EESSI Overview - 1August 2002 EESSI European Electronic Signature Standardisation Initiative Implementing Electronic Signature.

Slides:

Advertisements

Similar presentations

The National Standards and Quality System Jean-Louis Racine The World Bank Cambridge, England April 19, 2007 Knowledge Economy Forum VI Technology Acquisition.

Advertisements

December 2005 EuP Directive : A Framework for setting eco-design requirements for energy-using products European Commission.

Bundesamt für Sicherheit in der Informationstechnik EESSI - WS May , 2000, Paris, Folie 1/18Klaus J. Keus, BSI Electronic Signatures in Germany,

Quality Label and Certification Processes Vienna Summit 11 April 2014 Karima Bourquard Director of Interoperability IHE-Europe.

Telia Research AB György Endersz European Electronic Signature Standardisation Initiative EESSI Workshop Barcelona, György Endersz,

Telia Research AB György Endersz European Electronic Signature Standardisation Initiative EESSI Budapest Seminar at the Hungarian Communication.

1 European Standardisation and the Identification of ICT Technical Specifications 13th XBRL Europe Day Rome, 6 May 2014 Antonio Conte, Project Manager.

1 Draft Standardisation Request in the Domain of e-Invoicing UN/CEFACT Supply Chain PDA Meeting Geneva, 8 April 2014 Antonio Conte, Project Manager Unit.

Policy interoperability in electronic signatures Andreas Mitrakas EESSI International event, Rome, 7 April 2003.

An overview of legal aspects in electronic signatures Andreas Mitrakas EESSI International event, Rome, 7 April 2003.

1st Expert Group Meeting (EGM) on Electronic Trade-ECO Cooperation on Trade Facilitation May 2012, Kish Island, I.R.IRAN.

Summary of ETSI/ESI activities Andrea Caccia ETSI/ESI TB member Note: This document expresses only the views of its author.

Jaroslav Pinkava May 2001 Certification Authority in Praxis. Security Aspects. Conference Security and Protection of Information Ing. Jaroslav Pinkava,

© ETSI 2012 All rights reserved EUROPEAN UNION MANDATE/460 Kloster Banz Presented by Arno Fiedler, Member of European Telecommunications Standards.

Implementation of Electronic Signature Law Kęstutis Andrijauskas Information Society Development Committee under the Government of the Republic.

EID in EMEA & QuEST Ronny Bjones Security Program Manager Microsoft EMEA.

Developments in cooperation between research and standardization related to security and secure communications Presentation at eMayor clustering event,

1 Bridge/Gateway CA Project Status Gzim OCAKOGLU European Commission – DG ENTR / IDABC Reykjavik – 27 May 2005.

1 ESTIO 21/05/2015 Electronic Signature Testsuit for Inter-Operability A project supported by the EU ISIS programme.

PAPERLESS BUSINESS in GEORGIAN FINANCIAL SECTOR NANA ENUKIDZE - Advisor to the Governor.

EESSI European Electronic Signature Standardisation Initiative

Legal Issues on PKI & qualified electronic certificates. THIBAULT VERBIEST Attorney-at-law at the Brussels and Paris Bar Professor at the Universities.

Information security An introduction to Technology and law with focus on e-signature, encryption and third party service Yue Liu Feb.2008.

European Electronic Signature Standardization

European Signatures versus Global SignaturesRome, 7 April, 2003 EESSI open specifications and interoperability The state of the art in Italy Giovanni Manca.

Budapest May, 2001 Anne Lehouck European Commission, DG ENTERPRISE 1 ELECTRONIC SIGNATURE LEGAL FRAMEWORK & STANDARDISATION.

István Rényi Communication Authority, Hungary Panel 2: „ Development and market uptake of standards of the EESSI programme” Republic.

SMART GRID DEVICES SECURITY CERTIFICATION

European Union Agency for Network and Information Security Follow ENISA: ENISA and standards Sławomir Górniak European Union Agency.

The European Railway Agency in development

IDA Security Experts Workshop Olivier LIBON Vice President – GlobalSign November 2000.

8 Nob 06 / CEN/ISSS ETSI STF 305: Procedures for Handling Advanced Electronic Signatures on Digital Accounting CEN/ISSS Workshop.

Niall Curran E-Commerce Division Department of Public Enterprise

E-Signatures The Community framework on e-signatures (Directive 1999/93/EC) Dr Ioannis Iglezakis Visiting Lecturer University of Thessaloniki, Greece.

| 1 Guido de Wilt DG TREN D4 EUROPEAN POLICY REGARDING MICRO-CHP EUROPEAN COMMISSION.

Conformity Assessment and Accreditation Mike Peet Chief Executive Officer South African National Accreditation System.

N° 1 The European railway Agency: an engine for the integrated railway area EFRTC, Vilamoura on June 24 TH 2005 Olivier PIRON 24 June 2005.

World Class Standards CCIF New York - April Grids, Clouds and Service Infrastructures ETSI Strategy & New Initiatives.

Mapping standardization with IST research (Deliverable D18 on ‘reverse mapping’) COPRAS Annual Review 15 March 2006 Prof. Tatiana Kovacikova, on behalf.

Pilot project – Energy Trade Data Reporting Scheme 1 st Steering Committee Meeting Brussels, 5 October 2010.

Information Systems for Production and Operations Management CEN/ISSS Workshop Learning Technologies: Quality Standards for E-Learning Helsinki,

ENTERPRISE AND INDUSTRY DIRECTORATE GENERAL European Commission 1 PECAs David Eardley DG Enterprise and Industry European Commission Tel: 032 (2)

Riccardo Genghini - Ws E-Sign Chairman – IETF PKIX San Francisco March Electronic Signature infrastructure for Europe Riccardo Genghini Cen/Isss.

JRC - IRMM – 17/18 June 2008 – EAQC-WISE project workshop – Held1 The EAQC-WISE blueprint: Recommendations for a quality control system for chemical monitoring.

“The Quality Infrastructure in Lebanon” Export Norms, Quality Control and Competitiveness FUTURE PROGRAMME Prepared By Ali Berro Director of Quality Programme.

UNECE – SIDA “ SOUTH EAST EUROPE REGULATORY PROJECT” FIRST MEETING OF REGULATORS FROM SOUTH EAST EUROPEAN COUNTRIES PRESENTATIONFROM THE REPUBLIC OF MACEDONIA.

EESSI June 2000Slide 1 European Electronic Signature Standardization Hans Nilsson, iD2 Technologies, Sweden.

EU approaches to Standards and Conformity and Harmonisation Stefano Soro.

Deregulation to the Economy and removal of Administrative Barriers, Russian Federation EuropAid/114008/C/SV/RU Setting up of national accreditation system.

1 - DG ENV Brussels, 5 March 2003 Draft INSPIRE Legislative proposal The key issues 9th INSPIRE Expert Group Meeting Brussels.

Anca SANDRU-Counsellor Cristiana CHIRIAC- Counsellor Ministry of Economy and Commerce

MINISTRY OF ECONOMY AND TRADE ROMANIA International Seminar on Good Regulatory Practices and Regional Experience Geneva, November 2003.

ETSI TC ESI PRESENTATION TO CAB FORUM Iñigo Barreira /Arno FiedlerFebruary 2016 meeting, Scottsdale, AZ © ETSI All rights reserved.

Workshop on “EU Enlargement: Regulatory Convergence in Non-acceding Countries” Athens 7 – 8 November 2003 Regulatory Convergence and Technical Standards.

Harmonised use of accreditation for assessing the competence of various Conformity Assessment Bodies Dr Andreas Steinhorst, EA ERA workshop 13 April 2016,

DG Enterprise and Industry European Commission Standardisation Aspects of ICT and e-Business Antonio Conte Unit D4 - ICT for Competitiveness and Innovation.

Legal Metrology in Europe: Harmonising requirements trough directives and the cooperation of authorities trough WELMEC by Knut Lindløv Director Legal.

OASIS Juan Carlos Cruellas – UPC Stefan Drees - DSS-X co-chair Nick Pope – Thales eSecurity OASIS Digital Signature Services and ETSI standards Juan Carlos.

M O N T E N E G R O Negotiating Team for the Accession of Montenegro to the European Union Working Group for Chapter 10 – Information society and media.

OASIS Digital Signature Services and ETSI standards Juan Carlos Cruellas – UPC Stefan Drees - DSS-X co-chair Nick Pope – Thales.

INSPIRE and the role of Spatial Data Interest Communities (SDIC)

TRANSPORT SCIENCE: INNOVATIVE BUSINESS SOLUTIONS

66 items – 70% of circulated products

Dr. Stephan Finke Deutsche Akkreditierungsstelle GmbH

NAB/RB Training Workshop In Valenciennes, April 2016

Keith Dickerson Chairman, ICTSB

Session 2 European Regulatory Environment (just a part!)

Formats for long term signatures

European Regulatory Environment (just a part!)

Presentation transcript:

EESSI Overview - 1August 2002 EESSI European Electronic Signature Standardisation Initiative Implementing Electronic Signature

EESSI Overview - 2August 2002 Electronic Signature Directive is providing a common EU framework for electronic signatures (1993/93/EC) Industry, with the assistance of European Standards Bodies, to provide an agreed framework for an open, market-oriented implementation of the Directive EESSI put in place to co-ordinate this task (ICT-SB Dec. 98) EESSI Charter

EESSI Overview - 3August 2002 EESSI Objectives Analyse needs for standards in support of minimum essential legal requirements as stated by the Directive Assess available standards and current initiatives at national, European and international levels Set up and implement a Programme of Work, built on international co-operation

EESSI Overview - 4August 2002 Directive highlights Legal recognition of electronic signatures Technology neutral Free flow of Products and Services Excludes prior authorisation or licensing scheme for Certification Service Providers Mandates supervision scheme for CSPs Calls for monitoring of Voluntary Accreditation Scheme

EESSI Overview - 5August 2002 Annexes of the Directive Annex I: Requirements for qualified certificates Annex II: Requirements for certification-service-providers issuing qualified certificates Annex III: Requirements for secure signature-creation devices Annex IV: Recommendations for secure signature verification

EESSI Overview - 6August 2002 Proposed Classes of Electronic Signatures

EESSI Overview - 7August 2002 Framework for implementation Security/Quality level Signature Creation Device Certificate Policy Electronic Signature Syntax Trustworthy System Signature with long validity Qualified Electronic Signature Signature for limited value transactions

EESSI Overview - 8August 2002 EESSI Organisation Steering Committee Standard Bodies and Consensus Bodies involved in standardisation: CEN, ETSI, ISO, ECBS, EEMA, EURESCOM Market Players: Bull, Globalsign, iD2, BT, ACE Public Authorities and Consumers Rep’s: BSI (D), PRC (FIN), AIPA (I), DSTI (F), ECP.NL (NL), ANEC Commission as observer: DG Enterprise, DG Information Society, DG Internal Market Expertise activity as required

EESSI Overview - 9August 2002 EESSI Structure EESSI/SG European Telecommunications Standards Institute Industry and business, assisted by European standard bodies

EESSI Overview - 10August 2002 Base Line for Action Capitalise on European & International activities ETSI TC SEC, ISO/JTC1/SC27, IETF-PKIX, W3C, EURESCOM EEMA/ECAF, ICC, ABA, ILPF UNCITRAL Model of Law, AGB European Projects: IST and ISIS programmes National activities in Germany (BSI, INDI), Nordic Countries (SEIS, SAT, FDS), Italy (AIPA), Austria, Spain (FESTE), Netherlands (TTP.NL), UK (tScheme),...

EESSI Overview - 11August 2002 EESSI Programme Implementation Standardization work programme Phase 1 (work programme definition) completed 3Q1999 Phase 2 (essential requirements for the Directive) completed 2Q2002 Phase 3 (requirements for different classes of electronic signature) to be completed by the end of 2002 Phase 4 (additional requirements) to be performed in

EESSI Overview - 12August 2002 EESSI Programme Implementation Use of the existing standardization technical groups CEN/ISSS E-SIGN Workshop – 30+ participants, funded Expert Teams – Deliverables: CEN Workshop Agreements (CWA) ETSI ESI Technical Committee – 20+ Participants, funded Specialist Task Force – Deliverables: ETSI Technical Specifications (ETSI TS) and ETSI Technical Reports (ETSI TR) Creation of the ALGO group Expert group providing guidance on cryptographic algorithms and parameters in EESSI standards

EESSI Overview - 13August 2002 Roadmap of Phase 2 EESSI Standards Signature creation process & environmen t (A.III) Signature valida-tion process and environment - A.IV Signature format and syntax (Advanced ES) Creation device A.III Requirements for CSPs - A.II Trustworthy system- A.II.f Certification Service Provider User/signer Relying party/verifier CEN E-SIGN ETSI ESI Qualified certificate - A.I Time Stamp

EESSI Overview - 14August 2002 Phase 2 Deliverables Target: Directive Annexes I-IV requirements and interoperability Published in 4Q2000: Policies for Certification Service Providers, ETSI TS (updated 2Q2002) Profile for Qualified Certificates, ETSI TS , (updated 2Q2001) Electronic Signature Formats, ETSI TS , (also published as 2 IETF RFC) (updated 1Q2002)

EESSI Overview - 15August 2002 Published in 3Q2001: Security Requirements for SSCDs (EAL4), CWA Signature Creation Process and Environment, CWA Signature Verification Process and Environment, CWA Conformity Assessment Guidance, CWA – Parts 1-2 Time Stamping Profile, ETSI TS (based on IETF RFC) (updated 1Q2002) Deliverables…..

EESSI Overview - 16August 2002 Published in 4Q2001: Security Requirements for Trustworthy Systems, CWA Conformity Assessment Guidance, CWA – Parts 3-5 Published in 1Q2002: Cryptographic Modules for CSP (MCSO-PP), CWA Security Requirements for SSCDs (EAL4+), CWA Deliverables...

EESSI Overview - 17August 2002 Roadmap of Phase 3 Activities (2001) Signature creation process and environment Signature validation process and environment Signature format * and syntax in XML Signature Creation device * Alternative Requirements for CSPs * Trustworthy Systems * Certification Service Provider User/Signer Relying Party/Verifier Qualified certificate Time Stamping Format&Protocol Time Stamping Authority Requirements for TSAs * * Phase 3 CA status and validation by RP *

EESSI Overview - 18August 2002 Published in 1Q2002: Guidelines for the implementation of SSCDs, CWA XML Advanced Electronic Signatures, ETSI TS International harmonization of Policy Requirements for CAs issuing Certificates, ETSI TR Signature Policies Report, ETSI TR Phase 3 Deliverables

EESSI Overview - 19August 2002 Published in 2Q2002: Policy Requirements for Time Stamping Authorities, ETSI TS Provision of harmonized Trust Service Provider status information, ETSI TR XML Format for Signature Policies, ETSI TR Policy Requirements for Certification authorities issuing Public Key Certificates, ETSI TS Deliverables…..

EESSI Overview - 20August 2002 Ongoing work: Guide on the Use of Electronic Signatures, draft CWA Cryptographic Module for CSP Key Generation Services, (CMCKG-PP), draft CWA Application Interface for Smart cards used as SSCDs, draft CWA Signature Policy for Extended Business Model draft ETSI TR Maintenance of ETSI Standards from EESSI phase 2 and 3, draft ETSI TR International harmonization and globalization activities, draft ETSI TR Publication is foreseen in the second half of 2002 Deliverables…..

EESSI Overview - 21August 2002 New activities are planned in on the following subjects: Maintenance of the published specifications Harmonised provision of TSP status information Internationalisation of Certificate Policies Technical Standards for Signature Policies Policy Requirements for CSPs issuing Attribute Certificates Technical properties of Advanced Electronic Signatures Interoperability requirements of smart Cards used as SSCDs Conformity assessment of SSCDs supporting non Qualified Electronic Signatures Provision of Certificates status information to Relying Parties Phase 4 Activities

EESSI Overview - 22August 2002 The evaluation of the EESSI specifications of the EESSI phase 2 deliverables, as answering the requirements set by the Directive has been performed by the Commission The recognition as Generally Recognized Standards under the Directive of the EESSI phase 2 deliverables answering the requirements set in the annexes, is proposed in a draft Decision prepared by the Commission. The proposal was discussed in the meeting of the Directive Member States committee in July 2002, and generally supported The publication in the EU OJ of the references to the deliverables produced by EESSI, as providing a proper technical framework for the implementation of the Directive should follow. It will give a positive signal to the market players for the development of products and services complying with the EESSI specifications European perspectives

EESSI Overview - 23August 2002 International Perspectives Recognition of conformance to SSCD requirements CC MRA: Arrangement on the Mutual Recognition of CC Certificates in the Field of IT Security Similar ambition with Trustworthy Systems Cross-recognition of “certification policy”: Assessment of policy mapping between US Federal PKI and ETSI-EESSI requirements Harmonization of interoperability standards : Use of existing standards (ISO, IETF), liaisons underdevelopment (W3C, WAP Forum, EDI/XML) andsubmissions to IETF

EESSI Overview - 24August More useful references:  ETSI: Sign up from Web-site to open El Sign mailing list  CEN: EESSI on the Web