Emile Bartolé CEN/WS XBRL: Improving transparency in financial and business reporting CWA2 final deliveries 1CWA2.

Slides:



Advertisements
Similar presentations
Orphan works and the cultural sector. A governmental organisation perspective Rossella Caffo Ministero per i Beni e le Attività Culturali – Italy Coordinator.
Advertisements

Present situation - DRAFT Emile Bartolé CEN/WS XBRL: Improving transparency in financial and business reporting CWA2 Situation & latest evolutions 1CWA2.
Present situation Emile Bartolé CEN/WS XBRL: Improving transparency in financial and business reporting CWA2 Situation & latest evolutions 1CWA2.
26 September 2012 Emile Bartolé CEN/WS XBRL Kick-off meeting CWA2 deliverable - DRAFT 1CWA2.
Enabling Secure Internet Access with ISA Server
12 December 2012 Emile Bartolé, CSSF LU CEN/WS XBRL CWA2Page 1 CWA2: Metadata container to wrap a submitted XBRL instance document and compliance test.
Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.
UDDI v3.0 (Universal Description, Discovery and Integration)
SSL CS772 Fall Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.
Filing rules and extensions of EBA/EIOPA taxonomies
Luxembourg, Ville Kajala Senior Officer on Transparency Directive Issues Pan-European Access to Financial Information Disclosed by Listed Entities.
DecisionSoft Validation for large scale consumers of XBRL Paul Warren DecisionSoft Limited 12 May 2004.
1 Use and content of the RFP  Request for Proposals (RFP) is similar to bidding documents and include all information of the assignment, selection of.
PAPERLESS BUSINESS in GEORGIAN FINANCIAL SECTOR NANA ENUKIDZE - Advisor to the Governor.
Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.
Apr 2, 2002Mårten Trolin1 Previous lecture On the assignment Certificates and key management –Obtaining a certificate –Verifying a certificate –Certificate.
Health and Consumers Health and Consumers Identification and traceability of dogs and cats: the current EU legal framework and possible future developments.
1. 2 ECRF survey - Electronic signature Mr Yves Gonner Luxembourg, June 12, 2009.
Ministry of Transport, Information Technology and Communications Technological base: Interoperability Tsvetanka Kirilova Ministry of TITC Bulgaria.
XBRL regulatory reporting to the Securities Commission of Spain José M. Alonso Comisión Nacional del Mercado de Valores (CNMV)
Situation november / december DRAFT Emile Bartolé CEN/WS XBRL: Improving transparency in financial and business reporting CWA2 Situation 1CWA2.
Security Standards under Review for esMD. Transaction Timeline An esMD transaction begins with the creation of some type of electronic content (e.g. X12.
System Design/Implementation and Support for Build 2 PDS Management Council Face-to-Face Mountain View, CA Nov 30 - Dec 1, 2011 Sean Hardman.
Secure Systems Research Group - FAU Patterns for Digital Signature using hashing Presented by Keiko Hashizume.
CSCI 6962: Server-side Design and Programming
12 December, 2012 Katrin Heinze, Bundesbank CEN/WS XBRL CWA1: European Filing Rules CWA1Page 1.
© 2011 T.C. Kamu İhale Kurumu. © 2011 T.C. Kamu İhale Kurumu Public Procurement Authority Electronic Public Procurement Platform E-Procurement: Legal Framework.
SWIS Digital Inspections Project (SWIS DIP) Chris Allen, Information Management Branch California Integrated Waste Management Board November 5, 2008 The.
Secure Electronic Transaction (SET)
Filing Infrastructure at Bundesbank XIV European Banking Authority XBRL Workshop hosted by EBA Kathrin Jansen.
Web Services Security Standards Overview for the Non-Specialist Hal Lockhart Office of the CTO BEA Systems.
© 2012 The MITRE Corporation. All rights reserved. For internal MITRE use 13 June 2013 Meeting #3 hData Record Format Taskforce 1 © 2012 The MITRE Corporation.
1 Schema Registries Steven Hughes, Lou Reich, Dan Crichton NASA 21 October 2015.
Massella Ducci Teri Italian approach to long-term digital preservation Policies for Digital Preservation ERPANET Training Seminar.
European Commission Rita L’ABBATE Legal aspects linked to internal market DG Enterprise and Industry MARKET SURVEILLANCE COMMUNITY FRAMEWORK UNECE “MARS”
Various Stages of MiFID Implementation in Lithuania Tomas Talutis Lithuanian Securities Commission.
DIGITAL SIGNATURE. GOOD OLD DAYS VS. NOW GOOD OLD DAYS FILE WHATEVER YOU WANT – PUT ‘NA’ OR ‘-’ OR SCRATCH OUT FILE BACK DATED, FILE BLANK FORMS, FILE.
Second Generation Electronic Filing Specifications Legal XML Court Filing Committee April 26, 2004.
Use of Administrative Data Seminar on Developing a Programme on Integrated Statistics in support of the Implementation of the SNA for CARICOM countries.
 A Web service is a method of communication between two electronic devices over World Wide Web.
12 December, 2012 Aitor Azcoaga, EIOIPA CEN/WS XBRL CWA3: Standardized roll-out package CWA3Page 1.
1 Possible Principles and Requirements Frederick Hirsch, Nokia 12 July 2008.
S&I Integration with NIEM (DRAFT) Standards Development Support June 8, 2011.
5 October, 2012 CEN/WS XBRL Comité Européen de Normalisation, WorkShop on XBRL Eurofiling Confcall 1.
Inclusive Education Planning Tool IEPT3 Technical Brief Presented by: Kim Brockhoff, Paul Redman & Catherine Walker.
XDP Public Comments July 11, XDS comments list XDP Comments from Eric Poiseau11eric XDP comment log attached22felhofer XDP comments from GE33John.Moehrke.
Consultative process for finalizing the Guidance Document to facilitate the implementation of the clearing-house mechanism regional and national nodes.
1 Registry Services Overview J. Steven Hughes (Deputy Chair) Principal Computer Scientist NASA/JPL 17 December 2015.
PGP & IP Security  Pretty Good Privacy – PGP Pretty Good Privacy  IP Security. IP Security.
The world leader in serving science Overview of Thermo 21 CFR Part 11 tools Overview of software used by multiple business units within the Spectroscopy.
Commission on Teacher Credentialing Ensuring Educator Excellence 1 Program Assessment Technical Assistance Meetings December 2009.
Task Force CoRD Meeting / XML Security for Statistical Data Exchange Gregory Farmakis Agilis SA.
Electronic Mail Security Prepared by Dr. Lamiaa Elshenawy
E-SIGNED DocFlow SYSTEM in GEORGIAN FINANCIAL SECTOR NANA ENUKIDZE – E-Business Development Consultant.
1 ECHO ECHO 9.0 for Data Partners Rob Baker January 23, 2007.
PN UNC Workgroup Invoicing 10 th January Objectives of the Workgroups To determine business principles for future Invoicing processes –Consider/review.
Swissmedic Swiss Agency for Therapeutic Products Hallerstrasse 7 CH-3000 Bern Swissmedic’s future steps 2nd Follow-up Information Meeting.
M O N T E N E G R O Negotiating Team for the Accession of Montenegro to the European Union Working Group for Chapter 31 – Common Foreign and Security Policy.
Online Information and Education Conference 2004, Bangkok Dr. Britta Woldering, German National Library Metadata development in The European Library.
M-PEDD Technical Working Group
NEMSIS Version2  NEMSIS Version 3. Purpose of NEMSIS Version 3 Improve Data Quality  –Schematron Enhance performance assessment  – Incorporation of.
Lecture 8 (Chapter 18) Electronic Mail Security Prepared by Dr. Lamiaa M. Elshenawy 1.
PRESENTATION OF MONTENEGRO
SPOCS : Simple Procedures Online for Crossborder Services
Gibraltar Financial Services Commission
Preparations for post-2020 Impact Assessment European Commission Directorate General for Regional and Urban Policy Unit DGA Policy.
11. The future of SDMX Introducing the SDMX Roadmap 2020
ELECTRONIC MAIL SECURITY
ELECTRONIC MAIL SECURITY
CEN/WS XBRL Kick-off meeting
Presentation transcript:

Emile Bartolé CEN/WS XBRL: Improving transparency in financial and business reporting CWA2 final deliveries 1CWA2

Objectives of CWA2 Dual objective of CWA2: standardize The way of submitting instances, a container with standardized Encryption Digital signature Compression … The way of transmitting the usual metadata that determine the context of an xbrl reporting instance the sender of the document contact details date and time of submission … Page 2CWA2

Exchange model Subnission container Receiver encrypted (optional) signed (optional) Response container Sender Containerfeedback file Rest of the Feedback container encrypted (optional) signed (optional)

Submission container examples

Standards used: Compression & Hash Zip as defined in SHA256 as defined in

Standards used: Digital signature The file structure generated by the signature SHALL be XAdES-BES/EPES using RSA with SHA512 implemented in accordance with COMMISSION DECISION of 25 February 2011, establishing minimum requirements for the cross-border processing of documents signed electronically by competent authorities under Directive 2006/123/EC of the European Parliament and of the Council on services in the internal market

Standards used: Encryption W3C Encryption using key transport RSA-OAEP and encrypting data with AES256.

Reserved names & suffixes NAME: header.xml exclusively reserved for headers in accordance with the present CWA SUFFIX:.signed.xml exclusively reserved for signed files SUFFIX:.encrypted.xml exclusively reserved for encrypted files SUFFIX:.containerfeedback.xml exclusively reserved for files complying with the ContainerFeedback schema SUFFIX:.instancefeedback.xml exclusively reserved for files complying with the InstanceFeedback schema.

File name change upon signature (equivalent for encryption) File to signName of the signed fileFilename inside the XML signature file LolLol.signed.xml Same as « File to sign » Lol.pdfLol.signed.xml Same as « File to sign » Lol.zipLol.signed.xml Same as « File to sign » Lol.signed.xml Same as « File to sign » Lol.encrypted.xmlLol.signed.xml Same as « File to sign »

Container.signed.xml Container.zip Sign with a first signature and replace extension header.xml file1.xbrl file2.xbrl file3.xbrl Compress Container.encrypted.xml Encrypt and replace extension Container.signed.xml Sign with a second signature and replace extension Filename in XML: Container.zip Filename in XML: Container.signed.xml Container creation example

Container.encrypted.xml Container.signed.xml Decrypt and extract file Container.signed.xml Validate first signature and extract file Container.zip Validate second signature and extract file header.xml file1.encrypted.xml file2.signed.xml file3.xbrl container.zip Uncompress Filename in XML: Container.zip Filename in XML: Container.signed.xml header.xml file1.xbrl file2.xbrl file3.xbrl container.zip header.xml file1.signed.xml file2.xbrl file3.xbrl container.zip Container reception example

Extensible Header BasicHeader RegisteredOrganizationVocabulary ExtendedHeader OtherModule(s) See also Core Business Vocabulary as an XBRL taxonomy at

BasicHeader

Standard vs customized Headers Use-caseCharacteristics StandardHeader BasicHeaderOnly This header imports the BasicHeader « as is », makes no extensions of it and does not import the RegisteredOrganizationVocabulary as it uses none of its fields. Namespace: XSD URL: XML sample instance URL: StandardHeader WithRegOrg This header structure reflects the survey made within the Eurofiling BestPractices efforts which had given the results documented in All fields related to « Transport » issues have been removed as these are out of scope of this CWA. Namespace: XSD URL: XML sample instance URL: StandardHeader WithoutRegOrg This header is (with regards to its function and its content) equivalent to the previous “ StandardHeaderWithRegOrg ”, but it does not import RegOrg and creates the missing fields as equivalent simple XML fields Namespace: XSD URL: Sample instance URL: Fully customizedExtend it according to your own needs !

Response containers Response container Response.containerfeedback.xml Report1_Feedback instance_1.instancefeedback.xml instance_2.instancefeedback.xml … instance_n.instancefeedback.xml Report1_Feedback_Visual instance_1.xls instance_2.xls … instance_n.xls Report2_Feedback instance_1.instancefeedback.xml instance_2.instancefeedback.xml … instance_m.instancefeedback.xml Submission container header.xml Report1_XBRL instance_1.xbrl instance_2.xbrl … instance_n.xbrl Report2_XML instance_1.xml instance_2.xml … instance_m.xml

Feedback files Container feedback files - confirming (or not) the success of the reception of a submission container Instance feedback files - Result of the (XBRL-) validation of every submitted data file

Selected comments from consultation Why not to use XBRL for header / containerfeedback / instancefeedback -integrating RegOrg is technically not possible -container supports multiple formats (e.g. XML, CSV etc.), not only XBRL instances -XML more appropriate to carry that type of information Why not to restrict the CWA to only « stable, system-relevant » parts (envelope) and leave out unstable, business-related parts (header) -The CWA’s definition required « metadata » to be covered -The chosen aproach (extensible header) should give enough flexibility to deal with unstable business-related parts CWA2 specification unnecessarily restricts the algorithms used (to AES-256 in this case). Commonly available implementations support a much wider range of algorithms, and in principle, it should be up to the receiver to specify an acceptable set of algorithms. As the specification currently stands, it will need to be modified whenever AES-256 is no longer considered secure. The proposition to allow a choice of different algorithms was submitted to the coordination of this project as well as to the NEN. Both confirmed that in order to prevent confusion on how the standard is used, there shall be an exact requirement on how the standard is used; the algorithms shall be determined in a clear, unique way. The algorithms were chosen to respect the state of the art security considerations. Should security issues occur, a follow-up CWA may be required. The Registered Organization Vocabulary is very large, with no clear alignment with the metadata that receivers wish to collect. While its use is optional, it is doubtful that it's ever an appropriate choice. If this level of detail were required along with the main submission, XBRL would be a much more robust solution. With the mechanism of extensible headers, no one is forced to use registered organisation vocabulary. As it is an official standard supported by the European Union, we produced a header version enabling its use.

Thanks for your attention Page 18 Comments or questions? CWA2

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.