"A big leap in the eIDAS journey: new trust services for a Digital Single Marke” jardunaldian Javier Bikandik erabilitako aurkezpena.
Presentación utilizada por Javier Bikandi en la jornada "A big leap in the eIDAS journey: new trust services for a Digital Single Marke”.
2. Digital Government services
The 2014-2016 Public Innovation Plan
1. Transparency and Sound Governance
2. Interaction with citizens
3. Organizational adaptation
4. Improved management
5. e-Government
6. Innovation from co-creation
6. • Identification and signature based on electronic certificates
• Complexity of Use
• Need for installation of additional hardware (reader)
• Additional Software for cards
• Unable to be used in mobile devices
• Important complexity of use (JAVA)
VERY LOW LEVEL OF USE
Services required for the implementation of electronic
services
SERVICE CERTIFICATION PROVIDERS
Digital Government services
Until today
7. Problems identified
• Complexity to admit the different identification and
signature systems
• We rely on Service Certification Providers (both qualified
signature & advanced signature)
• Every level of the Basque administration has implemented
its own solution for identification and signature
• Limited interoperability.
Required Services
SERVICE CERTIFICATION PROVIDERS
Digital Government services
8. eIDAS Regulation
• Very important regulation that improves user convenience
and on-line experience and stimulates the provisioning of new
innovative services
• Defines and regulates a collection of 'trusted services' whose
recognition as 'qualified' endows them with full legal
guarantees.
Digital Government services
9. New eIDAS Regulation
HIGH
QUALIFIED ELECTRONIC SIGNATURE
CLOUD ELECTRONIC SIGNATURE
LOW
BÁSIC ELECTRONIC SIGNATURE
BAK (USER AND PASSWORD)
SUBSTANTIAL
ADVANCED ELECTRONIC SIGNATURE
GAME BOAT
Game boat
Certificates in software
Certificates in
hardware
Egoitza
User/Password
Digital Government services
10. From certified services to trusted services
Required services
TRUSTED SERVICE PROVIDERS
Digital Government services
11. Identification and signature system for all Basque administrations
• Main features:
• Unique identification and signature system for all Basque
Administrations
• Easy access to services for citizens and security guaranteed
• Does not require installation of any ICT componets
• Supports all 3 levels included in eIDAS regulation
• Multidivice and mobile
• Aligned with cloud certificates
• Includes identity federation with external identification systems
• Google, Linkedin, Facebook, …
• Interoperability
• Integration with other systems:
• Ease of use and validation of all recognized digital identities
in the EU
• Integrated with Cl@ve (Spanish Government)
BOOST ACCESS OF CITIZENS TO ADMINISTRATION SERVICES
Digital Government services
Just as the Basque Country assumes innovation as a key element for the improved competitiveness of its economy, its public sector must show a leadership example with respect to innovation, by improving public services, providing guidance to citizens and companies, and functioning efficiently, among others.
With this aim in mind, the Basque Government launched its Public Innovation Plan focused on the 6 areas that you can see on the screen as a strategic management instrument for coming closer to a Public Administration that contributes to lending legitimacy to the value of public aspects in Basque society.
If we classify the needs according to the Strategic formulation, the Public innovation Plan is focused answering to the following needs:
The need to adapt the way the Public Administration functions to the requirements of citizens with control over institutional action; ensuring transparency and citizen participation.
The need to guarantee quality services and attention to citizens by means of the different channels of interaction.
The need for the services to be provided efficiently; in other words, rational and proportional allocation and use of public funds.
The need to adapt the organization structure.
The need to involve citizens and public sector professionals in the design, management and evaluation of public services
In order to answer to the previously identified needs, we have launched many projects, but here I will focus on the new identification and signature based on trusted services
What is the actual scenario? Citizens accessing administration digital services using electronic certificates.
In summary, identification and signature based on electronic certificates has shown very low level of use by citizens due to various problems like the need of installation of additional hardware or the complexity of use
How is the situation in the Basque Country?
We have Complexity to admit the different identification and signature systems
We rely on Service Certification Providers
Almost every level of the Basque administration has implemented its own solution for identification and signature
We have limited interoperability.
The eIDAS regulation has come to solve the problems previously mentioned. It basically improves citizens convenience and on-line experience and stimulates the provisioning of new innovative services
We have diferent solutions for every level.
For the low level, basic electronic signature, we have created the BAK, based on user and password.
For the Substantial level, advanced electronic signature, we have what we call Game Boat system
For the high level, advanced electronic signature, we have cloud electronic signature
All Basque administration are moving to trusted services.
The new Identification and signature system will boost access of citizens to online administration services.
The main features are:
Unique identification and signature system for all Basque Administrations
It supports all 3 levels included in eIDAS regulation
It is Multidivice and mobile
It is aligned with cloud certificates
It facilitates interoperability
And it is integrated with other systems, like Clave project of the Spanish Government
On the Scheme, you can see how all three levels are integrated within an unique the same authentification portal, that we call GILTZA, that whenever necessary uses ZAIN, for timestamping and validation.