CDC Confiance Electronique Européenne Presentation of FAST project CDC Confiance Electronique Européenne Bertrand AIT-TOUATI – Architecture & new services
Market reasons for the emergence of FAST In certain types of information flow, digitalization has shown a need for: Confidentiality of exchanges Non-tempering of information Authentication of sender and receiver Archiving of exchange in order to be able to use it as a evidence There are several ways of achieving these needs Ex: creation of industry specific EDI systems or through agreement on using specific PKI and certificate processes However, the most user friendly and legally sound way is through the use of a trust infrastructure operated by specialized companies “ADELE” national plan for eGovernment was created as an answer to these issues Plan presented by the French Government in 2004 €1,8Bn budget for the period Composed of 140 measures intended to modernize public services « Trust Infrastructure enabling the digitalization of exchanges between local and central administrations » ADELE 74
What is FAST? FAST is a service that allows secured electronic information transfer with legal value FAST is a combination of: Technological infrastructure Services around the usage of the infrastructure Security and confidentiality warranties Legal follow-up
FAST services FAST offers customizable services Trust services -Administration of certificates -Rights management and authentication -Creation of evidence Infrastructure services -Identity validation -Time stamping -Security -Encryption -Archiving Follow-up services -Consulting on digitalization issues -Call center and support -Training Digitalization services -Portals -Custom made tools that integrate existing client softwares
The FAST platform in public sector in France Legality check between decentralized public bodies and government Fully dematerialized public accounting Birth and death certificates Dematerialization of French social welfare aid system Many other experiments Nowadays, FAST coordinates a multiplicity of users and applications Ministry Interior Ministry Finance INSEE Social org FAS T Local public body CCAS Hospitals Mixt Syndicates Treasuries Regional bodies
Legality check FAST strategy in France Public accounting Health Legal archiving Welfare Convocation of elected people Education Birth and death certificates Urbanism E-procurement FAST Objective: offer a multi-exchanges platform to public sector
FAST value added: be an trust operator FAST allows customers to capitalize on existing platforms thus: Capitalizing on acquired experience Diminishing complexity costs Sharing of costs Follow-up of technological changes Follow-up of legal changes/ constraints Neutrality between parties Management and/or help for deployment Training on site or remote Installation Call center/ helpline of 1st or 2 nd level
FAST value added: be an aggregator Allows users to exchange information of legal value with multiple and heterogeneous points sender receiver FAST Certificates 2 2 Access tools (portals / API) 3 3 Exchange norm 4 4 Trust level 5 5 Installation & Support 5 5
Example of operations done by the transactional platform of FAST a) Preparation of outbound message b) Electronic signature c) Data encryption (optional) a) Preparation of outbound message b) Electronic signature c) Data encryption (optional) Transmission Origination check (authentication) Origination check (authentication) Global archiving Transmission to authenticated receivers Decryption of the data Transmission to authenticated receivers Decryption of the data Validation of transmission (certificate / signature) Time stamping FAST creates evidence at each transaction step Sender FAST Receiver
Electronic evidence Constitution of electronic evidence 1.Transaction 2.Time stamping Obtain a time stamping token either from FAST or from postal services Integrate the time stamp 3.Validation Certificates validation Technical validation of certificate Access to control lists Validation of electronic signatures Cryptographic check Validation of authorization 4.Sealing Archiving index Adding of validation data FAST countersignature ArchivingIndex Controllists Transactional Envelop Electronic Signature of signing person Technical signature of admin. responsible Technical signature of moral entity Certificates for users and moral entity TechnicalSeal
The FAST project has been undertaken by Caisse des Dépots* and is now a recognized trust infrastructure in France FAST is a coherent extension of CDC historical activities Financial depositor of legal professions Long term partner of public bodies Two times awarded at the European level FAST is the first trust platform to be officially recognized by French authorities for legal applications uses FAST services have already been successfully tested for several years by several hundreds of French public bodies FAST is being deployed in the UK and in Spain: Project E-Ten *Caisse des Dépôts (CDC) is the French Bank of public bodies Date de l’homologation : 9 mars 2006 Date de l’homologation : 9 mars er Tiers de Télétransmission homologué par le Ministère de l’Intérieur