©Copyright 2015 Michał Tabor 1

The main purpose for the eIDAS is supporting business

Michał Tabor, CISSPTrusted Information Consulting Ltd.

Motivation

One slide presented on #CA-Day 9.06.2015 by Andrea Servida

What eIDAS is about?

Slide from Andrea Servida presentation – 9.06.2015

©Copyright 2015 Michał Tabor

How to support business?

Help to deliver convenient and usable services to customers

©Copyright 2015, PIIT & Michał Tabor

52015-06-11

6

#eIDAS Trust Service

Trust Service

creation

certification

verification

validation

preservation

delivery

combination of trust servies

provided for remuneration

©Copyright 2015 Michał Tabor

Business process

Securing transactions

Employee - consultant

Employer

Need of contract

Trustworthy contract

1. eSignature

2. Registred

Delivery

6. Archive

placement

3. Bank a

ccount

confirm

ation

4. SMS

Authentication

5. Regis

tred

Delivery

Trust Service

©Copyright 2015 Michał Tabor

Trustworthy document

Trust Service

EvidenceElectronic Identification

Evidence

Trust Service creates evidence

ElectronicSignature

ElectronicSeal

Evidence Protection

Means

eIDAS opportunity

Electronic Signature

Electronic Seal

Electronic signature

Used to protect evidence created by humans

Electronic signature

Evidence from systems is signed by the people to protect origin

Electronic seal

Evidence from systems is sealed automatically to protect origin

Electronic signature

Evidence from systems is signed by the people to protect origin

Electronic seal

Evidence from systems is sealed automatically to protect origin

16

eIDAS Trust Sevice - Evidence gathering

certification

verification

validation

preservation

delivery

EVIDENCE

EVIDENCE

EVIDENCE

EVIDENCE

EVIDENCE

EVIDENCE

WORKFLOW

creation

Electronic seal protects evidence from trust services

EVIDENCE

Qualified Seal

QTScreation

QTSvalidation

QTSpreservation

QTSdelivery

Certification Sig or Seal

QTSverification

18

Creator of an Electronic Seal

Legal person creates eSeal

Creator with eSeal guarantees authenticity of evidence

Seal proves integrity of sealed evidence

eSEAL creating data must remain under control of a creator

eIDAS doesn’t specify how controls should be implemented

Seal creation data „sole control” models

• Sealing is on own site• Full control over sealing device

Creator of the seal owns sealing device

• Device secured for sealing• Policy determines what is sealed

Creator of the seal distributes his sealing device

20

Device

Sealing Device

Evidence: What

Evidence: When

Evidence: Where

Document

Event

Evidence

Creator of a seal – takes responsibility for a evidence

prepared by device

ElectronicSeal created by manufacturer✔

21

#insurance case

Captured photo

GPS Time

GPS Localization

Collecting evidence of an accident

TIMEPLACE

22

Evidence – Handwritten

document

Time

Hand signature

Document

Handwritten signature

Handwritten signature secured with electronic seal

Expected documentation

Trust Service

EvidenceElectronic Identification

24

Electronic Sealprotects evidence

Let’s accept in public services

electronic documents resulting from various trust services and secured by qualified electronic seal

Public service

Qualified Seal

Qualified Signature

Trust Service

Start

©Copyright 2015, PIIT & Michał Tabor

262015-06-11

Trust Service

USER Service

Trust service is a gateway between user and service

(commercial or public)

BusinessSupport

27

Michał Tabor

michal.tabor@ticons.plTwitter: @michal_tabor

Trusted Information Consulting Ltd. is the member of Polish Chamber of Information Technology and Telecommunications

The main purpose for the eIDAS is supporting

business