Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Review of the Electronic Transactions Ordinance Information Infrastructure Advisory Committee 9 April 2002.

Published byBasil Barrett Modified over 9 years ago

Similar presentations

Presentation on theme: "1 Review of the Electronic Transactions Ordinance Information Infrastructure Advisory Committee 9 April 2002."— Presentation transcript:

1 1 Review of the Electronic Transactions Ordinance Information Infrastructure Advisory Committee 9 April 2002

2 2 Background

3 3 Electronic Transactions Ordinance  Enacted on 5 January 2000  All provisions came into operation by April 2000

4 4 Objective  Provide a clear legal framework for the conduct of e-business  Enhance confidence in electronic transactions

5 5  Provide electronic records and digital signatures the same legal status as that of their paper-based counterparts  Provide a voluntary recognition scheme for certification authorities Electronic Transactions Ordinance

6 6 E-business developments in Hong Kong  Government took the lead to accept electronic submissions under law for the bulk of legislation  Electronic Service Delivery Scheme

7 7  Established the local public key infrastructure  Two certification authorities recognised  Digital certificates adopted in online applications in the public and commercial sectors to ensure security in electronic transactions E-business developments in Hong Kong

8 8 n On par in establishing legal framework with countries advanced in e-business development n Hong Kong’s e-business potential and readiness widely recognised internationally

9 9 Review

10 10 Review of Electronic Transactions Ordinance  A clear legal framework provides a solid foundation for e-business development  Committed to review the Ordinance 18 months after its enactment  To ensure Hong Kong has the most up-to-date legislative framework for the conduct of e-business

11 11  Factors considered: - operational experience gained since enactment enactment - technological advancement - technological advancement - social changes - social changes - international e-business development  Consulted Government bureaux and departments on the implementation of the Ordinance Review of Electronic Transactions Ordinance

12 12 Preliminary proposals

13 13 Legal recognition of other forms of electronic signatures  Legal recognition for digital signatures supported by recognised digital certificates  Legal recognition for digital signatures supported by recognised digital certificates  Different electronic authentication technologies and means developed and adopted by governments and business communities around the world  Personal identification number (PIN) commonly used in: - banking service - banking service - filing of tax return (Australia, Singapore, UK and USA) - renewal of driving licence (some states in USA) - renewal of driving licence (some states in USA)

14 14 Personal identification number (PIN)  Where the level of security offered by PIN is commensurate with the risk of the service involved, e.g. - where there is established relationship between the parties involved so that the PIN could be securely issued, used and verified - where there is established relationship between the parties involved so that the PIN could be securely issued, used and verified - where a secure system like the Electronic Service Delivery Scheme which provides strong encryption services for data transmission is used - where a secure system like the Electronic Service Delivery Scheme which provides strong encryption services for data transmission is used

15 15 Personal identification number (PIN)  Propose to accept the use of PIN for satisfying statutory signature requirements in specified cases  Secretary for Information Technology and Broadcasting (the Secretary) to specify these cases by subsidiary legislation  Users will be free to choose PIN, digital certificate or hand-written signature

16 16  Considered other means of authentication like using biometrics  Yet to have institutional arrangement to support community-wide application  Yet to gain wide acceptance by the community  Propose to examine at a later stage Legal recognition of other forms of electronic signatures

17 17 Legal requirement of “delivery by post or in person”  Certain legal provisions require documents to be delivered either by post or in person  An impediment to the adoption of electronic transactions

18 18  Propose that these legal provisions should be automatically construed as covering “delivery by electronic means”  The Secretary to specify these provisions by subsidiary legislation Legal requirement of “delivery by post or in person”

19 19  Schedule 1 sets out matters which are exempt from the electronic means, e.g. will, trust, power of attorney, oath, statutory declaration, etc.  Should retain these exemptions in view of the solemnity and complexity involved  Propose not to amend Schedule 1 for the time being Exemptions under the Ordinance

20 20  Schedule 2 sets out court and quasi-judicial proceedings which are exempt from the electronic means  Electronic filing yet to become mature and common in the legal profession  Propose not to amend Schedule 2 for the time being Exemptions under the Ordinance

21 21  The Secretary had made exclusion order to exclude 202 statutory provisions from the application of the Ordinance Exemptions under the Ordinance

22 22  Exclusions made can be classified into the following five categories : - solemnity of the matter or document - solemnity of the matter or document involved involved - on operational grounds, e.g. production of documents to Government authorities of documents to Government authorities on the spot on the spot Exemptions under the Ordinance

23 23 - involved submission of voluminous documents or complex plans - compliance with international practices - to ensure that the Government would be able to meet itscontractual obligations Exemptions under the Ordinance

24 24  These principles for exemption remain valid today  Should continue to be adopted  Will continue to review existing exemptions  Withdraw exemptions which are or will soon become unnecessary Exemptions under the Ordinance

25 25 Voluntary recognition scheme for certification authorities  Director of Information Technology Services (the Director) will grant recognition to certification authorities (CAs) which provide a trustworthy service  The Director has published Code of Practice for Recognised Certification Authorities (the Code) setting out the standards and procedures that recognised CAs have to adopt  Advisory Committee to be consulted on any proposed amendment to the Code

26 26  CA applicants should engage an independent assessor to prepare an assessment report  Assessment report to state whether the applicant is capable of meeting the relevant requirements in the Ordinance and Code Voluntary recognition scheme for certification authorities

27 27  The Director may renew, suspend or revoke the recognition  Established an appeal mechanism; no appeal case so far  Recognised CAs should furnish an assessment report to the Director every twelve months  The Director will publish material information in the report for public inspection Voluntary recognition scheme for certification authorities

28 28  Smooth implementation of the scheme  Propose not to make any substantial changes for the time being Voluntary recognition scheme for certification authorities

29 29  Assessment reports should be prepared by persons approved by the Director  Assessors shall assess whether the CA is capable of meeting the relevant requirements in the Ordinance and Code Voluntary recognition scheme for certification authorities

30 30  An assessment includes requirements: - related to the trustworthiness (e.g. system security, procedural safeguard, financial security, procedural safeguard, financial liability) of the certification service liability) of the certification service - not related to trustworthiness but other - not related to trustworthiness but other aspects of the operation (e.g. aspects of the operation (e.g. adoption of discriminatory practices) adoption of discriminatory practices) Voluntary recognition scheme for certification authorities

31 31  Approved persons may not practically be able to make an assessment on whether the applicant is in compliance with those provisions which are not related to the trustworthiness of the certification service Voluntary recognition scheme for certification authorities

32 32  Propose to split the assessment into two parts : - the first part concerns trustworthiness of - the first part concerns trustworthiness of the certification service and to be the certification service and to be prepared by a qualified and independent prepared by a qualified and independent person approved by the Director person approved by the Director - the second part concerns provisions not related - the second part concerns provisions not related to trustworthiness of the certification to trustworthiness of the certification service that can be dealt with through a declaration service that can be dealt with through a declaration made by an authorised person of the CA made by an authorised person of the CA Voluntary recognition scheme for certification authorities

33 33  The Ordinance requires submission of an assessment report every twelve months  There may be crucial changes in the operation of the CA in between two annual assessments which may affect its trustworthiness Voluntary recognition scheme for certification authorities

34 34  Propose to empower the Director to ask recognised CA to furnish an assessment report when there are or will be major changes  The assessment report should be prepared by persons authorised by the Director  It should focus only on the concerns raised by the Director Voluntary recognition scheme for certification authorities

35 35 Timetable  Issued public consultation paper to solicit public views (4 March)  Consulted the Legislative Council Panel on Information Technology and Broadcasting (11 March)

36 36   Written to relevant organisations to proactively solicit views: - IT industry organisations - Organisations which have an interest in e-business - Legal and professional organisations - Tertiary institutions - Other relevant organisations Timetable

37 37  Consultation to end on 30 April 2002  To report to IIAC and the Legislative Council on the outcome of the public consultation  To introduce legislative amendments in the 2002-03 legislative session Timetable

38 38 Invite Members’ views on the review

Download ppt "1 Review of the Electronic Transactions Ordinance Information Infrastructure Advisory Committee 9 April 2002."

Similar presentations

AFACT eCOO WG interim meeting - Conference Call 1st March of 2011 Mahmood Zargar eCOO Experiences and Standards.

AFACT eCOO WG interim meeting - Conference Call 1st March of 2011 Mahmood Zargar eCOO Experiences and Standards.
Auditing, Assurance and Governance in Local Government

Auditing, Assurance and Governance in Local Government
STRATEGIC PLANNING FOR Post-Clearance Audit (PCA)

STRATEGIC PLANNING FOR Post-Clearance Audit (PCA)
Legality of Electronic Images under the Electronic Transactions Ordinance Presentation by Mr Alan Siu, Deputy Secretary for Information Technology and.

Legality of Electronic Images under the Electronic Transactions Ordinance Presentation by Mr Alan Siu, Deputy Secretary for Information Technology and.
2002 10 21 Implementation of Electronic Signature Law Kęstutis Andrijauskas Information Society Development Committee under the Government of the Republic.

Implementation of Electronic Signature Law Kęstutis Andrijauskas Information Society Development Committee under the Government of the Republic.
PAPERLESS BUSINESS in GEORGIAN FINANCIAL SECTOR NANA ENUKIDZE - Advisor to the Governor.

PAPERLESS BUSINESS in GEORGIAN FINANCIAL SECTOR NANA ENUKIDZE - Advisor to the Governor.
1 Supplement to the Guideline on Prevention of Money Laundering Hong Kong Monetary Authority 8 June 2004.

1 Supplement to the Guideline on Prevention of Money Laundering Hong Kong Monetary Authority 8 June 2004.
©2008 Prentice Hall Business Publishing, Auditing 12/e, Arens/Beasley/Elder 1 - 1 The Demand for Audit and Other Assurance Services Chapter 1.

©2008 Prentice Hall Business Publishing, Auditing 12/e, Arens/Beasley/Elder The Demand for Audit and Other Assurance Services Chapter 1.
Engaging with Planning Agents Reform of the Planning System 30 April 2015.

Engaging with Planning Agents Reform of the Planning System 30 April 2015.
The Demand for Audit and Other Assurance Services Chapter 1.

The Demand for Audit and Other Assurance Services Chapter 1.
Electronic Authentication for Flexible Learning Workshop Presentation (5 August 2003) Chris Connolly, CEO, Galexia Consulting.

Electronic Authentication for Flexible Learning Workshop Presentation (5 August 2003) Chris Connolly, CEO, Galexia Consulting.
Office of Inspector General (OIG) Internal Audit

Office of Inspector General (OIG) Internal Audit
Regulatory Body MODIFIED Day 8 – Lecture 3.

Regulatory Body MODIFIED Day 8 – Lecture 3.
Towards a Freedom of Information Law in Qatar Fahad bin Mohammed Al Attiya Executive Chairman, Qatar National Food Security Programme.

Towards a Freedom of Information Law in Qatar Fahad bin Mohammed Al Attiya Executive Chairman, Qatar National Food Security Programme.
1 Members’ Forum  QP Concept and Philosophy  Transitional Arrangements  Accreditation Process.

1 Members’ Forum  QP Concept and Philosophy  Transitional Arrangements  Accreditation Process.
1 OVERVIEW PRESENTATION FREEDOM OF INFORMATION (SCOTLAND) ACT 2002.

1 OVERVIEW PRESENTATION FREEDOM OF INFORMATION (SCOTLAND) ACT 2002.
Internal Auditing and Outsourcing

Internal Auditing and Outsourcing
Dr. Diganta Biswas School of Law Christ University, Bangalore.

Dr. Diganta Biswas School of Law Christ University, Bangalore.
Www.nationalsmartcardproject.org.uk www.scnf.org.uk National Smartcard Project Work Package 8 – Security Issues Report.

National Smartcard Project Work Package 8 – Security Issues Report.
The relevance of the revised Charity SORP in Ireland Sheila Nordon 4 th October 2013.

The relevance of the revised Charity SORP in Ireland Sheila Nordon 4 th October 2013.

Similar presentations

Ads by Google