Data Transport Standard (DTS) for NCHELP Business Perspective.

Slides:

Advertisements

Similar presentations

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.

Advertisements

Internet Protocol Security (IP Sec)

Web Service Architecture

Tuesday, June 10, 2003 Web Services Brief Overview & Security Assertion Coordinator Pattern by Mohammad Abushadi & Riaz Ahmed for Security Group CSE -

Matthew Kubicina CIS 764 Kansas State University.

CS651/551 Federated Trust Systems Alfred C. Weaver

IETF Trade Working Group January 2000 XML Messaging Overview January 2000.

Cryptography and Network Security

Topic 8: Secure communication in mobile devices. Choice of secure communication protocols, leveraging SSL for remote authentication and using HTTPS for.

Presented by Kennedy Subramoney Specification – Project Leader Resources & Strategy (A Division of Eskom) CR&D Department XMLVend (Online Vending Specification)

Lecture 23 Internet Authentication Applications

1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:

Copyright 2008 Vision Australia DAISY Online Standard Bringing things together Trish Egan Vision Australia.

1 Introduction to XML. XML eXtensible implies that users define tag content Markup implies it is a coded document Language implies it is a metalanguage.

Principles of Information Security, 2nd edition1 Cryptography.

Understand Web Services

Elias M. Awad Third Edition ELECTRONIC COMMERCE From Vision to Fulfillment 13-1© 2007 Prentice-Hall, Inc ELC 200 Day 23.

Secure Systems Research Group - FAU Web Services Standards Presented by Keiko Hashizume.

Secure Systems Research Group - FAU Patterns for Digital Signature using hashing Presented by Keiko Hashizume.

Chapter 3 Mohammad Fozlul Haque Bhuiyan Assistant Professor CITI Jahangirnagar University.

Web Service Standards, Security & Management Chris Peiris

2 Session # 50 Presented by: Russell Judd Chief Industry and Government Relations Officer Great Lakes Educational Loan Services Michael Sessa Executive.

 TCP/IP is the communication protocol for the Internet  TCP/IP defines how electronic devices should be connected to the Internet, and how data should.

Securing Data at the Application Layer Planning Authenticity and Integrity of Transmitted Data Planning Encryption of Transmitted Data.

An XMPP (Extensible Message and Presence Protocol) based implementation for NHIN Direct 1.

Session 21-2 Session 11 Common Origination and Disbursement (COD) & Commonline: Dispel the Myths.

Lecture 23 Internet Authentication Applications modified from slides of Lawrie Brown.

Electronic Payments E-payment methods –Credit cards –Electronic funds transfer (EFT) –E-payments Smart cards Digital cash and script Digital checks E-billing.

1 TCP/IP Applications. 2 NNTP: Network News Transport Protocol NNTP is a TCP/IP protocol based upon text strings sent bidirectionally over 7 bit ASCII.

Web Services An introduction for eWiSACWIS May 2008.

E-Commerce Security Professor: Morteza Anvari Student: Xiaoli Li Student ID: March 10, 2001.

Security Protocols and E-commerce University of Palestine Eng. Wisam Zaqoot April 2010 ITSS 4201 Internet Insurance and Information Hiding.

Chapter 18: Doing Business on the Internet Business Data Communications, 4e.

Data Transport Standard Nathan Chitty Software Architect Nelnet April 24 th, 2007.

XMPP Concrete Implementation Updates: 1. Why XMPP 2 »XMPP protocol provides capabilities that allows realization of the NHIN Direct. Simple – Built on.

Module 9: Fundamentals of Securing Network Communication.

Digital Envelopes, Secure Socket Layer and Digital Certificates By: Anthony and James.

Web Services Standards. Introduction A web service is a type of component that is available on the web and can be incorporated in applications or used.

XML Web Services Architecture Siddharth Ruchandani CS 6362 – SW Architecture & Design Summer /11/05.

Data Transport Standard (DTS) Executive Overview.

Internet Security. 2 PGP is a security technology which allows us to send that is authenticated and/or encrypted. Authentication confirms the identity.

COMPARISSON OF TECHNOLOGIES FOR CONNECTING BUSINESS PROCESSES AMONG ENTERPRISES Maja Pušnik, dr. Marjan Heričko.

1 SSL - Secure Sockets Layer The Internet Engineering Task Force (IETF) standard called Transport Layer Security (TLS) is based on SSL.

Second Generation Electronic Filing Specifications Legal XML Court Filing Committee April 26, 2004.

SOA-39: Securing Your SOA Francois Martel Principal Solution Engineer Mitigating Security Risks of a De-coupled Infrastructure.

S imple O bject A ccess P rotocol Karthikeyan Chandrasekaran & Nandakumar Padmanabhan.

Kemal Baykal Rasim Ismayilov

Pertemuan #10 Secure HTTP (HTTPS) Kuliah Pengaman Jaringan.

INFORMATION SECURITY MANAGEMENT P ROTECTION M ECHANISMS - C RYPTOGRAPHY.

Encryption protocols Monil Adhikari. What is SSL / TLS? Transport Layer Security protocol, ver 1.0 De facto standard for Internet security “The primary.

ELECTRONIC SERVICES & TOOLS Strategic Plan

1 Chapter 7 WEB Security. 2 Outline Web Security Considerations Secure Socket Layer (SSL) and Transport Layer Security (TLS) Secure Electronic Transaction.

INFORMATION SECURITY MANAGEMENT P ROTECTION M ECHANISMS - C RYPTOGRAPHY.

Supports the development & implementation of a IPPC Global ePhyto Hub to: Utilize modern Cloud technology. Ensure there is a secure folder for each countries’

Henric Johnson1 Chapter 7 WEB Security Henric Johnson Blekinge Institute of Technology, Sweden

Training for developers of X-Road interfaces

A Web Services Journey on the .NET Bus

Secure Sockets Layer (SSL)

ITDS PGA Message Set Processing Overview and Architecture

Web Services UNIT 5.

Session 11 Common Origination and Disbursement (COD) & Commonline: Dispel the Myths Session 21-

Data Transport Standard (DTS)

Integrated Program Management

Presentation transcript:

Data Transport Standard (DTS) for NCHELP Business Perspective

DTS for NCHELP - Business Topics DTS Defined Brief History of Project PESC Documentation versus ESC Documentation Benefits of DTS over existing transports Implementation Strategies

DTS for NCHELP - Business PESC DTS Specification The PESC DTS defines a high level framework, built on internet specifications, for moving data securely. This standard is a roadmap for how to utilize specific internet technologies providing for a secure, real-time (immediate) or batch (deferred) communications channel to safely move mission critical data.

DTS for NCHELP - Business What DTS is not… not a product – it is a specification not content sensitive – it is designed to exchange any type of data, Inquiries (Online Customer Access) Data exchange (CL4, CL5, CRC, CAM, Enrollment Reporting, Lender Manifest, etc.)

DTS for NCHELP - Business What is DTS? DTS is content neutral DTS uses internet technologies to facilitate real time (immediate) and batched (deferred) data exchange DTS does not require a vendor specific product; instead specifying stable internet technologies DTS reduces programming and per-transaction costs through standardization DTS utilizes standard HTTPS encryption and digital signatures to secure the channel

DTS for NCHELP - Business Where DTS fits in your infrastructure DTS is a Web Service based B2B communication systems DTS is a specification that supplements FTP data transport: – FTP or secure FTP utilizing PGP (rfc2440) – FTP still valid for large payloads (generally up to 10Mb) DTS is intended to supplement or replace existing transport systems with DTS Client software

DTS for NCHELP - Business What are the DTS Technologies? – WSDL (Web Services Description Language) – SOAP (Simple Object Access Protocol) – WS-I (Web Services Interoperability) – HTTP (Hyper Text Transfer Protocol) – SSL (Secure Sockets Layer) – X.509 Certificates – zLib (rfc1950) Compression – Other Web Services specifications (WS-*)

DTS for NCHELP - Business Brief History – Originated within NCHELP EEAT Overcomes inefficiencies of existing transports Solves inflexibility and inefficiencies with existing encryption methodology Supports real-time (immediate) and batch (deferred) processing

DTS for NCHELP - Business Brief History (con`t) – Now governed by PESC DTS approved as a PESC standard on 5/1/2006 NCHELP EEAT remains significantly involved in governance due to extensive transport experience Expanded visibility of the standard = broader education community adoption and implementation PESC Membership includes: – AACRO, COHEAO, NACUBO, NASFAA – FSA, Registrars, NCHELP, among others – greater FAMS involvement

DTS for NCHELP - Business PESC DTS Specification – specification defines a high level framework for moving data securely. – builds on internet specifications – is a roadmap of how to utilize specific internet technologies to achieve a secure communications channel and move information.

DTS for NCHELP - Business NCHELP Technical Manual – extending DTS Specification – identifies specific payload information for FFELP CL all current versions CAM all current versions Lender Manifest Generic transport (MSC01 data types) – supports future content enhancements as needed

DTS for NCHELP - Business Business needs solved by DTS – Delivery assurance – Content neutral – Useful for internal and external business communications – Support Immediate and Deferred data processing models – Cryptographically secure – No distribution or vendor royalties – uses public standards – Larger payload (generally up to 50 Mb) – Multiple technical platforms (.NET, Java, etc.)

DTS for NCHELP - Business – POP3 No confirmation Lost mail order of receipt uncertain – FTP Confirmation by FTP Reply codes which are complicated to manage Order of receipt but can be complicated to manage Delivery assurance – DTS Active Confirmation – mandatory synchronous response Order controlled by sending party – client dictates payload delivery

DTS for NCHELP - Business Highly Secure – Encryption POP3/FTP uses external encryption application DTS encryption built-in (SSL part of HTTPS) – Digital Signatures POP3/FTP signatures part of encryption application DTS signature with X.509 certificate part of specification (built-in)

DTS for NCHELP - Business Security from Experience – Encryption separate steps/application – Key management / exchange

DTS for NCHELP - Business Key Management – Out-of-Band Exchange and management – DTSv2 Certificate in transmission Signed by Certificate Authority ensures authenticity No out-of-band/prior exchange No storage necessary Single point for revocation/update

DTS for NCHELP - Business Larger Payloads – 50mb limit per specification POP3 – 1mb; FTP – 10mb – PayloadBytes header element Single Transport for anything without evaluating payload – PayloadType Header element

Reference Implementation Architecture

DTS for NCHELP - Business Implementing DTS – All informational elements currently used by POP and FTP are provided as Header elements in DTS – Diagram – DTS into Existing systemDTS into Existing system

DTS for NCHELP - Business PESC versus ESC Documentation – Data Transport Standard v 1.01 Specification Data Transport Standard V 1.0 Reference Implementation Guide – (e-Library > Electronic Standards Documentation & Tools > Electronic Data Exchange Documentation) NCHELP Technical Manual