Presentation is loading. Please wait.

Presentation is loading. Please wait.

Brooks Evans – CISSP-ISSEP, Security+ IT Security Officer Arkansas Department of Human Services.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Brooks Evans – CISSP-ISSEP, Security+ IT Security Officer Arkansas Department of Human Services."— Presentation transcript:

1 Brooks Evans – CISSP-ISSEP, Security+ IT Security Officer Arkansas Department of Human Services

2 Topics  Requirements of State Agencies  Risk Assessment  Digital vs. Electronic Signatures  PKI  Available Technologies

3 Requirements of State Agencies  Act 722 of 2007: State agencies are required to use or permit the use of electronic signatures by June 2009.

4 Risk Assessment for Business Process 1. Importance of identity verification for trusted person 2. Importance of knowing person who signed was person validated in #1 3. Importance that document has not changed since it was signed http://www.dis.arkansas.gov/poli_stan_bestpract/standards.htm

5 Digital vs. Electronic Signatures  Electronic Signature: An electronic sound, symbol, or process attached to or logically associated with a record and executed or adopted by a person with the intent to sign the record.

6 Digital vs. Electronic Signatures  Digital Signature: A type of electronic signature that relies on a public key infrastructure (PKI) to provide a unique identifier and link the signature to the record, authenticating both the signer and the document.

7 Public Key Infrastructure

8 Available Technologies  Low Level Validation  Self-Generated Certificate  Available in Word and Acrobat for Free  Image of Wet Signature  User scans signature and pastes into document  Signature on Electronic Tablet  User signs document on screen without special signature software

9 Available Technologies  Medium Level Validation  Certificate Purchased from Public CA  ~$20/year  Easy for third parties to acquire  Difficult to manage with large number of users  Wet-Signature with Trusted Method ~$300/device~$100/license Software such as IntegriSign

10 Available Technologies  Medium Level Validation  Internal CA  Requires significant policy and technical setup  Requires SAS70 audit and root signing if to be trusted outside organization  Automates distribution and management of large number of user certificates to user devices such as PC or smart card  Certificate price decreases as use increases

11 Available Technologies  High Level Validation  Same methods as medium level, but the CA or root signer requires more documentation to validate identity  This typically costs more due to higher risk and bond coverage

12 Brooks Evans – CISSP-ISSEP, Security+ IT Security Officer Arkansas Department of Human Services

Download ppt "Brooks Evans – CISSP-ISSEP, Security+ IT Security Officer Arkansas Department of Human Services."

Similar presentations

Public Key Infrastructure and Applications

Public Key Infrastructure and Applications
1 ABCs of PKI TAG Presentation 18 th May 2004 Paul Butler.

1 ABCs of PKI TAG Presentation 18 th May 2004 Paul Butler.
Experiences with Massive PKI Deployment and Usage Daniel Kouřil, Michal Procházka Masaryk University & CESNET Security and Protection of Information 2009.

Experiences with Massive PKI Deployment and Usage Daniel Kouřil, Michal Procházka Masaryk University & CESNET Security and Protection of Information 2009.
3SKey 3SKey.

3SKey 3SKey.
EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.

EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.
15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.

15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.
SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.

SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.
1st Expert Group Meeting (EGM) on Electronic Trade-ECO Cooperation on Trade Facilitation 23-25 May 2012, Kish Island, I.R.IRAN.

1st Expert Group Meeting (EGM) on Electronic Trade-ECO Cooperation on Trade Facilitation May 2012, Kish Island, I.R.IRAN.
 A public-key infrastructure ( PKI ) is a set of hardware, software, people, policies, and procedures needed to create, manage, distribute, use, store,

 A public-key infrastructure ( PKI ) is a set of hardware, software, people, policies, and procedures needed to create, manage, distribute, use, store,
Certification Authority. Overview  Identifying CA Hierarchy Design Requirements  Common CA Hierarchy Designs  Documenting Legal Requirements  Analyzing.

Certification Authority. Overview  Identifying CA Hierarchy Design Requirements  Common CA Hierarchy Designs  Documenting Legal Requirements  Analyzing.
ESign-Online Digital Signature Service February 2015 Controller of Certifying Authorities Department of Electronics and Information Technology Ministry.

ESign-Online Digital Signature Service February 2015 Controller of Certifying Authorities Department of Electronics and Information Technology Ministry.
AAI and universities Roles and functions. The Smart Card Architect Objectives zBuild a secure Authentication and Authorization Infrastructure between.

AAI and universities Roles and functions. The Smart Card Architect Objectives zBuild a secure Authentication and Authorization Infrastructure between.
6/1/20151 Digital Signature and Public Key Infrastructure Course:COSC513-01 Instructor:Professor Anvari Student ID:106845 Name:Xin Wen Date:11/25/00.

6/1/20151 Digital Signature and Public Key Infrastructure Course:COSC Instructor:Professor Anvari Student ID: Name:Xin Wen Date:11/25/00.
Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.

Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.
DESIGNING A PUBLIC KEY INFRASTRUCTURE

DESIGNING A PUBLIC KEY INFRASTRUCTURE
David L. Wasley Information Resources & Communications Office of the President University of California Directories and PKI Basic Components of Middleware.

David L. Wasley Information Resources & Communications Office of the President University of California Directories and PKI Basic Components of Middleware.
EDUCAUSE Fed/Higher ED PKI Coordination Meeting

EDUCAUSE Fed/Higher ED PKI Coordination Meeting
November 1, 2006Sarah Wahl / Graduate Student UCCS1 Public Key Infrastructure By Sarah Wahl.

November 1, 2006Sarah Wahl / Graduate Student UCCS1 Public Key Infrastructure By Sarah Wahl.
In the CA I trust. A look at Certification Authorities James E. Shearer CSEP 590 March 8 th 2006.

In the CA I trust. A look at Certification Authorities James E. Shearer CSEP 590 March 8 th 2006.
NDSU Lunchbytes Are They Really Who They Say They Are? Digital or Electronic Signature Information Rick Johnson, Theresa Semmens, Lorna Olsen April 24,

NDSU Lunchbytes "Are They Really Who They Say They Are?" Digital or Electronic Signature Information Rick Johnson, Theresa Semmens, Lorna Olsen April 24,

Similar presentations

Ads by Google