Presentation is loading. Please wait.

Presentation is loading. Please wait.

Introduction to the Secure Component

Published byDelilah Harrison Modified over 6 years ago

Similar presentations

Presentation on theme: "Introduction to the Secure Component"— Presentation transcript:

1 Introduction to the Secure Component
Network of Hemispheric Legal Cooperation in the Area of Family and Child Law Module 1 Introduction to the Secure Component May 5, 2010 Washington, D.C.

2 Module 1 Agenda Agenda, course objectives and recommendations
Secure groupware Platform evolution Secure Communications System Security On-line course

3 Agenda and Course Objectives
Module 1: Introduction to the Secure Component Module 2: Contacts and Messaging Module 3: Workspaces and Hypothetical Case Module 4: Course overview and install procedure Objectives: Familiarize new users with the tool Ensure the efficient use of the Secure Component tool Improve the communication and exchange of information among Central Authorities mutua y/o extradición.

4 Recommendations Please let us know as soon as you see a problem with the equipment utilized in the course All questions are valid questions Coffee Breaks Complete evaluation form at the end of the course Animación

5 Communication (Instant Messaging)
What is Groupware? Communication (Instant Messaging) Common Goals and Objectives Information Sharing (Workspaces) Coordination Groupware Entorno se define primero con sus miembros y una meta en común Es colaborativo porque exige coordinación among sus miembros ;

6 Security (Enccryption)
Secure Groupware Security (Enccryption) Common Goals and Objectives Communication (Instant Messaging) Information (Workspaces) Coordination Groupware

7 E-mail vs. Groove E-mail Message is not encrypted
Message can be intercepted Message can be altered Message is not confidential Internet Attached documents are not encrypted Both message and attachments can be intercepted Both message and attachments can be altered Both message and attachments are not confidential

8 E-mail vs. Secure Groupware
Message remains encrypted when stored in the hard drive and while in transit Internet Message is encrypted all the time Message can not be deciphered Message can not be altered If user is behind a firewall, OAS servers are used Authenticity, Integrity and Availability

9 Initial Considerations
Facilitate communications among Central Authorities on Mutual Leal Assistance. Confidentiality of the information: No central database No OAS Member State has control over the application SG/OEA has no access to the information shared by the users Decision in 2003: Groove Networks *Institución, órgano o entidad pública designada por el gobierno de un Estado para representarlo ante las Authorities extranjeras, así como para tramitar, recibir y/o enviar las solicitudes de asistencia mutua y/o extradición.

10 Evolution of the Plataform
2003 – Implementation of Groove Networks 2005 – Microsoft acquires Groove Networks 2007 – Microsoft integrates Groove to Office 2007 2010 – Microsoft SharePoint Workspace 2010 Integration with content management platform

11 Evolution of the Plataform
2007- OEA/Microsoft agreement 2007 version available in: English Spanish French Portuguese Technology upgrade:

12 The SG/OAS has upgraded the current platform to its latest version
Technology Upgrade New platform only works in 64-bit platforms 32 Migration to new 64-bit servers required MIGRATED Upgrade Windows 2000 to Windows bit UPGRADED The SG/OAS has upgraded the current platform to its latest version

13 Technology Upgrade Relay Server Management Server Groove 3.1
Windows 2000 32-bit Storage Area Network Windows 2003 64-bit Office Groove 2007 Relay Servers Management Server

14 Components of Groove within the OAS Infrastructure
Public and Private components Microsoft Office Groove 2007 Groove Users Agregar Public and Private MLA Website

15 Secure Communications System
Definition: The Secure Communications System is a software that allows groups of geographically separated individuals to work together securely over public networks such as the Internet. Security is always enabled and it is not optional.

16 Features Efficient use of the Network – Bandwidth optimization
Synchronization – can be used off-line Security is always enabled Data encryption – local and while in transit Compatibility with MS Office applications User awareness Alerts Users decide who they share information with Easy to use

17 Security Authenticity, Integrity and availability of the information contained in the local hard drive and while in transit Authenticity: information is only available to the intended recipient Integrity: information is never altered or modified Availability: information is always available and ready to be used when desired Use of Certificate Authority (CA) and Public Key Infrastructure (PKI) High encryption standards used

18 “E-Learning” platform Available in English and Spanish
On-line Course “E-Learning” platform MS Office Groove 2007 Available in English and Spanish Hacer ejercicio de Registro y que escriban su nombre de usuario en la evaluacion

19 Real Life Case Scenario
State A requests urgent assistance to State B about the location of a witness State B needs to receive the formal assistance request to initiate the process of assistance The original request, sent via diplomatic channels, expired because State B received the request at a date later than the issued request How can we expedite and improve this process? Through the use of Secure Workgroup tools Hypothetical Case in Module 3 Revisar acentos

20 End OF Module 1 9

21 Questions?

22 Introduction to the Secure Component
Network of Hemispheric Legal Cooperation in the Area of Family and Child Law Module 1 Introduction to the Secure Component May 5, 2010 Washington, D.C.

23 Encryption Algorithms
Feature Algorithm RSA 2048-bits Identity MARC4 192-bits Messages MARC4 256-bits Workspaces ESIGN 1536-bits Hard Disc AES 192-bits References: AES (Advanced Encryption Standard) is the new government-approved standard for a symmetric encryption algorithm, replacing DES. AES's original name was Rijndael and was developed by two Belgian cryptographers. ESIGN is a royalty-free, public-key signature algorithm developed in Japan. It is much faster than other signature algorithms, allowing us to digitally sign each delta with negligible performance impact. It was only recently made royalty-free and is now being standardized by IEEE. RSA stands for Rivest, Shamir and Adleman - after the three cryptographers who invented the first practical commercial public key cryptosystem. It is the most commonly used public key algorithm today. The RSA patent officially expired and entered the public domain on September 20, 2000 (although RSA Security preemptively waived their patent rights on September 6, 2000). ElGamal is another public key encryption algorithm that provides an alternative to RSA. PBKDF2 (Password-based key derivation function #2) is defined in RFC2898 and RSA's standard PKCS#5 v2.0. This algorithm provides a standard mechanism for deriving a secret key from a passphrase. It makes use of salts and iteration counts to increase the complexity of attack. Management Server AES 256-bits Relay Server ElGamal 1536-bits

24 Security

Download ppt "Introduction to the Secure Component"

Similar presentations

Public Key Infrastructure and Applications

Public Key Infrastructure and Applications
Internet Protocol Security (IP Sec)

Internet Protocol Security (IP Sec)
Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.
Cryptographic Security Presented by: Josh Baker October 9 th, 2012 1CS5204 – Operating Systems.

Cryptographic Security Presented by: Josh Baker October 9 th, CS5204 – Operating Systems.
PROJECT ON DIGITAL SIGNATURE Submitted by: Submitted to: NAME: Roll no: Reg.no. :

PROJECT ON DIGITAL SIGNATURE Submitted by: Submitted to: NAME: Roll no: Reg.no. :
DESIGNING A PUBLIC KEY INFRASTRUCTURE

DESIGNING A PUBLIC KEY INFRASTRUCTURE
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 9: Planning and Managing Certificate Services.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 9: Planning and Managing Certificate Services.
Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.

Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.
EECC694 - Shaaban #1 lec #16 Spring2000 5-4-2000 Properties of Secure Network Communication Secrecy: Only the sender and intended receiver should be able.

EECC694 - Shaaban #1 lec #16 Spring Properties of Secure Network Communication Secrecy: Only the sender and intended receiver should be able.
Creating a Secured and Trusted Information Sphere in Different Markets Giuseppe Contino.

Creating a Secured and Trusted Information Sphere in Different Markets Giuseppe Contino.
TrustPort Public Key Infrastructure. WWW.TRUSTPORT.COM Keep It Secure Table of contents  Security of electronic communications  Using asymmetric cryptography.

TrustPort Public Key Infrastructure. Keep It Secure Table of contents  Security of electronic communications  Using asymmetric cryptography.
INTRODUCTION Why Signatures? A uthenticates who created a document Adds formality and finality In many cases, required by law or rule Digital Signatures.

INTRODUCTION Why Signatures? A uthenticates who created a document Adds formality and finality In many cases, required by law or rule Digital Signatures.
Windows 2003 and 802.1x Secure Wireless Deployments.

Windows 2003 and 802.1x Secure Wireless Deployments.
Masud Hasan 03-60-475 Secure Email Project 1. Secure Email It uses Digital Certificate combined with S/MIME capable email clients to digitally sign and.

Masud Hasan Secure Project 1. Secure It uses Digital Certificate combined with S/MIME capable clients to digitally sign and.
1 Introduction to Security and Cryptology Enterprise Systems DT211 Denis Manley.

1 Introduction to Security and Cryptology Enterprise Systems DT211 Denis Manley.
Lecture 12 Electronic Business (MGT-485). Recap – Lecture 11 E-Commerce Security Environment Security Threats in E-commerce Technology Solutions.

Lecture 12 Electronic Business (MGT-485). Recap – Lecture 11 E-Commerce Security Environment Security Threats in E-commerce Technology Solutions.
November 10, 2010 Washington, D.C.. Agenda Secure Component tool Secure Component tool Contacts and Messaging Contacts and Messaging Workspaces Workspaces.

November 10, 2010 Washington, D.C.. Agenda Secure Component tool Secure Component tool Contacts and Messaging Contacts and Messaging Workspaces Workspaces.
ETP Reloaded e-Commission Technological Platform Upgrade to Microsoft Office 2003 DIGIT Adapted to DG SCIC.

ETP Reloaded e-Commission Technological Platform Upgrade to Microsoft Office 2003 DIGIT Adapted to DG SCIC.
Masud Hasan 03-60-475 SecueEmail VS Hushmail Project 2.

Masud Hasan Secue VS Hushmail Project 2.

Similar presentations

Ads by Google