Presentation is loading. Please wait.

Presentation is loading. Please wait.

Francesco Gennai, Francesco [dot] Gennai [at] isti [dot] cnr [dot] it Alba Shahin, Alba [dot] Shahin [at] isti [dot] cnr [dot] it 1 IST-CNR / CNIPA --

Published byHilary Foster Modified over 9 years ago

Similar presentations

Presentation on theme: "Francesco Gennai, Francesco [dot] Gennai [at] isti [dot] cnr [dot] it Alba Shahin, Alba [dot] Shahin [at] isti [dot] cnr [dot] it 1 IST-CNR / CNIPA --"— Presentation transcript:

1 Francesco Gennai, Francesco [dot] Gennai [at] isti [dot] cnr [dot] it Alba Shahin, Alba [dot] Shahin [at] isti [dot] cnr [dot] it 1 IST-CNR / CNIPA -- IETF 71

2 PEC: Posta Elettronica Certificata (Certified Electronic Mail)  What is PEC?  Equivalent to the Registered Mail service with Return Receipt.  Why PEC?  In 2000, the Italian Government decided to adopt electronic exchange of docs between its Public Administrations.  By the end of 2008, non-compliant administrations will have their postal financing reduced. IST-CNR / CNIPA -- IETF 71 2

3 Verify that it’s a Transport msg Provider: mailbox for take-charge receipts server-to-server interaction PEC domains Access point xml -, Sender ID verification; -, incoming msg formal checks Acceptance receipt Transport Message Reception point Incoming msg verification: -Transport msg -Signature validity Take-charge receipt xml Delivery point xml Delivery receipt Sender Mailbox Recipient Mailbox xml Sender (PEC) Receiver (PEC) 3

4 PEC transport message Headings and addresses Message body Headings and addresses: X-Reference-Message-ID: Message-ID: From: “[original sender]” Reply-to: [original-sender] Subject: CERTIFIED-MAIL: [original subject] X-transport: certified-mail X-ReceiptType: Human readable certification data Machine readable XML certification data Headings and addresses Message body Digital signature Original messageTransport message { IST-CNR / CNIPA -- IETF 71 4

5 PEC receipt Headings and addresses Message body Headings and addresses: X-Reference-Message-ID: Message-ID: From: “[original sender]” Subject: [notification type]: [original subject] X-Receipt: Human readable certification data Machine readable XML certification data Headings and addresses Message body Digital signature Original messageReceipt { IST-CNR / CNIPA -- IETF 71 5

6 Characteristics  Server-to-server interaction  Client-server authentication  (server) Non-repudiation, with proof of origin  Message integrity  XML data containing certification information  Digital signature using FIPS 140-2 Hardware Security Module  Logs for all PEC operations  Formal syntax and virus checks both on outgoing and incoming messages.  Used implementations exist. IST-CNR / CNIPA -- IETF 71 6

7  ISTI-CNR was asked to handle the testing of interoperability of PEC by CNIPA.  Intent of request for publication as Informational RFC.  Interest in further development. IST-CNR / CNIPA -- IETF 71 7

Download ppt "Francesco Gennai, Francesco [dot] Gennai [at] isti [dot] cnr [dot] it Alba Shahin, Alba [dot] Shahin [at] isti [dot] cnr [dot] it 1 IST-CNR / CNIPA --"

Similar presentations

Reinventing Email using REST. Anything addressable by a URI is called a resource GET, PUT, POST, DELETE WebDAV (MOVE, LOCK)

Reinventing using REST. Anything addressable by a URI is called a resource GET, PUT, POST, DELETE WebDAV (MOVE, LOCK)
Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.
Practical Digital Signature Issues. Paving the way and new opportunities. www.oasis-open.org Juan Carlos Cruellas – DSS-X co-chair Stefan Drees - DSS-X.

Practical Digital Signature Issues. Paving the way and new opportunities. Juan Carlos Cruellas – DSS-X co-chair Stefan Drees - DSS-X.
IETF Trade Working Group January 2000 XML Messaging Overview January 2000.

IETF Trade Working Group January 2000 XML Messaging Overview January 2000.
Web Service Security CS409 Application Services Even Semester 2007.

Web Service Security CS409 Application Services Even Semester 2007.
Addressing spam email and enforcing a Do Not Email Registry using a Certified Electronic Mail System Information Technology Advisory Group, Inc.

Addressing spam and enforcing a Do Not Registry using a Certified Electronic Mail System Information Technology Advisory Group, Inc.
Module 6 Implementing Messaging Security. Module Overview Deploying Edge Transport Servers Deploying an Antivirus Solution Configuring an Anti-Spam Solution.

Module 6 Implementing Messaging Security. Module Overview Deploying Edge Transport Servers Deploying an Antivirus Solution Configuring an Anti-Spam Solution.
Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.

Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.
Exchange Network Key Management Services A Security Component February 28, 2005 The Exchange Network Node Mentoring Workshop.

Exchange Network Key Management Services A Security Component February 28, 2005 The Exchange Network Node Mentoring Workshop.
2-Jun-15 1 ACCESSING ON LINE SERVICES PROTECTED BY THE ITALIAN EID GIOVANNI MANCA National Center for Information technology in Public Administration (CNIPA)

2-Jun-15 1 ACCESSING ON LINE SERVICES PROTECTED BY THE ITALIAN EID GIOVANNI MANCA National Center for Information technology in Public Administration (CNIPA)
Workshop on registered electronic mail policies and implementation Ankara, 16-17 March 2015 Davide Mula REM country practice in legal infrastructure,

Workshop on registered electronic mail policies and implementation Ankara, March 2015 Davide Mula REM country practice in legal infrastructure,
Implementing Application Protocols. Overview An application protocol facilitates communication between applications. For example, an email client uses.

Implementing Application Protocols. Overview An application protocol facilitates communication between applications. For example, an client uses.
Ministry of Transport, Information Technology and Communications Technological base: Interoperability Tsvetanka Kirilova Ministry of TITC Bulgaria.

Ministry of Transport, Information Technology and Communications Technological base: Interoperability Tsvetanka Kirilova Ministry of TITC Bulgaria.
4 August 2005draft-burger-simple-imdn-011 Instant Message Delivery Notification (IMDN) for Presence and Instant Messaging (CPIM) Messages draft-burger-simple-imdn-01.

4 August 2005draft-burger-simple-imdn-011 Instant Message Delivery Notification (IMDN) for Presence and Instant Messaging (CPIM) Messages draft-burger-simple-imdn-01.
Digital Signature Xiaoyan Guo/102587 Xiaohang Luo/104446.

Digital Signature Xiaoyan Guo/ Xiaohang Luo/
COEN 351 Non-Repudiation. A non-repudiation service provides assurance of the origin or delivery of data in order to protect the sender against false.

COEN 351 Non-Repudiation. A non-repudiation service provides assurance of the origin or delivery of data in order to protect the sender against false.
E-mail Security using Encryption Security Features Message Origin Authentication - verifying that the sender is who he or she says they are Content Integrity.

Security using Encryption Security Features Message Origin Authentication - verifying that the sender is who he or she says they are Content Integrity.
Web Application Authentication with PKI & Other Functions Bill Weems & Mark B. Jones Academic Technology University of Texas Health Science Center at Houston.

Web Application Authentication with PKI & Other Functions Bill Weems & Mark B. Jones Academic Technology University of Texas Health Science Center at Houston.
1 SMTP Transport Configuration SMTP Configurations and Virtual Servers Customizing the SMTP Service.

1 SMTP Transport Configuration SMTP Configurations and Virtual Servers Customizing the SMTP Service.
Module 4 Managing Client Access. Module Overview Configuring the Client Access Server Role Configuring Client Access Services for Outlook Clients Configuring.

Module 4 Managing Client Access. Module Overview Configuring the Client Access Server Role Configuring Client Access Services for Outlook Clients Configuring.

Similar presentations

Ads by Google