Back NextBack Next E-Procurement for Improving Governance Session 5: Standards in eProcurement A World Bank live e-learning event addressing the design and implementation of e- procurement infrastructure E-Procurement for Improving Governance

Back NextBack Next E-Procurement for Improving Governance <Back Next> E-Procurement for Improving Governance In this session, you will review: Context for eProcurement Business Model Standards Decisions The general case for standards The specific case for standards within eProcurement Standards to consider for different phases of eProcurement Reality check on standards adoption Recommendations to consider. Topics Standards in eProcurement Select Next to continue

Back NextBack Next E-Procurement for Improving Governance Publication / Search / Disclosure Facilities Buyer/Seller Support Facilities Processing Center E-Tendering E-Reverse Auction E-Catalog Purchasing System integration/ Collaboration Transaction Facilities Public Sector Systems Asset management Contract management Indent management Financial management Budgeting Private Sector Systems Bid/Proposal Preparation Catalog management Order management Invoicing Functional Scope of an eProcurement System Select Next to continue

Back NextBack Next E-Procurement for Improving Governance WHY STANDARDS? Prevent failures Increase efficiency of complex operations Introduce order and predictability in electronic exchanges Reduce risk Increase trust Why do we Need Standards? Select Next to continue

Back NextBack Next E-Procurement for Improving Governance ―Enhance B2G/G2G connectivity and interoperability ―Generate trust in electronic experience ―Enhance competition and inclusion ―Enhance efficiency and flexibility of public procurement function ―Enhance cooperation and transparency ―Facilitate evolution and innovation ―Increase return, reliability of investments ―Avoid vendor lock-in How standards can help eProcurement How Standards can help eProcurement Systems Select Next to continue

Back NextBack Next E-Procurement for Improving Governance Development Methodology (UML, RUP) Development Methodology (UML, RUP) Quality (CMM) Quality (CMM) Architecture (SOA,WOA ) Architecture (SOA,WOA ) Workflow (BPMN, UMM, BPSS) Networking (TCP/IP) Standards for eProcurement System Specification/Construction Select Next to continue

Back NextBack Next E-Procurement for Improving Governance eProcurement System Disclosure Laws/Regulations Business opportunities Bidding documents Contract awards Key Standards for Disclosure Facilities Model legislation (UNCITRAL, EC Directives 2004/17/EC and 2004/18/EC ) Model legislation (UNCITRAL, EC Directives 2004/17/EC and 2004/18/EC ) Identification (UN-SPSC, GPC, CPV, ) Identification (UN-SPSC, GPC, CPV, ) Formatting (ODF, PDF, OOXML) Select Next to continue

Back NextBack Next E-Procurement for Improving Governance eProcurement System: User Support Facilities Supplier registration & alerts Supplier registration & alerts Electronic payments Electronic payments Reference prices Reference prices Research support Research support Supplier Registry Communication (SMTP/Imap) ePayments (SET, IFX, ISO ) ePayments (SET, IFX, ISO ) Identification (UN-SPSC, GPC, CPV, ) Identification (UN-SPSC, GPC, CPV, ) Registration (DUNS) Registration (DUNS) Standards for eProcurement System Support Facilities Select Next to continue

Back NextBack Next E-Procurement for Improving Governance Reliability (HTTP-R) Directory Service (LDAP, DSML) Directory Service (LDAP, DSML) Computer security ISO/IEC Computer security ISO/IEC Site security (RFC 2196) IT Service Management (ISO/IEC 20000) Network security (ISO/IEC ) Standards for eProcurement System Data Centers eProcurement Data Processing Center Select Next to continue

Back NextBack Next E-Procurement for Improving Governance Reliability (WSR) Information Security Controls (ISO 17999) Information Security Controls (ISO 17999) Information security management (ISO/IEC 27001) Information security management (ISO/IEC 27001) Information Security Testing (OSSTMM) Information Security Testing (OSSTMM) E-Reverse Auctions E-Catalog Purchasing System integration/ Collaboration Facilities E-Tendering Standards for eProcurement Transaction Systems Select Next to continue

Back NextBack Next E-Procurement for Improving Governance Communication (Imap) E-Reverse Auction Facilities Key Standards for e-Reverse Auctions Select Next to continue

Back NextBack Next E-Procurement for Improving Governance Authentication (X509, XML DSig, XKMS) Encryption (SSL, XML Encryp) Encryption (SSL, XML Encryp) Traceability (ISO ) Traceability (ISO ) Standards for eProcurement Phase IIa – eTendering Systems Select Next to continue

Back NextBack Next E-Procurement for Improving Governance Messaging (SOAP) Reliability (HTTP-R, WS-R) Interoperability (WSDL, BPEL) Documentation (UBL, C-CATALOG) Secure Access (SAML, XACML) Publication (UDDI) Standards for eProcurement Phase IIb – eCatalog Purchasing Systems Select Next to continue

Back NextBack Next E-Procurement for Improving Governance Interpretation (DSDL, Relax NG) Interoperability/Collaboration (ebXML, WS-I Profiles, WSCI, BPEL) Provisioning (SPML) Web Security (WS Security, SAML, XACML) Web Security (WS Security, SAML, XACML) Registration of Services (UDDI) Web Services (WS*) Private Sector Systems EGP System Public Sector Systems Standards for System Integration/Collaboration Facilities (Phases III and IV) Select Next to continue

Back NextBack Next E-Procurement for Improving Governance Mandated already by many governments (India, UK, Canada, EU, Phil, Brazil…) and recommended by most. Embraced in varying degrees by large vendors (IBM, HP, Oracle…) Adoption of Open Standards is: Open Standards However, from 2006 MDB survey of eProcurement systems in 14 leading countries*… No one allows ODF documents. Only 6 use UNSPSC. Only 4 use XML, and only one uses ebXML for interoperable electronic business Only 4 use SOAP, 3 use UDDI, only 1 uses WSDL and none use BPEL, WS-Security, WSCI However, most use digital certificates and asymmetrical encription for authentication. *Argentina, Australia (State of New South Wales), Brazil, Chile, Finland, Hong Kong, India (Indian Railways), Italy, Mexico, Norway, Romania, Singapore, South Korea, The Philippines Select Next to continue

Back NextBack Next E-Procurement for Improving Governance ―Adopt an open standards policy for all eProcurement- related work. Refer to standards by name (“or substantially equivalent”) in SRSs and SLAs. ―Investigate and if possible adopt ebXML family of standards (ISO 15000) for all eProcurement-related work. ―Adopt SOA and Web services as the architectural standards for eProcurement. ―Adopt a business process modeling standard (BPMN or UMM) and use to document functional requirements of eProcurement systems, even if procuring a COTS solution. It will serve well in acceptance testing and in avoiding vendor lock-in. Recommendations to Consider Summary / Recommendations Select Next to continue

Back NextBack Next E-Procurement for Improving Governance — Reserve Digital signatures and PKI for strong authentication and signing of legally-enforceable documents. For other purposes, experiment first with simpler methods (encryption, two-factor authentication). — Assign a person to watch and recommend standards. This may be done centrally for whole government. — Consider OSS products as they often implement and promote open standards. — Strongly consider adopting international classification/description standards (UN SPSC, CPV, GTIN or similar) instead of a home-grown alternative. Recommendations to Consider Summary / Recommendations Select Next to continue