250 likes | 393 Views
FP5 Certification Service. Sierd Westerfield Lund, June 9, 1999. www.fp5-csp.org. Electronic submission and certification in FP5. European Commission wants to encourage electronic communication. European Commission facilitates full electronic submission in FP5.
E N D
FP5 Certification Service Sierd Westerfield Lund, June 9, 1999 www.fp5-csp.org
Electronic submission and certification in FP5 • European Commission wants to encourage electronic communication. • European Commission facilitates full electronic submission in FP5. • To do this in a secure way you need to have a certificate for encryption and a digital signature. www.fp5-csp.org
General • Not a technical problem • Awareness • Trust • Legal: • Electronically submitted proposal have the same legal status as a paper equivalent • Little legislation in Member States on digital signatures • Digital signature directive www.fp5-csp.org
Who is providing what? • ProTool • Commission • Certification Service • PricewaterhouseCoopers • GlobalSign • Baltimore Technologies www.fp5-csp.org
General Introduction: Certification • Key principles for secure transactions: • confidentiality • Integrity of the message • authentication of sender and intended receiver • non-repudiation www.fp5-csp.org
Types of certificates • Class I: Low level verification, limited validity and limited use (e-mail request), no encryption • Class II: Medium level verification, validity 1 year, submission of proposal, encryption • Certificates are free of charge www.fp5-csp.org
Certificate Request 4 • ProTool creates key-pair. • Class I: email request • Class II: email request & fax signed request.
How to use certificates in FP5 • Software application will allow you to encrypt and digitally sign the proposal (Sealing process) • Encrypted and signed proposal can be uploaded to the Commissions web-server or sent by e-mail • The certificate of those who are signatories of the submitting organisation should be used www.fp5-csp.org
Commission Server side • Front-end: Web&Mail servers. • Application Server (proposal Decryption & Validation) • Back-end: Database servers (Proposals Storage)
Conclusions • Electronic submission adds value • quick. • safe. • reliable. • This is only the beginning • The basic technology and legislation are there...
More info • www.fp5-csp.org • Email: info@fp5-csp.org • Sierd Westerfield • Email: Sierd.Westerfield@nl.pwcglobal.com • Phone +31 70 342 6561 • Fax +31 70 342 6225 www.fp5-csp.org
Public Key Infrastructure Bron: Microsoft
DES DES ? Secret Secret Encryption with a Secret Key U93ç”à%%¨*µ£2”Jand”938QçéDé&ùfdé Deze boodschap is uiterst vertrouwe- lijk Deze boodschap is uiterst vertrouwe- lijk
RSA RSA Receiver Public Private Encryption with a public key. U93ç”à%%¨*µ£2”Jand”938QçéDé&ùfdé Deze boodschap is uiterst vertrouwe- lijk Deze boodschap is uiterst vertrouwe- lijk
U93ç”à%%¨*µ£2”Jand”938QçéDé&ùfdé Deze boodschap is uiterst vertrouwe- lijk DES DES RSA RSA Secret §5er9é Secret Public Private Receiver Random Private, Public and Secret key encryption Deze boodschap is uiterst vertrouwe- lijk
U93ç”à%%¨*µ£2”Jand”938QçéDé&ùfdé Deze boodschap is uiterst vertrouwe- lijk Sender Public Private Signing with a private and public Deze boodschap is uiterst vertrouwe- lijk
Deze boodschap is uiterst gevoelig- Deze boodschap is uiterst gevoelig- RSA RSA Public Private 87R8E7R 87R8E7R Sender 87R8E7R Private and Public key - Signature Deze boodschap is uiterst gevoelig- = ?
87R8E7R 87R8E7R Sender RSA 87R8E7R MD5 RSA MD5 Deze boodschap is uiterst vertrouwe- lijk- DES DES RSA RSA Secret Public Private Secret Public Private §5er9é Receiver Random = ? Deze boodschap is uiterst vertrouwe- lijk- U93ç”à%%¨*µ£2”Jand”938QçéDé&ùfdé
Naam: “Internet, Organisatie, Alice” SHA 7ru9AEç Public Openb. sl.: RSA Reeksnr.: 29483756 Overige data: 10236283025273 Handtekening: uw CA, Vervalt : 6/18/98 Public Private CA Check signature with the public key of the CA. … or with certificates!