Presentation is loading. Please wait.

Presentation is loading. Please wait.

GC Credential Management Evolution for the OASIS/World Bank eGov Workshop 17 th April, 2009For information, please contact:

Published byElinor Morris Modified over 9 years ago

Similar presentations

Presentation on theme: "GC Credential Management Evolution for the OASIS/World Bank eGov Workshop 17 th April, 2009For information, please contact:"— Presentation transcript:

1 GC Credential Management Evolution for the OASIS/World Bank eGov Workshop 17 th April, 2009For information, please contact: Bob.Sunday@pwgsc.gc.ca

2 2 Typical GOL Services Canada Site Gateways Clusters EI on the Web Census 2006 (surveys..) E-consultation Dep’t web sites(info) Tax Filing Online My Tax Account Business Tax Account Record of Employment Address Change Interactive Info Service GC Employee Services Passport On-line Secure Channel: The Enabler for Government On-Line Citizens Businesses Visitors Federal Provincial Municipal Business

3 3 Issued epass Certificates (since Sept 2002)

4 4

5 5 So why does GC need to change? $$$$  Decentralized funding  Expense of PKI  Custom GC code Risk based Assurance Model Multi-jurisdiction environment  Provincial, municipal Changing policy requirements  Digital signature  Positioning for future identity possibilities

6 6 Business View of Authentication Interfaces Credential User Interface Program User Interface Credential Service Interface User Department/Agency (RP) Credential Provider(CP)

7 7 Architecture Decisions to support the Business Model Underlying Architecture Proven Implementation Profile One Provider or Many Provider Discovery Approach User Interface consistency Functional Scope Browser-based Single Sign-On Level of Assurance Language Session Reset (Forced Logon) Single Sign- Out

8 8 Decision 1: Underlying Architecture  We are adopting the SAML v2.0 architecture and associated set of technical standards:  SAML v2 was standardized by OASIS in 2005  Adopted by the ITU as X.1141 in 2006  The most frequently recommended standard in the RFI responses  Technical standard most widely supported by COTS products  Most widely implemented in public and private sector federations  Denmark, France, USA, New Zealand, …  Primary objective is to provide long–term interface stability for departments

9 9 Decision 2: Proven Implementation Profile  We are adopting the US E-Authentication Profile for SAML:  The GC interface definition will be based on an existing, live, public sector implementation as a starting point  Less GC customization and associated long-term costs  Reduced risk  Greater alignment with evolving standards  Government’s successful implementations of authentication services based on SAML v2 were considered:  Denmark, USA, New Zealand  Primary objective is to ensure availability of proven interoperable COTS products for departments

10 10 Potential Evolution Strategy New GC- Branded Credential Epass Applications Agency Federated Credential Provincial Federated Credential Bank Federated Credential OpenID etc. Credential New Applications GC Federation Hub Converted Applications Epass Credential

11 11 Questions? Thank You bob.sunday@pwgsc.gc.ca

Download ppt "GC Credential Management Evolution for the OASIS/World Bank eGov Workshop 17 th April, 2009For information, please contact:"

Similar presentations

Www.e-envoy.gov.uk Interoperability at the Pan-European Level John Borras Assistant Director Technology Policy.

Interoperability at the Pan-European Level John Borras Assistant Director Technology Policy.
Overview of US Federal Identity Management Initiatives Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority and Asst. CIO E-Authentication, NIH.

Overview of US Federal Identity Management Initiatives Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority and Asst. CIO E-Authentication, NIH.
15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.

15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.
Certification Authority. Overview  Identifying CA Hierarchy Design Requirements  Common CA Hierarchy Designs  Documenting Legal Requirements  Analyzing.

Certification Authority. Overview  Identifying CA Hierarchy Design Requirements  Common CA Hierarchy Designs  Documenting Legal Requirements  Analyzing.
Chief Information Officer Branch Gestion du dirigeant principal de l’information “We will have a world class public key infrastructure in place” Prime.

Chief Information Officer Branch Gestion du dirigeant principal de l’information “We will have a world class public key infrastructure in place” Prime.
U.S. Environmental Protection Agency Central Data Exchange EPA E-Authentication Pilot NOLA Network Node Workshop February 28, 2005.

U.S. Environmental Protection Agency Central Data Exchange EPA E-Authentication Pilot NOLA Network Node Workshop February 28, 2005.
Dorian Grid Identity Management and Federation Dialogue Workshop II Edinburgh, Scotland February 9-10, 2006 Stephen Langella Department.

Dorian Grid Identity Management and Federation Dialogue Workshop II Edinburgh, Scotland February 9-10, 2006 Stephen Langella Department.
1 Trust Framework Portable Identity Schemes Trust Framework Portable Identity Schemes NIH iTrust Forum December 10, 2009 Chris Louden.

1 Trust Framework Portable Identity Schemes Trust Framework Portable Identity Schemes NIH iTrust Forum December 10, 2009 Chris Louden.
EDUCAUSE Fed/Higher ED PKI Coordination Meeting

EDUCAUSE Fed/Higher ED PKI Coordination Meeting
Office of the Chief Information Officer EFCOG Annual Meeting Fred Catoe (IM-32) U.S. Department of Energy.

Office of the Chief Information Officer EFCOG Annual Meeting Fred Catoe (IM-32) U.S. Department of Energy.
1 eAuthentication in Higher Education Tim Bornholtz Session #47.

1 eAuthentication in Higher Education Tim Bornholtz Session #47.
Emergence of Identity Management: A Federal Perspective Dr. Peter Alterman Chair, Federal PKI Policy Authority.

Emergence of Identity Management: A Federal Perspective Dr. Peter Alterman Chair, Federal PKI Policy Authority.
Building Trusted Transactions Identity Authentication & Attribute Exchange In Public and Private Federations OASIS Conference September 2010 Joni Brennan,

Building Trusted Transactions Identity Authentication & Attribute Exchange In Public and Private Federations OASIS Conference September 2010 Joni Brennan,
Copyright JNT Association 20051OptionalCopyright JNT Association 2007 Overview of the UK Access Management Federation Josh Howlett.

Copyright JNT Association 20051OptionalCopyright JNT Association 2007 Overview of the UK Access Management Federation Josh Howlett.
Chapter 12 USING TECHNOLOGY TO ENHANCE BUSINESS PROCESSES.

Chapter 12 USING TECHNOLOGY TO ENHANCE BUSINESS PROCESSES.
Iowa Interactive Overview for the IOWAccess Advisory Council September 10, 2008.

Iowa Interactive Overview for the IOWAccess Advisory Council September 10, 2008.
Esri UC2013. Technical Workshop. Technical Workshop 2013 Esri International User Conference July 8–12, 2013 | San Diego, California Building Secure Applications.

Esri UC2013. Technical Workshop. Technical Workshop 2013 Esri International User Conference July 8–12, 2013 | San Diego, California Building Secure Applications.
The E-Authentication Initiative: A Status Report Presented at Educause Meeting June 16, 2004 The E-Authentication Initiative.

The E-Authentication Initiative: A Status Report Presented at Educause Meeting June 16, 2004 The E-Authentication Initiative.
National Strategies for Digital Identity Management UNCITRAL Colloquium on Electronic Commerce 14-16 February 2011, New York Laurent Bernat – OECD Secretariat.

National Strategies for Digital Identity Management UNCITRAL Colloquium on Electronic Commerce February 2011, New York Laurent Bernat – OECD Secretariat.
Federating Identity Management in the Government of Canada Identity North Conference November 20 th 2012 Presented by: Rita Whittle Senior Director, Cyber.

Federating Identity Management in the Government of Canada Identity North Conference November 20 th 2012 Presented by: Rita Whittle Senior Director, Cyber.

Similar presentations

Ads by Google