Presentation is loading. Please wait.

Presentation is loading. Please wait.

EEMA & “pkiC” Frank Jorissen Deputy Vice President, Utimaco Safeware AG Vice Chair, EEMA IDA - Meeting of National Security.

Published byJade Parrill Modified over 9 years ago

Similar presentations

Presentation on theme: "EEMA & “pkiC” Frank Jorissen Deputy Vice President, Utimaco Safeware AG Vice Chair, EEMA IDA - Meeting of National Security."— Presentation transcript:

1 EEMA & “pkiC” Frank Jorissen Deputy Vice President, Utimaco Safeware AG Vice Chair, EEMA (frank.jorissen@utimaco.be) IDA - Meeting of National Security Experts on PKI Interoperability

2 WHAT IS EEMA? A European, independent, non-profit forum Formed 1987 Assisting Users, Vendors & Service Providers Close to 250 member organisations - “Vendors” including: Microsoft, IBM, Compaq, Alcatel, Siemens, Lotus, SAP, iD2, Entrust, GlobalSign, VeriSign, Baltimore, Bull, Identrus, Utimaco Safeware, BT - “Users” including Unilever, Reuters, Shell, Volvo, BP, Exxon, ING Bank, Glaxo Wellcome, Hoffmann la Roche, AstraZeneca, SWIFT, ICC, UK Post, etc. + Most PTO’s and Service Providers --> --> A major force in the growth of EU E- Business

3 EEMA Interest Groups --> “PKI Challenge” --> ECAF Model ICT Security initiatives: --> “PKI Challenge” --> ECAF Model --> ISSE2000 Conference --> EESSI Steering Group liaison --> PKI Forum liaison (NEW !)... + Other E-business-related Interest Groups: Directories, Unified Messaging, Users, EDI / E- Commerce, Knowledge Management, Events & Marcom, Standards

4 WHAT IS “WEMA” ? World Forum for electronic business Virtual Composition of all “EMA’s” worldwide: US: ‘EMA’ Europe: ‘EEMA’ Australia: ‘ECA Tradegate’ Brazil: ‘BRISA’ Japan: ‘JEMA’ Asia/Oceania: ’AOEMA’ Russia: ‘RANS’

5 PKI Challenge (pkiC)

6 “Challenges”: a rich WEMA Interoperability Tradition Since the early 90’s On evolving technologies: X400, X500, SMTP, LDAP, S/MIME, X.509,... By “WEMA” organisations worldwide EEMA + EMA (+... ?): PKI “Challenge showcases”, during the period 1999-2002 EMA’s Challenge was demonstrated at last EMA Annual Conference, April 2000

7 EMA “Challenge99/2000” = FBCA “Federal Bridge CA” = a US Federal Gov’t effort to solve the practical interoperability problems between the PKI’s&PKA’s of various Federal agencies (GSA, NASA, NIST, DoD,…) This ad hoc solving of US Fed Gov’t PKI interoperability issues is narrower than what most vendors & users want: no “client to-CA/RA” interoperability Nevertheless the “Bridge CA” concept has strong merits for CA/domain - CA/domain interoperability in general ! See http://csrc.nist.gov/pki/documents/emareport_20001015.pdf

8 pkiC Objectives: Core Objective& Main Differentiator: To provide a low-threshold, well-managed&funded test infrastructure, that will effectively enable PKI interoperability between many, global PKI&PKA vendors at the level of both PKI & PKA (=PKI-enabled app s ) --> PKI “as an (open) operating system” for various PKA’s Based on stable standards, eg PKIX, CMP, X.509v3, S/MIMEv3,…; Also considering EU-specific requirements (to the extent possible & reasonable in the period 2001-2002...): eg the European Electronic Signature Directive & the accompanying “EESSI standards” by ETSI and CEN/ISSS; To disseminate, demonstrate & promote ‘open’ results; currently 3 strong liaisons: EESSI, TeleTrusT, PKI Forum

9 Scope of interoperability in C2K context:

10 Today’s Status Project accepted under the “Fifth Framework program” (FP5/IST) - all consortium members sign a contract with the Commission & get funding; Contract signature expected November/December ==> Project kick-off : NY 2001 Duration: 2 years==> Project kick-off : NY 2001 Duration: 2 years

11 Time Plan & WP’s

12 “Phase 1”: Project Infrastructure & Management

13 Phase 1: Project Infrastructure & Management  WP1: Project Co-ordination, management & QA  WP2: produce scope and definition of the criteria for interoperability of PKI products and services  WP3: performing awareness activity & identifying participants, negotiating and contracting with them.  WP4: producing the detailed plan and specifications for the interoperability tests  WP5: building the test infrastructure

14 “Phase 2”: Interoperability Testing

15 Phase 2: The Interoperability Testing  WP3 (part) - identifying potential participants, negotiating and contracting with them.  WP6 - performing the interoperability tests  WP7 - demonstrating and disseminating the results of WP6 at “ISSE2002” and “EBE2002” (= Annual EEMA) Conference. Perhaps also at liaison partner events.  WP8 - writing the final project report

16 Who participate in “phase 1” ? Consortium members: Baltimore, Belgacom, EEMA, Entegrity, Entrust, GlobalSign, iD2, KPMG, Makra, Security&Standards, UK Post, University of Leuven (“COSIC” & “ICRI” Labs), University of Salford, Utimaco Safeware

17 Who will be involved in “phase 2” ? “Active” Participants “Passive” Participants --> OPEN PARTICIPATION, BUT LIMITED NUMBERS !

18

19 Utimaco & PKI/PKA interoperability Project Co-ordination of pkiC, but also: Participant in TIE (Esprit), DTRUST interoperability, Entrust interoperability in Award winning BOLERO (SWIFT) project context, Award winner in SPHINX, …etc..: commitment to be an ‘open’ PKA/PKI vendor (via membership of EEMA, TTT, PKI Forum,...)

20 SPHINX Pilot project of German government Will lead to end-to-end security all over the German Gov‘t Administration Sphinx is based on the MailTrusT specification, which is now a subset of international accepted Standards (SMIME, X.509, PKCS#10, etc) Since 1998 several products of different vendors were tested

21 SPHINX Step 2 - Features S/MIMEv2 X.509v3 + extensions CRLv2 + extensions LDAPv3 Double key pair Decentralised key generation...

22 SPHINX & Utimaco Utimaco plays a major role in the SPHINX project since the beginning Utimaco´s ‘SafeGuard Sign&Crypt‘ is SPHINX certified in each implemented step (currently step 2).

Download ppt "EEMA & “pkiC” Frank Jorissen Deputy Vice President, Utimaco Safeware AG Vice Chair, EEMA IDA - Meeting of National Security."

Similar presentations

NIH-EDUCAUSE PKI Interoperability Project Electronic Grant Application With Multiple Digital Signatures Peter Alterman, Ph.D. Director of Operations Office.

NIH-EDUCAUSE PKI Interoperability Project Electronic Grant Application With Multiple Digital Signatures Peter Alterman, Ph.D. Director of Operations Office.
Data, Information, Process file name\ file location HP Labs Semantic Web Programme Introductory Presentation: DIP Proposal Meeting 17 th January 2002.

Data, Information, Process file name\ file location HP Labs Semantic Web Programme Introductory Presentation: DIP Proposal Meeting 17 th January 2002.
The Internet2 NET+ Services Program Jerry Grochow Interim Vice President CSG January, 2012.

The Internet2 NET+ Services Program Jerry Grochow Interim Vice President CSG January, 2012.
The U.S. Federal PKI Richard Guida, P.E. Chair, Federal PKI Steering Committee Chief Information Officers Council 202-622-1552.

The U.S. Federal PKI Richard Guida, P.E. Chair, Federal PKI Steering Committee Chief Information Officers Council
Copyright Judith Spencer 2002. This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial,

Copyright Judith Spencer This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial,
Summary of ETSI/ESI activities Andrea Caccia ETSI/ESI TB member Note: This document expresses only the views of its author.

Summary of ETSI/ESI activities Andrea Caccia ETSI/ESI TB member Note: This document expresses only the views of its author.
Halifax, 31 Oct – 3 Nov 2011ICT Accessibility For All ETSI Standardization Activities on M2M communications Joachim Koss, ETSI Board Member Document No:

Halifax, 31 Oct – 3 Nov 2011ICT Accessibility For All ETSI Standardization Activities on M2M communications Joachim Koss, ETSI Board Member Document No:
Jaroslav Pinkava May 2001 Certification Authority in Praxis. Security Aspects. Conference Security and Protection of Information Ing. Jaroslav Pinkava,

Jaroslav Pinkava May 2001 Certification Authority in Praxis. Security Aspects. Conference Security and Protection of Information Ing. Jaroslav Pinkava,
EEMA’s pki Challenge Paul Green – VeriSign and pkiC testing participant.

EEMA’s pki Challenge Paul Green – VeriSign and pkiC testing participant.
Uncle Sam, Meet The PKI! Richard Guida Chair, Federal PKI Steering Committee Michèle Rubenstein Department of the Treasury,

Uncle Sam, Meet The PKI! Richard Guida Chair, Federal PKI Steering Committee Michèle Rubenstein Department of the Treasury,
The U.S. Federal PKI and the Federal Bridge Certification Authority

The U.S. Federal PKI and the Federal Bridge Certification Authority
Presented at Annual Conference of the American Evaluation Association Anaheim, CA, November 2011 Lessons Learned about How to Support Outcomes Measurement.

Presented at Annual Conference of the American Evaluation Association Anaheim, CA, November 2011 Lessons Learned about How to Support Outcomes Measurement.
1 International ICT R&D Cooperation Virtual Forum Europe, Africa, Asia/Pacific 12 July 2007 Klaus Pendl European Commission DG Information Society and.

1 International ICT R&D Cooperation Virtual Forum Europe, Africa, Asia/Pacific 12 July 2007 Klaus Pendl European Commission DG Information Society and.
Work Package 13 Knowledge Management, Exploitation and Dissemination Dr. Jay Pearlman, IEEE, WP co-lead Dr. Christian Kittl, Evolaris, WP co-lead January.

Work Package 13 Knowledge Management, Exploitation and Dissemination Dr. Jay Pearlman, IEEE, WP co-lead Dr. Christian Kittl, Evolaris, WP co-lead January.
Federal Bridge Certification Authority n Background n Overview n EMA Challenge Test structure n Participants n Results n Conclusions and lessons learned.

Federal Bridge Certification Authority n Background n Overview n EMA Challenge Test structure n Participants n Results n Conclusions and lessons learned.
Richard Guida, P.E. Member, Government Information Technology Services Board Chair, Federal PKI Steering Committee 202-622-1552.

Richard Guida, P.E. Member, Government Information Technology Services Board Chair, Federal PKI Steering Committee
OneM2M Draft proposal for slide set. This is not intended to be a oneM2M presentation. It is a collection of source material slides which can be used.

OneM2M Draft proposal for slide set. This is not intended to be a oneM2M presentation. It is a collection of source material slides which can be used.
The Federal Bridge Certification Authority – Description and Current Status Peter Alterman, Ph.D. Senior Advisor to the Chair, Federal PKI Steering Committee.

The Federal Bridge Certification Authority – Description and Current Status Peter Alterman, Ph.D. Senior Advisor to the Chair, Federal PKI Steering Committee.
WP5 Digital Business Ecosystem Alessandra Benvenuti, INSIEL SpA (Friuli Venezia Giulia Region) ADC Final Conference Venice, March 13 th 2012.

WP5 Digital Business Ecosystem Alessandra Benvenuti, INSIEL SpA (Friuli Venezia Giulia Region) ADC Final Conference Venice, March 13 th 2012.
IDA Security Experts Workshop Olivier LIBON Vice President – GlobalSign November 2000.

IDA Security Experts Workshop Olivier LIBON Vice President – GlobalSign November 2000.

Similar presentations

Ads by Google