Presentation is loading. Please wait.

Presentation is loading. Please wait.

Toward the Use of DIGITAL Signatures in the Commonwealth of Virginia Prepared for the Council on Technology Services by the Privacy, Security & Access.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Toward the Use of DIGITAL Signatures in the Commonwealth of Virginia Prepared for the Council on Technology Services by the Privacy, Security & Access."— Presentation transcript:

1 Toward the Use of DIGITAL Signatures in the Commonwealth of Virginia Prepared for the Council on Technology Services by the Privacy, Security & Access Work Group October 27, 1999

2 2 Today’s Topics Background –Commonwealth Context –Work Group events to date About Digital Signatures Key Findings & Recommendations Discussion

3 3 Work Group Events since June Monthly PSA Work Group sessions Presentation for COTS Panel at COVITS (Health Canada, Federal PKI Steering Committee & Capital One) Monitoring legislative developments –Federal, state & model Video teleconference with the State of Washington Planning “First Wave” agencies at DGIF Federal Bridge Certification Architecture at UVa

4 4 What are the Questions? What is it? Who’s using it? To what degree? Do we need it? Do we need it for everything? How do we get there?

5 5 What a Digital Signature is NOT NOT a handwritten signature NOT a digitized signature NOT the same as an electronic signature

6 6 What a Digital Signature IS It results from an arithmetic operation on data – the data it “signs” cannot be altered without detection It uses public & private “keys” It relies on “certificates” issued to individuals within a PKI It involves sophisticated encryption It provides –a high level of authentication –technical non-repudiation –confidentiality

7 7 Demystifying Digital Signatures A video, courtesy of Washington State Department of Information Services

8 8 “Electronic” or “Digital” “ Digital” is a subset of “electronic” There are a variety of ways to create an ‘electronic’ sig: –PIN’s –digitized (stroked) signatures –other forms of biometrics –or even double-clicks –…. any electronic form, given with the “intent to sign”

9 9 Are Digital Certificates & signatures “right” for every signing process? Not necessarily - a spectrum of electronic signatures could be valid A variety of electronic signatures are already in use (e.g., digi tized signatures on the Driver’s license, PIN numbers, etc.) Criteria should be applied appropriately to match methods of e-signing to business processes

10 10 Parts of a “managed” PKI? Key “PKI” components include –Registration Authorities - authenticate individual id’s –Certification Authorities - vouch for validity of certificates –Certificate Repositories - publicly available databases –Mechanism to recover/reissue lost/compromised keys –Certificate Policies & other governing practices

11 11 What is a “PKI” A “public key infrastructure” is the complex framework within which digital signatures operate to associate individuals reliably with the public key of a public/private key pair PKI = laws, policies, hardware, software, business processes & people

12 12 Other Key Points about PKI’s 1The technology works -- we don’t need to prove it 2Standards are still evolving but well developed enough to proceed 3The technology is new & complex, BUT the hardest issues to resolve will be policy, legal, and business 4A PKI is costly…. but compared to what?

13 13 What are the trends toward adoption? To this point, relatively slow Pace will quicken Demand will grow The number & pace of pilots, deployments & legislative initiatives is growing –nationally & internationally

14 14 Growth in Federal Certificates in 2000 FAA from 1000 to 20,000 FDIC from 1000 to 7,000 NASA from 1000 to 25,000 DOE from 1000 to 20,000 DOD has issued 50,000 certificates –By 2002, 4 Million

15 15 Progress in Other States A number of states have limited deployments running as pilots or production A number of others have active RFP’s outstanding –including Washington, Illinois, Texas & New York –California and Minnesota are also active

16 16 Our current position…... We are well behind the feds We are behind a number of other states, but not at the back of pack We can gain a leadership position by –leveraging the experiences of other states –adapting “best of breed” or model policies and practices to Virginia’s needs

17 17 Does COVA need a PKI & Digital Signatures ? Yes Digital signatures are a key element of a robust e-commerce environment Failure to provide will –impede e-commerce and economic growth –postpone realizing the associated benefits of convenience and efficiency

18 18 1. Decide & Commit NOW To keep pace with outside events To be ready for the 2001 General Assembly work needs to be completed before this time next year Work must begin today

19 19 2. Proposals for the 2000 General Assembly Proposed legislation –to retain ability to adopt digital signatures, and –to restore ability to adopt other forms of electronic signatures A resolution supporting policies & principles

20 20 3. Develop Bridge Certification Architecture Based on the federal model In collaboration with First Wave efforts University of Virginia to lead

21 21 4. Commission First Wave Deployments First Wave will demonstrate: Internal to an agency Agency to agency Agency to business partners Agency to local government Agency to general public (limited client population)

22 22 First Wave Sponsors Agencies & Localities –Chesterfield County –Department of Game & Inland Fisheries –Department of Information Technology –Department of Motor Vehicles –Department of Transportation –Fairfax County –VIPNet Others may join by proposal within 30 days

23 23 5. Oversight, Coordination & Staffing Appoint an Oversight Committee –Chaired by Secretary of Technology Establish a new COTS work group –Assisted by full time staff –Including appointed central agency participants –Including industry partners –In collaboration with CBCA initiative –PSA Work Group addresses broader, ongoing agenda

24 24 6. Interim Certificate Authorities Department of Game & Inland Fisheries VIPNet contractor in agreement with the Department of Information Technology Any others -- tbd

25 25 7. Funding Short term –Up to $100k from the Technology Infrastructure Fund –First Wave organizations Longer term –Appropriations

26 26 The Seven Point Plan, in summary……. 1Decide and commit 2Pursue support in the 2000 General Assembly 3Develop a COVA Bridge Certification Architecture 4Commission First Wave Deployments 5Establish project Oversight & Plans 6Designate interim Certificate Authorities 7Provide Seed Money

27 27 Results of the Plan >Foundation of operating decisions & rules >A Bridge Certification Architecture >An Enterprise PKI Architecture >An Acquisition Strategy >Business Model >Invested knowledge & skills base >Trust & confidence in a working solution, extensible to other Commonwealth public sector, business partners & to the public

28 28 What about………. Biometrics? Smart cards? VPN’s? S/mime and other standards? Interfacing with legacies? Single sign on? Interoperability?

29 29 A Final Report…… A Work in Progress Many important questions remain Some are within our influence & control our own legal, policy & business frameworks products, tools, architectures & standards pace Some are being driven by external events federal legislation evolution of standards evolution of products & tools

30 30 In Closing Remarks from PSA Members COTS Discussion

Download ppt "Toward the Use of DIGITAL Signatures in the Commonwealth of Virginia Prepared for the Council on Technology Services by the Privacy, Security & Access."

Similar presentations

Manatt manatt | phelps | phillips New York State Health Information Technology Summit Initiative Overview and Update Rachel Block, Project Director United.

Manatt manatt | phelps | phillips New York State Health Information Technology Summit Initiative Overview and Update Rachel Block, Project Director United.
A strategy for a Secure Information Society –

A strategy for a Secure Information Society –
Illinois Justice Network Portal Implementation Board Meeting February 11, 2004.

Illinois Justice Network Portal Implementation Board Meeting February 11, 2004.
HHA, A N e w W a y o f W o r k i n g T o g e t h e r Status of Preparation of the Conference of Ministers of Health and Finance F. Sergent (AfDB) and B.

HHA, A N e w W a y o f W o r k i n g T o g e t h e r Status of Preparation of the Conference of Ministers of Health and Finance F. Sergent (AfDB) and B.
EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.

EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.
Electronic Submission of Medical Documentation (esMD) Face to Face Informational Session esMD Requirements, Priorities and Potential Workgroups – 2:00pm.

Electronic Submission of Medical Documentation (esMD) Face to Face Informational Session esMD Requirements, Priorities and Potential Workgroups – 2:00pm.
Public Key Infrastructure (PKI) Hosting Services.

Public Key Infrastructure (PKI) Hosting Services.
FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.

FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.
ESign-Online Digital Signature Service February 2015 Controller of Certifying Authorities Department of Electronics and Information Technology Ministry.

ESign-Online Digital Signature Service February 2015 Controller of Certifying Authorities Department of Electronics and Information Technology Ministry.
Systems Engineering in a System of Systems Context

Systems Engineering in a System of Systems Context
Connecting People With Information DoD Net-Centric Services Strategy Frank Petroski October 31, 2006.

Connecting People With Information DoD Net-Centric Services Strategy Frank Petroski October 31, 2006.
U.S. Environmental Protection Agency Central Data Exchange EPA E-Authentication Pilot NOLA Network Node Workshop February 28, 2005.

U.S. Environmental Protection Agency Central Data Exchange EPA E-Authentication Pilot NOLA Network Node Workshop February 28, 2005.
EDUCAUSE Fed/Higher ED PKI Coordination Meeting

EDUCAUSE Fed/Higher ED PKI Coordination Meeting
Office of the Chief Information Officer EFCOG Annual Meeting Fred Catoe (IM-32) U.S. Department of Energy.

Office of the Chief Information Officer EFCOG Annual Meeting Fred Catoe (IM-32) U.S. Department of Energy.
Centers for Disease Control and Prevention Office of the Associate Director for Communication Electronic Health Records/Meaningful Use and Public Health.

Centers for Disease Control and Prevention Office of the Associate Director for Communication Electronic Health Records/Meaningful Use and Public Health.
Presentation By: Chris Wade, P Eng. Finally … a best practice for selecting an engineering firm.

Presentation By: Chris Wade, P Eng. Finally … a best practice for selecting an engineering firm.
E-Government Security and necessary Infrastructures Dimitrios Lekkas Dept. of Systems and Products Design Engineering University of the Aegean

E-Government Security and necessary Infrastructures Dimitrios Lekkas Dept. of Systems and Products Design Engineering University of the Aegean
Identity and Access Management IAM A Preview. 2 Goal To design and implement an identity and access management (IAM) middleware infrastructure that –

Identity and Access Management IAM A Preview. 2 Goal To design and implement an identity and access management (IAM) middleware infrastructure that –
April 2, 2013 Longitudinal Data system Governance: Status Report Alan Phillips Deputy Director, Fiscal Affairs, Budgeting and IT Illinois Board of Higher.

April 2, 2013 Longitudinal Data system Governance: Status Report Alan Phillips Deputy Director, Fiscal Affairs, Budgeting and IT Illinois Board of Higher.
Resiliency Rules: 7 Steps for Critical Infrastructure Protection.

Resiliency Rules: 7 Steps for Critical Infrastructure Protection.

Similar presentations

Ads by Google