1 / 27

Identity and Access Mgmt and electronic Identities Belgian Federal Government

Identity and Access Mgmt and electronic Identities Belgian Federal Government. Walter Van Assche January 16 th , 2012 Chisinau. Electronic Identity (Card). Signature tool. Goal eID project. Proof of identity.

eloise
Download Presentation

Identity and Access Mgmt and electronic Identities Belgian Federal Government

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Identity and Access Mgmt and electronic IdentitiesBelgian Federal Government Walter Van Assche January 16th, 2012 Chisinau

  2. Electronic Identity (Card)

  3. Signature tool Goal eID project Proof of identity • To give Belgian citizens an electronic identity card enabling them to authenticate themselves towards diverse applications and to put digital signatures

  4. eID partners

  5. The eID as an e-gov. building block

  6. 13 Dec 1999: European Directive 1999/93/EC on Electronic Signatures 22 Sept 2000: Council of Ministers approves eID card concept study 19 July 2001: Council of Ministers approves basic concepts (smart card, citizen-certificates, no integration with SIS card, Ministry of Internal Affairs is responsible for RRN’s infrastructure, pilot municipalities, helpdesk, card production, legal framework,… Fedictfor certification services 3 Jan 2002: Council of Ministers assigns RRN’s infrastructure to NV Steria 1999 2002 2000 2001 2002 2003 2004 2005 2009 27 Sept 2002: Council of Ministers assigns card production to NV Zetes, certificate services to NV Belgacom Start of 2009: all citizens have an eID card September 2005: all newly issued ID cards are eID cards 31 March 2003: first 4 eID cards issued to civil servants 27 September 2004: start of nation-wide roll-out 25 January 2004: start of pilot phase evaluation 9 May 2003: first pilot municipality starts issuing eID cards 25 July 2003: eleventh pilot municipality started Belgian eID Project Time line

  7. The eID “product family” • Kids-ID • eID • Foreigner-ID

  8. The eID: results • eID: • More than 8.6 Million cards issued (2nd wave) • Kids-ID: • Potential: 1,3 Million cards • More than 100.000 cards issued since March 2009 • Foreigner-ID: • Potential: 1,5 Million cards • More than 150.000 cards issued since 2008 8

  9. How does it work?

  10. Level 0 Level 1 Level 2 Level 3 Alternatives with different security levels • Different security levels : • level 0 : Public access • level 1 : User name + Password • level 2 : User name + Password + Token • level 3 : Electronic identity card • Future evolutions (based on eID) : • Mobile Identity • One Time Password Generators?

  11. Identity and Access Management in egov

  12. What is IAM?A simple story… Getting access Application User © Fedict 2009. All rights reserved | p. 12

  13. What is IAM?A simple story… Getting access Application User Identification & authentication © Fedict 2009. All rights reserved | p. 13

  14. What is IAM?A simple story… Getting access NRN KBO Notarissen … Application User Attributes (Name, Company,…) Identification & authentication

  15. What is IAM?A simple story… Getting access NRN KBO Notarissen … Applications User Attributes (Name, company,…) Identification & authentication Permissions Roles

  16. What is IAM?A simple story… Getting access NRN KBO Notarissen … Application User Attributes (Name, Company,…) Identification & authentication Permissions Granting access Permission Management Roles Security Manager Security Mgt Workflow Chief Security Mgr Legal Representative KBO © Fedict 2009. All rights reserved | p. 16

  17. IAM…. In a complex reality Mandate Management Processoverview Attestation Manage Identity Reporting Manage Virtual Identity Risk Definition Request Permission Manage Organizational Membership Authenticate Relying Party Management Manage Role Definition Auditing Manage Permission Manage Contexts Manage Domains © Fedict 2009. All rights reserved | p. 17

  18. Relevance of IAM within eGovernment context © Fedict 2009. All rights reserved | p. 18

  19. Security management>> An historical agreement Security Management ….. • An agreement is being defined between Belgian government partners, providing a basis for an integrated security management • A joint security management platform will be offered as a managed service • All partners can participate in the steering group of the joint platform © Fedict 2009. All rights reserved | p. 19

  20. Federated context >> co-existance

  21. Federated context: Example>> Digiflow Context of Federale government Context of OCMW Context of local governments Getting access NRN KBO Notarissen … Digiflow User Attributes (Name, Company,…) Identification & authentication Permissions Permissionmanagement © Fedict 2009. All rights reserved | p. 21

  22. Federated context: Example>> Tax on Web for accountants Mandate Mgt Getting access NRN KBO … Tax on web User Attributes (Name, Company,…) Permissions Identification & authentication Granting access Permission mgt Roles Security Mgr Security Mgt Workflow Head Security Mgr Legal represetative KBO © Fedict 2009. All rights reserved | p. 22

  23. Fedict IAM offering Trusted Third Party Application A Circle of Trust Relying Party … User Application X Authentic sources FAS RR BIS Role Admin KBO Admin

  24. Fedict IAM evolution Current building blocks Optimized building blocks

  25. EU pilots that work on cross-border interoperability © fedict 2011. All rights reserved

  26. Overview of LSP’s Collaborations Transport Infrastructure Syndication, eDirectories Company Dossier Visible Digital Signatures eID legal entities eDoc Containers eDeliveryeSafe eSignature Citizen ID Transport Infrastructure Company ID Citizen ID Privacy

  27. Thank you Fedict Maria-Theresiastraat 1/3 Rue Marie-Thérèse Brussel 1000 Bruxelles TEL. +32 2 212 96 00 | FAX +32 2 212 96 99 info@fedict.belgium.be | www.fedict.belgium.be

More Related