Presentation is loading. Please wait.

Presentation is loading. Please wait.

Burton Group Catalyst Workshop June Leung on behalf of Stephen Wilson Chair, OASIS PKI Adoption TC The OASIS PKI Adoption TC Objectives and Work Program.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Burton Group Catalyst Workshop June Leung on behalf of Stephen Wilson Chair, OASIS PKI Adoption TC The OASIS PKI Adoption TC Objectives and Work Program."— Presentation transcript:

1 Burton Group Catalyst Workshop June Leung on behalf of Stephen Wilson Chair, OASIS PKI Adoption TC The OASIS PKI Adoption TC Objectives and Work Program Burton Group Catalyst Workshop June Leung on behalf of Stephen Wilson Chair, OASIS PKI Adoption TC www.oasis-open.org

2 The PKI environment c. 2006 n PKI is resurgent n Embedded PKI is commonplace n We’re all in the midst of a paradigm shift to identity plurality n Digital Certificates can be about relationships as well as (or instead of) personal identity n Successful PKI has always been application specific, not general purpose

3 Resurgent, embedded PKI n Closed (vertical) schemes l US PIV, Identrus, ICAO e-passports, CableLabs, Skype, BankID (Sweden) n Health smartcards l France, Germany, Taiwan, Italy, Austria, Australia … n Digital Credentials l US Patent Office, France, Taiwan, Australia …

4 Identity plurality n “Identity 2.0” (archetype: Cardspace) l Too soon to tell precise outcomes l But it’s a progressive re-think of identity, context, privacy, control etc. l Fundamental concept is plurality of identities. n Stephen Kent’s critique: “For big CAs, there is an implicit assumption that a single certificate is all that a user should need. This assumes that one identity is sufficient for all applications, which contradicts experience”

5 The top five obstacles According to OASIS Surveys 1 & 2: 1. Software applications don’t support PKI 2. Costs too high 3. PKI poorly understood 4. Too much focus on technology (not need) 5. Poor interoperability

6 PKIA TC: Fresh objectives n Continue to overcome obstacles with targeted practical initiatives that improve understanding of PKI n Disseminate case studies n Develop position papers n Liaise more closely with other OASIS efforts, esp. under the umbrella of the new IDtrust Member Section

7 Embedded PKI application: Device authentication Some of the oldest, most successful PKIs are for device authentication: n GSM SIM cards n SSL server certificates n IPsec VPN devices n Cable Open TV set-top boxes

8 Embedded PKI application: Skype n Each Skype subscriber receives a digital certificate embedded in Skype install n “Zero User Interface” (ZUI) principle; i.e. Subscriber unaware of their certificate! n http://share.skype.com/sites/security

9 Embedded PKI application: Medicos’ smartcards n France (500,000) n Taiwan (300,000) n Australia (10,000) l wide range of PKI enabled lodgments l electronic prescribing in development l certificates represent doctor’s qualifications l wholesale supply to hospitals etc.

10 Case Studies n Digital Signatures deployed in US Notary n Digital Signatures used in an international clinical company improve workflow and efficiency. n Certificates provided to Health Care Providers in Australia for business to government transactions. More information? Please visit Idtrust.xml.org

11 www.oasis-open.org OASIS PKI AdoptionTechnical Committee www.oasis-open.org/committees/pki Stephen Wilson swilson@lockstep.com.au 0414 488851

Download ppt "Burton Group Catalyst Workshop June Leung on behalf of Stephen Wilson Chair, OASIS PKI Adoption TC The OASIS PKI Adoption TC Objectives and Work Program."

Similar presentations

Multi-Application in Smart Card-based Devices Christophe Colas, Chief Software Architect August 2002.

Multi-Application in Smart Card-based Devices Christophe Colas, Chief Software Architect August 2002.
Overview of US Federal Identity Management Initiatives Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority and Asst. CIO E-Authentication, NIH.

Overview of US Federal Identity Management Initiatives Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority and Asst. CIO E-Authentication, NIH.
What is the W-SPES Project? Carlo Pentimalli (Prato, Italy)

What is the W-SPES Project? Carlo Pentimalli (Prato, Italy)
15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.

15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.
ULTIMA*HIS - WEB ENABLED -  2004-2010 ITC Software All rights reserved. ITC Software.

ULTIMA*HIS - WEB ENABLED -  ITC Software All rights reserved. ITC Software.
August 2004 Providing Industry-wide Security and Identity Management Solutions.

August 2004 Providing Industry-wide Security and Identity Management Solutions.
Opening Presentation of Notary Reqs 8/5/2004 Tobias Gondrom.

Opening Presentation of Notary Reqs 8/5/2004 Tobias Gondrom.
1/13/05NCASSR PNNL Visit1 Security Tools Area Overview, Credential Management Services, and the PKI Testbed Jim Basney Senior Research Scientist

1/13/05NCASSR PNNL Visit1 Security Tools Area Overview, Credential Management Services, and the PKI Testbed Jim Basney Senior Research Scientist
Page 1 Issues in and perspectives on electronic authentication of health professionals Pascal POITEVIN Marketing and Communication manager GIP-CPS e-Health.

Page 1 Issues in and perspectives on electronic authentication of health professionals Pascal POITEVIN Marketing and Communication manager GIP-CPS e-Health.
The OASIS IDtrust (I M The OASIS IDtrust (Identity and Trusted Infrastructure ) Member Section For more information please see:

The OASIS IDtrust (I M The OASIS IDtrust (Identity and Trusted Infrastructure ) Member Section For more information please see:
Digital Identities for Networks and Convergence Joao Girao, Amardeo Sarma.

Digital Identities for Networks and Convergence Joao Girao, Amardeo Sarma.
David L. Wasley Information Resources & Communications Office of the President University of California Directories and PKI Basic Components of Middleware.

David L. Wasley Information Resources & Communications Office of the President University of California Directories and PKI Basic Components of Middleware.
10/20/2011Pomcor 1 Deployment and Usability of Cryptographic Credentials Francisco Corella Karen Lewison Pomcor.

10/20/2011Pomcor 1 Deployment and Usability of Cryptographic Credentials Francisco Corella Karen Lewison Pomcor.
Click to edit Master title style OASIS PKI Workshop.

Click to edit Master title style OASIS PKI Workshop.
Sentry: A Scalable Solution Margie Cashwell Senior Sales Engineer Sept 2000 Margie Cashwell Senior Sales Engineer

Sentry: A Scalable Solution Margie Cashwell Senior Sales Engineer Sept 2000 Margie Cashwell Senior Sales Engineer
Public Key Superstructure It’s PKI Jim, but not as we know it! 7 th Annual “IDtrust” Symposium 5 March 2008, Gaithersburg MD, USA Stephen Wilson Lockstep.

Public Key Superstructure It’s PKI Jim, but not as we know it! 7 th Annual “IDtrust” Symposium 5 March 2008, Gaithersburg MD, USA Stephen Wilson Lockstep.
Authentication choices! Vincent van Kooten: Business Sales Manager Benelux Distributed by -

Authentication choices! Vincent van Kooten: Business Sales Manager Benelux Distributed by -
Stephen Wilson Chair, PKI Adoption Technical Committee Managing Director, Lockstep, Australia PKIA Goals for 2007 Stephen Wilson Chair, PKI Adoption Technical.

Stephen Wilson Chair, PKI Adoption Technical Committee Managing Director, Lockstep, Australia PKIA Goals for 2007 Stephen Wilson Chair, PKI Adoption Technical.
Obstacles to PKI Deployment and Usage – Conclusions Relevant to pki4ipsec Steve Hanna, Co-chair, OASIS PKI TC.

Obstacles to PKI Deployment and Usage – Conclusions Relevant to pki4ipsec Steve Hanna, Co-chair, OASIS PKI TC.
Enterprise Key Management Infrastructure (EKMI) Arshad Noor CTO, StrongAuth, Inc. Chair, EKMI TC – OASIS

Enterprise Key Management Infrastructure (EKMI) Arshad Noor CTO, StrongAuth, Inc. Chair, EKMI TC – OASIS

Similar presentations

Ads by Google