Presentation is loading. Please wait.

Presentation is loading. Please wait.

Serving Canadians Securely through Government On-Line Global Platform Business Seminar August 21, 2002 Michelle d’Auray Chief Information Officer Government.

Published byElisabeth Gaines Modified over 8 years ago

Similar presentations

Presentation on theme: "Serving Canadians Securely through Government On-Line Global Platform Business Seminar August 21, 2002 Michelle d’Auray Chief Information Officer Government."— Presentation transcript:

1 Serving Canadians Securely through Government On-Line Global Platform Business Seminar August 21, 2002 Michelle d’Auray Chief Information Officer Government of Canada

2 2 Implementing the GOC service vision depends on… The Service Vision Using information and communication technology to enhance Canadians’ access to improved citizen-centred, integrated services, anytime, anywhere and in the official language of their choice E- Service Delivery Target Most frequently used services on-line by 2005 Service Improvement Target 10% increase in citizen satisfaction by 2005 …a government-wide approach to service and infrastructure

3 3  Service transformation / multi-channel integration : user- centric approach to electronic service delivery, driven by client priorities, satisfaction, efficiencies and feasibility  Common secure infrastructure: electronic service platform to enable integrated services and support secure Internet, telephone and in-person access  Policy and standards frameworks: build citizen confidence in e- services by addressing privacy and security, measure client satisfaction  Communications and measurement: encourage take-up, engage citizens through on-line consultations and public reporting and assure citizens of commitment to channel choice  Human resources: cross-government approach to develop the right skills for electronic and other service delivery, focused on change management and competencies GoL and service priorities

4 Service Delivery

5 5 One department from the perspective of a citizen Allison’s Life Death Low Income Pensioner Retired Homeless Unemployed BirthSchool Work Sickness Disability Maternity / Paternity Volunteer Student Loan Repayment Insurance Premium CPP Contribution Employment Insurance CPP Disability Disability Tax Credit Employment Leave Education Savings Grant Child Tax Credit Grant Contribution Employment Insurance Community Assistance OAS Pension CPP Pension OAS - GIS OAS - Allowance Child Tax Credit SIN OAS Survivor Allowance CPP Death Benefit CPP Child Benefit CPP Survivor Pension

6 6 Government from the perspective of a business Allison’s Business ROE Customs Business Number Taxes Financial Assistance Permits & Licenses Regulatory Filings Intellectual Property Spectrum Imports Import/ Export Hazardous Materials Registration Grants/Loans Exports Vendors Registration Subsidy Programs GST Source Deductions Patents Trademarks Copyrights Invoicing Bidding Environmental Corporate Taxes

7 7 Transforming Service Delivery  Rethinking service delivery  Integrated services  Shared or common solutions  Single window access  Automation of existing processes  Services provided in e-silos  Program by program solutions  Program by program access Departmental FocusUser / Client Focus

8 8 Canada Site and Gateways are evolving to… …become the e-platform for service delivery

9 Common Infrastructure

10 10 The federated architecture plan – a strategy to implement… Department Unique Components Department Unique Components Department Unique Components Department Unique Components Cluster Department Shared Components Federated Architecture Departmental Architectures Business Process Business Process Business Process Business Process Government-wide Shared Components …a horizontal, cross-government enterprise architecture

11 11... Workflow Authent. Mgmt Session Mgmt Settlement Profile Secure Store CA Mgmt Directory Back Channel Kiosks Web Mobile Client Phone E-Mail … Business Logic & Data Systems Dept A Dept B Dept C Secure Channel Domain Central Processes/Data Departmental Domain Distributed Processes Back Channel Systems Data Communication Adapter Access Domain Front Channel Platform The Secure Channel anchors the federated architecture

12 12 Multi- channel Suitability User Friendliness Ease of Implementation Privacy and Security One or more certificate management facilities support multiple service providers Certificates only contain a Meaningless But Unique Number (MBUN) as the Distinguished Name. Consent-based model: clients choose whether or not to link multiple programs to the same MBUN (certificate). Identity-proofing: done by each program on-line or in person, and can be nominal or robust. At each program (only), a program specific client-identifier is associated to each MBUN to ensure repeat recognition.. Recovery process: uses robust, client- selected shared secrets process (automated & on-line); if successful, a new certificate using the same MBUN is issued GoC Authentication Model CA

13 13 Client is seamlessly passed to the ePASS central key management system 4. Client chooses a User ID and password –the User ID must be unique but need not be the client’s actual name. 5. For recovery purposes, client selects a number of pre-determined questions and provides answers. 4b. Encryption and signing keys are generated and stored in a profile that is protected with double encryption – accessible only to the client.. 6. Certificate (ePass) is issued and downloaded to client’s browser. 2. “Shared secret” or in person identity- proofing done by each program with rigor meeting its business/security needs. 3. Shared secrets or access code (in person identity proofing) verified by the program against its records. 1. Client browsing department website is provided option to enroll for a program service and obtain a certificate (“ePass”) for on line transactions. Client passed back to program area 7. Program completes enrollment process by associating the MBUN with program-specific identifiers. 8. MBUN-Identifier bindings remain only with the program – in an encrypted database. Certificate Issuance Process …ID Proofing can occur prior to conducting an online transaction

14 Cards and Biometrics

15 15 Perceptions of Canadians about privacy and security… Recent focus testing confirmed that Canadians:  Make the distinction between privacy and security  Feel that the banks do a better job on security  Feel that the government does a better job on privacy  Expect more from government than banks or the private sector in terms of privacy and security  Are most concerned about privacy of financial & health information  Are strongly influenced by media, family and friends  Want information on privacy and security from GoC …will determine pace of take up of on-line services

16 16  Provides consistent framework to identify and resolve privacy issues during design or redesign of programs and services  As of May 2, 2002, PIAs mandatory for situations where privacy issues may by be inherent including:  increased collection, use or disclosure of personal information  broadening of client populations;  shift from direct to indirect collection of personal information  new data matching or increased reuse or sharing of personal information  Summaries of PIAs to be made available publicly  Policy and guidelines available at www.tbs-sct.gc.cawww.tbs-sct.gc.ca The Privacy Impact Assessment Policy (PIA)… …a new development on the privacy front

17 17 Cards and Biometrics  Cards/biometrics viewed as enablers of service transformation and secure access.  Cards are portable, support security and can be implemented in a privacy friendly way  Cards can leverage the existing infrastructure built for access to Government on Line.  Interoperability, infrastructure, policy and standards are key challenges.

18 18 Current Situation in the Federal Government Emerging program requirements for:  (advanced) cards and biometrics (Canada – US Smart Border)  interoperability and document integrity  common IM/IT and infrastructure services Major challenges:  multiplicity of domestic and international requirements and interoperable technology platforms

19 19 GoC Activity  Departments have several card initiatives in planning stages or underway to improve service or complement US initiatives. Future phases may include the addition of a smart chip or biometric.  CIC Optical stripe card for a Permanent Resident card  CCRA Nexus and EPPS for expedited border crossing  Environment: transportation of hazardous materials  Justice: firearms registration card  Passport: travel/visa waiver card  INAC: Access to services for Status Indians

20 20 Key Issues Interoperability  Adherence to standards and open systems needed.  Private/public sector working partnership to advance interoperability. Infrastructure and sustainability  Need to leverage common infrastructure/production facilities.  PKI already in place – considered a major cost of card deployment for applications requiring secure comm.'s. Standards  Technology standards to be selected to allow the widest compatibility and availability of components.  Stovepipe solutions are not the answer.

21 21 Our Goal: any card, any reader, any application

22 22 Canada no. 1 among 23 countries for 2 nd year in a row according to Accenture We are on the right track for GoL... 1 April 2001 1 April 2002 …but must maintain momentum to remain a leader

23 23 For more information www.canada.gc.ca www.gol-ged.gc.ca www.cio-dpi.gc.ca

24 Serving Canadians Securely through Government On-Line Global Platform Business Seminar August 21, 2002 Michelle d’Auray Chief Information Officer Government of Canada

Download ppt "Serving Canadians Securely through Government On-Line Global Platform Business Seminar August 21, 2002 Michelle d’Auray Chief Information Officer Government."

Similar presentations

Opening Doors: Federal Strategic Plan to Prevent and End Homelessness

Opening Doors: Federal Strategic Plan to Prevent and End Homelessness
Research, Development, and Evaluation Commission Department of Information Management Research, Development, and Evaluation Commission The Executive Yuan,

Research, Development, and Evaluation Commission Department of Information Management Research, Development, and Evaluation Commission The Executive Yuan,
EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.

EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.
Government of CanadaGouvernement du Canada Government On-Line Chief Information Office Treasury Board of Canada Secretariat September 2001.

Government of CanadaGouvernement du Canada Government On-Line Chief Information Office Treasury Board of Canada Secretariat September 2001.
00 Innovative Citizen-Centred Services Through Collaboration Institute for Citizen-Centred Service.

00 Innovative Citizen-Centred Services Through Collaboration Institute for Citizen-Centred Service.
FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.

FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.
The Service Improvement Initiative: Recommendations for Action Presentation to TIMS September 30, 2003.

The Service Improvement Initiative: Recommendations for Action Presentation to TIMS September 30, 2003.
15 Tactical Improvements to IT Security Virtual Keyboard, Two Factor Authentication, Active Confirmation and FAA Access to CPS Online Ganesh Reddy.

15 Tactical Improvements to IT Security Virtual Keyboard, Two Factor Authentication, Active Confirmation and FAA Access to CPS Online Ganesh Reddy.
Cross Platform Single Sign On using client certificates Emmanuel Ormancey, Alberto Pace Internet Services group CERN, Information Technology department.

Cross Platform Single Sign On using client certificates Emmanuel Ormancey, Alberto Pace Internet Services group CERN, Information Technology department.
August 2004 Providing Industry-wide Security and Identity Management Solutions.

August 2004 Providing Industry-wide Security and Identity Management Solutions.
The SAFE-BioPharma Identity Proofing Process Author of Record SWG (Digital Credentials) October 3, 2012 Peter Alterman, Ph.D. Chief Operating Officer,

The SAFE-BioPharma Identity Proofing Process Author of Record SWG (Digital Credentials) October 3, 2012 Peter Alterman, Ph.D. Chief Operating Officer,
6th MSDI Working Group Meeting

6th MSDI Working Group Meeting
©Centre for Development of Advanced Computing 1 State e-governance Service Delivery Gateway (SSDG)‏ A Messaging Middleware for.

©Centre for Development of Advanced Computing 1 State e-governance Service Delivery Gateway (SSDG)‏ A Messaging Middleware for.
Chief Information Officer Branch Gestion du dirigeant principal de l’information “We will have a world class public key infrastructure in place” Prime.

Chief Information Officer Branch Gestion du dirigeant principal de l’information “We will have a world class public key infrastructure in place” Prime.
Canadian Evaluation Society Vancouver – June 4, 2003 Using Integrated Risk Management to Improve Strategic Outcomes and Public Transparency Basil Orsini.

Canadian Evaluation Society Vancouver – June 4, 2003 Using Integrated Risk Management to Improve Strategic Outcomes and Public Transparency Basil Orsini.
Advancing towards Government On-Line Joe Larocque Jacques Roy Session # 3012.

Advancing towards Government On-Line Joe Larocque Jacques Roy Session # 3012.
EDUCAUSE Fed/Higher ED PKI Coordination Meeting

EDUCAUSE Fed/Higher ED PKI Coordination Meeting
© 2003 IBM Corporation Privacy 12 th CACR Workshop Yim Y. Chan Chief Privacy Officer & CIO IBM Canada Ltd. w3.ibm.com/Privacy.

© 2003 IBM Corporation Privacy 12 th CACR Workshop Yim Y. Chan Chief Privacy Officer & CIO IBM Canada Ltd. w3.ibm.com/Privacy.
Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.

Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.
02/12/00 E-Business Architecture

02/12/00 E-Business Architecture

Similar presentations

Ads by Google