreditation of certificate/credential issuers »SISAC does not issue credentials, rather accredits Service Providers, e.g., VeriSign, GeoTrust, Mortgage entities, etc. Technical, Business and Legal requirements B2B model for authentication Wholly-owned subsidiary of MBA www.sisac.org

3 SISAC - Requirements Standards developed by SISAC Advisory Group »Fannie Mae, Freddie Mac and mortgage participants »Advisory group is open to other entities »Standards drafted by Relying Parties Aligned with PKI best practices »Federal Bridge (FBCA), OMB 0404, NIST, etc. Business contract infrastructure »RA, Subscriber, Relying Party agreements »Defined obligations for all participants Liability requirements »Credential Issuer Liable for Errors & Omission (E&O) Not fraud or transaction »Basic ($1M), Medium ($5M), High ($10M)

4 eDoc Prep Service Ordering: Credit Flood Hazard Title MI MERS® eRegistry (National eNote Registry) eVault eDocuments eNote Data, Messaging & Control eOrigination & Underwriting External Docs eRecording Legal eDocs (Land records, tax liens, other docs/affidavits ) eClosing BuyerSeller eNotarization eSignatures eMortgage Process Flow Secondary Investor, Aggregator eVault Servicing

5 SISAC – Flexibility Three levels of Assurance »Basic, Medium & High Accreditation models »Full and outsourced providers »Independent or corporate providers Types of Subscriber Certificates »User certificates Individual or Organizational »Device certificates Ability for Replying Parties to add requirements

6 Legislation Uniform Electronic Transactions Act (UETA) Electronic Signatures in Global and National Commerce Act (E-SIGN) Gramm-Leach-Bliley Act Regulations »Federal Financial Institution Examination Council (FFIEC) »Federal Trade Commission (FTC) U. S. States »California Senate Bill 1386 (Security Breach) »Over 30 other States

7 MERS – National eNote Registry Designation of authoritative Promissory eNote Single source for Mortgage Industry of electronic Note »Notes are traded between primary, warehouse, secondary. Launch production »April 26, 2004 MERS Requirements »Tamper-evidence seal on envelope SISAC Organizational Medium Assurance Cert »Individual Identity on specific Transactions SISAC Individual Medium Assurance Cert

8 eNote Registry

9 National Notary Association (NNA) eNotarizaiton of electronic records State and County Recorders/Requirements Strong authentication, with validation and revocation Document integrity Potential fraudulent exploitation of notaries Non-proprietary model

10 Lessons Learned Business infrastructure and liability Relying parties are interested in complying with legislative and business requirements; not credential services Legislation legalized electronic signatures and documents, and security controls for protecting personal information Relying parties bear the risk and therefore should have a critical role in defining policy requirements Ability to leverage existing CPs/CPSs and audit practices Emergence of early industry adopters; eRegistry and eNotarization services Flexible model without compromise of standards

11 Addressing the PKI Adoption Issues Poor or missing support for PKI in software applications; High adoption costs; Poor understanding of PKI among senior managers and end-users; Too much focus on technology and not enough on business needs; and, Interoperability problems.

12 Contact R. J. Schlecht Director, Industry Technology Security & Compliance Mortgage Bankers Association Washington, DC 20006 202 557-2843 rschlecht@mortgagebankers.org

Download ppt "Legislation and Market Forces: PKI Drivers for the U. S. Mortgage Industry November 27, 2006 R. J. Schlecht Director, Industry Technology – Security &"

Similar presentations

The NNAs Electronic Notary Seal Program Creating and managing notarial acts electronically in real-time Richard J. Hansberger, Director of eNotarization.

The NNAs Electronic Notary Seal Program Creating and managing notarial acts electronically in real-time Richard J. Hansberger, Director of eNotarization.
EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.

EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.
MBA's Legal Issues in Mortgage Technology Conference November 30 – December 2, 2005 MERS Overview Enabling eCommerce for the Mortgage Industry December.

MBA's Legal Issues in Mortgage Technology Conference November 30 – December 2, 2005 MERS Overview Enabling eCommerce for the Mortgage Industry December.
Policy interoperability in electronic signatures Andreas Mitrakas EESSI International event, Rome, 7 April 2003.

Policy interoperability in electronic signatures Andreas Mitrakas EESSI International event, Rome, 7 April 2003.
The Federation for Identity and Cross-Credentialing Systems (FiXs) www.FiXs.org FiXs ® - Federated and Secure Identity Management in Operation Implementing.

The Federation for Identity and Cross-Credentialing Systems (FiXs) FiXs ® - Federated and Secure Identity Management in Operation Implementing.
The U.S. Federal PKI Richard Guida, P.E. Chair, Federal PKI Steering Committee Chief Information Officers Council 202-622-1552.

The U.S. Federal PKI Richard Guida, P.E. Chair, Federal PKI Steering Committee Chief Information Officers Council
The NNA’s Electronic Notary Seal Program Creating and managing notarial acts electronically in real-time Ozie H. Stallworth, Government Affairs Manager.

The NNA’s Electronic Notary Seal Program Creating and managing notarial acts electronically in real-time Ozie H. Stallworth, Government Affairs Manager.
UNCITRAL Colloquium on Electronic Commerce The Warehouse at Camden Yards Baltimore, MD February 14-16, 2011 Electronic Transferable.

UNCITRAL Colloquium on Electronic Commerce The Warehouse at Camden Yards Baltimore, MD February 14-16, 2011 Electronic Transferable.
S.1 Using a Global Validation Service to Unite Communities Jon Shamah EMEA Head of Sales, BBS eSecurity.

S.1 Using a Global Validation Service to Unite Communities Jon Shamah EMEA Head of Sales, BBS eSecurity.
August 2004 Providing Industry-wide Security and Identity Management Solutions.

August 2004 Providing Industry-wide Security and Identity Management Solutions.
Cross Sector Digital Identity Initiative March 12, 2014 Hearing on the National Strategy for Trusted Identities in Cyberspace (NSTIC) Cross Sector Digital.

Cross Sector Digital Identity Initiative March 12, 2014 Hearing on the National Strategy for Trusted Identities in Cyberspace (NSTIC) Cross Sector Digital.
Bill Maaske CIO AZ Secretary of State

Bill Maaske CIO AZ Secretary of State
Controller of Certifying Authorities Public Key Infrastructure for Digital Signatures under the IT Act, 2000 : Framework & status Mrs Debjani Nag Deputy.

Controller of Certifying Authorities Public Key Infrastructure for Digital Signatures under the IT Act, 2000 : Framework & status Mrs Debjani Nag Deputy.
Digital Signature Technologies & Applications Ed Jensen Fall 2013.

Digital Signature Technologies & Applications Ed Jensen Fall 2013.
Www.nationalsmartcardproject.org.uk www.scnf.org.uk National Smartcard Project Work Package 8 – Security Issues Report.

National Smartcard Project Work Package 8 – Security Issues Report.
Legal Issues in Mortgage Technology November 30 – December 2, 2005 Fannie Mae & eMortgages Pam Holland Associate General Counsel Fannie Mae.

Legal Issues in Mortgage Technology November 30 – December 2, 2005 Fannie Mae & eMortgages Pam Holland Associate General Counsel Fannie Mae.
Chapter 20 20-1 © 2012 Pearson Education, Inc. Publishing as Prentice Hall.

Chapter © 2012 Pearson Education, Inc. Publishing as Prentice Hall.
Blueprint for a Mortgage OLAP Network & Financial Warehouse by Evince Technologies, Inc. by Evince Technologies, Inc.

Blueprint for a Mortgage OLAP Network & Financial Warehouse by Evince Technologies, Inc. by Evince Technologies, Inc.
Managing Risk in Cloud Computing Contracts Henry Ward and Todd Taylor April 30, 2015.

Managing Risk in Cloud Computing Contracts Henry Ward and Todd Taylor April 30, 2015.
Chapter 19 E-Contracts and E-Signatures Copyright © 2009 South-Western Legal Studies in Business, a part of South-Western Cengage Learning. Jentz Miller.

Chapter 19 E-Contracts and E-Signatures Copyright © 2009 South-Western Legal Studies in Business, a part of South-Western Cengage Learning. Jentz Miller.

Similar presentations

Ads by Google