Presentation is loading. Please wait.

Presentation is loading. Please wait.

Information Security Systems Cost Effective Authenticity & Integrity in CEN/FISCALIS eInvoicing Good Practice Guidelines Nick Pope – Principal Consultant,

Published byMartin Reeves Modified over 8 years ago

Similar presentations

Presentation on theme: "Information Security Systems Cost Effective Authenticity & Integrity in CEN/FISCALIS eInvoicing Good Practice Guidelines Nick Pope – Principal Consultant,"— Presentation transcript:

1 Information Security Systems Cost Effective Authenticity & Integrity in CEN/FISCALIS eInvoicing Good Practice Guidelines Nick Pope – Principal Consultant, Thales e-Security Ltd OASIS Electronic Invoicing Panel: Confidentiality, Authentication, Reputation >

2 1 < eInvoicing: Cost effective authenticity & Integrity COUNCIL DIRECTIVE 2006/112/EC on VAT Harmonisation Article 233.1 “Invoices sent or made available by electronic means shall be accepted by Member States provided that the authenticity of the origin and the integrity of their content are guaranteed by one of the following methods: (a) by means of an advanced electronic signature…, …(b) by means of electronic data interchange (EDI)… Invoices may, however, be sent or made available by other electronic means, subject to acceptance by the Member States concerned.”

3 2 < eInvoicing: Cost effective authenticity & Integrity Divergence in Application of EU VAT Directive Advanced Electronic Signatures or “Any other means” Advanced Electronic Signatures ‘policy-based PKI’= standardized rules and contracts Qualified Electronic Signatures Advanced Electronic Signatures based on EU hardware and certificate standards LowMediumHigh Estonia Finland Netherlands Romania Sweden United Kingdom Austria Belgium Bulgaria Denmark France Greece (?) Hungary Ireland Luxembourg Portugal Cyprus Czech Republic Germany Italy Latvia Lithuania Poland Romania Slovakia Slovenia Spain (Illustrative only – refer to national legislation)

4 3 < eInvoicing: Cost effective authenticity & Integrity Authenticity & Integrity Basic Approach Authenticity & Integrity Controls  Process based: Emphasis on general procedural and technical controls to protect data at each stage of process (cf. EDI / Other), or  Technology based: Emphasis on protecting data using Advanced electronic signatures from creation through whole storage lifetime

5 4 < eInvoicing: Cost effective authenticity & Integrity Authenticity & Integrity in CEN/FISCALIS eInvoicing Good Practice Guidelines CEN WG3: Cost-effective authenticity and integrity of electronic invoices RisksControlsImplement’n Examples General Invoice Process risks Process controls Procedures & system audits Risks to Invoice Authenticity & Integrity Process based controls Procedures, secure comms, secure storage system Audits Technical based controls Procedures, Digital Signatures

6 5 < eInvoicing: Cost effective authenticity & Integrity Proposed Direction for eInvoicing Harmonisation  Aim towards “technology neutral” approach to VAT legislation (Recommendation of European Electronic Invoicing Expert Group)  Good practice standard  Common technology based solutions within good practice framework  Interoperable signatures alongside interchange formats  Common Trust Architecture (certification authorities)  Acceptance by businesses (cost & reputation)  Acceptance by tax authorities (minimise tax fraud)

7 6 < eInvoicing: Cost effective authenticity & Integrity Thank you CEN / FISCALIS e-Invoicing Good Practice Guidelines http://www.e-invoice-gateway.net/knowledgebase/eInvoiceBestPractice/ Nick Pope – nick.pope@thales-esecurity.com Technical editor Authenticity & Integrity – CEN eInvoicing Workshop Questions & Discussion

Download ppt "Information Security Systems Cost Effective Authenticity & Integrity in CEN/FISCALIS eInvoicing Good Practice Guidelines Nick Pope – Principal Consultant,"

Similar presentations

UNIVERSITY OF JYVÄSKYLÄ INTERNATIONAL COOPERATION.

UNIVERSITY OF JYVÄSKYLÄ INTERNATIONAL COOPERATION.
Current status of the recognition of the clinical / medical genetics specialty Milan Macek Department of Biology and Medical Genetics Charles University.

Current status of the recognition of the clinical / medical genetics specialty Milan Macek Department of Biology and Medical Genetics Charles University.
EP/Council Division of Power Commission proposes law, EP response based on one of three models: Co-decision (most issues, currently) – policy goes to EP,

EP/Council Division of Power Commission proposes law, EP response based on one of three models: Co-decision (most issues, currently) – policy goes to EP,
Knowledge Management LXV International Council Meeting Qawra, Malta 16 th - 23 rd of March 2014.

Knowledge Management LXV International Council Meeting Qawra, Malta 16 th - 23 rd of March 2014.
THE EUROPEAN UNION Lesson 5

THE EUROPEAN UNION Lesson 5
THE EUROPEAN UNION Lesson 5

THE EUROPEAN UNION Lesson 5
L.O TO KNOW WHAT THE EUROPEAN UNION IS AND WHAT COUNTRIES BELONG TO IT. The European Union.

L.O TO KNOW WHAT THE EUROPEAN UNION IS AND WHAT COUNTRIES BELONG TO IT. The European Union.
ELSA Shop(ping) – Spring SALE! LXV International Council Meeting Qawra, Malta 16 th - 23 rd of March 2014.

ELSA Shop(ping) – Spring SALE! LXV International Council Meeting Qawra, Malta 16 th - 23 rd of March 2014.
16 out of 27 member states Known as euro zones 2 nd largest traded currency after the dollar The name euro was officially adopted on 16 December 1995.

16 out of 27 member states Known as euro zones 2 nd largest traded currency after the dollar The name euro was officially adopted on 16 December 1995.
8 Nob 06 / CEN/ISSS www.thalesgroup.com/esecurity ETSI STF 305: Procedures for Handling Advanced Electronic Signatures on Digital Accounting CEN/ISSS Workshop.

8 Nob 06 / CEN/ISSS ETSI STF 305: Procedures for Handling Advanced Electronic Signatures on Digital Accounting CEN/ISSS Workshop.
ELSA Shop(ping) LXIV International Council Meeting Opatija, Croatia October 28 th - November 3 rd 2013.

ELSA Shop(ping) LXIV International Council Meeting Opatija, Croatia October 28 th - November 3 rd 2013.
Area Definition III KAM,Bratislava. The European Law Students’ Association Albania ˙ Austria ˙ Azerbaijan ˙ Belgium ˙ Bosnia and Herzegovina ˙ Bulgaria.

Area Definition III KAM,Bratislava. The European Law Students’ Association Albania ˙ Austria ˙ Azerbaijan ˙ Belgium ˙ Bosnia and Herzegovina ˙ Bulgaria.
ELSA Law Schools ICM Cluj-Napoca, 21st April 2015.

ELSA Law Schools ICM Cluj-Napoca, 21st April 2015.
EUROPEAN UNION. WHAT Coalition of 30 countries united in ECONOMY World’s largest trading bloc. World’s largest exporter to the world 16 TRILLION *Biggest.

EUROPEAN UNION. WHAT Coalition of 30 countries united in ECONOMY World’s largest trading bloc. World’s largest exporter to the world 16 TRILLION *Biggest.
THE EUROPEAN UNION. HISTORY 28 European states after the second world war in 1951 head office: Brussels 24 different languages Austria joined 1995.

THE EUROPEAN UNION. HISTORY 28 European states after the second world war in 1951 head office: Brussels 24 different languages Austria joined 1995.
1945  Second World War ended  Europe united as the European Coal and Steel Community, the founding members of this organisation were Belgium, France,

1945  Second World War ended  Europe united as the European Coal and Steel Community, the founding members of this organisation were Belgium, France,
UEMS ORL TREASURY REPORT October 2012 M. de la Mota, F. Marchal.

UEMS ORL TREASURY REPORT October 2012 M. de la Mota, F. Marchal.
THE EUROPEAN UNION. EU  1993 European Union  Main Aims  All states in the EU = a single market  One currency throughout the EU = the Euro  To have.

THE EUROPEAN UNION. EU  1993 European Union  Main Aims  All states in the EU = a single market  One currency throughout the EU = the Euro  To have.
ICM Bodrum 24 th October AA Workshop Legal Research Group.

ICM Bodrum 24 th October AA Workshop Legal Research Group.
Presentation by Kirsten Tesh World Traveler ? European Union.

Presentation by Kirsten Tesh World Traveler ? European Union.

Similar presentations

Ads by Google