1 / 21

A vision on a national Electronic Authentication Infrastructure

MINISTRY OF INFORMATION AND COMMUNICATIONS Symposium on buiding an Electronic Authentication Infrastructure for the deployment of online public services and administration reform. A vision on a national Electronic Authentication Infrastructure. Dao Dinh Kha

huyen
Download Presentation

A vision on a national Electronic Authentication Infrastructure

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. MINISTRY OF INFORMATION AND COMMUNICATIONSSymposium on buiding an Electronic Authentication Infrastructure for the deployment of online public services and administration reform A vision on a national Electronic Authentication Infrastructure Dao Dinh Kha National Centre of Digital Signature Authentication - Agency of Information Technology Application

  2. Introduction • Electronic transactions trend • Business requirements for an electronic Authentication Framework • Outline an Electronic Authentication system • Conclusion Agenda Agenda • Introduction of an effort of Viet Nam in building a nation-wide infrastructure for effectively securing electronic transactions

  3. Demand for electronic transactions • Increasing trend of electronic transactions • Communication channel between state agencies and society • E-commerce and commercial support activities • International agreements • Effort of Viet Nam in e-government development • Vietnam’s rank in terms of the e-gov readiness index improved • E-government: …where Internet and related technologies has the potential to transform the structures and operation of government (UN). • Transactions between the administration and its citizens, private sector going to be online

  4. Information security for electronic transactions • The information security requirements for electronic transactions • Confidential/Privacy • Authentication • Integrity • Non-repudiation • Without information security measures: PAIN • Modern ways to secure electronic transactions

  5. Some major PKI projects: Toward e-government development • Ongoing PKI projects • E-Tax, E-custom: MOF • E-Banking: VSB • E-Certificate of Origin, Chemistry registration: MOIT • E-Intellectual Property: MOST • E-Procurement: MPI • Others projects in the IT application plan 2010 • Integrated E-mail system • Document sharing

  6. Levels of Authentication • Information security requirement: case by case • High: Payment in a commercial deal • Low: Transportation fee payment • Banking electronic transactionsc • Not every transaction requires all PKI properties • The common requirement is authentication • Criteria to select appropriate measures Cost Multi Factor Tokenc PKI Knowledge- based - Very High High Pin/Password Average A mouse click Standard Low Level of authentication

  7. Lesson from abroad • The reference countries • USA • Australia • Singapore • Other countries • The concepts: • Authentication principles and the mechanism to facilitate these principles • Electronic Authentication Framework (NeAF) and Infrastructure to facilitate the framework (NeAS)

  8. Toward a nation-wide electronic authentication framework • Goals • Protect investment • Facilitate simple solutions for applications encompassing authentication functions • Easy the technology upgrade • Scope • Scope: Concentrate on the government activities

  9. NeAF: Project • In the framework of WB Project: Consultancy on a PKI scheme to support e-Government development and on a Proposal for the National e-Authentication Framework • With cooperation of leading international and regional Information security vendors • Tentative finish date: 2011

  10. NeAF: Project organization • Supporting team work leaded by NCDSA (AITA, MIC) • Our mission: • Determine appropriate objectives • Support and assistant • Technology and knowledge transfer (to action) • Monitor the quality

  11. NeAF: Objectives • Develop a proposal for the national e-Authentication framework that consists of: • Principles and methodologies • Technologies, policies, procedures, and assessment framework for electronic transactions in e-Government development and socio-economic development. • Architecture, main technical specification of authentication service components, and their interface specifications. • Develop the capacity to build up expertise for e-Authentication.

  12. NeAF: Issues • Manage the risks associated with the online transactions in the future e-Government of Vietnam and e-Commerce • Considering all authentication risk factors • Help determine the appropriate authentication methods for each electronic transaction type • Deliver an outline design for the electronic authentication system based on the framework • For futute investment proposal

  13. NeAF: Reference • Address most issues that have occurred in authorizing electronic transactions in IT advanced countries • The reference countries are USA, Canada, Australia and Singapore. • The international experience from the work being conducted under the STORK and PEPPOL projects relating to adoption of PKI in electronic IDs and public procurement processes in the EU will be specially interested in. • The designs’ reference countries are USA, Canada, and Australia.

  14. NeAF: Feature requirements • Main Issues for National e-Authentication Framework and electronic Authentication system • Risk Management • Security • Privacy • Disclosure Requirements • Complaints Handling • Standards

  15. NeAF: Feature requirements (cont.) • Main Issues for National e-Authentication Framework and electronic Authentication system • Scalability • Balance • Principles • Authentication assurance levels • Approach • Cost- Effectiveness • Integration

  16. Implementation: Model and components • National Electronic Authentication System: Provide authentication services to agencies and public electronic transactions. • Federated Authentication Model: With multiple types of credentials • Components • Application Service Providers • Credential Service Providers: Support 3rd parties • End Users • Authentication scenario • assertion-based • certificate-based

  17. Operation Model of NecAS CSP(s) Ministry A Credential type A Credential type B Website Select the level of authentication based on business requirements Branh B User(s) Portal

  18. National Authentication Systems (Phase I) • Provide user authentication services to state agencies’ public websites, focus on: • Key agencies • Only administrative public services • Performance requirements for the 1st phase • Able to serve around concurrent 100 authentication requests. • Not every access needs authentication.

  19. National Authentication Systems (Phase II) • To extend in the future to cover all public services • Promote PPP • Extending capabilities and integrated technologies • Implement multiple types of credential • Improving performance

  20. Conclusion • Data sharing requires information security and authentication • NeAF and NeAS help efficient development of e-gov applications that need authentication • Firm infrastructure invested by government and PPP are needed

  21. Thank you very much! National Centre of Digital Signature Authentication(AITA, MIC) E-mail: dinhkha@mic.gov.vn Tel: 0983 264 287

More Related