Electronic Signatures in Poland market, tools and new trends
description
Transcript of Electronic Signatures in Poland market, tools and new trends
![Page 1: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/1.jpg)
Electronic Signatures in Poland market, tools and new trends
Daniel WachnikElectronic Signature Laboratory
![Page 2: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/2.jpg)
Agenda
• About IMM• Electronic signatures market in Poland
– Private & public sector• Electronic signature tools
– Qualified signatures– Trusted profile
• New trends in electronic signatures– Biometric signatures– Mediated signatures– Forgery evident signatures
• Q&A
![Page 3: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/3.jpg)
About Institute of Mathematical Machines
![Page 4: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/4.jpg)
Institute of Mathematical Machines – history
• Public Research Body• Established in 1957• Operates under auspices of Ministry of Economy• Mathematical Machine – computer (old
fashioned wording)
• Areas of interest– Electronic Signature– Modeling and simulation techniques– Biometric devices and security systems– E-learnig
![Page 5: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/5.jpg)
Electronic Signature Laboratory
• Established in 2009• Main achievements
– Electronic Signature’s Interoperability Tests (2011, 2012)
– SCVA application– Biometric signatures project with
BioTrustis
![Page 6: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/6.jpg)
Electronic Signatures market in Poland
![Page 7: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/7.jpg)
Statistics - access to the computer
73%
27%
Households
with computerwithout computer
with computer 9 238 668
without computer 3 353 619
total 12 592 287
Source: Polish Central Statistical Office
ICT in 2012
![Page 8: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/8.jpg)
Statistics - Internet usage
Number of people (aged 16 - 74) 30 419 262 Internet users 19 814 148 People not using Internet 10 605 114 Internet users not using PA portals 10 205 928 Public administration's portals users 9 608 220 Users not sending forms to PA portals 6 385 490 Users sending forms to PA portals 3 222 730 Users sending tax declarations 2 049 089 Users potentially using electronic signature 1 173 641 Internet users not using electronic signature 18 640 507 People not using PA portals 29 245 621
People not using Internet
Internet users not using PA portals
Users not sending forms to PA portals
Users sending tax declarations via Internet
Users senidng forms to PA , but not tax declarations
Internet usage
Source: Polish Central Statistical Office
ICT in 2012
![Page 9: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/9.jpg)
Electronic signatures market - drivers
EU level law regulations
Cross-border recognition
Electronic signature
National level law
regulations
Recognition on national
level
Electronic signature
Electronic adminstration Identification Electronic
signature
eID systemsLarge
number of users
Electronic signature
![Page 10: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/10.jpg)
Electronic signatures market
18,5 mln
potential users
Services
Tools
Devices
![Page 11: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/11.jpg)
Electronic signature tools in Poland
![Page 12: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/12.jpg)
Electronic signature tools and services
Public Administration’s
systems
Qualified Signatures
Trusted profile
E-delivery (skrzynka podawcza)
Validation services
![Page 13: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/13.jpg)
Signatures – trust platform in Poland
http://www.nccert.pl/podmiotyE.htm
Qproducts
QServices
RootCANCCert
QCA
QCert
QTSA
QTSP
Q…
![Page 14: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/14.jpg)
Signatures – Trust platform in Poland
Qproducts
QServices
(root level)TSL
QCA
QCert
QTSA
QTSP
Q…
http://www.nccert.pl/tslE.htm
![Page 15: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/15.jpg)
Qualified certificates in Poland
• 263 781
Valid qualified certificates number
• 754 613
Overall number of issued certificates
• 19 814 148
Internet users number
Source: Ministry of EconomyFeb. 2013
![Page 16: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/16.jpg)
Trusted Profile – what is it?Trusted Profile-based
signatur
eValidated account (trusted profile)
User’s account
ePUAP
![Page 17: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/17.jpg)
ePUAP - concept
CRDePUAP
Documenttemplate
Citizen
Clerk
Form
Document
acitvity
start
subactivitydecision
endDocument
Document
Document
![Page 18: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/18.jpg)
ePUAP – how does it look like?
http://www.epuap.gov.pl/
![Page 19: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/19.jpg)
Trusted profile’s lifecycle
ePuap account creation
Account validation•Automatic, with qualified signature
•Manual – at verification point
Trusted profile usage•Signature
Renewal•With qualified signature
•With trusted profile’s signature
End of lifecycle•Expiration•revocation
![Page 20: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/20.jpg)
Trusted profile - summary• Tool for natural persons only
– Although ePUAP authentication mechanism gives a possibility to login in a specific context
• Username/password based authentication• E-mail based authorization• Trusted profile signature – seal containing trusted profile data
![Page 21: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/21.jpg)
Signing with trusted profile - presentation
![Page 22: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/22.jpg)
New trends in electronic signatures
![Page 23: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/23.jpg)
New trends• Biometric signatures• Mediated signatures• Forgery Evident Signatures• PKI 2.0 concept
![Page 24: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/24.jpg)
Biometric signatures - Goals
Bind signature to the user
Remove the necessity of holding smartcard
Make system transparent to SCVA’s
![Page 25: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/25.jpg)
Biometric signatures - concept
Key store
Finger Vein reader
Finger Vein authentication system
SCVA application
MS CSP
DocumentSigned
document
Signature request
Authentication request
Encrypted pattern
Authentication result
Authentication result
Signature response
![Page 26: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/26.jpg)
Biometric signatures - applicability
Kiosks
Banks
Offices
![Page 27: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/27.jpg)
Biometric signatures - summary• Advantages
– No card needed– Strong authentication– Technical details can be hidden behind CSP/PKCS#11 interface
• Disadvantages– Biometric (Finger Vein) reader needed– Central Finger Vein database
![Page 28: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/28.jpg)
New trends• Biometric signatures• Mediated signatures• Forgery Evident Signatures• PKI 2.0 concept
![Page 29: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/29.jpg)
Mediated signatures - Goals
Preserve sole control
Make signature process auditable
Signature exists, so it is valid
![Page 30: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/30.jpg)
Mediated signatures - concept
RSA key pair
Private keyUser’s Private
KeyService’s
Private Key
Public KeyPublic Key
![Page 31: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/31.jpg)
Mediated signatures – key generation
Signature ServiceKey
Identifier
Pseudorandom data for identifier
Key Pair
Certificate
Public Key
Private Key
Key generation service Service master Key
SignatureService key
User’s Key
![Page 32: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/32.jpg)
Mediated signatures – signature process
Signature Service
CitizenDocument
Preprocessed Signature
Valid Signature
Certificate validation
Signatures log
![Page 33: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/33.jpg)
Mediated signatures - benefits
Sole control
•User’s key required•No key recovery on server sideSignature
only for valid
certificates
Signature constrains on server
side
Audit of created
signatures
![Page 34: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/34.jpg)
Mediated signatures – additional information
• MRSAA RFC draft: https://datatracker.ietf.org/doc/draft-kutylowski-mrsa-algorithm/
• Mediated signatures project site: http://www.podpisosobisty.pl/
![Page 35: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/35.jpg)
New trends• Biometric signatures• Mediated signatures• Forgery Evident Signatures• PKI 2.0 concept
![Page 36: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/36.jpg)
Forgery evident signatures - Goals
It is possible to reveal key compromise
It is possible to distinguish original signatures from forged ones
Applicability to existing technologies
![Page 37: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/37.jpg)
Forgery evident signatures – concept
Mediated signatures as core technologyStateful authenticationKey evolution
![Page 38: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/38.jpg)
FE signatures – signature process
Signature Service
CitizenDocument
Preprocessed Signature
Valid Signature
Certificate validation
Signatures log
Synchronized HMAC key evolution
![Page 39: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/39.jpg)
FE signatures – key compromise detection
Signature Service
CitizenDocument
Preprocessed Signature
Valid Signature
Certificate validation
Signatures log
HMAC Keys not synchronized!
![Page 40: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/40.jpg)
FE signatures – verification of authenticity of signature
Signature Service
CitizenSigned document
Signature authenticity confirmation
Valid Signature
Signatures log
![Page 41: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/41.jpg)
Forgery evident signatures – possibilities
Forgery Evident services
Forged signatures may be recognized
If key was copied it is known when it happened
![Page 42: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/42.jpg)
Forgery evident signatures – applicability
User signatures
Service signatures
High security areas
![Page 43: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/43.jpg)
New trends• Biometric signatures• Mediated signatures• Forgery Evident Signatures• PKI 2.0 concept
![Page 44: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/44.jpg)
PKI vs PKI 2.0
PKI
Business Processes
CACitizen
Document
Certificate
SignedDocument
PaymentInsurance
![Page 45: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/45.jpg)
PKI vs PKI 2.0
PKI 2.0
Business Processes
Signature AuthorityCitizen
Document
SignedDocument
PaymentInsurance
Signed Document
![Page 46: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/46.jpg)
PKI 2.0 - summary• PKI 2.0 concept – bussiness model• Signature centric• Various realization models• More at http://www.pki2.eu
![Page 47: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/47.jpg)
Summary• Poland – large market for e-services, and e-
signatures• IMM – public research body in Poland –
http://www.imm.org.pl/ • More on presented new signature technologies:
– Biometric signatures – http://www.biotrustis.pl– Mediated signatures – http://www.podpisosobisty.pl– Forgery evident signatures –http://www.biopki.org.pl/
node/2; http://www.ticons.pl; – PKI 2.0 concept – http://www.pki2.eu
![Page 48: Electronic Signatures in Poland market, tools and new trends](https://reader036.fdocuments.in/reader036/viewer/2022062323/56815f56550346895dce3652/html5/thumbnails/48.jpg)
Thank you for your attention
Dziękuję za uwagę
Daniel Wachnik ([email protected])Electronic signature laboratory