Presentation is loading. Please wait.

Presentation is loading. Please wait.

PKI Policy Determination Process Input from PKI Decision Process PKI Policy Determination Process Application(s) Workflows Players.

Published byOsborn Johnson Modified over 8 years ago

Similar presentations

Presentation on theme: "PKI Policy Determination Process Input from PKI Decision Process PKI Policy Determination Process Application(s) Workflows Players."— Presentation transcript:

1 PKI Policy Determination Process Input from PKI Decision Process PKI Policy Determination Process Application(s) Workflows Players

2 Determine Business Requirements and Constraints Determine Policy and Deployment Models Determine Types of Policies and Agreements Needed List of Potential Policies and Agreements PKI Policy Determination Process Define Business Applications and Requirements

3 Determine Business Requirements and Constraints Map Business Requirements to PKI Services Determine Types of Data Determine Use Determine Jurisdiction Workflows Players

4 Map Business Requirements to PKI Services PKI Services –Authenticity of Identity –Integrity of Data –Digital Signature –Non repudiation –Confidentiality

5 Determine Types of Data Financial Medical Personal Commercial Location Governmental

6 Determine Use Motivation and Purpose Process Role Community

7 Determine Use – Motivation and Purpose Institution and professional accreditation Establishment of secure user accounts Enable transactions –Internally –B2B –B2G –B2C –C2C –C2G –G2G

8 Determine Use - Process Application specific -Financial management -Clinical information systems -Mortgages Communications -Email/Web -VOIP -Mobile/wireless -legacy Storage and retrieval -Physical -Electronic Workflow/process management

9 Determine Use - Role Issuer/CA (need business terms) Holder Relying Party

10 Determine Use - Community Enterprise Trading partner Community of Interest –Closed –Extensible Government

11 Determine Jurisdiction Jurisdictional level – international, national, state, local Laws Regulations Policies Business and intra-industry Government Standards/codes of practice Accredited De-facto Industry-specific best practices

12 Determine Policy and Deployment Types Internal External Trust model

13 Define Business Application(s) and Requirements

14 Determine Types of Policies and Agreements Needed CP CPS Relying Party Agreement Subscriber Agreement RA Agreement LRA Agreement PKI Disclosure Statement (PDS) Privacy Policy Statement Certificate Manufacturing Agreement Security Policy Policy Management Authority Charter (policy document) Service Level Agreement Outsourcing Agreement Internal Memoranda of Agreement Internal Conformance Audit Agreement External Conformance Audit Agreement Dispute Resolution Procedures Certification Authority Agreement (contractual) Warranty

15 List of Potential Policies and Agreements

Download ppt "PKI Policy Determination Process Input from PKI Decision Process PKI Policy Determination Process Application(s) Workflows Players."

Similar presentations

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.
© 1998-2003 ITU Telecommunication Development Bureau (BDT) – E-Strategy Unit.. Page - 1 Seminar on Standardization and ICT Development for the Information.

© ITU Telecommunication Development Bureau (BDT) – E-Strategy Unit.. Page - 1 Seminar on Standardization and ICT Development for the Information.
WISeWorld conference 20001128 Information Risk Management kpmg PKI: Panacea or Pandora? Arjen van Zanten Partner, KPMG IRM, The Netherlands International.

WISeWorld conference Information Risk Management kpmg PKI: Panacea or Pandora? Arjen van Zanten Partner, KPMG IRM, The Netherlands International.
1 ABCs of PKI TAG Presentation 18 th May 2004 Paul Butler.

1 ABCs of PKI TAG Presentation 18 th May 2004 Paul Butler.
Digital Signatures in State of Tennessee Pam Roberts Finance & Administration Office for Information Resources Planning, Research & Development.

Digital Signatures in State of Tennessee Pam Roberts Finance & Administration Office for Information Resources Planning, Research & Development.
PKI Solutions: Buy vs. Build David Wasley, U. California (ret.) Jim Jokl, U. Virginia Nick Davis, U. Wisconsin.

PKI Solutions: Buy vs. Build David Wasley, U. California (ret.) Jim Jokl, U. Virginia Nick Davis, U. Wisconsin.
Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.
EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.

EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.
Policy interoperability in electronic signatures Andreas Mitrakas EESSI International event, Rome, 7 April 2003.

Policy interoperability in electronic signatures Andreas Mitrakas EESSI International event, Rome, 7 April 2003.
© Southampton City Council Sean Dawtry – Southampton City Council The Southampton Pathfinder for Smart Cards in public services.

© Southampton City Council Sean Dawtry – Southampton City Council The Southampton Pathfinder for Smart Cards in public services.
Public Key Infrastructure (PKI) Hosting Services.

Public Key Infrastructure (PKI) Hosting Services.
Page 1 Policy-Driven Systems for Enterprise-Wide Security Using PKI and Policies to build Trusted Distributed Authorization Systems Joe Pato Marco Casassa.

Page 1 Policy-Driven Systems for Enterprise-Wide Security Using PKI and Policies to build Trusted Distributed Authorization Systems Joe Pato Marco Casassa.
1st Expert Group Meeting (EGM) on Electronic Trade-ECO Cooperation on Trade Facilitation 23-25 May 2012, Kish Island, I.R.IRAN.

1st Expert Group Meeting (EGM) on Electronic Trade-ECO Cooperation on Trade Facilitation May 2012, Kish Island, I.R.IRAN.
ESign-Online Digital Signature Service February 2015 Controller of Certifying Authorities Department of Electronics and Information Technology Ministry.

ESign-Online Digital Signature Service February 2015 Controller of Certifying Authorities Department of Electronics and Information Technology Ministry.
August 2004 Providing Industry-wide Security and Identity Management Solutions.

August 2004 Providing Industry-wide Security and Identity Management Solutions.
WISeWorld2000 WISeKey By Malcolm Hutchinson CEO & Cofounder WISekey.

WISeWorld2000 WISeKey By Malcolm Hutchinson CEO & Cofounder WISekey.
Federations in Texas Barry Ribbeck University of Texas Health Science Center at Houston.

Federations in Texas Barry Ribbeck University of Texas Health Science Center at Houston.
1 Bridge/Gateway CA Project Status Gzim OCAKOGLU European Commission – DG ENTR / IDABC Reykjavik – 27 May 2005.

1 Bridge/Gateway CA Project Status Gzim OCAKOGLU European Commission – DG ENTR / IDABC Reykjavik – 27 May 2005.
HIT Standards Committee: Digital Certificate Trust – Policy Question for HIT Policy Committee March 29, 2011.

HIT Standards Committee: Digital Certificate Trust – Policy Question for HIT Policy Committee March 29, 2011.
Opening Presentation of Notary Reqs 8/5/2004 Tobias Gondrom.

Opening Presentation of Notary Reqs 8/5/2004 Tobias Gondrom.

Similar presentations

Ads by Google