Presentation is loading. Please wait.

Presentation is loading. Please wait.

Center Vlade RS za informatiko

Published byAdeline Paul Modified over 6 years ago

Similar presentations

Presentation on theme: "Center Vlade RS za informatiko"— Presentation transcript:

1 Center Vlade RS za informatiko
SI*CA IN STANDARDI S PODROČJA OVERJANJA POTRDIL Dr. Ales Dobnikar is a head of the Slovenian Governmental Certification Authority (SIGOV-CA) in the Slovenian Governmental Centre for IT. He is also partly employed as a postdoctoral assistant at the J. Stefan Institute in Ljubljana. Since 1997 he has been Slovene national coordinator of the EU Project COST 258, from 1999 a member of the IT Expert Group in the Organization for Security and Co-operation in Europe (OSCE), and from 2000 a member of the Trust & Confidence Group in the EU IST Programme. Outline: The development of computer communication technology along with widespread use of such systems opens new possibilities and a whole new realm of visions in using these technologies for communication and e-commerce. As a result of all these possibilities, their widespread use and accessibility very often provoke fear and distrust regarding security and privacy issues. Secure e-commerce is nowadays a necessity. SIGOV-CA is Slovenian Governmental Certification Authority, which issues qualified digital certificates for which the highest level of security and the so-called principles of strong encryption are applied. In order to enhance security, SIGOV-CA recommends storage of user digital certificates on smart cards. Even more, the storage of enterprise certificates on smart cards is required for all employees in public administration, which is enforced by means of certificate policy. Center Vlade RS za informatiko Mag. Davorka Šel

2 Pravna podlaga pri delovanju Overitelja
Zakon o elektronskem poslovanju in elektronskem podpisu – ZEPEP Uredba o pogojih za elektronsko poslovanje in elektronsko podpisovanje Zakon o varstvu osebnih podatkov - ZVOP Zakon o tajnih podatkih - ZTP Politika delovanje overitelja (javni del in zaupni del notranjih pravil overitelja)

3 Tehnični standardi za E-poslovanje
V EU Tehnični standardi so potrebni za potrjevanje tehničnih produktov in za nadzor in potrjevanje e-storitev. Evropska komisija je pooblastila naslednje standardizacijke institucije: CENELEC – EU Committee for Electrotechnical Standardization ( ETSI – EU Telecommunication Standards Institute ( CEN - EU Committee for Standardization (

4 CEN E-SIGN CWA EESSI Conformity Assessment Guidance – Part: 1: General, CWA EESSI Conformity Assessment Guidance – Part: 2: Certification Authority services and processes, CWA EESSI Conformity Assessment Guidance – Part: 3: Trustworthy systems managing certificates for electronic signatures, CWA EESSI Conformity Assessment Guidance – Part: 4: Signature Creation Application and Procedures for Electronic Signature Verification, CWA EESSI Conformity Assessment Guidance – Part: 5: Secure signature creation devices, CWA14171 Procedures for Electronic Signature Verification, CWA Security Requirements for Signature Creation Systems, CWA Secure Signature-Creation Dvices, version 'EAL 4+', CWA Secure Signature-Creation Devices, version 'EAL 4', CWA Security Requirements for Trustworthy Systems Managing Certificates for Electronic Signatures – Part1: System Security Requirements, CWA Security Requirements for Trustworthy Systems Managing Certificates for Electronic Signatures – Part 2 Cryptographic Module for CSP Signing Operation – Protection Profile (MCSO-PP).

5 ETSI ETSI priporočila s področja Upravljanja infrastrukture digitalnih potrdil: Policy requirements for certification authorities issuing qualified certificates - TS v (april 2002), Qualified Certificate Profile - TS v (junij 2001), Policy requirements for certification authorities issuing public key certificates - TS (april 2002), International Harmonization of Policy Requirements for CAs issuing Certificates - TR (marec 2002). ETSI priporočila glede storitve časovnega žiga: Policy requirements for time-stamping authorities - TS (april 2002), Time stamping profile - TS v1.2.1 (marec 2002). ETSI priporočila glede digitalnega podpisa: Signature Policies Report - TR (februar 2002), XML Advanced Electronic Signatures (XAdES) - TS (februar 2002), Electronic Signatures and Infrastructures (ESI); Electronic Signature Formats - TS v (september 2002), XML format for signature policies - TR (april 2002).

6 Pristojnosti posameznih institucij
Overitelj - CA Varni informacijski sistem Politika za kvalificirana potrdila Kvalificirano potrdilo Sredst-vo za podpi-sovanje Postopek in okolje za varno podpisovanje Format in sintaksa podpisa Postopek in okolje za overjanje podpisa CEN E-SIGN Podpisnik Tretje osebe ETSI ESI

7 SI*CA Slovenian Governmental Certification Authority Slovenian General

8 Kronološka predstavitev
1. junij 2000 ZEPEP 1. september 2000 17. januar 2001 9. julij 2001

9 CRP RDZ MULTI Prijavna služba: DURS za pravne subjekte, EMŠO
UE za fizične osebe CRP EMŠO Naslov bivališča Bodoči imetnik, Pooblaščena oseba za pravne subjekte RDZ EMŠO D.št. MŠO D.št. org. Naslov organiza-cije SN, EMŠO, MŠO,Dšt., D.št.o MULTI Referenčna št. Avtorizacijska koda Zakonska podlaga: ZEPEP ZVOP ZTP

10 Podatki o imetnikih potrdil in pravnih osebah
serijska številka digitalnega potrdila EMŠO imetnika davčna številka imetnika matična številka firme davčna številka firme Prevajalna tabela (baza podatkov MULTI) Dostop za tretje osebe zakonska podlaga pogodba Serijska številka potrdila v: CRP - za državljane RDZ - za pravne osebe

11 Razločevalno ime potrdil SIGEN-CA:
pravne osebe c=si, o=state-institutions, ou=sigen-ca, ou=companies, ou=GZS – , cn=Dusan Zupancic serialNumber= ou=oznaka firme – davčna številka 2 – potrdila SIGEN-CA –imetnik, firma 20 – tip potrdila 01 – zaporedna številka 7 – kontrolna številka serijska številka

12 Javni imenik potrdil SIGEN-CA
c=si firma1 ou=companies firma2 firma3 ou=individuals ou=companies-web X500.gov.si (dostop LDAP, HTTPS) o=state-institutions ou=sigen-ca identifikacijska oznaka potrdila čas preklica

13 Vrste in lastnosti potrdil
OSEBNA DP SPLETNA DP šifriranje/dešifriranje digitalno podpisovanje overjanje identitete varno brisanje uporaba v specifičnih aplikacijah spletno komuniciranje (SSL, TLS) e-pošta (S/MIME) uporaba v specifičnih aplikacijah Uporaba DP zasebni javni zasebni zasebni javni javni veljavnost ključev: 3 leta šif./deš. in podpisovanje 5 let overjanje Lastnosti DP veljavnost 5 let brez avtomatskega podaljševanja avtomatsko podaljševanje hranjenje dešifrirnih ključev regeneriranje ključev

14 fizične in pravne osebe
Vrste digitalnih potrdil javna uprava fizične in pravne osebe Osebna potrdila: za zaposlene za splošne nazive za informacijske sisteme Osebna potrdila: za zaposlene za splošne nazive za informacijske sisteme Spletna potrdila: za zaposlene za splošne nazive za informacijske sisteme za državljane Spletna potrdila: za zaposlene za splošne nazive za informacijske sisteme

15 Strategija uvajanja e-storitev
1 – Inkorporacija potrdil na osebne izkaznice 2 – Postavitev javno dostopnih točk 3 – Razvoj in integracija e-storitev

16 Integracija e-storitev
Upravne enote Gospodarstvo Davčna uprava Finance Občine Zdravstvo Socialne storitve Šolstvo Pravne storitve

Download ppt "Center Vlade RS za informatiko"

Similar presentations

Universal Electronic Signatures Tarvi Martens ESTONIA.

Universal Electronic Signatures Tarvi Martens ESTONIA.
Launching Egyptian Root CA and Inaugurating E-Signature Dr. Sherif Hazem Nour El-Din Information Security Systems Consultant Root CA Manager, ITIDA.

Launching Egyptian Root CA and Inaugurating E-Signature Dr. Sherif Hazem Nour El-Din Information Security Systems Consultant Root CA Manager, ITIDA.
Practical Digital Signature Issues. Paving the way and new opportunities. www.oasis-open.org Juan Carlos Cruellas – DSS-X co-chair Stefan Drees - DSS-X.

Practical Digital Signature Issues. Paving the way and new opportunities. Juan Carlos Cruellas – DSS-X co-chair Stefan Drees - DSS-X.
Telia Research AB György Endersz 2000-09-26 1 European Electronic Signature Standardisation Initiative EESSI Workshop Barcelona, 2000-09-26 György Endersz,

Telia Research AB György Endersz European Electronic Signature Standardisation Initiative EESSI Workshop Barcelona, György Endersz,
Telia Research AB György Endersz 2001-05-08 1 European Electronic Signature Standardisation Initiative EESSI Budapest Seminar at the Hungarian Communication.

Telia Research AB György Endersz European Electronic Signature Standardisation Initiative EESSI Budapest Seminar at the Hungarian Communication.
Policy interoperability in electronic signatures Andreas Mitrakas EESSI International event, Rome, 7 April 2003.

Policy interoperability in electronic signatures Andreas Mitrakas EESSI International event, Rome, 7 April 2003.
Geneva, Switzerland, 15-16 September 2014 ETSI TC Cyber Charles Brookson Chairman ETSI TC Cyber Zeata Security Ltd and Azenby Ltd ITU.

Geneva, Switzerland, September 2014 ETSI TC Cyber Charles Brookson Chairman ETSI TC Cyber Zeata Security Ltd and Azenby Ltd ITU.
Summary of ETSI/ESI activities Andrea Caccia ETSI/ESI TB member Note: This document expresses only the views of its author.

Summary of ETSI/ESI activities Andrea Caccia ETSI/ESI TB member Note: This document expresses only the views of its author.
Jaroslav Pinkava May 2001 Certification Authority in Praxis. Security Aspects. Conference Security and Protection of Information Ing. Jaroslav Pinkava,

Jaroslav Pinkava May 2001 Certification Authority in Praxis. Security Aspects. Conference Security and Protection of Information Ing. Jaroslav Pinkava,
© ETSI 2012 All rights reserved EUROPEAN UNION MANDATE/460 Kloster Banz 11.09.2013 Presented by Arno Fiedler, Member of European Telecommunications Standards.

© ETSI 2012 All rights reserved EUROPEAN UNION MANDATE/460 Kloster Banz Presented by Arno Fiedler, Member of European Telecommunications Standards.
2002 10 21 Implementation of Electronic Signature Law Kęstutis Andrijauskas Information Society Development Committee under the Government of the Republic.

Implementation of Electronic Signature Law Kęstutis Andrijauskas Information Society Development Committee under the Government of the Republic.
EID in EMEA & QuEST Ronny Bjones Security Program Manager Microsoft EMEA.

EID in EMEA & QuEST Ronny Bjones Security Program Manager Microsoft EMEA.
21 mai 2015 Bridges between Certification Authorities.

21 mai 2015 Bridges between Certification Authorities.
Host of the 13 th ECRF Annual Conference - Budapest 2010.

Host of the 13 th ECRF Annual Conference - Budapest 2010.
PAPERLESS BUSINESS in GEORGIAN FINANCIAL SECTOR NANA ENUKIDZE - Advisor to the Governor.

PAPERLESS BUSINESS in GEORGIAN FINANCIAL SECTOR NANA ENUKIDZE - Advisor to the Governor.
EESSI Overview - 1August 2002 EESSI European Electronic Signature Standardisation Initiative Implementing Electronic Signature.

EESSI Overview - 1August 2002 EESSI European Electronic Signature Standardisation Initiative Implementing Electronic Signature.
DIGITAL SIGNATURE AND ELECTRONIC DOCUMENTS IN ITALY Prof. Pierluigi Ridolfi AIPA Authority for Information Technology in the Public Administration V. Solferino,

DIGITAL SIGNATURE AND ELECTRONIC DOCUMENTS IN ITALY Prof. Pierluigi Ridolfi AIPA Authority for Information Technology in the Public Administration V. Solferino,
European Electronic Signature Standardization

European Electronic Signature Standardization
European Signatures versus Global SignaturesRome, 7 April, 2003 EESSI open specifications and interoperability The state of the art in Italy Giovanni Manca.

European Signatures versus Global SignaturesRome, 7 April, 2003 EESSI open specifications and interoperability The state of the art in Italy Giovanni Manca.
E-Government Security and necessary Infrastructures Dimitrios Lekkas Dept. of Systems and Products Design Engineering University of the Aegean

E-Government Security and necessary Infrastructures Dimitrios Lekkas Dept. of Systems and Products Design Engineering University of the Aegean

Similar presentations

Ads by Google