1 / 15

Kansas PKI Model

Kansas PKI Model. Brian Stevenson General Manager Nebraska.gov. Kansas PKI Uses. Any individual or business required to interact with a state government agency in a transaction needing an ink signature or needing to transmit data through an unsecured network is a potential PKI user.

nubia
Télécharger la présentation

Kansas PKI Model

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. KansasPKI Model Brian Stevenson General ManagerNebraska.gov

  2. Kansas PKI Uses Any individual or business required to interact with a state government agency in a transaction needing an ink signature or needing to transmit data through an unsecured network is a potential PKI user.

  3. Kansas PKI Mission Make government more efficient and accessible to businesses.

  4. Kansas PKI History • Spent more than 8 years working on PKI • Input from many groups • Combined resources (financial & personnel) • Across agency boundaries • ITEC, KITO, KSOS, KDOT, KDOR, Treasurer, INK, Kansas.gov (accessKansas) • Enterprise-wide service

  5. Cost Avoidance • INK grant covered cost of creating Kansas PKI infrastructure • $261,000 • Represents cost avoidance for each agency that uses PKI

  6. Kansas Infrastructure • Statutes • PKI work group drafted legislation in 1999 • Legislation became part of the Kansas Uniform Electronic Transactions Act in 2001 • Legislation ensured various units of state government would not build silos • Work group then drafted regulations and certificate policy

  7. Certificate Policy • Stratified Responsibilities • KSOS is responsible for the contract for Certification Authority services • VeriSign is the CA • INK is the Registration Authority • Kansas created procedures to allow trusted parties to vet other trusted parties

  8. Difference Between Kansas PKI & Other States • Self-sustaining • Only strive for appropriate users

  9. Project Evaluation • PKI committee reviews each potential PKI project • Selects only those that are truly ready for PKI • Evaluated on • need • readiness to implements • associated risks • return on investment

  10. Implementation Process • Currently implementations added one at a time • Ensures sufficient resources are available to make it successful • Committee builds on knowledge gained from each implementation

  11. Use of PKI • Kansas state government treats PKI as a digital signature • Digital Signature provides signer & document authentication • Signer authentication – ability to identify the person who digitally signed document • Document authentication – ensures the information was not altered after it was digitally signed

  12. Encryption • Digital Certificates have the ability to encrypt information • Information can then only be understood by intended recipient

  13. PKI Is Not Access Control Kansas DOES NOT support treating PKI as access control, but as a supplement to these systems.

  14. Current Uses of PKI • KDOR E-lien • Upcoming – KSOS ELVIS • Both these applications will be discussed after lunch

  15. Thank You QUESTIONS & ANSWERS

More Related