Country Update: Austria Herbert Leitold Secure Information Technology Center - Austria

Slides:



Advertisements
Similar presentations
1 Proposal for a Regulation on Electronic identification and trust services for electronic transactions in the internal market (COM( final) {SWD(2012)
Advertisements

© fedict All rights reserved Legal aspects Belgian electronic identity card Samoera Jacobs – November 2008.
Research and Innovation Participant Portal Concept for electronic-only grant management in Horizon 2020 Peter HÄRTWICH
Taxpayers registration and e-services provided by the Estonian Tax and Customs Board Karin Aleksandrov Chief Expert Service Management Department.
Digital Certificate Installation & User Guide For Class-2 Certificates.
Installation & User Guide
Mr. Aivars Paegle, Legal manager at The Register of Enterprises of the Republic of Latvia, Juridical Division Workshop on Single Institution for Registration.
Launching Egyptian Root CA and Inaugurating E-Signature Dr. Sherif Hazem Nour El-Din Information Security Systems Consultant Root CA Manager, ITIDA.
EGovernment Vision, Policies and Implementations in Austria Prof. Dr. Reinhard Posch CHIEF INFORMATION OFFICER.
Digital Stamps of Companies Tarvi Martens SK, Estonia.
Digital Certificate Installation & User Guide For Class-2 Certificates.
The Austrian Governmental eDelivery System Technical Aspects Ankara, March 17th, 2015 Christian Maierhofer, EGIZ The E-Government Innovation Center is.
European Electronic Identity Practices Country Update of …………… Speaker: Date:
Respecting Privacy in Global Networks/ Guernsey, Wednesday 11 th April, Paula Ortiz López Spanish Data Protection Agency.
Information security An introduction to Technology and law with focus on e-signature, encryption and third party service Yue Liu Feb.2008.
The Estonian Electronic Signature Legislation and case studies EESSI Seminar Budapest, Taavi Valdlo Estonian Informatics Centre
Juan A. Avellán Chief Legal Officer WISeKey S.A. Regulatory Considerations for the Establishment of a Global Public Key Infrastructure.
Federal Information Processing Standard (FIPS) 201, Personal Identity Verification for Federal Employees and Contractors Tim Polk May.
Polytechnic University of Tirana Faculty of Information Technology Computer Engineering Department Identification of on-line users and Digital Signature.
Designing and Implementing Secure ID Management Systems: BELGIUM’s Experience Washington - September 27 th, 2010 Frank LEYMAN © fedict All rights.
Ronny Depoortere January 16th, 2012 Chisinau. Identification – Business Case The ability to uniquely identify citizens and foreign residents is the corner.
E-Government Security and necessary Infrastructures Dimitrios Lekkas Dept. of Systems and Products Design Engineering University of the Aegean
1. 2 ECRF survey - Electronic signature Mr Yves Gonner Luxembourg, June 12, 2009.
© Julia Wilk (FHÖV NRW) 1 Digital Signatures. © Julia Wilk (FHÖV NRW)2 Structure 1. Introduction 2. Basics 3. Elements of digital signatures 4. Realisation.
P O L I C E D E P A R T M E N T  Biometric passport – Passport Act – Issuing a biometric passport – Development project  Biometric Passport To Biometric.
© Julia Wilk (FHÖV NRW) 1 Digital Signatures. © Julia Wilk (FHÖV NRW)2 Structure 1. Introduction 2. Basics 3. Elements of digital signatures 4. Realisation.
Digital Certificate Installation & User Guide For Class - 2 Certificates.
Iman El Hitta Economic Statistical Sector, Central Agency
European Electronic Identity Practices Country Update of Austria Peter F Brown Office of the CIO, Austrian Federal Chancellery Chair, CEN eGov Focus Group.
Local Regulations and Practical Advice Karoliina Kokko, Senior Program Manager, Fulbright Center.
Copyright © 2008, CIBER Norge AS 1 Using eID and PKI – Status from Norway Nina Ingvaldsen and Mona Naomi Lintvedt 22 nd October 2008.
Ronny Depoortere 19th March, 2012 Warsaw. Identification – Business Case The ability to uniquely identify citizens and foreign residents.
Copyright 次世代 IC カードシステム研究会 C 1 Nagaaki OHYAMA Tokyo Institute of Technology Chair of NICSS National ID card in Japan May Provoo (Reykjavik,
THE ROLE OF CIVIL REGISTRY TO ACTIVATE THE ELECTRONIC AUTHENTICATION
EGov Interop'05 - Feb 23-24, Geneva (Switzerland) OBSERVATORY ON INTEROPERABLE eGOVERNMENT SERVICES eGov-Interop'05 Annual Conference February.
Slide 1 Smart Cards for eGovernment and Health Insurance - Status in Austria.
Slovenian Governmental Certification Authority Dr. Aleš Dobnikar Government Centre for informatics of the Republic of Slovenia 4th Business and Government.
EGovernment Services in Poland Today & in The Future Dariusz Bogucki Ph.D, IDA II, National Co-ordinator National Registers Department, Ministry of Internal.
Risks of data manipulation and theft Gateway Average route travelled by an sent via the Internet from A to B Washington DC A's provider Paris A.
The Porvoo Group Tapio Aaltonen Director, CA-services, co- chair Porvoo Group Population Register Centre Finland.
Chief information office austria‘s citizen card conference on interoperable european electronic id april 2002, porvoo, finland.
Information Asset Registries of Latvia Secretariat of e-government affairs Riga | 26 th October, 2007.
SWEB SWEB Security and Privacy Technologies – Implementation Aspects Venue:SWEB Day in APV, Novi Sad Author(s):Dr. Milan Marković Organisations:MISANU.
EESSI June 2000Slide 1 European Electronic Signature Standardization Hans Nilsson, iD2 Technologies, Sweden.
Belgian EID Card 15/12/2004 Derette Willy eID program manager.
Data protection as an integral part of OOP implementations: The Austrian approach Peter Kustor.
Estonian Online Services Raino Paron. ESTONIAN E-SERVICES (1/2) Electronic State Gazette – official source of Estonian law, also un-official English translations.
Local Regulations and Practical Advice Karoliina Kokko, Senior Program Manager, Fulbright Center.
European Electronic Identity Practices Country Update of Estonia Speaker: Ivar Jung Date:
Presentation Overview eGovernment Coordination Big Picture / Standards Map Examples of change –eID – getting mobile –Large Scale Pilots –Cloud Positioning.
Bulding blocks of e- government Ingmar Pappel. Bulding blocks of e-government  Personal Code  Digital Identity  Digital signature  X-Road  Organizations.
EID and eSignature programs at National level in Europe Detlef Houdeau Nov 2013 Exploratory seminar on e-signatures for e- business in the South Mediterranean.
The European Citizens’ Initiative Legal framework Rules and procedures The procedure at a glance Initiatives Online collection Signatories The ECI in the.
The Future Digital Identity Landscape in Europe Timothée Mangenot, chairman 14th of December, 2015 ACSIEL partners day.
M O N T E N E G R O Negotiating Team for Accession of Montenegro to the European Union Working Group for Chapter 18 – Statistics Bilateral screening: Chapter.
company registration, india trademark registration, trademark attorneys india, patent attorneys india, patent registration india company registration,
Statistical Business Register Enterprise Groups in Latvia Sarmite Prole Head of Business Register Section Business Statics Department Central Statistical.
Smart Data infrastructure
Register and change the address Iran's actions
The Future Digital Identity Landscape in Europe Stefane Mouille/Detlef Houdeau World eID Congress, 27th of Sep. 2017, Marseille, France.
Current Problems of the Digital Identity Management in Bulgaria
Legal Framework for Civil Registration, Vital Statistics
The e-government and the OPAC
Installation & User Guide
Dashboard eHealth services: actual mockup
Czech Republic Settlement Scheme for UK citizens after Brexit
Technical Coordination Group for the next Census round in South East Europe EUROSTAT PREPARATION FOR CENSUS 2020 MONTENEGRO Budapest Jun 2017.
E-identities (and e-signatures)
Lindenwood University Help Guide
Presentation transcript:

Country Update: Austria Herbert Leitold Secure Information Technology Center - Austria

Table of Contents Amendments of eID-related laws E-Government Act Signature Act / Signature Order Citizen Cards Initiatives Public Sector and Private Sector Technology IDM concept “sector-specific identifiers” Herbert Leitold, A-SIT

eGovernment Act 2004 Defined citizen card concept as logical unit of Electronic signature – authentication Identity link – unique identifier linked to signature Optional data on representation (e.g. mandates) irrespective of technology (smart card, mobile phone, …) Foreign eID recognition as “repetitive identity” Transitional period “administrative signature” Equivalence to qualified signatures under lowered requirements until end 2007 to support deployment Open for the private sector Both certificate services and using the identity management system Herbert Leitold, A-SIT

eGovernment Act 2007 (currently being amended) Administrative signature faded out Citizen Card now needs to be based on qualified signatures Foreign eID recognition streamlined Registration to Supplementary Register using a foreing eID’s qualified signature A link to an electronic proof of unique identity in its country of origin is needed that is considered equivalent to an identy link An order will define eIDs where such a link is considered equivalent Improvement for private sector use Enrolling company-specific unique identifiers to private-sector applications Herbert Leitold, A-SIT

Signature Act / Signature Order (currently being amended) Changed term secure signature to qualified signature Inline with the commonly used term in Europe Scope on CSPs limited to qualified certificates No longer supervision of “non-qualified” CSPs Signatory can now be both natural and legal person So far, the term signatory was limited to natural persons Qualified certificates still can be issued only to natural persons, i.e. qualified signatures are limited to natural persons Making registration easier Aside personal appearance, other means possible, such as qualified registered letters Herbert Leitold, A-SIT

6 Major initiatives – Citizen Cards Bank cards (ATM cards) Each bank card issued since March 2005 is also an SSCD (as of 1999/93/EC) – about 6.5 mio. cards qualified signatures, private-sector CSP Health insurance cards “e-card” 100 % coverage reached end of Nov (~9 Mio.) was “administrative signature”, will change to qualified signatures end of 2007 Mobile phones: each mobile phone (capable of receiving SMS) (since March 2004) Further initiatives: official’s service card CSP signature cards student service cards, etc. so far, no ID with chip Herbert Leitold, A-SIT

7 Each resident has a unique number (ID) „ZMR-Zahl“ in the Central Register of Residents (CRR) CRR SupR Identification – Central Population Register Herbert Leitold, A-SIT

8 sourcePIN Register Source PINs Unique IDs derived from unique IDs in registers strong encryption for physical persons sourcePIN Register maintained by Data Protection Commission SourcePIN ONLY stored in Citizen Card Environment Data structure Identity Link Links identity to Electronic Signature 4csabB2… CRRsupRCNRAR sourcePIN- Reg AR 123… Herbert Leitold, A-SIT

9 Identity Link Unique ID not stored in certificate Identity Link is a XML data structure stored in the Citizen Card that holds Personal data: Name, Date of Birth Unique Identifier “SourcePIN” Public keys of the Certificates signed by the authority... <pr:Person xsi:type="pr:Physical </pr:V Herbert</pr:Given Leitold</pr:Fami... snW8OLCQ49qNefems source PIN Herbert Leitold, A-SIT

10 Sector-specific IDM concept 4csabB2… sourcePIN- Reg sector-code GH Sector „health“ 5cwu4N… ssPIN „health“ No7b99t… ssPIN „tax“ sector-code SA Sector „tax“ Herbert Leitold, A-SIT

Conclusions Citizen Cards widely deployed e.g., bank cards and social security card “e-card” Tokens are “prepared”, activation by citizens voluntary Austria established legal basis early Signature Act in 2000 E-Government Act 2004 Deployment-experiences led to amendments in 2007 Introduced some simplifications Sector-specific IDM concept remains the basis Data protection in both public sector and private sector environment Herbert Leitold, A-SIT

Thank you for your attention! Contact: A-SIT Homepage: Citizen Card Website: eGovernment in Austria: