an apec perspective
Download
Skip this Video
Download Presentation
AN APEC PERSPECTIVE

Loading in 2 Seconds...

play fullscreen
1 / 13

AN APEC PERSPECTIVE - PowerPoint PPT Presentation


  • 92 Views
  • Uploaded on

AN APEC PERSPECTIVE. Steve Orlowski Chair eSecurity Task Group APEC Telecommunications and Information Working Group. BACKGROUND. Established 1997 under the APEC Telecommunications and Information Working Group Two main areas: electronic security (added 2000) electronic authentication

loader
I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.
capcha
Download Presentation

PowerPoint Slideshow about ' AN APEC PERSPECTIVE' - apria


An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript
an apec perspective

AN APEC PERSPECTIVE

Steve Orlowski

Chair

eSecurity Task Group

APEC Telecommunications and Information Working Group

background
BACKGROUND
  • Established 1997 under the APEC Telecommunications and Information Working Group
  • Two main areas:
    • electronic security (added 2000)
    • electronic authentication
  • Sub group - PKI Interoperability Expert Group
  • Liaison with other international bodies
current activities
CURRENT ACTIVITIES
  • APEC Cybersecurity Strategy
  • CERT capacity building
  • Cybercrime legislation survey
  • IT security training material
  • Compendium of IT security standards
  • IT security skills recognition
  • Encryption policies
  • Electronic authentication
electronic authentication
ELECTRONIC AUTHENTICATION
  • Issues paper published (hard copy and electronic)
    • covers all technologies
  • PKI interoperability - mapping of accreditation schemes
issues paper
ISSUES PAPER
  • Business models
  • Technology
  • User requirements
  • Trust
  • Cultural differences
  • Legal issues
pki interoperability
PKI INTEROPERABILITY
  • Differing Approaches
  • APEC mapping of accreditation schemes
    • legal
    • policy
    • technical
  • APEC high level principles for schemes
approaches
APPROACHES
  • Hierarchies
    • root CA
  • Cross certification
    • CA to CA
  • Cross recognition
    • scheme to scheme
cross recognition
CROSS RECOGNITION
  • Developed by APEC
  • Maps accreditation schemes rather than individual CAs
  • Public or private sector
  • Assurance and evidence of legal effect
  • Accreditation certificate
    • unilateral cross certificate
    • similar to TSP data
  • Certificate trust lists
ca mapping
CA MAPPING
  • Based on RFC 2527
  • Approx 200 points of comparison
  • Rough equivalence
    • Australia - Gatekeeper grade 2 (mid level)
    • Canada - GoC PKI medium
    • EU - qualified
    • Singapore - advanced
    • United States - FBCA medium
    • Identrus (Australian implementation)
  • Hong Kong to join
high level guidelines
HIGH LEVEL GUIDELINES
  • Based on a series of questionnaires
  • High level principles developed
  • Accepted by TEL 27
principles
PRINCIPLES
  • Legal
    • recognition of foreign schemes
    • technology not mandated
  • Policy
    • based on internationally recognised standards
  • Technical
    • identification and naming
    • FIPS, common criteria or equivalent technology
    • archives
    • directory access
standards requirements
STANDARDS REQUIREMENTS
  • Cryptographic modules
    • FIPS 140-2 to ISO April 2003
  • Implementations
    • physical
    • personnel
    • administrative
    • overall technical
  • CA protection profile for issue of qualified certificate or equivalent?
references
REFERENCES
  • eSTG Website

http://www.apectelwg.org/apec/atwg/preatg.html

  • Principles

http://www.apectel27.org.my/ESTG-8.doc

  • Mappings (not EU)

http://www.apectel27.org.my/ESTG-5.doc

ad