1 / 9

State CP Model (“Discussion Draft”)

State CP Model (“Discussion Draft”). Snowmass PKI Summit Art Vandenberg Advanced Campus Services Georgia State University. A Summary. State CP Model: not a CP for public key certificates, but a policy for e-signing? Influenced by State activities in Citizen CRM Driven top-down

bvelez
Télécharger la présentation

State CP Model (“Discussion Draft”)

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. State CP Model(“Discussion Draft”) Snowmass PKI Summit Art Vandenberg Advanced Campus Services Georgia State University

  2. A Summary • State CP Model: not a CP for public key certificates, but a policy for e-signing? • Influenced by State activities in Citizen CRM • Driven top-down • PKI isn’t “the” e-signing solution • PKI is a tool, not the end • “Discussion Draft” State CP

  3. Context of e-sign services • Providing signing services - as in contracts and agreements • Perhaps limited need for interoperation • Looks to cross certification as solution to lesser problem: • State to state in regional context • With Federal agencies • On a scale of 50 states, not 4000+ universities State CP

  4. One OID for Policy • Single level of assurance mapping • Defines limited application area for certs • Works in the “enterprise mode” of a State environment? (applications understand the certs and assurances) • Think of it as a “PKI-Lite” approach • It is a “Draft” – change is an option State CP

  5. Developed in the Community • NECCC (National Electronic Commerce Coordinating Council) • State Auditors, Procurement officers, Secretaries of State, Governors, Chief Administrators… and CIO • Focus on improving State infrastructure for government SERVICES • PKI is not the end, but a tool State CP

  6. Technology Basis • States do not enjoy higher ed’s connectivity • Broadband initiatives: Internet is still being developed (much less Internet2/Abilene…) • Digital Divide: enfranchising the people (just like in our dorms!) • Anonymity is not the issue – States expect to know identity of citizens applying for services • Privacy means: “How’re you using my data?” State CP

  7. Bottom Line • Top down approach to e-signing • Specifically limited cert application: • Confidentiality/encryption • Digital signing (medium & high • Digital Notary • Not Anonymous • Strengths: governing law, auditing, financial responsibility, liability/risk, operational • Opportunity to link efforts State CP

  8. Other observations • NECCC Activities a Clue: • Broadband • Digital divide • Portals • Justice Agencies Sharing Initiative • Privacy • Funding State CP

  9. Internet2-like Activities • The Center for Technology in Government to search for e-government best practices. • http://www.civic.com/civic/articles/2001/0604/web-ctg-06-08-01.asp • Practitioners of e-government have the promise of a road map in their quest to implement best practices. State CP

More Related