NOBLE presentation of the project

Similar documents
eidas & e-delivery CE Midsummer Conference "The role of policy decisions in the postal & delivery industry", Copenhagen (DK), 12 June 2017

Electronic ID in Germany. Dr. Stephan Klein Managing Director Governikus GmbH & Co. KG Logius Event

Electronic registered delivery services (ERDS) in light of the eidas regulation. Warsaw Common Sign Conference 2015

edelivery Tutorial How can CEF help you set-up your edelivery infrastructure? November 2016

UPDATE ON CEN & ETSI STANDARDISATION ON SIGNATURES

Connecting Europe Facility Introducing CEF edelivery. Christian RASMUSSEN, DG DIGIT. DIGIT Directorate-General for Informatics

CEF Telecom policy background. DG CONNECT, 12 September 2017

Interoperability Infrastructure Services

Letter of Understanding (LoU) edelivery alignment between the European Commission and OpenPEPPOL

ETSI TC ESI WORK ON ELECTRONIC REGISTERED DELIVERY SERVICES AND REGISTERED ELECTRONIC MAIL

e-sens Electronic Simple European Networked Services

Draft ETSI EN V1.0.0 ( )

e-sens Electronic Simple European Networked Services Klaus Vilstrup Pedersen WP6 Manager DIFI, Norway

European Framework for C-ITS Security 6 th of March 2018 Gerhard Menzel European Commission

e SENS Pilots of eid, esignatures and Trusted Services

Sándor Szőke, Dr. Microsec Ltd. Migration of national PKI Services to eidas conformant Trust Services case study in Hungary

Live Webinar Electronic Registered Delivery Service (ERDS) and the eidas Regulation. 12 September 2016

iotrust Security Solutions

ETSI Electronic Signatures and Infrastructures (ESI) TC

The current status of Esi TC and the future of electronic signatures

THE CONNECTING EUROPE FACILITY

Agenda. 1. The LoU between EC-CEF and OpenPEPPOL about transition and migration to AS4 - Niels

CEF e-invoicing. Presentation to the European Multi- Stakeholder Forum on e-invoicing. DIGIT Directorate-General for Informatics.

Third public workshop of the Amsterdam Group and CODECS European Framework for C-ITS Deployment

Transport Infrastructure Agreement Change management

ETSI ESI Electronic Signature Activities

RealMe. SAML v2.0 Messaging Introduction. Richard Bergquist Datacom Systems (Wellington) Ltd. Date: 15 November 2012

EUROPEAN STANDARD Electronic Signatures and Infrastructures (ESI); Time-stamping protocol and time-stamp token profiles

ETSI ESI and Signature Validation Services

Facing the Challenges of M2M Security and Privacy Phil Hawkes Principal Engineer at Qualcomm Inc. onem2m

STORK Secure Identity Across Borders Linked

NextGenPSD2 Conference 2017

STORK PRESENTATION 07/04/2009. Frank LEYMAN. Manager International Relations. Stork is an EU co-funded project INFSO-ICT-PSP

PRICE LIST TRUST SERVICE PRODUCTS. Price List Version 5.9 Berlin, April Copyright 2018, Bundesdruckerei GmbH. Seite 1/9

EUROPEAN STANDARD Electronic Signatures and Infrastructures (ESI); Time-stamping protocol and time-stamp profiles

Sentinet for BizTalk Server SENTINET

Barry Lowry Government CIO September Digitising Ireland the Government Chief Information Officer's Perspective

ISO/IEC TR TECHNICAL REPORT. Information technology Dynamic adaptive streaming over HTTP (DASH) Part 3: Implementation Guidelines

GOV Framework. Transport Infrastructure Transport Infrastructure Agreement (TIA) Framework. Version: 1.10 Status: In use

CEF edelivery Connectivity Testing Service

Third public workshop of the Amsterdam Group and CODECS C-ITS Deployment in Europe: Common Security and Certificate Policy

esignature Infrastructure Marketing Model

DEFINITION OF A PILOT TEST PLAN FOR COOPERATION OF AGRICULTURE EQUIPMENT WITH ONEM2M AND C-ITS

Utimaco eidas Update. June Thorsten Groetker CTO. Utimaco HSM Business Unit Aachen, Germany 2017 Utimaco eidas Update, June 2017 Page 1

En partenariat avec CA Technologies. Genève, Hôtel Warwick,

Draft ETSI EN V1.0.0 ( )

Web Services Security By Mark O'Neill

Connecting public services across Europe: ambition and results so far

Probably the best PKI in the world

Media (NEM) Initiative

Read the following information carefully, before you begin an upgrade.

Interoperability Specifications and Conformance Testing Services Made Available on the Tukan Platform

A Signing Proxy for Web Services Security

The CEF Building Blocks & #REUSE in the Twenty-First Century

Update on Security, Privacy and Safety Standards

Connecting public services across Europe: ambition and results so far

ETSI TR V1.1.1 ( )

INSPIRE and Service Level Management Why it matters and how to implement it

The appendix to the certificate is part of the certificate and consists of 3 pages.

Cooperative, Connected and Automated Mobility

ISA 2 Programme & EIF

PEPPOL Transport Infrastructure Agreements Annex 3 Services and service levels

SmartCards as electronic signature devices Progress of standardization. Helmut Scherzer, CEN TC224/WG16 (Editor) IBM Germany

Technical Trust Policy

Status of the 2015 CEF call of setting up the ehealth DSI National Contact Points

Overview SENTINET 3.1

Connecting public services across Europe: ambitions and results so far

EC (DG SANTE) The ehealth DSI , Solution Provider

ASEAN e-authentication Workshop Balwinder Sahota

eidas Regulation in the context of Cybersecurity: Electronic seals and website certificates: Two sides of a (gold) medal?

Services Summary. Deliverables. Location of Services. Services Assumptions & Exclusions. General Project Management

Open Mobile API The enabler of Mobile ID solutions. Alexander Summerer, Giesecke & Devrient 30th Oct. 2014

Guidance for Requirements for qualified trust service providers: trustworthy systems and products

Siemens view and approach on critical infrastructure resilience against cyberthreats Joint OECD-JRC Workshop, Paris September 2018

EUROPEAN STANDARD Electronic Signatures and Infrastructures (ESI); Certificate Profiles; Part 5: QCStatements

Specification. OpenPEPPOL AISBL. Transport Infrastructure Coordinating Community. ICT - Models. PEPPOL Transport Infrastructure AS2 Profile

COMMUNICATION SERVER INTEGRAL 55 LX

EUDAT & SeaDataCloud

The international CETECOM Group. ETSI ITS Workshop 2013 Session 4 Testing and Certification CETECOM ITS Service Partner Ulrich Keuling, CETECOM

Session 3: Lawful Interception


Utimaco IS GmBH. Teo Poh Soon Director. CryptoServer Products Aachen, Germany June 2014 Page 1

This document is a preview generated by EVS

ehealth Network ehealth Network Governance model for the ehealth Digital Service Infrastructure during the CEF funding

The appendix to the certificate is part of the certificate and consists of 4 pages.

Singapore s National Digital Identity (NDI):

ETSI TS V1.1.1 ( )

Polycom RealPresence Access Director System

Trust Service Provider Technical Best Practices Considering the EU eidas Regulation (910/2014)

eidas compliant Trust Services with Utimaco HSMs

Get Started Partner Program. Simply Smarter Communications

Introduction to Windows Azure. Managing Windows Azure. Module Manual. Authors: Joey Snow

IFIP World Computer Congress (WCC2010)

Interoperability & Archives in the European Commission

Proof of concept AS4. Version 1 Revision ITC-KG AS4 Proof of Concept 16 January 2014 Draft INT

Technical guidelines implementing eidas

Interoperability Challenge of Certified Communication Systems via Internet

Trust Services: building blocks for secondary legislation

Privacy and Security in Smart Grids

Security Assertions Markup Language (SAML)

Transcription:

NOBLE presentation of the project Klaus Lüttich, Governikus KG edelivery Workshop @ ETSI Security Week 14 June 2017

Objective and Context of NOBLE The OBJECTIVE is to set up an edelivery infrastructure in 4 Member States The edelivery infrastructure will support the cross-border exchange of electronic documents in different domains NOBLE has started in October 2016 and will finish in September 2017 Project is co-funded by CEF via the 2015 CEF Telecom Call edelivery (2015-CEF-TC-2015-1) 9 Partners from 4 Member States are involved in NOBLE: Germany France Greece Slovenia Project is coordinated by Governikus GmbH & Co. KG 2

Setup of interoperable edelivery infrastructure in three different domains 1. General ERDS - Business Lifecycle & general purpose - 5 Access Points + 5 SMPs 2. German e-tendering and e-invoicing Domain - Relates to German project e-rechnung (einvoice) - 1 Access Point and SMP 3. Access Points and SMPs Setup for Application on Greek National Level - 2 Access Points will be deployed The focus of the rest of presentation will be on the General purpose ERDS e-delivery domain 3

NOBLE General ERDS domain Slovene e-biz e-delivery gateway Transport: AS/4 Payload: ETSI REM Dispatch/Evidence Slovene National e-delivery infrastructure SI-CeV Others may join later Lettre recommandée en ligne National solutions per Realm use adapters to connect to Gateways /APs 4 4

4 corner model in scope of NOBLE general ERDS domain 5

High level Requirements of general ERDS domain. Establish end-to-end Trust (C1 <-> C4) Authentication of end-users is performed by C1 and C4 Cross-realm exchange should support Cross-Realm addressing & routing Cross-realm exchange should be payload agnostic C2 and C3 Mapping of respective domestic realm message structure format to and from a common message payload format specified for interoperable cross-realm exchange. Should support time referenced proofs of send/receive and transport evidences e-delivery system shall allow manageable governance and inclusion of new Access points / realms in the future 6

NOBLE Approach to cross realm e-delivery SMP / SML: provides dynamic discovery and capabilities discovery of the ERDS realm Gateway where the respective message shall be targeted to. SMP used for cross-domain addressing Trusted List allows for Trust Establishment among access points; allows for free choice of PKI behind, no necessity to use a common community PKI Sealing certificate used for trust establishment between Access Points AS4 access points are used for payload exchange (both messages and evidences) ERDS domain uses SMP in addition to expose realm specific evidence and authentication capabilities/needs 7

Example of De-mail and LaPoste message and evidence exchange AS4 Trusted List 8

Cross Realm payload is based on ETSI REM SBDH (XML) - must be visible for transport nodes REMDispatch (XML) - may contain embedded attachments Attchments 0-n (PDF, binary, any, ) Attchments 0-n (PDF, binary, any, ) Attachments 0-n (PDF, binary, ) Or: SDBH and REMEvidence (XML) 9

What are we re-using from previous projects Trusted List Profile for esens e-delivery http://wiki.ds.unipi.gr/display/esens/trust+list+profile+for+electronic+registered+delivery+services TL Trust Service attributes integration with P-Mode generation is AP domain specific Specification for WP5.4 available: http://wiki.ds.unipi.gr/display/esens/using+trust+list+in+as4+gateways+to+interconnect+erds we are extending the profile to use the SMP CEF TL Manager applicable for Trusted List maintenance https://joinup.ec.europa.eu/software/tlmanager/release/all Holodeck is beeing used for deployment of AP 10

Open questions SMP infrastructure used for discovery should be trusted What approach to take to Maintenance and Governance model for Trusted List? Option 1 : use domain specific Trusted List Option 2: use the MS Trusted list for qualified services 11

Governikus GmbH & Co. KG www.governikus.de kontakt@governikus.de Am Fallturm 9 28359 Bremen Tel.: +49 421 204 95 0 Albrechtstraße 12 10117 Berlin Tel.: +49 30 280 43 900 Thank you for your attention Dr. Klaus Lüttich Governikus GmbH & Co. KG Email: klaus.luettich@governikus.de Phone: +49 421 20495 70 12

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback