The LEFIS UNIZAR PKI as a Case of Identification Management at a Regional Level

PKI UNIZAR. Developments Previews. Beginnings Pki Unizar Development Future of Pki used by the Universities 1 2 3

The LEFIS PKI. Causes Fast growing of New ICTFast growing of New ICT Use of ICT without secure protection against risksUse of ICT without secure protection against risks Sensible data communications with easy vulnerabilitySensible data communications with easy vulnerability 1

LEFIS developed its own PKILEFIS developed its own PKI Providing digital certificates to membersProviding digital certificates to members Use of Open StandardsUse of Open Standards –X.509 –SSL –S/MIME The LEFIS PKI 1

Construction of PKIs. Past ExperienceConstruction of PKIs. Past Experience –FESTE: from 1997 NotariesNotaries –Procurators: from 1997 Justice AdministrationJustice Administration –Property registers: from 2000 Identification to access to the RegistersIdentification to access to the Registers –European PKI with juridical institutions Project AEQUITAS. Trust frame for electronic documents exchange between european judicial operators. Information Society technologies. IST Project AEQUITAS. Trust frame for electronic documents exchange between european judicial operators. Information Society technologies. IST PKI. First Steps 1

Non government organizationNon government organization Advanced electronic signature: PKIAdvanced electronic signature: PKI Access to Web pages contents and learning resourcesAccess to Web pages contents and learning resources 160 certificates160 certificates Number of access using public keys from February 2007 to concrete learning resourcesNumber of access using public keys from February 2007 to concrete learning resources – Private Area. APTICE 1

visited on 05/07/ The LEFIS PKI 1

The LEFIS PKI. Step by Step 1 Certification Authority Private Key Public Key Signed Certificates User LEFIS WEB Web, Registration Authority

PKI LEFIS UNIZAR Previews. Begginnings Pki Lefis Unizar Development Future of Pki used by the Universities 1 2 3

As a result of LEFIS PKI successAs a result of LEFIS PKI success Main objectivesMain objectives –Authentication –Integrity –Confidentiality To Provide a Public Key Infrastructure to University of ZaragozaTo Provide a Public Key Infrastructure to University of Zaragoza The LEFIS UNIZAR PKI 2

Guarantees effective communications inside the UniversityGuarantees effective communications inside the University Privacy and Integrity on Data Protection from its usersPrivacy and Integrity on Data Protection from its users Certification AuthorityCertification Authority –Data Protection and Digital Signature Investigation Group (University of Zaragoza) Registration AuthorityRegistration Authority –University of Zaragoza’s Professors Group (part of the Data Protection and Digital Signature Investigation Group ) The LEFIS UNIZAR PKI 2

2 visited on 07/07/2007

Advantages 2 Applied for a research projectApplied for a research project Use of own certificatesUse of own certificates Use of Electronic National Identitiy CardUse of Electronic National Identitiy Card Access to Public Administration pagesAccess to Public Administration pages Foreseen example: the LEFIS virtual campusForeseen example: the LEFIS virtual campus

»ARLA PLATA.- Spain »BRSANTA CATARINA.- Brasil »DEUNIMUENSTER.- Germany »ESULL.- Spain »ESUNIZAR.- Spain »FIULAPLAND.- Finland »FIUWASA.- Finland »LTMRUNI.- Lithuania »PLUMK.- Poland »PTIPBEJA.- Portugal »TRISIKUN.- Turkey »UKQUEENS.- UK »OPEN TO NEW INTERESTED PARTNERS Virtual Campus Partners 2

Spanish BookSpanish Book –On LEFIS Web page, only for owners of the LEFIS private-public key Privacy, first book of the LEFIS Serie in preparationPrivacy, first book of the LEFIS Serie in preparation –Will be included on the LEFIS Web page: Access by public key Online teaching in Faculties of Law: second bookOnline teaching in Faculties of Law: second book Joint courses on the LEFIS Web: A page for the LEFIS Virtual campus (in outcomes)Joint courses on the LEFIS Web: A page for the LEFIS Virtual campus (in outcomes) –Participants from different Universities, teachers and students Teachers and students need to use the LEFIS public-private keyTeachers and students need to use the LEFIS public-private key –Instructions to generate and obtain the key / / PKI Access 2

Comparisons 2 Without use of PKI Use of PKI Vulnerability of communicationsVulnerability of communications Non trusted contentsNon trusted contents Repudiation of sent informationRepudiation of sent information Vulnerability of our Personal DataVulnerability of our Personal Data Secure communications between sender and receiverSecure communications between sender and receiver Trusted content integrityTrusted content integrity Non repudiationNon repudiation Personal Data ProtectionPersonal Data Protection

PKI LEFIS UNIZAR. Developments Previews. Begginnings Pki Lefis Unizar Development Future of Pki used by the Universities 1 2 3

LEFIS UNIZAR PKI 3 Recent rules based on e-signature existRecent rules based on e-signature exist Not yet enough active PKIsNot yet enough active PKIs The Government institutions support several PKIs or only oneThe Government institutions support several PKIs or only one Neccesary to made real proofs attending to real/concrete present and future problemsNeccesary to made real proofs attending to real/concrete present and future problems LEFIS has experience in real proofsLEFIS has experience in real proofs

If members of a University can use and manage PKI systemIf members of a University can use and manage PKI system If students can manage PKI systemIf students can manage PKI system If PKI can handle big lists of users (all students from a University)If PKI can handle big lists of users (all students from a University) 3 Points to Analyze

Conclusions Secure Communications Integrity of Contents Personal Data Protection Easy to use STRONG PUBLIC KEY INFRAESTRUCTURE FOR UNIVERSITIES DEVELOPED BY LEFIS

Thank You for Your Time UNIversity of ZARagoza Andrés Saravia