ITPD session on Authentication Wednesday morning April 9 2014 Geneva 23 rd Forum.

Slides:

Advertisements

Similar presentations

UNCITRAL United Nations Commission on International Trade Law REGIONAL CONFERENCE ON ENHANCING INTEGRITY IN PUBLIC PROCUREMENT The role of new technologies.

Advertisements

© Copyright International Telecommunication Union (ITU). All Rights Reserved page - 1 Alexander NTOKO Project Manager, ITU Electronic Commerce.

Security standardization for Health Informatics ITU-T eHealth conference Geneva Dr Gunnar O. Klein convenor of ISO/TC 215/WG 4 Security Karolinska.

Least Developed Countries: IP Needs Assessment: WIPO, WTO and the LDC needs assessment process under TRIPS WIPO Conference on Building Partnerships for.

UNITED NATIONS COMMISION ON INTERNATIONAL TRADE LAW Enhancing legal certainty for electronic signatures and other authentication methods José Angelo Estrella.

AFACT eCOO WG interim meeting - Conference Call 1st March of 2011 Mahmood Zargar eCOO Experiences and Standards.

What is GARP®? GARP® is an Acronym for Generally Accepted Recordkeeping Principles ARMA understands that records must be.

Identification, Authentication and Authorisation Issues in a way to Single Window (SW) Interoperability: An Australian Empirical Study Ms. Hemali Shah.

Towards An ‘Electronic Trading Platform’ March 18, 2006 Pakistan Electronic Trading (PAKET) Network Mohammed Imani Executive Director Sidat Hyder Morshed.

REPUBLIC OF ALBANIA PUBLIC PROCUREMENT AGENCY Introduction to the Albanian Public Procurement System Central Asia Regional Public Procurement.

The ABA’s Digital Signature Guidelines: An Imperfect Solution to Digital Signatures on the Internet By: Edward D. Kania.

PAPERLESS BUSINESS in GEORGIAN FINANCIAL SECTOR NANA ENUKIDZE - Advisor to the Governor.

Information security An introduction to Technology and law with focus on e-signature, encryption and third party service Yue Liu Feb.2008.

6/1/20151 Digital Signature and Public Key Infrastructure Course:COSC Instructor:Professor Anvari Student ID: Name:Xin Wen Date:11/25/00.

E-Government Security and necessary Infrastructures Dimitrios Lekkas Dept. of Systems and Products Design Engineering University of the Aegean

Trends and Developments in Single Window UNECE UN/CEFACT New Delhi, 29 October

UN/CEFACT recent activity Briefing about progress in 22nd Forum Mitsuru Ishigaki UN/CEFACT Rapporteur for Asia and the Pacific ( AFACT Plenary 2013 )

U NITED N ATIONS C ENTRE F OR T RADE F ACILITATION A ND E LECTRONIC B USINESS United Nations Economic Commission for Europe UN/CEFACT The UN/CEFACT Vision.

1 Brief Overview of Selective Legal and Regulatory Issues in Electronic Commerce United Nations Conference on Trade and Development Geneva, 14 June 2001.

UN Economic Commission for Europe 23rd UN/CEFACT FORUM 7-11 April rd UN/CEFACT FORUM – Geneva Tahseen A. Khan Project Proposal : Trusted Third Party.

RPS WG Update March 2015 Open Stakeholder Session Nancy Shadeed Health Canada.

UNITED NATIONS COMMISSION ON INTERNATIONAL TRADE LAW UNCITRAL Model Law on Electronic Commerce Renaud Sorieul Senior legal Officer UNCITRAL.

Introduction to ebXML Mike Rawlins ebXML Requirements Team Project Leader.

Dr. Diganta Biswas School of Law Christ University, Bangalore.

National Smartcard Project Work Package 8 – Security Issues Report.

LIBERIA BETTER BUSINESS FORUM (LBBF) Presented by W. Bako Freeman Program Coordinator - LBBF.

- 1 UNCITRAL Colloquium on Electronic Commerce Legal issues of m-commerce with regard to the principles of technological neutrality and functional equivalence.

Facilitating Cross Border Trade and Commerce through Mutual Recognition of Digital Signatures/Certifying Authorities Controller of Certifying Authorities(CCA)

Exchange of digitally signed SPSCertificate messages Overview of prototype of digital signature applied to SPSCertificate message between national systems.

Proposal for a Revised Technical Framework for UN/CEFACT 1.

1 Status Survey for Training and Consulting Funding issues For HoD whose country/economy wants to make request to the AFACT Secretariat for training/consulting.

European Commission Labour Law A new framework for European Works Councils Evelyne Pichot European Commission Berlin, October 2010.

Selected problems of the e-signature law and of its implementation Doc. RNDr. Daniel Olejár, CSc. Department of computer science Comenius University, Bratislava.

Alexander Šafařík-Pštrosz Facilitation of International Trade Procedures (FITPRO – CZ) - Chairman Institute for Testing and Certification,

The new EU legal framework for e-procurement: Expectations and Prospects Conference ‘E-procurement and Public Spending: Status, Opportunities and Prospects’

EGov Interop'05 - Feb 23-24, Geneva (Switzerland) OBSERVATORY ON INTEROPERABLE eGOVERNMENT SERVICES eGov-Interop'05 Annual Conference February.

UNCITRAL United Nations Commission on International Trade Law EIGHTH REGIONAL PUBLIC PROCUREMENT FORUM TIRANA, ALBANIA, MAY , 2012 E-procurement:

UNIVERSITY OF MARIBOR FACULTY OF ORGANIZATIONAL SCIENCES CATALOGUE AND TYPOLOGY OF DOCUMENTS IN E-BUSINESS IN PUBLIC ADMINISTRATION Student: Maruška Damjan.

Transboundary Trust Space September 19, 2012 Development trends of legal acts in forming valid transboundary electronic interaction Alexander Sazonov Regional.

Standards in the world of E-business Harm Jan van Burg Ministry of Finance The Netherlands UN/CEFACT Vice Chair for international cooperation.

UN/CEFACT ORGANISATION 04/07/2006F. De Vos Freddy De Vos, Chair of UN/CEFACT TBG1 (Supply chain and procurement) Eindhoven, 04 July (Eindhoven/de.

Proposal for a Revised Technical Framework for UN/CEFACT eProcurement impact 1.

UN CEFACT Single Window Recommendation Simplifying International Trade Gordon Cragge Chair – International Trade Procedures Working Group (TBG 15 of UN.

European Development Fund (EDF)

1 Enabling environments for technology transfer under the UNFCCC Daniele Violetti Programme Officer, Technology Climate Change Secretariat (UNFCCC) UNFCCC.

Transboundary Trust Space February 16, 2012 Ensuring trust in information exchange – proposal and approaches from Russia and CIS-states (RCC states) National.

Legal Information on the Web - can we trust the official version? Jules Winterton Institute of Advanced Legal Studies, University of London International.

19 th UN/CEFACT FORUM Closing Meeting Methodology & Technology PDA Palais des Nations Geneva, Switzerland – 16 April 2011.

UN/CEFACT UNECEUNECE 3 rd Executive Forum on Trade Facilitation Paperless Trade in International Supply Chains: Enhancing Efficiency and Security Geneva,

Discussion - HITSC / HITPC Joint Meeting Transport & Security Standards Workgroup October 22, 2014.

Single Window Interoperability Recommendation No. 36 SOURCE:Recommendation 36 project team ACTION:Preparation for ODP Step 3 Internal review STATUS: First.

1 Item 2.1.b of the agenda IT Governance in the ESS and related issues Renewal of mandates STNE Adam WROŃSKI Eurostat, Unit B5.

UN/CEFACT recent activity Briefing about progress in 22nd Forum Mitsuru Ishigaki UN/CEFACT Rapporteur for Asia and the Pacific ( AFACT Plenary 2013 )

UN Economic Commission for Europe 21 st UN/CEFACT FORUM April 2013 PALAIS DES NATIONS GENEVA.

BEA position on W3C ‘Web Services’ Standards Jags Ramnarayan 11th April 2001.

Johannes S. Schnitzer, EBRD Consultant 27 May 2015, Kiev, Ukraine Status of Ukraine’s accession to the WTO GPA PUBLIC PROCUREMENT REFORM IN UKRAINE: REVIEW.

19-20 October 2010 IT Directors’ Group meeting 1 Item 6 of the agenda ISA programme Pascal JACQUES Unit B2 - Methodology/Research Local Informatics Security.

© 2007 Her Majesty the Queen in Right of Canada (Canadian Food Inspection Agency), all rights reserved. Use without permission is prohibited. Summary of.

UNCITRAL United Nations Commission on International Trade Law VIII CONFERENCIA ANUAL DE COMPRAS GUBERNAMENTALES EN LAS AMÉRICAS Panama City, Panama

23rd UN/CEFACT Forum UN/CEFACT Project Recommendation for ensuring legally significant trusted trans-boundary electronic interaction Aleksandr Sazonov.

UNITED NATIONS COMMISSION ON INTERNATIONAL TRADE LAW

Reorganisation of UN/CEFACT

eGov_eInvoicing_7a_eGov

کمیسیون حقوق تجارت بین‌‌الملل سازمان ملل متحد (آنسیترال)

Dashboard eHealth services: actual mockup

International Trade & Business Process Group (TBG)

Outline Background: development of the Commission’s position

Enabling environments for technology transfer under the UNFCCC

Project leader: Richard Morton Lead Editor: Jalal Benhayoun

European Commission's Initiative on Electronic Transport Documents

Presentation transcript:

ITPD session on Authentication Wednesday morning April Geneva 23 rd Forum

UN/CEFACT Recommendation 14 Revision “Authentication of Trade Documents” UN/CEFACT Forum Geneva April 9, 2014 morning Dr. Lance THOMPSON, Conex & Rec14 Revision W.G. Chair Josephine BAIAMONTE, US-CBP & Rec14 Revision W.G. Editor

Main recommended practice 1979 version of this recommendation: o Seeks to encourage the use of electronic data transfer in domestic & cross border trade o Remove (all methods of) signatures where possible o Meet requirements through authentication methods or guarantees that can be electronically transmitted

Main recommended practice 2013 (/2014) version of this recommendation: o removal of the requirement for a signature (manual or its functional equivalent) except where essential for the function of the document o introduction of other methods to authenticate documents o creation of a legal framework that permits and gives equal status to authentication methods other than manual-ink signature o regular review of documentation used for domestic and cross border trade, possibly by a joint public and private sector effort

Definitions and terms Aligned as much as possible to UNCITRAL key terms Compliant with existing UN/CEFACT Recommendations Some of the key terms: o Signature (definition & functions) o Authentication/Authenticate o Electronic Signature o Digital Signature

Electronic signature vs. Digital signature These two terms are NOT interchangeable. Electronic signature: o A generic term which makes no reference to any technological choice. Digital signature: o Implies a technological choice (solutions with asymmetrical encryption such as Public Key Infrastructure, PKI) o A “digital signature” is a form of electronic signature.

Levels of reliability Reliability was chosen over the words o Authentication (which is a term used by ISO and “levels of authentication” already have a specific meaning in this context) o Trust (which is a term that has specific meaning in the electronic authentication environment and implies a higher level of reliability from the outset) This choice was motivated by the UNCITRAL Model Law on Electronic Commerce: o The chosen method of authentication should be “as reliable as was appropriate for the purpose for which the data message was generated or communicated, in the light of all the circumstances, including any relevant agreement.”  Article 7.1, UNCITRAL “Model Law on Electronic Commerce with Guide to Enactment 1996 with additional article 5 bis as adopted in 1998” United Nations, New York, 1999, p.5-6. Available as of March 2013 at 6Model.html. 6Model.html

Technology neutrality UN/CEFACT (as well as UNCITRAL) promotes technology neutrality. o Legislation should not discriminate between forms of technology. o Technological guidance should be based on minimal requirements – with the possibility of responding to these requirements with various functionally equivalent solutions The recommendation lists some technical implementations, but provides no preference for any of these.

Recommendation Annexes Regular Document Review Legally Enabling Environment Relation of the recommendation with other UN/CEFACT recommendations Technical Implementation Checklist Technical Implementation Repository

Annex B Repository Repository of actual implementations in each typology Must have a significant amount of response from each typology (in order to respect technology neutrality) This was dissociated from the rest of the recommendation because there was not a sufficient amount of response. Launching of a separate project was agreed during the last two conference calls (May/June).

Thank you. Dr. Lance THOMPSON International Development Manager, Conex Recommendation 14 Revision W.G. Chair Conex, 19, rue d’Orléans, Neuilly-sur-Seine cedex FR

After Sardinia Forum, other projects in UN/CEFACT that were identified by ITPD: Trade/Transport PDA – ITPD o Rec 14 Annex B Repository o NIPA e-identity project Agriculture PDA o eCert electronic signature Regulatory PDA – e-Procurement o Standard for SDC o Standard for time-stamping Methodology & Technology PDA o Trusted Trans-boundary project o 4 corner model for interoperability of authentication Supply Chain PDA o Recommendation 37

ITPD sent a request to the Bureau that all of these projects be harmonized in order to have clear guidance on the subject of authentication It would be a good idea that the Bureau request that each project proposes a complete background paper with their scope and purpose with any relevant examples in order to more easily compare the projects and understand where they overlap and where they are unique. Projects which are not technologically neutral should clearly make this understood to the Bureau so that they may make informed decisions.