Presentation is loading. Please wait.

Presentation is loading. Please wait.

Selected problems of the e-signature law and of its implementation Doc. RNDr. Daniel Olejár, CSc. Department of computer science Comenius University, Bratislava.

Published byBartholomew Taylor Modified over 9 years ago

Similar presentations

Presentation on theme: "Selected problems of the e-signature law and of its implementation Doc. RNDr. Daniel Olejár, CSc. Department of computer science Comenius University, Bratislava."— Presentation transcript:

1 Selected problems of the e-signature law and of its implementation Doc. RNDr. Daniel Olejár, CSc. Department of computer science Comenius University, Bratislava olejar@dcs.fmph.uniba.sk

2 Background and history of Slovak e-signature law (1) The changes induced by use of information and communication technologies (ICT) serious obstacle - lack of trust caused by security problems: how to guarantee the integrity and authenticity of messages cryptographic solutions: digital signatures based on one- way hash functions and asymmetric ciphers e-commerce: international character, the national solutions must be mutually compatible EU - Directive 1999/93/EC on a Community framework for electronic signatures

3 Background and history of Slovak e-signature law (2) Ministry of economy is preparing Slovak e-signature law since 1999 and produced numerous versions of the law the governmental proposals were repeatedly returned by Legislative council the slowly evolving e-commerce needs the law An expert group was created in the end of 2000 under Slovak computer science society. This group prepared another e-signature law, which was submitted to the Parliament as a deputy proposal Governmental proposal of e-signature law was not completed yet

4 Key problems of e-signature law (1) Creating e-signature law we compared many national laws, model law of UNCITRAL and international standards though they differ, they must address some basic problems. The difference between governmental and deputy proposals can be demonstrated especially on these basic problems: the approach how to write the law: up to down or down to up the philosophy of the law (Directive of EU or a model law of UNCITRAL or another national law) technological neutrality vs. practical solutions (electronic signature implemented by digital signature)

5 Key problems of e-signature law (2) Scope of the law (open or closed systems) levels of e-signatures and certificates (ordinary and advanced e-signatures, ordinary and qualified certificates) electronic signatures of legal persons and CA PKI architecture hierarchical tree or a mesh? Cryptographic key management –generation of cryptographic keys for clients, –client’s key protection, – key escrow –key ageing

6 Key problems of e-signature law (3) Role of state in building PKI - the State electronic signature bureau Security problems: –protection of cryptographic keys (cryptographic key management in CA) –availability of archived data –secure storage of clients private (signing) key –during creating an e-signature use of private key in plaintext form do you know what are you signing?

7 Conclusions The idea of electronic signature is relatively simple. The implementation of cryptographic solutions causes lot of problems of legislative, technological, cryptological, information security, organisational and other character. We discussed some of problems we considered most important to write a practically apply-able law. More information www.informatika.sk/e-podpis/

Download ppt "Selected problems of the e-signature law and of its implementation Doc. RNDr. Daniel Olejár, CSc. Department of computer science Comenius University, Bratislava."

Similar presentations

A strategy for a Secure Information Society –

A strategy for a Secure Information Society –
1 ABCs of PKI TAG Presentation 18 th May 2004 Paul Butler.

1 ABCs of PKI TAG Presentation 18 th May 2004 Paul Butler.
Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.
Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
1 Lecture 17: SSL/TLS history, architecture basic handshake session initiation/resumption key computation negotiating cipher suites application: SET.

1 Lecture 17: SSL/TLS history, architecture basic handshake session initiation/resumption key computation negotiating cipher suites application: SET.
CS470, A.SelcukSSL/TLS & SET1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

CS470, A.SelcukSSL/TLS & SET1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.
1 Network Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

1 Network Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Dematerialization of Organisations’ Key Business Processes Security and e-Invoicing ATHENEE PALACE HILTON, Bucuresti September 21 st 2004 Genovel Iovu.

Dematerialization of Organisations’ Key Business Processes Security and e-Invoicing ATHENEE PALACE HILTON, Bucuresti September 21 st 2004 Genovel Iovu.
Legal Reflexions concerning Digital Archiving Jos Dumortier K.U.Leuven University – Belgium Interdisciplinary Centre for Law & ICT (ICRI) ECPRD twin seminar.

Legal Reflexions concerning Digital Archiving Jos Dumortier K.U.Leuven University – Belgium Interdisciplinary Centre for Law & ICT (ICRI) ECPRD twin seminar.
Cryptography. 2 Objectives Explain common terms used in the field of cryptography Outline what mechanisms constitute a strong cryptosystem Demonstrate.

Cryptography. 2 Objectives Explain common terms used in the field of cryptography Outline what mechanisms constitute a strong cryptosystem Demonstrate.
21 mai 2015 Bridges between Certification Authorities.

21 mai 2015 Bridges between Certification Authorities.
PAPERLESS BUSINESS in GEORGIAN FINANCIAL SECTOR NANA ENUKIDZE - Advisor to the Governor.

PAPERLESS BUSINESS in GEORGIAN FINANCIAL SECTOR NANA ENUKIDZE - Advisor to the Governor.
Legal Issues on PKI & qualified electronic certificates. THIBAULT VERBIEST Attorney-at-law at the Brussels and Paris Bar Professor at the Universities.

Legal Issues on PKI & qualified electronic certificates. THIBAULT VERBIEST Attorney-at-law at the Brussels and Paris Bar Professor at the Universities.
Cryptography and Authentication Lab ECE4112 Group4 Joel Davis Scott Allen Quinn.

Cryptography and Authentication Lab ECE4112 Group4 Joel Davis Scott Allen Quinn.
Information security An introduction to Technology and law with focus on e-signature, encryption and third party service Yue Liu Feb.2008.

Information security An introduction to Technology and law with focus on e-signature, encryption and third party service Yue Liu Feb.2008.
6/1/20151 Digital Signature and Public Key Infrastructure Course:COSC513-01 Instructor:Professor Anvari Student ID:106845 Name:Xin Wen Date:11/25/00.

6/1/20151 Digital Signature and Public Key Infrastructure Course:COSC Instructor:Professor Anvari Student ID: Name:Xin Wen Date:11/25/00.
Department of Information Engineering1 Major Concerns in Electronic Commerce Authentication –there must be proof of identity of the parties in an electronic.

Department of Information Engineering1 Major Concerns in Electronic Commerce Authentication –there must be proof of identity of the parties in an electronic.
DIGITAL SIGNATURE AND ELECTRONIC DOCUMENTS IN ITALY Prof. Pierluigi Ridolfi AIPA Authority for Information Technology in the Public Administration V. Solferino,

DIGITAL SIGNATURE AND ELECTRONIC DOCUMENTS IN ITALY Prof. Pierluigi Ridolfi AIPA Authority for Information Technology in the Public Administration V. Solferino,
E-Procurement: Digital Signatures and Role of Certifying Authorities Jagdeep S. Kochar CEO, (n)Code Solutions.

E-Procurement: Digital Signatures and Role of Certifying Authorities Jagdeep S. Kochar CEO, (n)Code Solutions.
FIT3105 Smart card based authentication and identity management Lecture 4.

FIT3105 Smart card based authentication and identity management Lecture 4.

Similar presentations

Ads by Google