Presentation is loading. Please wait.

Presentation is loading. Please wait.

© UPU 2014 – All rights reserved Mitigating online risk for postal e-services.

Published byBrook Anderson Modified over 9 years ago

Similar presentations

Presentation on theme: "© UPU 2014 – All rights reserved Mitigating online risk for postal e-services."— Presentation transcript:

1 © UPU 2014 – All rights reserved Mitigating online risk for postal e-services

2 © UPU 2014 – All rights reserved

3 .post general overview Active monitoring on.post TLD against Domain name Abuse detection and Mitigation Internal Policies (e-mail SMTP) PostID Test Suite PREM S52 & Functional specifications for SMTP secure e-mail service ITU and UPU joint project for secure e-mail

4 © UPU 2014 – All rights reserved is a sponsored top-level domain (sTLD) available exclusively for the postal sector aims to integrate the physical, financial, and electronic dimensions of postal services to enable and facilitate e-post, e-finance, e-commerce and e-government services. Integration of postal services Interconectivity Global standarization on e-services.post general overview

5 © UPU 2014 – All rights reserved Active monitoring Monitoring against Malware Phishing Spam IP monitoring

6 © UPU 2014 – All rights reserved Statistics extracted in August 2014

7 © UPU 2014 – All rights reserved What else to do?

8 © UPU 2014 – All rights reserved 1st Internal policy SMTP Approved during last DPG GA April 2014 Do not use open Relay - enable SMTP authentication 2. Activate Reverse DNS lookup on the e-mail server 3. Enable Domain Keys Identified Mail (DKIM) 1024 bit key signature, if possible in conjunction with Domain-based Message Authentication (DMARC) 4. Implement a Sender Policy Framework (SPF) + Trust via accreditations +DNSSEC (Domain Name Security Extensions) +DMP (Domain Management Policy)

9 © UPU 2014 – All rights reserved Normal email is not a secure way of communication due to :  Authenticity of sender: Using normal email it is uncertain that the sender of the email is actually the genuine person you think it is; it could be someone else and the receiver probably wouldn’t notice it;  Non-Repudiation: The receiver of normal email can not verify the integrity of the content, have proof who the sender really is; therefore the sender can deny that what you have received is what the sender has sent and/or that the sender has sent that email at all; Why?

10 © UPU 2014 – All rights reserved Functional specifications for secure e-mail content Internal (SMTP ) Domestic (SMTP ) Cross border (SMTP ) Worldwide exchange (S52)* PostID *S52 test Suite to test compliance with standard available third quarter 2014.

11 © UPU 2014 – All rights reserved What is post ID and why we are creating it? Electronic identities is growing which are causing complex interaction for the end-user Posts are already engaged in postal electronic identity registration/authentication/verification/e-services like: Real Me NZ Post, Swiss Post Swiss ID and some others. Separate developments can lead to incoherent solutions Interconectivity between domestic solutions can be beneficial for the international comunity UPU aim is to create a federated identity ecosystem WHY? In order that the interactions can be based on regulations standards and solutions.

12 © UPU 2014 – All rights reserved Approved during last POC meeting and currently with status 0. Include a description of a Trusted network and different levels of assurance

13 © UPU 2014 – All rights reserved Trust frameworks are not technical specifications; they are agreements among members as to which specifications, and at what conditions, will be used to support the S64 standard for postal electronic identity. What else we need? The global postal network could create a trust framework for its use, which may be extended to other non-postal use, if desired. Current work for PostID

14 © UPU 2014 – All rights reserved E-shop e-government Financial services Certified cloud services Secure register E-mail Global postal services Post ID and.post Trusted crossborder e- commerce services

15 © UPU 2014 – All rights reserved Next steps? Complete work on PostID standard Interconectivity/Capacity building for adoption Global standarization on e- services

16 © UPU 2014 – All rights reserved With their 42.post members and large physical post office Network, the.post Group is studying risks and opportunities of providing a secure email service under.post in 2014. Since trust and security are keys for success of.post. email and other e-services used under.post environment should be secure and trusted as well. Who is in?

17 © UPU 2014 – All rights reserved Platform independent Mobile device compatibility Two factor authentication Compatible with business and legal local regulations Complete control for administration Posible to use secure cloud services Together with Implementation of Preventive controls Detective controls Corrective controls Who else? ITU and UPU joint project

Download ppt "© UPU 2014 – All rights reserved Mitigating online risk for postal e-services."

Similar presentations

Unified Communications Bill Palmer ADNET Technologies, Inc.

Unified Communications Bill Palmer ADNET Technologies, Inc.
Email Deliverability @ Eloqua Providing Industry-Leading Email Management Tools.

Eloqua Providing Industry-Leading Management Tools.
AFACT eCOO WG interim meeting - Conference Call 1st March of 2011 Mahmood Zargar eCOO Experiences and Standards.

AFACT eCOO WG interim meeting - Conference Call 1st March of 2011 Mahmood Zargar eCOO Experiences and Standards.
Secure Sockets Layer eXtended (SSLX) Next Generation Internet Security Overview Presentation April 2011.

Secure Sockets Layer eXtended (SSLX) Next Generation Internet Security Overview Presentation April 2011.
DNSSEC & Email Validation Tiger Team DHS Federal Network Security (FNS) & Information Security and Identity Management Committee (ISIMC) Earl Crane Department.

DNSSEC & Validation Tiger Team DHS Federal Network Security (FNS) & Information Security and Identity Management Committee (ISIMC) Earl Crane Department.
Workshop on registered electronic mail policies and implementations (ETT 57074) Ankara, 16.3. – 17.3. 2015.

Workshop on registered electronic mail policies and implementations (ETT 57074) Ankara, –
1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:

1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:
© 2007 Convio, Inc. Implementation of Sender ID Bill Pease, Chief Scientist Convio.

© 2007 Convio, Inc. Implementation of Sender ID Bill Pease, Chief Scientist Convio.
Summary of ETSI/ESI activities Andrea Caccia ETSI/ESI TB member Note: This document expresses only the views of its author.

Summary of ETSI/ESI activities Andrea Caccia ETSI/ESI TB member Note: This document expresses only the views of its author.
Department of Information Engineering1 Major Concerns in Electronic Commerce Authentication –there must be proof of identity of the parties in an electronic.

Department of Information Engineering1 Major Concerns in Electronic Commerce Authentication –there must be proof of identity of the parties in an electronic.
Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.

Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.
6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.

6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.
Information Resources and Communications University of California, Office of the President UCTrust Implementation Experiences David Walker, UCOP Albert.

Information Resources and Communications University of California, Office of the President UCTrust Implementation Experiences David Walker, UCOP Albert.
NDSU Lunchbytes Are They Really Who They Say They Are? Digital or Electronic Signature Information Rick Johnson, Theresa Semmens, Lorna Olsen April 24,

NDSU Lunchbytes "Are They Really Who They Say They Are?" Digital or Electronic Signature Information Rick Johnson, Theresa Semmens, Lorna Olsen April 24,
Creating a Secured and Trusted Information Sphere in Different Markets Giuseppe Contino.

Creating a Secured and Trusted Information Sphere in Different Markets Giuseppe Contino.
E-Government Security and necessary Infrastructures Dimitrios Lekkas Dept. of Systems and Products Design Engineering University of the Aegean

E-Government Security and necessary Infrastructures Dimitrios Lekkas Dept. of Systems and Products Design Engineering University of the Aegean
Geneva, Switzerland, 4 December 2014 ITU-T Study Group 17 activities in the context of digital financial services and inclusion: Security and Identity.

Geneva, Switzerland, 4 December 2014 ITU-T Study Group 17 activities in the context of digital financial services and inclusion: Security and Identity.
Introduction to ICANN’s new gTLD program. A practical example: the Dot Deloitte case. Jan Corstens, Partner, Deloitte WIPO Moscow, 9 Dec 2011.

Introduction to ICANN’s new gTLD program. A practical example: the Dot Deloitte case. Jan Corstens, Partner, Deloitte WIPO Moscow, 9 Dec 2011.
Overview of Digital Signatures Introduction To Networks and Communications (CS 555) Presented by Bharath Kongara.

Overview of Digital Signatures Introduction To Networks and Communications (CS 555) Presented by Bharath Kongara.
© 2012 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual.

© 2012 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual.

Similar presentations

Ads by Google