1 / 25

FP5 Certification Service

FP5 Certification Service. Sierd Westerfield Lund, June 9, 1999. www.fp5-csp.org. Electronic submission and certification in FP5. European Commission wants to encourage electronic communication. European Commission facilitates full electronic submission in FP5.

carney
Download Presentation

FP5 Certification Service

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. FP5 Certification Service Sierd Westerfield Lund, June 9, 1999 www.fp5-csp.org

  2. Electronic submission and certification in FP5 • European Commission wants to encourage electronic communication. • European Commission facilitates full electronic submission in FP5. • To do this in a secure way you need to have a certificate for encryption and a digital signature. www.fp5-csp.org

  3. General • Not a technical problem • Awareness • Trust • Legal: • Electronically submitted proposal have the same legal status as a paper equivalent • Little legislation in Member States on digital signatures • Digital signature directive www.fp5-csp.org

  4. Who is providing what? • ProTool • Commission • Certification Service • PricewaterhouseCoopers • GlobalSign • Baltimore Technologies www.fp5-csp.org

  5. Protool

  6. General Introduction: Certification • Key principles for secure transactions: • confidentiality • Integrity of the message • authentication of sender and intended receiver • non-repudiation www.fp5-csp.org

  7. Certificate Request 1

  8. Certificate Request 2

  9. Types of certificates • Class I: Low level verification, limited validity and limited use (e-mail request), no encryption • Class II: Medium level verification, validity 1 year, submission of proposal, encryption • Certificates are free of charge www.fp5-csp.org

  10. Certificate Request 3

  11. Certificate Request 4 • ProTool creates key-pair. • Class I: email request • Class II: email request & fax signed request.

  12. Import Certificate

  13. How to use certificates in FP5 • Software application will allow you to encrypt and digitally sign the proposal (Sealing process) • Encrypted and signed proposal can be uploaded to the Commissions web-server or sent by e-mail • The certificate of those who are signatories of the submitting organisation should be used www.fp5-csp.org

  14. Commission Server side • Front-end: Web&Mail servers. • Application Server (proposal Decryption & Validation) • Back-end: Database servers (Proposals Storage)

  15. Conclusions • Electronic submission adds value • quick. • safe. • reliable. • This is only the beginning • The basic technology and legislation are there...

  16. More info • www.fp5-csp.org • Email: info@fp5-csp.org • Sierd Westerfield • Email: Sierd.Westerfield@nl.pwcglobal.com • Phone +31 70 342 6561 • Fax +31 70 342 6225 www.fp5-csp.org

  17. Public Key Infrastructure Bron: Microsoft

  18. DES DES ? Secret Secret Encryption with a Secret Key U93ç”à%%¨*µ£2”Jand”938QçéDé&ùfdé Deze boodschap is uiterst vertrouwe- lijk Deze boodschap is uiterst vertrouwe- lijk

  19. RSA RSA Receiver Public Private Encryption with a public key. U93ç”à%%¨*µ£2”Jand”938QçéDé&ùfdé Deze boodschap is uiterst vertrouwe- lijk Deze boodschap is uiterst vertrouwe- lijk

  20. U93ç”à%%¨*µ£2”Jand”938QçéDé&ùfdé Deze boodschap is uiterst vertrouwe- lijk DES DES RSA RSA Secret §5er9é Secret Public Private Receiver Random Private, Public and Secret key encryption Deze boodschap is uiterst vertrouwe- lijk

  21. U93ç”à%%¨*µ£2”Jand”938QçéDé&ùfdé Deze boodschap is uiterst vertrouwe- lijk Sender Public Private Signing with a private and public Deze boodschap is uiterst vertrouwe- lijk

  22. Deze boodschap is uiterst gevoelig- Deze boodschap is uiterst gevoelig- RSA RSA Public Private 87R8E7R 87R8E7R Sender 87R8E7R Private and Public key - Signature Deze boodschap is uiterst gevoelig- = ?

  23. Combine these techniques ….

  24. 87R8E7R 87R8E7R Sender RSA 87R8E7R MD5 RSA MD5 Deze boodschap is uiterst vertrouwe- lijk- DES DES RSA RSA Secret Public Private Secret Public Private §5er9é Receiver Random = ? Deze boodschap is uiterst vertrouwe- lijk- U93ç”à%%¨*µ£2”Jand”938QçéDé&ùfdé

  25. Naam: “Internet, Organisatie, Alice” SHA 7ru9AEç Public Openb. sl.: RSA Reeksnr.: 29483756 Overige data: 10236283025273 Handtekening: uw CA, Vervalt : 6/18/98 Public Private CA Check signature with the public key of the CA. … or with certificates!

More Related