Presentation is loading. Please wait.

Presentation is loading. Please wait.

Matters of Conceptualization and Security in the Building of One-stop-shop e-Government Solutions in Europe: Experiences from the European OneStopGov project.

Published byStuart Bond Modified over 8 years ago

Similar presentations

Presentation on theme: "Matters of Conceptualization and Security in the Building of One-stop-shop e-Government Solutions in Europe: Experiences from the European OneStopGov project."— Presentation transcript:

1 Matters of Conceptualization and Security in the Building of One-stop-shop e-Government Solutions in Europe: Experiences from the European OneStopGov project Marios Chatzidimitriou, Adamantios Koumpis ALTEC S.A. Research Division Greece

2 OneStopGov project Aims to specify, develop and evaluate a life- event oriented, integrated, interoperable platform for online one-stop government Life-event: a specific situation or event in the life of a citizen or a life cycle of an organization that requires a set of public services to be performed One-stop government: the integration of public services from a citizen’s point of view

3 Security in research projects Research projects do not take into account full and exact real world parameters, sometimes even the – most important one - security But customers do not risk investing in something they cannot see working Not taking into account the aspect of security in scope of the OneStopGov project, will  result in problem in designing the exploitation plan as OneStopGov project will be unable to be applied in real life situation  Create problems in convincing possible customers to invest

4 OneStopGov legislation aspects The European Union has prepared a number of Acts, Directives and Regulations  EU members have to follow and adapt them in their legislation OneStopGov will provide online government services, thus it is essential to  Be compliant with the legislation of the Public Authority’s country where it will be adopted  Be able to ensure data privacy and safety issues for the citizen

5 Data protection Data protection principles aim to establish conditions under which it is legitimate and lawful to process personal data Protection of personal data comprises organizational, technical, and logical- technical procedures and measures to  Protect personal data  Prevent accidental or deliberate unauthorized destruction, modification or loss of data  Prevent unauthorized processing of data

6 Personal data protection measures (1/2) Protecting premises, equipment and systems software, including input-output units Protecting software applications used to process personal data Preventing unauthorized access to personal data during transmission thereof, including transmission via telecommunications means and networks

7 Personal data protection measures (2/2) Ensuring effective methods of  Blocking  Destruction, erasure  Anonymisation of personal data Enabling subsequent determination of  when individual personal data were entered into a filing system, used or otherwise processed and  who did so

8 Data protection in OneStopGov A life-event comprises of many public services that have to be executed in a transparent way for the user The user should provide all data needed at once, and just wait for the result He should also be given the chance to store data he provides, or data that are resulted from previous life-events’ execution

9 Legal and security considerations Can data be stored in the e-Government portal for later use?  Yes, with permission of the person concerned for non-sensitive data  Personal data are considered sensitive if they refer to one’s: ethnic origin, national or ethnic minority, political choice or opinion, religious or other sorts of ideology, membership in unions, state of health, pathological addictions, sexual life, criminal records

10 Legal and security considerations What if user does not want any data stored?  Then according to legislation, the portal may store temporarily all the data until they are not needed any more  Data are discarded after the end of the life-event User should be able to view, verify the authenticity and accuracy of his or her own personal data

11 And after the software is ready… The computer on which the e-Government portal will be installed, must follow security measures:  Steady: uninterruptible power supply system, restricting user rights in computer systems, safe server rooms with alarm and access control  Temporal: periodic password exchange, archiving, antivirus control, computer stuff control, control of data storage for archives

12 Thank you

Download ppt "Matters of Conceptualization and Security in the Building of One-stop-shop e-Government Solutions in Europe: Experiences from the European OneStopGov project."

Similar presentations

1 COMPUTER GENERATED & STORED RECORDS CONTROLS Presented by COSCAP-SA.

1 COMPUTER GENERATED & STORED RECORDS CONTROLS Presented by COSCAP-SA.
Re-use of PSI Data Protection Issues Cécile de Terwangne Professor at the Law Faculty, Research Director at CRIDS University of Namur (Belgium) 2 nd LAPSI.

Re-use of PSI Data Protection Issues Cécile de Terwangne Professor at the Law Faculty, Research Director at CRIDS University of Namur (Belgium) 2 nd LAPSI.
DATA PROTECTION and Research University Research Ethics Committee – 30.05.2008 David Cauchi David Cauchi Office of the Commissioner for Data Protection.

DATA PROTECTION and Research University Research Ethics Committee – David Cauchi David Cauchi Office of the Commissioner for Data Protection.
Introduction to basic principles of Regulation (EC) 45/2001 Sophie Louveaux María Verónica Pérez Asinari.

Introduction to basic principles of Regulation (EC) 45/2001 Sophie Louveaux María Verónica Pérez Asinari.
Security by Design A Prequel for COMPSCI 702. Perspective “Any fool can know. The point is to understand.” - Albert Einstein “Sometimes it's not enough.

Security by Design A Prequel for COMPSCI 702. Perspective “Any fool can know. The point is to understand.” - Albert Einstein “Sometimes it's not enough.
Www.dataprotection.gov.je The Data Protection (Jersey) Law 2005.

The Data Protection (Jersey) Law 2005.
Auditing Computer Systems

Auditing Computer Systems
Naklo, 22.10.2004 A.Komšo 1 eInvoices and Tax Regulation Andja Komšo Tax Administration.

Naklo, A.Komšo 1 eInvoices and Tax Regulation Andja Komšo Tax Administration.
1 Output Controls Ensure that system output is not lost, misdirected, or corrupted and that privacy is not violated. Exposures of this sort can cause serious.

1 Output Controls Ensure that system output is not lost, misdirected, or corrupted and that privacy is not violated. Exposures of this sort can cause serious.
Chapter 10 Information Systems Controls for System Reliability—Part 3: Processing Integrity and Availability Copyright © 2012 Pearson Education, Inc.

Chapter 10 Information Systems Controls for System Reliability—Part 3: Processing Integrity and Availability Copyright © 2012 Pearson Education, Inc.
Presented by Manager, MIS.  GRIDCo’s intentions for publishing an Acceptable Use Policy are not to impose restrictions that are contrary to GRIDCo’s.

Presented by Manager, MIS.  GRIDCo’s intentions for publishing an Acceptable Use Policy are not to impose restrictions that are contrary to GRIDCo’s.
Attorney at the Bars of Paris and Brussels Database exploitation & Data protection Thibault Verbiest Amsterdam 1 April 2005

Attorney at the Bars of Paris and Brussels Database exploitation & Data protection Thibault Verbiest Amsterdam 1 April 2005
Data Protection Overview

Data Protection Overview
 The Data Protection Act 1998 is an Act of Parliament which defines UK law on the processing of data on identifiable living people and it is the main.

 The Data Protection Act 1998 is an Act of Parliament which defines UK law on the processing of data on identifiable living people and it is the main.
Lawyer at the Brussels Bar Lecturer at the University of Strasbourg Assistant at the University of Brussels Data Protection & Electronic Communications.

Lawyer at the Brussels Bar Lecturer at the University of Strasbourg Assistant at the University of Brussels Data Protection & Electronic Communications.
Chapter 19 Security Transparencies. 2 Chapter 19 - Objectives Scope of database security. Why database security is a serious concern for an organization.

Chapter 19 Security Transparencies. 2 Chapter 19 - Objectives Scope of database security. Why database security is a serious concern for an organization.
Effectively Integrating Information Technology (IT) Security into the Acquisition Process Section 5: Security Controls.

Effectively Integrating Information Technology (IT) Security into the Acquisition Process Section 5: Security Controls.
1st MODINIS workshop Identity management in eGovernment Frank Robben General manager Crossroads Bank for Social Security Strategic advisor Federal Public.

1st MODINIS workshop Identity management in eGovernment Frank Robben General manager Crossroads Bank for Social Security Strategic advisor Federal Public.
CLOUD AND SECURITY: A LEGISLATOR'S PERSPECTIVE 6/7/2013.

CLOUD AND SECURITY: A LEGISLATOR'S PERSPECTIVE 6/7/2013.
Principle of Protection By C’Les Jensema About ARMA International and the Generally Accepted Recordkeeping Principles® ARMA International (www.arma.org)

Principle of Protection By C’Les Jensema About ARMA International and the Generally Accepted Recordkeeping Principles® ARMA International (

Similar presentations

Ads by Google