Some initiatives of the Belgian government in order to stimulate E-government Frank Robben General manager Crossroads Bank for Social Security Sint-Pieterssteenweg.

Slides:



Advertisements
Similar presentations
© fedict All rights reserved Legal aspects Belgian electronic identity card Samoera Jacobs – November 2008.
Advertisements

WTO, Trade and Environment Division
Introduction to basic principles of Regulation (EC) 45/2001 Sophie Louveaux María Verónica Pérez Asinari.
The Austrian Governmental eDelivery System Technical Aspects Ankara, March 17th, 2015 Christian Maierhofer, EGIZ The E-Government Innovation Center is.
Policy interoperability in electronic signatures Andreas Mitrakas EESSI International event, Rome, 7 April 2003.
© Southampton City Council Sean Dawtry – Southampton City Council The Southampton Pathfinder for Smart Cards in public services.
FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.
Workshop on registered electronic mail policies and implementations (ETT 57074) Ankara, –
Data-Sharing and Governance Consultation ANALYSIS OF RESPONSES.
Implementation of Electronic Signature Law Kęstutis Andrijauskas Information Society Development Committee under the Government of the Republic.
Respecting Privacy in Global Networks/ Guernsey, Wednesday 11 th April, Paula Ortiz López Spanish Data Protection Agency.
1 Review of the Electronic Transactions Ordinance Information Infrastructure Advisory Committee 9 April 2002.
Legal Issues on PKI & qualified electronic certificates. THIBAULT VERBIEST Attorney-at-law at the Brussels and Paris Bar Professor at the Universities.
DATA PROTECTION and Research University Research Ethics Committee – David Cauchi Office of the Data Protection Commissioner.
Information security An introduction to Technology and law with focus on e-signature, encryption and third party service Yue Liu Feb.2008.
Crossroads Bank for Social Security & eHealth platform How federal institutions support Belgian social and health care sector.
E-government in the Belgian social sector coordinated by the Crossroads Bank for Social Security Frank Robben General manager Crossroads Bank for Social.
DIGITAL SIGNATURE AND ELECTRONIC DOCUMENTS IN ITALY Prof. Pierluigi Ridolfi AIPA Authority for Information Technology in the Public Administration V. Solferino,
Conditions for an effective and efficient E-government Frank Robben General manager Crossroads Bank for Social Security Strategic advisor Federal Public.
Budapest May, 2001 Anne Lehouck European Commission, DG ENTERPRISE 1 ELECTRONIC SIGNATURE LEGAL FRAMEWORK & STANDARDISATION.
The Crossroads Bank for Social Security, a model for the health care sector ? Frank Robben General manager Crossroads Bank for Social Security Sint-Pieterssteenweg.
E-Government Security and necessary Infrastructures Dimitrios Lekkas Dept. of Systems and Products Design Engineering University of the Aegean
1. 2 ECRF survey - Electronic signature Mr Yves Gonner Luxembourg, June 12, 2009.
© Julia Wilk (FHÖV NRW) 1 Digital Signatures. © Julia Wilk (FHÖV NRW)2 Structure 1. Introduction 2. Basics 3. Elements of digital signatures 4. Realisation.
Ministry of Transport, Information Technology and Communications Technological base: Interoperability Tsvetanka Kirilova Ministry of TITC Bulgaria.
National Smartcard Project Work Package 8 – Security Issues Report.
European Electronic Identity Practices Country Update of Austria Peter F Brown Office of the CIO, Austrian Federal Chancellery Chair, CEN eGov Focus Group.
Belgian proposal of an organization model for an electronic identity card Frank Robben General Manager Crossroads Bank for Social Security Sint-Pieterssteenweg.
1st MODINIS workshop Identity management in eGovernment Frank Robben General manager Crossroads Bank for Social Security Strategic advisor Federal Public.
"certification service provider" Electronic Signatures
E-Signatures The Community framework on e-signatures (Directive 1999/93/EC) Dr Ioannis Iglezakis Visiting Lecturer University of Thessaloniki, Greece.
© OECD A joint initiative of the OECD and the European Union, principally financed by the EU Σ SIGMA E-procurement in the European Union Directives on.
Integrated Electronic User and Access Management in the Belgian Public, Social and Health Care Sector Frank Robben General manager Crossroads Bank for.
Österreich 2006 Austria 2006 Autriche 2006 Präsidentschaft der Europäischen Union Presidency of the European Union Présidence de L’Union européenne ★★★★★★
How can I trust the rest of Europe ? Requirements and a possible organisation with regard to epSOS and eHealth Frank Robben General manager eHealth platform.
1 Security-related internal market measures on explosives FEEM AGM, Brussels, 5 June 2013 Julian Foley Desk Officer – Civil explosives and pyrotechnic.
Health Insurance Portability and Accountability Act of 1996 (HIPAA) Proposed Rule: Security and Electronic Signature Standards.
Overview of the EU Food Safety Requirements
EGovernment Services in Poland Today & in The Future Dariusz Bogucki Ph.D, IDA II, National Co-ordinator National Registers Department, Ministry of Internal.
Electronic information exchange within the Belgian social sector coordinated by the Crossroads Bank for Social Security Frank Robben General manager Crossroads.
New Implementing Regulation DG Enterprise on the Administrative Requirements for the approval and market surveillance of 2- or 3-wheel vehicles and quadricycles.
Implementation of EU Electronic Communication Directives.
Electronic identity management for eGovernment Conceptual framework and objectives Frank Robben General manager Crossroads Bank for Social Security Strategic.
1 TRANSIT AS A TRANSNATIONAL EU BUSINESS CARD THE BASIC PRINCIPLES OF EU TRANSIT SINCE MORE THAN TWO DECADES EU TRANSIT AT THE ERA OF COMPUTERISATION EU.
Some identification needs related to workers’ mobility eGovernment – eIDM ad hoc group meeting 4-5 May 2006 CBSS Crossroads Bank for Social Security Frank.
1 European eGovernment Awards 2007 European eGovernment Awards 2007 Workshop for Finalists July, Brussels LIMOSA Belgium Reference project number.
EESSI June 2000Slide 1 European Electronic Signature Standardization Hans Nilsson, iD2 Technologies, Sweden.
TOURISM BILL “ THE CONTENTS ” Friday; 17 May 2013.
The pillars of E-government Frank Robben General manager Crossroads Bank for Social Security Strategic advisor Federal Public Service for ICT Sint-Pieterssteenweg.
Data protection as an integral part of OOP implementations: The Austrian approach Peter Kustor.
Data protection and European citizens’ initiatives
PPP Legal & Regulatory Framework. PPP Policy In July 2008 GOK approved the PPP policy directive through which: PPPs are identified as a method for investing.
National Information Communication Technologies Strategy Vasif Khalafov “National strategy” working group - Web -
Back office integration for better E-government services Crossroads Bank for Social Security Frank Robben General manager Crossroads Bank for Social Security.
The EU Directive on "Services in the internal market", COM(2004) 2 final/3 Agnese Knabe Project coordinator European Public Health Alliance Civic Alliance.
Evaluation of restrictions: art. 15 and art TAIEX Seminar on the EU Service Directive, 3 May 2007 Carlos Almaraz.
A model for electronic data exchange in the public sector Kruispuntbank van de Sociale Zekerheid Banque Carrefour de la Sécurité sociale KSZ-BCSS Frank.
Harmonised use of accreditation for assessing the competence of various Conformity Assessment Bodies Dr Andreas Steinhorst, EA ERA workshop 13 April 2016,
Commission Staff Working Document Free Movement of Workers in the Public Sector 18 January 2011 Ursula Scheuer European Commission DG Employment, Social.
Macedonia-Skopje, 13. May 2011 Security of data and data protection in relation to visa issuance Tanja Slak.
Efficient and secure transborder exchange of patient data
TeleTrusT Initiatives for PKI Solutions
Athina Antoniou and Lilian Mitrou
New challenges for archives in Iceland
General Data Protection Regulation
Proposal for a Regulation on medical devices and Proposal for a Regulation on in vitro diagnostic medical devices Key Provisions and GIRP Assessment.
Legal Framework for Civil Registration, Vital Statistics
The activity of Art. 29. Working Party György Halmos
Dashboard eHealth services: actual mockup
Free movement of persons
Presentation transcript:

Some initiatives of the Belgian government in order to stimulate E-government Frank Robben General manager Crossroads Bank for Social Security Sint-Pieterssteenweg Brussel Crossroads Bank for Social Security

2 18/06/200 1 Crossroads Bank for Social Security Plan of the exposure n model implemented for data exchange between back offices n proposal for an electronic identity card n proposal for an organization model on PKI-infrastructure

3 18/06/200 1 Crossroads Bank for Social Security Definition of the problem n in all countries, many administrations are active in all the fields of public affairs : e.g. tax law, social security, transport, internal affairs n information is one of the main production factors for each of those institutions n the information needed by those many institutions is often similar -identification data -data concerning e.g. the professional, social, fiscal, familial status -periodical data related to working periods and wages -data concerning certain events, e.g. the occurence of a social risk

4 18/06/200 1 Crossroads Bank for Social Security Definition of the problem n lack of coordination in the area of information management leads to -administrative overloading of the citizens, their employers, the municipality of residence,... -waste of efficiency and time within the institutions -suboptimal support of the policy -higher possibilities of fraud

5 18/06/200 1 Crossroads Bank for Social Security Possible solutions n central data management (big brother concept) -not frequently implemented privacy protection technical feasibility threat for the autonomy of the institutions n distributed data management (network concept) -decentralised but unique data gathering -decentralised and distributed data storage, with functional task-sharing between public institutions -data exchange via a network

6 18/06/200 1 Crossroads Bank for Social Security A model for data exchange between back offices n structure of the network n unique identification key n register of references n basic organisation principles -data collection -data storage -data exchange n methods of electronic data exchange

sectorial organising unit Central organising unit external database KSZ-BCSS sectorial organising unit external database external network Crossroads Bank for Social Security

8 18/06/200 1 Crossroads Bank for Social Security Unique identification key n natural persons and enterprises/establishments n unique n invariable n mentioned on an official document delivered to the holder n used by -every public institution -every person declaring information to public institutions

9 18/06/200 1 Crossroads Bank for Social Security Register of references n 3 functions: -preventive access control -routing of information -automatic transmission of information n structure: -register of persons: what persons in what capacities have personal files in what public institutions for what periods -data availability register: what data are available in what public institutions for what types of files -access authorization register: what data may be transmitted to what institutions for what types of files

10 18/06/200 1 Crossroads Bank for Social Security Organisation principles of the network n obligatory participation of all public institutions n every participant to the network can be supplier or addressee of data n coordination and management of the network by the central organising unit -normalisation -stimulation -project management

11 18/06/200 1 Crossroads Bank for Social Security Organisation principles of the network n data collection -previous consultation of the network obligatory n data storage -decentralised -distributed -functional task-sharing between public institutions -valorization of external databases

12 18/06/200 1 Crossroads Bank for Social Security Organisation principles of the network n data exchange -can be initiated by the institution that needs the information by the institution that disposes of new information by the institution that manages the network -basically via the central organising unit -previous authorization by an independent Control Committee -systematical logging of all exchanges

13 18/06/200 1 Crossroads Bank for Social Security Data protecting effects network concept implies n no central data storage n data exchange via the central organising unit => precautionary control on the legitimacy of data exchange n previous authorization of data exchange by an independent Control Committee

14 18/06/200 1 Crossroads Bank for Social Security Advantages of data sharing (1/2) n improvement of the service offered to the citizen/ enterprise -faster processing of files -more accurate processing of files -reduction of the administrative charge -more guarantees on data protection n advantageous effects for public sector -control of the administrative costs -more efficient fraud detection -more efficient policy support -more flexibility in answering to changing needs

15 18/06/200 1 Crossroads Bank for Social Security Advantages of data sharing (2/2) n more efficient working of the administrations -prevention of double work by task-sharing -optimalisation of task execution by computerisation -occasion for a self-critical attitude regarding internal organisation -basis for efficiency and quality assurance

16 18/06/200 1 Crossroads Bank for Social Security Smart cards n possible functions -identification of the holder natural person enterprise - establishment -authentication of the holder natural person enterprise - establishment -generation of an electronic signature -proof of qualities, characteristics, access rights, … -transport of data -transport of programs

17 18/06/200 1 Crossroads Bank for Social Security Electronic identity card n working proposal -storage of identity data -possibly storage of insurance status in the health care sector -possibility of storage of private key for generation of electronic signature -possibility of storage of private key(s) for proof of qualities -“rentable” place for storage of other data -no biometrics -no data concerning driving licence

18 18/06/200 1 Crossroads Bank for Social Security Model on PKI-infrastructure n legal framework -European Directive 1999/93/EC -adaptation art Civil Code -bill concerning functioning of the certification-service- providers n proposal for an organization model on PKI- infrastructure, approved by the Council of the ministers of 22 November 2000

19 18/06/200 1 Crossroads Bank for Social Security European Directive n Member States shall ensure that “qualified” electronic signatures -have the same value as a handwritten signature -are admissible as evidence in legal proceedings n “qualified” means -based on a qualified certificate, t. means a certificate which meets the requirements laid down in Annex I of the Directive -that is provided by a certification-service-provider who fulfils the requirements laid down in Annex II of the Directive -and that is created by a secure device which meets the requirements laid down in Annex III of the Directive

20 18/06/200 1 Crossroads Bank for Social Security European Directive n an electronic signature can not be denied legal consequences solely on the grounds that it is -not based upon a qualified certificate -not based upon a certificate issued by an accredited certification- service-provider -not created by a secure device n Member States may make the use of electronic signatures in the public sector subject to possible additional requirements which -are related to the specific characteristics of the application concerned -are objective, transparent, proportionate and non-disciminatory -don’t constitute an obstacle to cross-border services

21 18/06/200 1 Crossroads Bank for Social Security European Directive n each Member State shall ensure to -the certification-service-providers which are established on its territory -and issue qualified certificates -to the public for the establishment -of an appropriate system of supervision -of a liability scheme n Member States shall not make the provision of certification services subject to a prior authorisation

22 18/06/200 1 Crossroads Bank for Social Security European Directive n Member States may introduce voluntary accreditation schemes -aiming at enhanced levels of certification-service provision -based on objective, transparent, proportionate and non- discriminatory conditions -without limiting the number of accredited certification-service- providers

23 18/06/200 1 Crossroads Bank for Social Security Adaption art Civil code n Addition paragraph 2 “For the purpose of this article can meet the requirement of a signature, a set of electronic data that can be attributed to a particular person and that proves that the content of the act has been maintained”.

24 18/06/200 1 Crossroads Bank for Social Security Bill functioning certification-service-providers n Implementation European Directive into Belgian law -provision that qualified electronic signature meets the requirements of art. 1322, p. 2 Civil code -scheme of minimal missions (issuance, management, revocation of certificates) and liability of certification-service- providers -rules at suspension of activities by certification-service- provider -voluntary accreditation scheme -rules regarding liability of certificate holder -supervision and sanctions -possibility to make the use of electronic signatures in the public sector subject to additional requirements

25 18/06/200 1 Crossroads Bank for Social Security Organization model: purposes n promote rapid availability of identity certificates n guarantee quality of identity certificates n promote multifunctional and free use of identity certificates n guarantee open market of independent evolving certification authorities n guarantee interoperability between certification authorities n guarantee conformity with evolving technical standards n conformity with the European Directive

26 18/06/200 1 Crossroads Bank for Social Security Proposal organization model: notions n identity certificate: proof of identity n attribute certificate: proof of characteristic (for example: function, quality, mandate) n function of registration authority (RA): ‘counter’ where the certificate is requested and that verifies if communicated identity or characteristic is correct; if so, she approves the request and reports this to the certification authority n function of certification authority (CA): produces on the base of the information from the RA a certificate which is linked with a pair of keys and which indicates what the pair of keys further proves, and manages that certificate

27 18/06/200 1 Crossroads Bank for Social Security Proposal organization model: scope n identity certificates  attribute certificates n with regard to natural persons  legal persons or organizations n used for the generation of electronic signature into the scope of ICT-application of the government which require an electronic signature  in the scope of E-commerce, E-banking, … n no objection to (elements of) the organization model being used voluntarily beyond the specified scope

28 18/06/200 1 Crossroads Bank for Social Security Proposal organization model: additional requirements n possibility to appeal to municipality as registration authority for identity certificates n possibility of separate use of identity and attribute certificates n private key associated to identity certificate is saved on a secure processorchip card with at least pincode protection n free use and verification of identity certificates n quality and operability standards

29 18/06/200 1 Crossroads Bank for Social Security Proposal of organization model: working-out n government publishes additional requirements n CA prove that they meet the additional requirements n at call for electronic identity card, the holder can have on this card a private key that is associated to an identity certificate -for which the municipal has served as registration authority -that is issued by a CA meeting the additional requirements and chosen by the holder n electronic identity card contains necessary space to store other private keys associated to attribute certificates that holder can obtain at CA of his choice

30 18/06/200 1 Crossroads Bank for Social Security n private key associated to identity certificate on electronic identity card can be used to generate electronic signature into the scope of ICT-applications of the government which require an electronic signature Proposal of organization model: working-out

31 18/06/200 1 Crossroads Bank for Social Security Proposal of organization model: scheme CM/CP/CI (7) (8)(9) Matti ERA Face to face identification De Gemeenten (1) RCRC (3) Bull Meikäläinen PIN & PUK1 (10b) (10a1) (11) (13) - (10a2) (2), (12) VRK (4) CA (5) (6) -code