1 / 17

TeleTrusT - Competence Association for Applied Cryptography and Biometrics

TeleTrusT - Competence Association for Applied Cryptography and Biometrics. Arno Fiedler (Nimbus Network) TeleTrusT Deutschland e. V. E-Mail: arno.fiedler@teletrust.de http://www.teletrust.de. PKI-Forum, Amsterdam, 20 June 2002.

sven
Download Presentation

TeleTrusT - Competence Association for Applied Cryptography and Biometrics

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. TeleTrusT - Competence Association for Applied Cryptography and Biometrics Arno Fiedler (Nimbus Network) TeleTrusT Deutschland e. V. E-Mail: arno.fiedler@teletrust.de http://www.teletrust.de PKI-Forum, Amsterdam, 20 June 2002

  2. Short Presentation for Project:“Unified ISIS-MTT-Specifications for Interoperability and Test Systems“

  3. TeleTrusT - General • Promoting the trustworthiness of information and communication technology • Applied Cryptography & Biometrics • founded in 1989 • 110 members: major user sectors, research organisations, developers and manufacturers of security products, government agencies, and test institutes. • non-profit, political independent

  4. ISIS-MTT – The Foundation Authentifizierung von Usern und Servern Vertrauliche Kommunikation(SSL) Dateiverschlüsselung Verschlüsselte E-Mail(S/MIME) Datenauthentizität und -integrität(elektron. Singatur) Zeitstempeldienst VPN Single Sign On weitere PKI-Dienste European Bridge-CA „E-Business“ ISIS-MTTCommon ISIS-MTT Specification for Interoperability and Test Systems

  5. Objectives of the project: • Synthesis of already available specifications towards a unified and open standard. • This standard should take into account the current technical and legal requirements and should receive active support by the market players. • Development of a test specification and a test bench, which allows the applications developers to prove their ISIS-MTT-interoperability • Investment protection for users because of exchange-ability of single components.

  6. Involved partner organizations: T7 e. V. i. G.(direct) (ISIS-Spec.) • interest group of leading (german) providers of certification services . TeleTrusT e. V. (direct) (MailTrusT-Spec.) • competence association of major companies and organizations concerned with trusted digital communication. Additional Bodies comprise (selection): • AG INDI (indirect) • Bundesverband Deutscher Banken (indirect) • Media@kom-Projektpartner (indirect) • Arbeitsgemeinschaft Karten im Gesundheitswesen (indirect)

  7. ISIS-MTT document structure: C O R E - S P E C ●     Part 1: Certificate and CRL Profiles, ●     Part 2: PKI Management, ●     Part 3: Message Formats, ●     Part 4: Operational Protocols, ●     Part 5: Certificate Path Validation, ●     Part 6: Cryptographic Algorithms, ●     Part 7: Cryptographic Token Interface, ● Profile: SigG-conforming Systems and Applications and ●     Profile: Optional Enhancements to the SigG-Profile. O P T I O N A L

  8. ISIS-MTT- behind the cover

  9. ISIS-MTT and the Infrastructure: CAX CA S EMPFÄNGER S E N D E R

  10. Actions planned for 2002 • Development of a usable test bench for realistic test of applications and services. • Awarding of a “Quality Seal” for applications with proven interoperability. • Further development of ISIS-MTT specification. • Further contribution from the specification to the international standardization. • Strengthening of public relations and project management. • Development of a XML-Profile.

  11. Core theses for ISIS-MTT: • ISIS-MTT is a free-of-charge offering to PKI integration to all applications developers. • ISIS-MTT is internationally aligned, existing standards are used an extended • ISIS-MTT defines a complete security architecture: encryption, authentication and signing. • ISIS-MTT provides for different security levels; legal binding according to German signature law is just an option. • ISIS-MTT interoperability criteria are publicly defined and provable through a test bench.

  12. CUT EE Component CUT CA Component ldap ldap LDAP-Server LDAP-Client smtp smtp Mail-Server pop3 ocsp dns DNS-Server Web-Client http Test Tools Test Data CGI-Skripts ocsp Web-Server http File Transfer File Transfer File Transfer http Tester Web-Browser Testbed Prototype Platform

  13. ISIS-MTT-Serviceprovider:

  14. ISIS-MTT-Application-Provider:

  15. ISIS-MTT-actual and potential user:

  16. ISIS-MTT-Lessons learned: • Don´t discuss the legal aspects too much, you can´t find a 100 percent solution! (not even 80 %) • To get a committment for a profile like ISIS-MTT is hard work, lobbying doesn´t work via e-mail. • Try to understand the needs of the different markets, but take care about „specific requirements“ which are propriatory. • Keep the project interesting, the work is never done.(Testbench, XML....

  17. Contacts for the project • TeleTrusT: www.teletrust.deMr. Prof. Helmut Reimer, TeleTrusT e.V. Helmut.Reimer@teletrust.de Mr. Schneider und Herr Giessler (Editor), Fraunhofer SIT Mr. Bauspiess, Secorvo • T7 e. V. i. G.: www.t7-isis.de Mr. Bernd Kowalski, DT AG, telesec; bernd.kowalski@t-systems.de Mr. Lindemann, TC Trustcenter Mr. Pfeuffer, Datev Mr. Horvath (Editor), Secunet Ms. Ulrike Korte, Sparkassen Informatik Kooperation • Project management and public relations:Mr. Fiedler, Nimbus Network; Arno.Fiedler@teletrust.de

More Related