Download presentation
Presentation is loading. Please wait.
1
Some initiatives of the Belgian government in order to stimulate E-government Frank Robben General manager Crossroads Bank for Social Security Sint-Pieterssteenweg 375 1040 Brussel E-mail: Frank.Robben@ksz.fgov.be Crossroads Bank for Social Security
2
2 18/06/200 1 Crossroads Bank for Social Security Plan of the exposure n model implemented for data exchange between back offices n proposal for an electronic identity card n proposal for an organization model on PKI-infrastructure
3
3 18/06/200 1 Crossroads Bank for Social Security Definition of the problem n in all countries, many administrations are active in all the fields of public affairs : e.g. tax law, social security, transport, internal affairs n information is one of the main production factors for each of those institutions n the information needed by those many institutions is often similar -identification data -data concerning e.g. the professional, social, fiscal, familial status -periodical data related to working periods and wages -data concerning certain events, e.g. the occurence of a social risk
4
4 18/06/200 1 Crossroads Bank for Social Security Definition of the problem n lack of coordination in the area of information management leads to -administrative overloading of the citizens, their employers, the municipality of residence,... -waste of efficiency and time within the institutions -suboptimal support of the policy -higher possibilities of fraud
5
5 18/06/200 1 Crossroads Bank for Social Security Possible solutions n central data management (big brother concept) -not frequently implemented privacy protection technical feasibility threat for the autonomy of the institutions n distributed data management (network concept) -decentralised but unique data gathering -decentralised and distributed data storage, with functional task-sharing between public institutions -data exchange via a network
6
6 18/06/200 1 Crossroads Bank for Social Security A model for data exchange between back offices n structure of the network n unique identification key n register of references n basic organisation principles -data collection -data storage -data exchange n methods of electronic data exchange
7
sectorial organising unit Central organising unit external database KSZ-BCSS sectorial organising unit external database external network Crossroads Bank for Social Security
8
8 18/06/200 1 Crossroads Bank for Social Security Unique identification key n natural persons and enterprises/establishments n unique n invariable n mentioned on an official document delivered to the holder n used by -every public institution -every person declaring information to public institutions
9
9 18/06/200 1 Crossroads Bank for Social Security Register of references n 3 functions: -preventive access control -routing of information -automatic transmission of information n structure: -register of persons: what persons in what capacities have personal files in what public institutions for what periods -data availability register: what data are available in what public institutions for what types of files -access authorization register: what data may be transmitted to what institutions for what types of files
10
10 18/06/200 1 Crossroads Bank for Social Security Organisation principles of the network n obligatory participation of all public institutions n every participant to the network can be supplier or addressee of data n coordination and management of the network by the central organising unit -normalisation -stimulation -project management
11
11 18/06/200 1 Crossroads Bank for Social Security Organisation principles of the network n data collection -previous consultation of the network obligatory n data storage -decentralised -distributed -functional task-sharing between public institutions -valorization of external databases
12
12 18/06/200 1 Crossroads Bank for Social Security Organisation principles of the network n data exchange -can be initiated by the institution that needs the information by the institution that disposes of new information by the institution that manages the network -basically via the central organising unit -previous authorization by an independent Control Committee -systematical logging of all exchanges
13
13 18/06/200 1 Crossroads Bank for Social Security Data protecting effects network concept implies n no central data storage n data exchange via the central organising unit => precautionary control on the legitimacy of data exchange n previous authorization of data exchange by an independent Control Committee
14
14 18/06/200 1 Crossroads Bank for Social Security Advantages of data sharing (1/2) n improvement of the service offered to the citizen/ enterprise -faster processing of files -more accurate processing of files -reduction of the administrative charge -more guarantees on data protection n advantageous effects for public sector -control of the administrative costs -more efficient fraud detection -more efficient policy support -more flexibility in answering to changing needs
15
15 18/06/200 1 Crossroads Bank for Social Security Advantages of data sharing (2/2) n more efficient working of the administrations -prevention of double work by task-sharing -optimalisation of task execution by computerisation -occasion for a self-critical attitude regarding internal organisation -basis for efficiency and quality assurance
16
16 18/06/200 1 Crossroads Bank for Social Security Smart cards n possible functions -identification of the holder natural person enterprise - establishment -authentication of the holder natural person enterprise - establishment -generation of an electronic signature -proof of qualities, characteristics, access rights, … -transport of data -transport of programs
17
17 18/06/200 1 Crossroads Bank for Social Security Electronic identity card n working proposal -storage of identity data -possibly storage of insurance status in the health care sector -possibility of storage of private key for generation of electronic signature -possibility of storage of private key(s) for proof of qualities -“rentable” place for storage of other data -no biometrics -no data concerning driving licence
18
18 18/06/200 1 Crossroads Bank for Social Security Model on PKI-infrastructure n legal framework -European Directive 1999/93/EC -adaptation art. 1322 Civil Code -bill concerning functioning of the certification-service- providers n proposal for an organization model on PKI- infrastructure, approved by the Council of the ministers of 22 November 2000
19
19 18/06/200 1 Crossroads Bank for Social Security European Directive n Member States shall ensure that “qualified” electronic signatures -have the same value as a handwritten signature -are admissible as evidence in legal proceedings n “qualified” means -based on a qualified certificate, t. means a certificate which meets the requirements laid down in Annex I of the Directive -that is provided by a certification-service-provider who fulfils the requirements laid down in Annex II of the Directive -and that is created by a secure device which meets the requirements laid down in Annex III of the Directive
20
20 18/06/200 1 Crossroads Bank for Social Security European Directive n an electronic signature can not be denied legal consequences solely on the grounds that it is -not based upon a qualified certificate -not based upon a certificate issued by an accredited certification- service-provider -not created by a secure device n Member States may make the use of electronic signatures in the public sector subject to possible additional requirements which -are related to the specific characteristics of the application concerned -are objective, transparent, proportionate and non-disciminatory -don’t constitute an obstacle to cross-border services
21
21 18/06/200 1 Crossroads Bank for Social Security European Directive n each Member State shall ensure to -the certification-service-providers which are established on its territory -and issue qualified certificates -to the public for the establishment -of an appropriate system of supervision -of a liability scheme n Member States shall not make the provision of certification services subject to a prior authorisation
22
22 18/06/200 1 Crossroads Bank for Social Security European Directive n Member States may introduce voluntary accreditation schemes -aiming at enhanced levels of certification-service provision -based on objective, transparent, proportionate and non- discriminatory conditions -without limiting the number of accredited certification-service- providers
23
23 18/06/200 1 Crossroads Bank for Social Security Adaption art. 1322 Civil code n Addition paragraph 2 “For the purpose of this article can meet the requirement of a signature, a set of electronic data that can be attributed to a particular person and that proves that the content of the act has been maintained”.
24
24 18/06/200 1 Crossroads Bank for Social Security Bill functioning certification-service-providers n Implementation European Directive into Belgian law -provision that qualified electronic signature meets the requirements of art. 1322, p. 2 Civil code -scheme of minimal missions (issuance, management, revocation of certificates) and liability of certification-service- providers -rules at suspension of activities by certification-service- provider -voluntary accreditation scheme -rules regarding liability of certificate holder -supervision and sanctions -possibility to make the use of electronic signatures in the public sector subject to additional requirements
25
25 18/06/200 1 Crossroads Bank for Social Security Organization model: purposes n promote rapid availability of identity certificates n guarantee quality of identity certificates n promote multifunctional and free use of identity certificates n guarantee open market of independent evolving certification authorities n guarantee interoperability between certification authorities n guarantee conformity with evolving technical standards n conformity with the European Directive
26
26 18/06/200 1 Crossroads Bank for Social Security Proposal organization model: notions n identity certificate: proof of identity n attribute certificate: proof of characteristic (for example: function, quality, mandate) n function of registration authority (RA): ‘counter’ where the certificate is requested and that verifies if communicated identity or characteristic is correct; if so, she approves the request and reports this to the certification authority n function of certification authority (CA): produces on the base of the information from the RA a certificate which is linked with a pair of keys and which indicates what the pair of keys further proves, and manages that certificate
27
27 18/06/200 1 Crossroads Bank for Social Security Proposal organization model: scope n identity certificates attribute certificates n with regard to natural persons legal persons or organizations n used for the generation of electronic signature into the scope of ICT-application of the government which require an electronic signature in the scope of E-commerce, E-banking, … n no objection to (elements of) the organization model being used voluntarily beyond the specified scope
28
28 18/06/200 1 Crossroads Bank for Social Security Proposal organization model: additional requirements n possibility to appeal to municipality as registration authority for identity certificates n possibility of separate use of identity and attribute certificates n private key associated to identity certificate is saved on a secure processorchip card with at least pincode protection n free use and verification of identity certificates n quality and operability standards
29
29 18/06/200 1 Crossroads Bank for Social Security Proposal of organization model: working-out n government publishes additional requirements n CA prove that they meet the additional requirements n at call for electronic identity card, the holder can have on this card a private key that is associated to an identity certificate -for which the municipal has served as registration authority -that is issued by a CA meeting the additional requirements and chosen by the holder n electronic identity card contains necessary space to store other private keys associated to attribute certificates that holder can obtain at CA of his choice
30
30 18/06/200 1 Crossroads Bank for Social Security n private key associated to identity certificate on electronic identity card can be used to generate electronic signature into the scope of ICT-applications of the government which require an electronic signature Proposal of organization model: working-out
31
31 18/06/200 1 Crossroads Bank for Social Security Proposal of organization model: scheme CM/CP/CI (7) (8)(9) Matti ERA Face to face identification De Gemeenten (1) RCRC (3) Bull Meikäläinen PIN & PUK1 (10b) (10a1) (11) (13) - (10a2) (2), (12) VRK (4) CA (5) (6) -code
Similar presentations
© 2024 SlidePlayer.com. Inc.
All rights reserved.