Legal Reflexions concerning Digital Archiving Jos Dumortier K.U.Leuven University – Belgium Interdisciplinary Centre for Law & ICT (ICRI) ECPRD twin seminar.

Slides:

Advertisements

Similar presentations

1 Proposal for a Regulation on Electronic identification and trust services for electronic transactions in the internal market (COM( final) {SWD(2012)

Advertisements

© fedict All rights reserved Legal aspects Belgian electronic identity card Samoera Jacobs – November 2008.

17 March 2010 Workshop on Efficient and Effective eGovernment FASTeTEN : a Flexible Technology in Different European Administrative Contexts

Critical Observations on the Proposed EU Regulation for Electronic Identification and Trust Services for Electronic Transactions in the Internal Market.

Research and Innovation Participant Portal Concept for electronic-only grant management in Horizon 2020 Peter HÄRTWICH

AFACT eCOO WG interim meeting - Conference Call 1st March of 2011 Mahmood Zargar eCOO Experiences and Standards.

“e-LEGISLATION” Jos DUMORTIER March 19, 2012 Ministerstwo Administracji i Cyfryzacji Warsaw.

Policy interoperability in electronic signatures Andreas Mitrakas EESSI International event, Rome, 7 April 2003.

Setting Processes for Electronic Signature 1 The ”W-SPES Project” and the “Leuven Report on the Electronic Signatures Directive” – Putting the Project.

Archiving for legal purposes How to implement the new Belgian legislation to destroy physical invoices and use an electronic archive.

Dematerialization of Organisations’ Key Business Processes Security and e-Invoicing ATHENEE PALACE HILTON, Bucuresti September 21 st 2004 Genovel Iovu.

S.1 Using a Global Validation Service to Unite Communities Jon Shamah EMEA Head of Sales, BBS eSecurity.

Workshop on registered electronic mail policies and implementations (ETT 57074) Ankara, –

Implementation of Electronic Signature Law Kęstutis Andrijauskas Information Society Development Committee under the Government of the Republic.

HIT Standards Committee: Digital Certificate Trust – Policy Question for HIT Policy Committee March 29, 2011.

PAPERLESS BUSINESS in GEORGIAN FINANCIAL SECTOR NANA ENUKIDZE - Advisor to the Governor.

M.Sc. Hrvoje Brzica Boris Herceg, MBA Financial Agency – FINA Ph.D. Hrvoje Stancic, assoc. prof. Faculty of Humanities and Social Sciences Long-term Preservation.

Civil Registry Agency of the Ministry of Justice, Georgia Digital Signature Services in Georgia Mikheil Kapanadze.

Legal Issues on PKI & qualified electronic certificates. THIBAULT VERBIEST Attorney-at-law at the Brussels and Paris Bar Professor at the Universities.

Information security An introduction to Technology and law with focus on e-signature, encryption and third party service Yue Liu Feb.2008.

6/1/20151 Digital Signature and Public Key Infrastructure Course:COSC Instructor:Professor Anvari Student ID: Name:Xin Wen Date:11/25/00.

Encryption and the Law: The need for a legal regulatory framework for PKI Yee Fen Lim Department of Law Macquarie University.

Department of Information Engineering1 Major Concerns in Electronic Commerce Authentication –there must be proof of identity of the parties in an electronic.

DIGITAL SIGNATURE AND ELECTRONIC DOCUMENTS IN ITALY Prof. Pierluigi Ridolfi AIPA Authority for Information Technology in the Public Administration V. Solferino,

European Signatures versus Global SignaturesRome, 7 April, 2003 EESSI open specifications and interoperability The state of the art in Italy Giovanni Manca.

BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

E-Government Security and necessary Infrastructures Dimitrios Lekkas Dept. of Systems and Products Design Engineering University of the Aegean

Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.

ELECTRONIC COMMUNICATION ACT 2000 Raashida & Sangeetha.

1 Brief Overview of Selective Legal and Regulatory Issues in Electronic Commerce United Nations Conference on Trade and Development Geneva, 14 June 2001.

1. 2 ECRF survey - Electronic signature Mr Yves Gonner Luxembourg, June 12, 2009.

© Julia Wilk (FHÖV NRW) 1 Digital Signatures. © Julia Wilk (FHÖV NRW)2 Structure 1. Introduction 2. Basics 3. Elements of digital signatures 4. Realisation.

INTRODUCTION Why Signatures? A uthenticates who created a document Adds formality and finality In many cases, required by law or rule Digital Signatures.

Electronic invoicing in the light of the VAT Directive 2001/115/EC Anna Nordén Conference on the Legal Aspects of an E-Commerce Transaction The Hague 27.

Digital Signature Technologies & Applications Ed Jensen Fall 2013.

National Smartcard Project Work Package 8 – Security Issues Report.

8 Nob 06 / CEN/ISSS ETSI STF 305: Procedures for Handling Advanced Electronic Signatures on Digital Accounting CEN/ISSS Workshop.

Niall Curran E-Commerce Division Department of Public Enterprise

"certification service provider" Electronic Signatures

Selected problems of the e-signature law and of its implementation Doc. RNDr. Daniel Olejár, CSc. Department of computer science Comenius University, Bratislava.

DIGITALIZATION & E-GOVERNMENT 14th November, 2013 Bulgarian Economic Forum Nikolay Nedyalkov, Executive Director Information Services Plc.

DIRC Workshop on Software Quality and the Legal System 13 February 2004, Gray's Inn, London LEGAL ASPECTS OF SOFTWARE PROCUREMENT Jos Dumortier University.

fact sheet (07/03/2007) 1 ARE ARCHIVING SOLUTIONS RECORDKEEPING SOLUTIONS? 7 th March 2007 Stephen Clarke Government Recordkeeping Programme.

Towards a European network for digital preservation Ideas for a proposal Mariella Guercio, University of Urbino.

Risks of data manipulation and theft Gateway Average route travelled by an sent via the Internet from A to B Washington DC A's provider Paris A.

Massella Ducci Teri Italian approach to long-term digital preservation Policies for Digital Preservation ERPANET Training Seminar.

EAP’s Sponsored and in Partnership with Electronic Document Submission to the Record Office Mter. Dirk Van Biervliet Vlaamse Orde van Balies Frank Delanghe.

Meganet Corporation VME Sign Meganet Corporation Meganet Corporation is a leading worldwide provider of data security to Governments, Military,

11/6/2015 / 1 Electronic Commerce Branch UNCTAD - United Nations Conference on Trade and Development Overview of Selective Legal.

Authenticity of Electronic Records in XBRL Lucas Cardholm, LL.M. Working Group Authenticity and Security, XBRL Sweden

DIGITAL SIGNATURE.

Secure Systems Research Group - FAU A Pattern for XML Signature Presented by Keiko Hashizume.

eIDAS: current state of play and the Luxembourgish approach

Digitally Signed Records – Friend or Foe? Boris Herceg Hrvoje Brzica Financial Agency – FINA Hrvoje Stančić.

Using Public Key Cryptography Key management and public key infrastructures.

XML Signature Choi, Yoon-jung. Outline Introduction Introduction Structure Structure Structure - Example Structure - Example Creation Creation.

Information Security Systems Cost Effective Authenticity & Integrity in CEN/FISCALIS eInvoicing Good Practice Guidelines Nick Pope – Principal Consultant,

Workshop Health Care in the Information Society - on the Prognosis for the Year 2013 May 21 – May 22, 2013, TU Braunschweig Carl Dujat and Andreas Hein:

LECTURE – V e-COMMERCE İstanbul Commerce University Vocational School.

Institutional Repositories July 2007 DIGITAL CURATION creating, managing and preserving digital objects Dr D Peters DISA Digital Innovation South.

@ulccwww.ulcc.ac.uk IRMS Cymru October 2015 From EDRMS to digital archive: a wish-list for ways to preserve digital records.

Electronic Signatures Regulation in the European Union Jos Dumortier K.U.Leuven University Belgium Roundtable on Electronic Documents and Electronic Signatures.

Content Introduction History What is Digital Signature Why Digital Signature Basic Requirements How the Technology Works Approaches.

K.U.Leuven – Faculty of Law Master of Laws – ICT LAW.

GT1 - MODELOS, FRAMEWORKS E ARQUITETURAS APRESENTAÇÃO DA NORMA – GT4 ISO TS 21547:2010 “Health informatics — Security requirements for archiving of electronic.

ELECTRONIC DOCUMENT: LITHUANIAN EXAMPLE

Draft ETSI TS Annex C Presented by Michał Tabor for PSD2 Workshop

TRACES Trade Control and Expert System Electronic sanitary certificates using qualified electronic signature Brussels 15th September 2016.

E-Lock ProSigner ProSigner means “Professional Signer” signifying the software that can apply legally enforceable Advanced electronic signatures to electronic.

Presentation transcript:

Legal Reflexions concerning Digital Archiving Jos Dumortier K.U.Leuven University – Belgium Interdisciplinary Centre for Law & ICT (ICRI) ECPRD twin seminar Brussels - The Hague 2002 ______ DIGITALISATION OF PARLIAMENTARY INFORMATION AND ARCHIVES

Introduction  The law is progressively adapted in order to take account of the electronic environment  Problem remains: how to guarantee securer and trustworthy archival of digital data  Most difficult problem: electronic signatures

electronic signatures produced with digital signature tool Terminology digital signatures electronic signatures

Terminology  Electronic Signatures: “all kinds of (electronic) substitutes for hand- written signatures”  Digital Signatures: one technical solution (public key cryptography) many other applications besides electronic signatures (seals, envelopes, receipts, …)

European legal framework  E-Signature Directive: open EU market for e-signatures services and products “qualified” e-signatures equivalent to hand-written signatures  E-Commerce Directive obligation to remove all obstacles for electronic contracts

InterPARES Authenticity Task Force “Digital signature and public key infrastructure (PKI) were never intended to be, and are not currently viable as a means of ensuring the authenticity of electronic records over time”

Important distinction 1.Digital signatures used as “archivist’s seal”: tool to control the integrity of the archived data 2.Electronic signatures attached to data presented for archival: how to keep the signature intact?

Major difficulty: “migration”  Problem: if the archived data change (even one bit) the signature is no longer valid  Proposed solution: strip the signature before archiving the data and transform it into metadata the archivist will guarantee the authenticity and integrity of the data (“trusted archival chain”)

Why is this solution not acceptable?  not compatible with the recently created legal framework  the signature should often remain intact for legal purposes (non-repudiation)  the solution only “shifts” the problem: how to guarantee the archivist’s seal?

Need for standardized solution for archiving digital signatures  First European attempts: ETSI TS : Electronic Signature Formats ETSI TS : XML Advanced E-Signatures  But need for dedicated standardization initiative with more involvement of professional record keepers

ETSI TS Aim is: how to guarantee security of a signature over a long period of time?

But what about “migration”?  Even if you have a very secured signature, strong enough to remain intact over a long period of time: if one bit in the signed data change, the signature is useless  Our view: even if there is not a “perfect” solution, we need to tacke this issue in the best possible way

Possible measures  reduce need to migrate by using open standardized document formats (e.g. XML)  stimulate secure trusted archival services possibly separate “normal” archival service and “signature keeping” minimal legal framework (liability, stability, …) develop standards (best practices) supervision is necessary

The debate remains open.. Jos Dumortier K.U.Leuven University Faculty of Law – ICRI

The debate remains open.. Jos Dumortier & Sofie Van Den Eynde K.U.Leuven University Faculty of Law – ICRI