Presentation is loading. Please wait.

Presentation is loading. Please wait.

Standardisation and regulation on information security Margus Püüa Head of Department Department of State Information Systems Ministry of Economic Affairs.

Published bySilas Gregory Modified over 9 years ago

Similar presentations

Presentation on theme: "Standardisation and regulation on information security Margus Püüa Head of Department Department of State Information Systems Ministry of Economic Affairs."— Presentation transcript:

1 Standardisation and regulation on information security Margus Püüa Head of Department Department of State Information Systems Ministry of Economic Affairs and Communications, Estonia

2 AGENDA Why standardisation and regulation? Legal acts and documentation Secure data exchange

3 INFORMATION SOCIETY In the information society, information is stored, changed and transmitted in a universal digital form In the information society, access to digital information is ensured for all members of society through data exchange network In the information society, routine intellectual work is left for machines In the information society, based on the above- mentioned conditions, the way of life is rational Valdo Praust „Infoühiskond ja selle teetähised” 1998 aastaraamat „Infotehnoloogia haldusjuhtimises”.

4 CONCLUSION: In the INFORMATION SOCIETY ordinary daily life depends, to a great extent, on the security of information systems!

5 OBJECTIVE: Despite the growth of cyber security problems in the world, ICT will continue to be one of the most important growth engines in Estonia

6 WHAT DO WE HAVE?

7 L EGISLATION and DOKUMENTATION Emergency Preparedness Act https://www.riigiteataja.ee/ert/act.jsp?id=965540 https://www.riigiteataja.ee/ert/act.jsp?id=965540 Estonian IT Architecture http://www.riso.ee/et/koosvoime/arhitektuur http://www.riso.ee/et/koosvoime/arhitektuur Estonian IT Interoperability Framework http://www.riso.ee/en/information-policy/interoperability http://www.riso.ee/en/information-policy/interoperability Information Security Interoperability Framework http://www.riso.ee/wiki/Versioon_2007-01-31 http://www.riso.ee/wiki/Versioon_2007-01-31 Government Regulation on establishing a system of security measures for information systems https://www.riigiteataja.ee/ert/act.jsp?id=791875 https://www.riigiteataja.ee/ert/act.jsp?id=791875

8

9 X-road is software, hardware and organisational methods for standardised usage of national databases Evidentiary Value and Integrity –All outgoing messages are signed. Signing keys are registered with third party –All incoming messages are logged. The message log is cryptographically protected. The intermediate hash values are periodically time-stamped by the X-Road central agency. –Message receiver can later prove with the help of the X-Road central agency when and by whom was the message sent. Availability - X-Road is built as a distributed system, with minimal number of central services –The directory service is built on top of Secure DNS (DNS-SEC). The usage of well-proven DNS protocol and implementation provides very robust, scalable directory service with built ‑ in caching and redundancy. Security extensions of the DNS (signed zones) ensure that the data cannot be tampered. –All X-Road servers have their own local caching DNS server that ensures the availability of directory information even in case of (partial) network outage Confidentiality –SSL protocol is used as a defence mechanism against external attackers. All exchanged data is encrypted. –Two level access rights control mechanism is used as a defence mechanism against internal attackers.

10 Thank you for your attention!

Download ppt "Standardisation and regulation on information security Margus Püüa Head of Department Department of State Information Systems Ministry of Economic Affairs."

Similar presentations

Internet Protocol Security (IP Sec)

Internet Protocol Security (IP Sec)
Chapter 14 – Authentication Applications

Chapter 14 – Authentication Applications
Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.

Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.
Kerberos 1 Public domain image of Heracles and Cerberus. From an Attic bilingual amphora, 530–520 BC. From Italy (?).

Kerberos 1 Public domain image of Heracles and Cerberus. From an Attic bilingual amphora, 530–520 BC. From Italy (?).
Security by Design A Prequel for COMPSCI 702. Perspective “Any fool can know. The point is to understand.” - Albert Einstein “Sometimes it's not enough.

Security by Design A Prequel for COMPSCI 702. Perspective “Any fool can know. The point is to understand.” - Albert Einstein “Sometimes it's not enough.
ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.

ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.
CIS 725 Key Exchange Protocols. Alice ( PB Bob (M, PR Alice (hash(M))) PB Alice Confidentiality, Integrity and Authenication PR Bob M, hash(M) M, PR Alice.

CIS 725 Key Exchange Protocols. Alice ( PB Bob (M, PR Alice (hash(M))) PB Alice Confidentiality, Integrity and Authenication PR Bob M, hash(M) M, PR Alice.
SSL Protocol By Oana Dini. Overview Introduction to SSL SSL Architecture SSL Limitations.

SSL Protocol By Oana Dini. Overview Introduction to SSL SSL Architecture SSL Limitations.
SSL CS772 Fall 2011. Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.

SSL CS772 Fall Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.

CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.
DNSSEC & Email Validation Tiger Team DHS Federal Network Security (FNS) & Information Security and Identity Management Committee (ISIMC) Earl Crane Department.

DNSSEC & Validation Tiger Team DHS Federal Network Security (FNS) & Information Security and Identity Management Committee (ISIMC) Earl Crane Department.
Chapter 14 From Cryptography and Network Security Fourth Edition written by William Stallings, and Lecture slides by Lawrie Brown, the Australian Defence.

Chapter 14 From Cryptography and Network Security Fourth Edition written by William Stallings, and Lecture slides by Lawrie Brown, the Australian Defence.
6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.

6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.
E-Government Security and necessary Infrastructures Dimitrios Lekkas Dept. of Systems and Products Design Engineering University of the Aegean

E-Government Security and necessary Infrastructures Dimitrios Lekkas Dept. of Systems and Products Design Engineering University of the Aegean
Https://www.tervisepank.ee Tervisepank ® e-solution for primary care Madis Tiik, MD CEO, Estonian Society of Family Doctors 06.04.2006.

Tervisepank ® e-solution for primary care Madis Tiik, MD CEO, Estonian Society of Family Doctors
Picmet'03 System Integration Process of Government Information Systems Ahto Kalja Department of State Information Systems/ Tallinn Technical University.

Picmet'03 System Integration Process of Government Information Systems Ahto Kalja Department of State Information Systems/ Tallinn Technical University.
Domain Name System Security Extensions (DNSSEC) Hackers 2.

Domain Name System Security Extensions (DNSSEC) Hackers 2.
Pay As You Go – Associating Costs with Jini Leases By: Peer Hasselmeyer and Markus Schumacher Presented By: Nathan Balon.

Pay As You Go – Associating Costs with Jini Leases By: Peer Hasselmeyer and Markus Schumacher Presented By: Nathan Balon.
A centralized system.  Active Directory is Microsoft's trademarked directory service, an integral part of the Windows architecture. Like other directory.

A centralized system.  Active Directory is Microsoft's trademarked directory service, an integral part of the Windows architecture. Like other directory.

Similar presentations

Ads by Google