Commission s proposal for a Regulation on Electronic identification and trust services for electronic transactions in the internal market
|
|
- Preston Watson
- 8 years ago
- Views:
Transcription
1 Commission s proposal for a Regulation on Electronic identification and trust services for electronic transactions in the internal market COM(2012)238 of ClubPSCo, Paris, Gérard GALLER European Commission - DG ConNECT gerard.galler@ec.europa.eu 1
2 Current esignature / eid status in EU Directive 1999/93/EC legal framework CEN and ETSI e-signature standards EU Member States + industry investments In Services Directive context: Trusted list of qualified certificates providers Points of Single Contact must handle ETSI signature formats No EU legislation on eid 2
3 Strong political commitment Reiterated political commitment of EU Institutions: European Commission Communications: Digital Agenda for Europe , COM(2010)245 European egov Action Plan , COM(2010)743 Single Market Act , COM(2011)206 A roadmap to stability and growth , COM(2011)669 Commission Work Programme , COM(2011)777 Consistently echoed by European Council Two European Parliament Resolutions, 2010 EU Member States and Institutions consider a renewed legal framework as a top priority 3
4 New legisaltion s ambition To strengthen EU Single Market by boosting convenience and trust online Requires secure and seamless cross-border e-transactions: Between administrations, businesses and citizens Offering legal certainty Easy to use by non specialists Low cost E-identification, authentication, signature and related trust services are instrumental A B C 4
5 Consultation process Trigger: Action Plan on esig. and eid COM(2008)798, Sources of feedback: Several studies (Crobies, IAS study, IDABC studies, ) Public online consultation Feb-Apr 2011, 434 respondents SME survey Oct-Dec 2011, 1251 respondents Services Directive technical group on e-procedures (CD 2009/767/EC, 2011/130/EU) FESA (Forum of European Supervisory Authorities) six-monthly meetings Dedicated meetings with EU Member States (Warsaw , Poznan , Brussels ) Participation to some 40 public conferences Numerous bilateral meetings with stakeholders Interservice consultation within European Commission 5
6 Scope of the proposed Regulation 1. Mutual recognition of electronic identification 2. Electronic trust services: Electronic signatures interoperability and usability Electronic seals interoperability and usability Cross-border dimension of: 1.Time stamping, 2.Electronic documents delivery, 3.Electronic documents admissibility, 4.Website authentication. 6
7 Structure Building of Trust e-identification, authentication, signatures & related trust services Underlying principles: Internal market Subsidiarity Technological neutrality esignatures eseals Time stamping edelivery services edocuments admissibility Website authentication Trust Services Common principles Supervision Trust (trusted lists, devices certification) Convenience/transparenc y (legal certainty) Security (qualified levels) Data protection Liability International aspects Accessibility Specific Requirements Legal effect Mutual recognition and acceptance Reference to standards eidentification Principles Natural & legal persons Notification Authentication Requirements Mutual recognition and acceptance Liability 7
8 Mutual recognition and acceptance of eid A EU Member State: 1. May notify to European Commission the national electronic identification scheme(s) used at home for, at least, access to public services; 2. Must recognise and accept notified eids of other Member States for cross-border access to its public services requiring e-identification; 3. Must provide online free eid authentication facility; 4. Is liable for unambiguous identification of persons and for authentication; 5. May allow the private sector to use notified eid 8
9 What is OUT of scope? What is not covered on eid: No obligation on Member States to have an e-identification scheme No obligation on Member States to notify their e-identification scheme(s) "Notified" eid is NOT the same as ID cards No "EU database" of any kind No "EU eid" Multiple e-identifications schemes are allowed No coverage «soft ID» (ex. Facebook); only «hard eid» "Notified" eid does not mean meeting the eligibility conditions for a service What is not covered on trusted services: Supervision at EU level (vs. national / regional level) No prior authorisation to start qualified service, no accreditation Detailed provisions on trust services other than esignatures/eseals Persons roles and/or attributes Certification of other products than esig/eseal creation devices Encryption 9
10 Why will it make a difference? Comprehensive toolbox of trust building instruments One single legislation across EU Foster eid usage ( world premiere ): Leverage eid cards and mobile ID infrastructure Reliable eid to allow cross border ebusiness and enable egov services Private sector is invited to build on «notified» eid schemes Creates confidence in electronic trust services: Effective state supervision Systematic usage of trusted lists Easy esignature: Harmonisation power of Regulation: de facto «EU signature» Enables full esig specification via secondary legislation + standards Allows "mobile" and "server" qualified signatures Related trust services: Address blatant market needs: eseals, edelivery, edocuments, long term validity of esig Harmonise national legislation: time stamping, edelivery E-Document admissibility: «big bang» for de-materialisation Website authentication is a non formulated expectation of the citizens 10
11 Indicative process Legislative process Public consultation Commission proposal Cyprus Presidency report Parliament + Council adoption Standardisation mandate m460 Standards Delegated/Implementing acts Commission Decisions NB. Dates are indicative 11
12 For further information and feedback Website: Draft Regulation: tion/regulation Mailbox: 12
13 Additional slides Main changes w.r.t. esignatures Directive Not carried out from esignatures Directive Main provisions of draft Regulation 13
14 Main changes w.r.t. esignatures Directive Single legislation across EU (Regulation) Extended scope: mutual recognition & acceptance of notified electronic ID and trust services Reinforced security & usability of trust services: Common essential supervision requirements "Regional" supervision besides national supervision Explicit obligation for security due diligence (qualified and non qualified providers) + breach notification Trusted list" list of qualified EU providers List of certified «qualified signature creation devices» Presumption of compliance + interoperability via delegated/implementing acts and voluntary standards esignature fully defined with provisions with legal effects for legal certainty and interoperability Allow «server» and «mobile» signing 14
15 Not carried out from esignatures Directive No accreditation (ex-art 2.13) No mandatory signatory attributes in qualified certificates (ex-annex I.d) No limitation on «scope of use» of qualified certificates or transactions value (ex-art. 6.4; Annex I.i, j) No public sector derogation (ex-art 3.7) Recognition of third country providers : No recognition via accreditation (ex-art 7.1.a) No recognition via «patronage» by EU provider (ex-art 7.1;b) No reference to certificates issued to the public (several ex-articles) 15
16 Key principle: technological neutrality Three-pronged approach: Systematically, for each trusted service: Technology neutral definition Non discrimination «electronic vs. paper» Qualified level Defined by target security requirements «Rewarded» by higher legal effect Does not specify means to achieve them «Presumption» of compliance to qualified level (via secondary legislation): Qualified level specified by voluntary standards 16
17 Scope Natural persons eidentification ID national registers Legal persons eidentification Business registers Regulated professions Roles / Attributes Social security eid Mutual recognition & acceptance (X-sector, X-border) Website authentication esignature eseal Scope Certified edelivery Time stamping edocument admissibility Long term preservation 17
18 Electronic trust services Common Principles: Mutual recognition of «qualified» electronic trust services Strengthens and harmonises national supervision of qualified trust service providers and trust services Uses delegated and implementing acts as a mechanism to ensure flexibility vis-à-vis technological developments esignature Clarifies the concepts related to esignature (natural persons) Introduces eseals (legal persons) Clarifies validation of qualified esignatures Ensures long term preservation Allows for full reference to standards Allows «server» and «mobile» signing 18
19 Provisions of the proposed Regulation Ch 1: General Provisions Ch 2: Notified electronic identification Ch 3: Trust services Ch 4: Delegated acts Ch 5: Implementing acts Ch 6: Final provisions Annexes I, III, IV: Qualified certificates Annex II: Qualified esig creation devices 19
20 Ch 1. General Provisions Legal basis: Art 114 TFEU (internal market) Art 1, Art 2: Subject matter and scope Extended to cover mutual recognition & acceptance of "notified" eid "electronic trust services" (esig, eseals, edoc, time stamping, esig/eseal long term preservation service, website authentication) "Toolbox" of trust services: usage is NOT mandatory Art 3: Definitions Trust services do not encompass eid (subsidiarity) Qualified = matching the requirements of the Regulation Qualified trust service providers (Q-TSP) and trust services (Q-TS) esig creation device: SW or HW used to create an esig Art 4: Internal market Free movement of trust services and related products Mutual recognition and acceptance of trust services 20
21 Ch 2. Electronic identification Art 5: Legal effect: Mutual recognition and acceptance of notified e-identification schemes Natural and legal persons Art 6, Art 7: Notification mechanism A Member State: May notify to Commission the national eid scheme(s) used domestically for at least, access to public services; Must recognise and accept notified eids of other Member States for cross-border access to its public services requiring e-identification; Must provide online free eid authentication facility; Are liable for unambiguous identification of persons and for authentication; May allow the private sector to use notified eid Art 8: Coordination mechanism between Member States to ensure eid means interoperability and enhance security 21
22 Ch. 3. Trust services (TS) Section 1. General provisions Art 9: Liability: TSP is liable for what it does (similar to esig Directive) Art 10: International aspects: Mutual recognition of QTS (new) and Q-certificates (like in esig Directive) 3rd country TS must match at least EU data protection, security and supervision levels Only via international agreement Art 11: Data processing and protection Stronger and unlimited reference to data protection directive Data minimisation (new) Art 12: Accessibility for disabled persons Services and products «accessible» whenever possibe (new) Generic three-pronged approach: Technologically neutral definiton (non discrimination) "Qualified" secure level (with legal effect) Presumption of compliance (if voluntary standards are matched) 22
23 Ch. 3. Trust services Section 2. TSP and TS Supervision (1/2) Art 13, 14: Supervision National (like esig Directive) or «regional» (new) supervision authority Common essential supervision requirements of Q-TSPs Cooperation between Supervisors: Mutual supervision assistance Yearly supervision report Collection of market statistics from Q-TSPs and Supervisors Exchange of good practices between Supervisors ( FESA) MS to ensure long term availability of trust data of Q-TSPs 23
24 Ch. 3. Trust services Section 2. TSP and TS Supervision (2/2) Art 15: Requirements on Q and non Q-TSPs: Obligation of security due diligence for non Q-TSPs if risky service Security breach notification obligation for Q and non Q-TSPs Binding instructions by Supervisors to Q and non Q-TSPs Art. 16: Supervison of Q-TSPs Q-TSP subject to at least yearly audit Supervisor can issue binding instructions to Q-TSP. Supervisor can remove Qualified status. Art. 17: Initiation of Q-Trust services Mandatory notification to Supervisor (new) No prioir authorisation (unchanged) Art. 18: Trusted Lists: EU trusted lists of Q-TSs and Q-TSPs ( SD Decision 2009/767/EU) Art. 19: Requirements for Q-TSPs: Certificates issuance (new): face-to-face OR remotely using «notified» eid Mandatory on-line standardised certificate status info (ex. OCSP) Other reliability and professionalism requirements (similar to ex-annex II) 24
25 Ch. 3. Trust services Section 3: esignatures (1/2) Art. 3 (definitions): esignature: esig. = data in e-form attached to or logically associated with other e-data and which are used by the signatory to sign Natural persons only Advanced esig. (AeS): adapted to allow server signing and make «sole control» manageable Art. 20: Legal effects and acceptance of esignatures Qualified esig. (QeS) has equivalent legal effect of handwritten signature Mutual recognition and acceptance of QeS Allows for classification of esignatures with security insurance level < QeS Security of AeS may be defined via standards Security insurance requirements > QeS are forbidden for public services 25
26 Ch. 3. Trust services Section 3: esignatures (2/2) Art. 21 and Annex I: Qualified certificates for esignature Fully defined in Annex I: exact mandatory content Art 3.17, 22-24: Qualified signature creation devices Q-SCD Extended scope of creation devices: HW or SW to create an esig. Certification of Q-SCD (ex. ISO "Common Criteria") European positive list of certified Q-SCD Art 25-26: Validation Defines when a QeS is valid Defines Q-validation service provider (new) Standardised interface for Q-validation service provider (ex. XKMS) Art 27: Preservation of esignatures Defines Q-long term preservation service (new) Art 34.4: esig formats for public services: Administrations to accept a minimum common set of standardised esig formats (= SD Decision 2011/130/EU: CAdES, XAdES, PAdES) 26
27 Ch. 3. Trust services Section 4. eseals Legal persons only Instrument for document authentication: data in e-form attached to or logically associated with other e-data to ensure origin and integrity of the associated data «mutatis mutandis» like esignature Section 5. Time stamping Legal existence of time stamps Defines qualified time stamps («date certaine») Section 6. edocuments Non discrimination «paper vs e-documents» Presumption of authenticity and integrity of Q- signed/sealed edocuments 27
28 Ch. 3. Trust services Section 7. edelivery Legal effect: certainty of cross-border electronically delivery Establishes qualified edelivery services NB. Assumes national legislation will establish equivalence of e-delivery and paper «recommandé» Section 8. Website authentication Only establishes legal existence of qualified webiste authentication certificates 28
29 Ch 4 and 5. Secondary legislation Ch 4: Delegated acts Art. 38: Standard provision for delegated acts Ch 5: Implementing acts Art 39: Standard provision for implementing acts: Examination procedure Qualified majority 29
30 Ch 6. Final provisions Art 40: reporting every four years Art 41: Repeal Directive 1999/93/EC Already SSCDs certified SSCDs become QSCDs Existing Q-Certificates remain valid max. five years Art 42: Immediate entry into force 20 days after official publication following adoption by European Parliament and Council by «ordinary procedure» (ex-codecision) 30
31 Other Decision 2000/709/EC on "Designated Bodies" to be «transferred» later to Regulation Decision 2003/511/EC on SSCD Protection Profiles: still to be updated under 1999/93/EC before repeal (TBC) to be «transferred» to Regulation «Trusted List» of Decision 2009/767/EC to be «transferred» to Regulation «Expert Group(s)» to be set up: eid (art 8), Supervisors (art 14) and Stakeholders 31
Proposal for a Regulation on Electronic identification and trust services for electronic transactions in the internal market
Proposal for a Regulation on Electronic identification and trust services for electronic transactions in the internal market (COM(2012 238 final) {SWD(2012) 135 final} {SWD(2012) 136 final} Andrea SERVIDA
More informationtrust and confidence "draw me a sheep" POLICY AND REGULATION FOR EUROPE
trust and confidence "draw me a sheep" POLICY AND REGULATION FOR EUROPE new regulation eidas... "...told him that she was the only one of her kind in all the universe" POLICY AND REGULATION FOR EUROPE
More informationLEGAL FRAMEWORK FOR E-SIGNATURE IN LITHUANIA AND ENVISAGED CHANGES OF THE NEW EU REGULATION
LEGAL FRAMEWORK FOR E-SIGNATURE IN LITHUANIA AND ENVISAGED CHANGES OF THE NEW EU REGULATION Aušra Kumetaitienė Head of Information Society Development Division Tomas Jakimavičius Telecommunications and
More informationProposal for a Regulation on Electronic identification and trust services for electronic transactions in the internal market
Proposal for a Regulation on Electronic identification and trust services for electronic transactions in the internal market [COM(2012) 238 final] {SWD(2012) 135 final} {SWD(2012) 136 final} Andrea SERVIDA
More informationExpert Meeting on CYBERLAWS AND REGULATIONS FOR ENHANCING E-COMMERCE: INCLUDING CASE STUDIES AND LESSONS LEARNED. 25-27 March 2015.
Expert Meeting on CYBERLAWS AND REGULATIONS FOR ENHANCING E-COMMERCE: INCLUDING CASE STUDIES AND LESSONS LEARNED 25-27 March 2015 eidas Regulation By Alessandra Sbordoni Legal Officer, eidas Task Force
More informationDS-05-2015: Trust eservices. The policy context: eidas Regulation
DS-05-2015: Trust eservices The policy context: eidas Regulation Cybersecurity & Privacy Innovation Forum 2015 Brussels, 28 April 2015 Andrea SERVIDA DG CONNECT, European Commission Head of eidas Task
More informationHaving regard to the Treaty on the Functioning of the European Union, and in particular Article 114 thereof,
28.8.2014 Official Journal of the European Union L 257/73 REGULATION (EU) No 910/2014 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 23 July 2014 on electronic identification and trust services for electronic
More information26.3.2014 A7-0365/133
26.3.2014 A7-0365/133 Amendment 133 Amalia Sartori on behalf of the Committee on Industry, Research and Energy Report A7-0365/2013 Marita Ulvskog Electronic identification and trust services for electronic
More informationNIST-Workshop 10 & 11 April 2013
NIST-Workshop 10 & 11 April 2013 EUROPEAN APPROACH TO OVERSIGHT OF "TRUST SERVICE PROVIDERS" Presented by Arno Fiedler, Member of European Telecommunications Standards Institute Electronic Signatures and
More informationRegulation on electronic identification and trust services for electronic transactions in the internal market
Informationsgesellschaft, Telekommunikation Regulation on electronic identification and trust services for electronic transactions in the internal market Meaning of the EU-Regulation for the national legal
More informationROADMAP. A Pan-European framework for electronic identification, authentication and signature
TITLE OF THE INITIATIVE ROADMAP A Pan-European framework for electronic identification, authentication and signature TYPE OF INITIATIVE CWP Non-CWP Implementing act/delegated act LEAD DG RESPONSIBLE UNIT
More informationETSI SECURITY WEEK EIDAS Overview CEN/ETSI esignature Standardization including standards for TSP Compliance. ETSI 2015. All rights reserved
ETSI SECURITY WEEK EIDAS Overview CEN/ETSI esignature Standardization including standards for TSP Compliance esignature Standards Framework Certificate Authority Time-stamping Signing Servers Validation
More informationCOMMISSION OF THE EUROPEAN COMMUNITIES
EN EN EN COMMISSION OF THE EUROPEAN COMMUNITIES Brussels, 28.11.2008 COM(2008) 798 final COMMUNICATION FROM THE COMMISSION TO THE COUNCIL, THE EUROPEAN PARLIAMENT, THE EUROPEAN ECONOMIC AND SOCIAL COMMITTEE
More informationImplementation of eidas through Member States Supervisory Bodies
Implementation of eidas through Member States Supervisory Bodies Riccardo Genghini - ETSI TC ESI & CEN-ETSI e-sign Coord. Group Chairman CA Day Berlin June 09 th, 2015 ETSI 2013. All rights reserved 2
More informationEUROPEAN PARLIAMENT AND COUNCIL DIRECTIVE. on a common framework for electronic signatures
COMMISSION OF THE EUROPEAN COMMUNITIES Brussels, 29.04.1999 COM(1999) 195 fmal 98/0191(COD) Amended proposal for a EUROPEAN PARLIAMENT AND COUNCIL DIRECTIVE on a common framework for electronic signatures
More informationSTANDARDISIERUNG FÜR EIDAS IM MANDATE/460
STANDARDISIERUNG FÜR EIDAS IM MANDATE/460 TeleTrusT Signaturtag 17.09.2015 ETSI 2014. All rights reserved STANDARDISIERUNG FÜR EIDAS IM MANDATE/460 TeleTrusT Signaturtag 17.09.2015 ETSI 2014. All rights
More informationQualified Time Stamping and eregistered Delivery Services Overall considerations
eias Study on an electronic identification, authentication and signature policy Qualified Time Stamping and eregistered Delivery Services Overall considerations Building blocks for secondary legislation
More informationRolling out eidas Regulation (EU) 910/2014. Boosting trust & security in the Digital Single Market
Rolling out eidas Regulation (EU) 910/2014 Boosting trust & security in the Digital Single Market Trust in the Digital World 2016 Conference 15 June 2016 The Hague (NL) Andrea SERVIDA DG CONNECT, European
More informationesignature building block Introduction to the Connecting Europe Facility DIGIT Directorate-General for Informatics
Introduction to the Connecting Europe Facility esignature building block DIGIT Directorate-General for Informatics DG CONNECT Directorate-General for Communications Networks, Content and Technology February
More informationSecurity framework. Guidelines for trust services providers Part 1. Version 1.0 December 2013
Security framework Guidelines for trust services providers Part 1 Version 1.0 December 2013 European Union Agency for Network and Information Security www.enisa.europa.eu Security framework Guidelines
More informationCCBE POSITION ON THE PROPOSED ELECTRONIC IDENTITY AND
CCBE POSITION ON THE PROPOSED ELECTRONIC IDENTITY AND TRUST SERVICES REGULATION (COM(2012) 238/2) CCBE Position on the proposed electronic identity and trust services regulation (COM(2012) 238/2) The Council
More informationImplementing & Delegated Acts
Implementing & Delegated Acts Some Principles jos.dumortier@timelex.eu 1 Executive Acts: why? filling in the gaps or dealing with details jos.dumortier@timelex.eu 2 Legislative Process Commission PROPOSES
More informationSSLPost Electronic Document Signing
SSLPost Electronic Document Signing Overview What is a Qualifying Advanced Electronic Signature (QAES)? A Qualifying Advanced Electronic Signature, is a specific type of digital electronic signature, that
More informationeidas as blueprint for future eid projects cryptovision mindshare 2015 HJP Consulting Holger Funke
eidas as blueprint for future eid projects cryptovision mindshare 2015 HJP Consulting Holger Funke Agenda eidas Regulation TR-03110 V2.20 German ID card POSeIDAS Summary cryptovision mindshare 2015: eidas
More informationPředstavení nařízení EU eidas a možný přístup ČR k implementaci. Ondřej Felix Hlavní architekt egovernmentu MV
Představení nařízení EU eidas a možný přístup ČR k implementaci Ondřej Felix Hlavní architekt egovernmentu MV O čem to je This Regulation seeks to enhance trust in electronic transactions in the internal
More informationLegality of Electronic Signatures and implementation of electronic building permits
Legality of Electronic Signatures and implementation of electronic building permits in Republic of Macedonia CPD of ECEC E-Building Permits and Electronic Signatures 28 th January 2016 Agenda Legal background
More informationIT-Security All safe and sound?
IT-Security All safe and sound? The building blocks for secure E-Government Dr. Vienna, 20.10.2014 Das E-Government Innovationszentrum ist eine gemeinsame Einrichtung des Bundeskanzleramtes und der TU
More informationInitial appraisal of a European Commission Impact Assessment
Initial appraisal of a European Commission Impact Assessment European Commission proposal for a Directive on the harmonisation of laws of the Member States to the making available on the market of radio
More informationDigital signature and e-government: legal framework and opportunities. Raúl Rubio Baker & McKenzie
Digital signature and e-government: legal framework and opportunities Raúl Rubio Baker & McKenzie e-government concept Utilization of Information and Communication Technologies (ICTs) to improve and/or
More informationUNCITRAL United Nations Commission on International Trade Law Introduction to the law of electronic signatures
Introduction to the law of electronic signatures Luca Castellani Head, Regional Centre for Asia and the Pacific UNCITRAL Secretariat Incheon, Republic of Korea Outline 1. Methods and technologies for electronic
More informationCouncil of the European Union Brussels, 5 March 2015 (OR. en)
Council of the European Union Brussels, 5 March 2015 (OR. en) Interinstitutional File: 2013/0027 (COD) 6788/15 LIMITE TELECOM 59 DATAPROTECT 23 CYBER 13 MI 139 CSC 55 CODEC 279 NOTE From: Presidency To:
More informationCOMMITTEE ON STANDARDS AND TECHNICAL REGULATIONS (98/34 COMMITTEE)
EUROPEAN COMMISSION ENTERPRISE AND INDUSTRY DIRECTORATE-GENERAL Regulatory Policy Standardisation Brussels, 9 th November 2005 Doc.: 34/2005 Rev. 1 EN COMMITTEE ON STANDARDS AND TECHNICAL REGULATIONS (98/34
More informationIntroduc)on to STORK2.0 project
Introduc)on to STORK2.0 project AAI Workshop Brussels, April 2014 EUROPEAN EID CONTEXT FOR EGOVERNMENT NaKonal online services today with eid CENTRAL GOVERNMENT ONLINE SERVICES LOCAL GOVERNMENT ONLINE
More informationQuestions & Answers. on e-cohesion Policy in European Territorial Cooperation Programmes. (Updated version, May 2013)
Questions & Answers on e-cohesion Policy in European Territorial Cooperation Programmes (Updated version, May 2013) This fact sheet was drafted jointly by INTERACT and European Commission (DG Regional
More informationStudy on Mutual Recognition of esignatures: update of Country Profiles Analysis & assessment report
Study on Mutual Recognition of esignatures: update of Country Profiles This report / paper was prepared for the IDABC programme by: Coordinated by: Hans Graux (time.lex), Guy Lambert (Siemens), Brigitte
More informationGuidelines for the use of electronic signature
Republic of Albania National Authority for Electronic Certification Guidelines for the use of electronic signature Guide Nr. 001 September 2011 Version 1.3 Guidelines for the use of electronic signature
More informationProposal for a DIRECTIVE OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL. on electronic invoicing in public procurement. (Text with EEA relevance)
EUROPEAN COMMISSION Brussels, 26.6.2013 COM(2013) 449 final 2013/0213 (COD) Proposal for a DIRECTIVE OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL on electronic invoicing in public procurement (Text with
More informationApplication of Data Protection Concepts to Cloud Computing
Application of Data Protection Concepts to Cloud Computing By Denitza Toptchiyska Abstract: The fast technological development and growing use of cloud computing services require implementation of effective
More informationRoadmap for the Single Euro Payments Area
www.europeanpaymentscouncil.eu Roadmap for the Single Euro Payments Area Status and progress Gerard Hartsink Chair - European Payments Council Raad Nederlandse Detailhandel Utrecht, 28 augustus 2009 Agenda
More informationView from a European Trust Service Provider Server Signing: Return of experience and certification strategy
View from a European Trust Service Provider Server Signing: Return of experience and certification strategy January 16, 2014 - Berlin Thibault de Valroger VP Strategy & Development OPENTRUST Thibault.devalroger@opentrust.com
More informationCEF Building blocks. Informatics. Joao Rodrigues Frade DIGIT.B4. CEF Project and Architecture Office Directorate-General for Informatics
CEF Building blocks Joao Rodrigues Frade DIGIT.B4 CEF Project and Architecture Office Directorate-General for AGENDA CEF at a glance CEF reuse logic CEF building blocks A fully functioning Digital Single
More informationDelegations will find attached the draft Council conclusions on a Capital Markets Union, as prepared by the Economic and Financial Committee.
Council of the European Union Brussels, 16 June 2015 (OR. en) 9852/15 EF 110 ECOFIN 473 SURE 14 UEM 223 NOTE From: To: Subject: General Secretariat of the Council Permanenet Representatives Committee (Part
More informationELECTRONIC SIGNATURES AND ASSOCIATED LEGISLATION
ELECTRONIC SIGNATURES AND ASSOCIATED LEGISLATION This can be a complex subject and the following text offers a brief introduction to Electronic Signatures, followed by more background on the Register of
More informationLegal Status of Qualified Electronic Signatures in Europe
Legal Status of Qualified Electronic Signatures in Europe Jos Dumortier Professor of Law - K.U.Leuven Lawfort Of Counsel - Bar of Brussels jos.dumortier@lawfort.be Abstract It is a common misunderstanding
More informationSubmitted to the EC on 03/06/2012. COMPETITIVENESS AND INNOVATION FRAMEWORK PROGRAMME ICT Policy Support Programme (ICT PSP) e-codex
Submitted to the EC on 03/06/2012 COMPETITIVENESS AND INNOVATION FRAMEWORK PROGRAMME ICT Policy Support Programme (ICT PSP) e-codex e-justice Communication via Online Data Exchange ICT PSP call identifier:
More informationLife and Non-life Insurance Directives
1 Life and Non-life Insurance Directives Michaela SUCHARDOVÁ Insurance and Pensions Unit Screening process Explanatory meeting with Croatia and Turkey 29 March 2006 2 Overview of the presentation 1. Internal
More informationDr. Vangelis OUZOUNIS Senior Expert Security Policies ENISA. evangelos.ouzounis@enisa.europa.eu
Dr. Vangelis OUZOUNIS Senior Expert Security Policies ENISA evangelos.ouzounis@enisa.europa.eu 5 th German Anti-Spam Summit Koeln, 5 th of Sept. 2007 www.enisa.europa.eu 1 Agenda NIS a Challenge for the
More informationComments and proposals on the Chapter IV of the General Data Protection Regulation
Comments and proposals on the Chapter IV of the General Data Protection Regulation Ahead of the trialogue negotiations later this month, EDRi, Access, Panoptykon Bits of Freedom, FIPR and Privacy International
More informationCOMMUNICATION FROM THE COMMISSION TO THE EUROPEAN PARLIAMENT, THE COUNCIL, THE EUROPEAN ECONOMIC AND SOCIAL COMMITTEE AND THE COMMITTEE OF THE REGIONS
EUROPEAN COMMISSION Brussels, XXX [ ](2011) XXX draft COMMUNICATION FROM THE COMMISSION TO THE EUROPEAN PARLIAMENT, THE COUNCIL, THE EUROPEAN ECONOMIC AND SOCIAL COMMITTEE AND THE COMMITTEE OF THE REGIONS
More informationCOUNCIL OF THE EUROPEAN UNION. Brussels, 7 October 2003 (OR. en) 12858/03 RECH 152 OC 589
COUNCIL OF THE EUROPEAN UNION Brussels, 7 October 2003 (OR. en) 12858/03 RECH 152 OC 589 LEGISLATIVE ACTS AND OTHER INSTRUMENTS Subject : Council Decision on the signing of the Framework Agreement between
More informationSerge Novaretti IDABC DIGIT European Commission
European W3C Symposium on egovernment 2007 February 2 IDABC Programme European Interoperability Framework Serge Novaretti IDABC DIGIT European Commission 1 Disclaimers This presentation provides technical
More informationSUMMARY OF THE IMPACT ASSESSMENT
EN EN EN EUROPEAN COMMISSION Brussels, 12.7.2010 SEC(2010) 846 COMMISSION STAFF WORKING DOCUMENT SUMMARY OF THE IMPACT ASSESSMENT Accompanying document to the Proposal for a DIRECTIVE OF THE EUROPEAN PARLIAMENT
More informationExplanatory notes VAT invoicing rules
Explanatory notes VAT invoicing rules (Council Directive 2010/45/EU) Why explanatory notes? Explanatory notes aim at providing a better understanding of legislation adopted at EU level and in this case
More informationCOMMISSION STAFF WORKING DOCUMENT SUMMARY OF THE IMPACT ASSESSMENT. Accompanying the document
EUROPEAN COMMISSION Brussels, 7.3.2012 SWD(2012) 23 final COMMISSION STAFF WORKING DOCUMENT SUMMARY OF THE IMPACT ASSESSMENT Accompanying the document Proposal for a Regulation of the European Parliament
More information9360/15 FMA/AFG/cb 1 DG G 3 C
Council of the European Union Brussels, 29 May 2015 (OR. en) 9360/15 OUTCOME OF PROCEEDINGS From: To: Council Delegations RECH 183 TELECOM 134 COMPET 288 IND 92 No. prev. doc.: 8970/15 RECH 141 TELECOM
More informationJanuary 2015 Copyright 2015 GSM Association
Mobile Identity A Regulatory Overview Second edition January 2015 Copyright 2015 GSM Association 1 Introduction This paper is the second edition of the paper published by GSMA in February 2013 which provided
More informationElectronic Signatures in Norway Supervision and Legal Aspects
Electronic Signatures in Norway Supervision and Legal Aspects By Kristina Rognmo Adviser Section for ecommunication and Internet Networks Department Norwegian Post and Telecommunications Authority 1 Agenda
More informationDigital Internal Market
DIRECTORATE GENERAL FOR INTERNAL POLICIES POLICY DEPARTMENT A: ECONOMIC AND SCIENTIFIC POLICY INTERNAL MARKET AND CONSUMER PROTECTION Digital Internal Market STUDY Abstract The study examines the progress
More informationLandscape of eid in Europe in 2013
Landscape of eid in Europe in 2013 July 2013 Eurosmart White Paper Contents Executive Summary 3 1. Purpose of the document 3 2. EU regulation 3 3. EU Member States identification policies 4 3.1. National
More informationEBA s regulatory work on payments. Geoffroy Goffinet PAYMENT SYSTEMS MARKET EXPERT GROUP 03/12/2015
EBA s regulatory work on payments Geoffroy Goffinet PAYMENT SYSTEMS MARKET EXPERT GROUP 03/12/2015 The role of the EBA The EBA was established by Regulation (EC) No. 1093/2010 of the European Parliament
More informationBest prac*ces in Cer*fying and Signing PDFs
over 10 years of securing identities, web sites & transactions Best prac*ces in Cer*fying and Signing PDFs Paul van Brouwershaven Business Development Director EMEA, GlobalSign @vanbroup on TwiEer INTERNATIONAL
More informationSecure Information Technology Center Signature verification and digital services
Secure Information Technology Center Signature verification and digital services Herbert Leitold, A-SIT Study Visit Georgian Delegation Vienna, 16 th February 2015 Zentrum für sichere Informationstechnologie
More informationhttp://www.arx.com/about/press-room/interviews/nacho-alamillo-digital-signature-expert
1 de 7 16/06/2014 9:48 Contact Us Search Home (http://www.arx.com) About (http://www.arx.com/about/) Media (http://www.arx.com/about/press-room/) Interviews (http://www.arx.com/about/press-room/interviews/)
More informationSection 1: Development of the EU s competence in the field of police and judicial cooperation in criminal matters
CALL FOR EVIDENCE ON THE GOVERNMENT S REVIEW OF THE BALANCE OF COMPETENCES BETWEEN THE UNITED KINGDOM AND THE EUROPEAN UNION Police and Criminal Justice LEGAL ANNEX Section 1: Development of the EU s competence
More informationE-procurement. NEVI-PIANOo conference. Status of the e-procurement policy. Marco Tardioli e-procurement and economic analysis of procurement markets
E-procurement Status of the e-procurement policy NEVI-PIANOo conference Marco Tardioli e-procurement and economic analysis of procurement markets The e-procurement policy - Proposal for revision of Public
More informationCOMMISSION RECOMMENDATION. of XXX
EUROPEAN COMMISSION Brussels, XXX [ ](2013) XXX draft COMMISSION RECOMMENDATION of XXX on the use of common methods to measure and communicate the life cycle environmental performance of products and organisations
More informationEUROPEAN COMMISSION ENTERPRISE AND INDUSTRY DIRECTORATE-GENERAL
EUROPEAN COMMISSION ENTERPRISE AND INDUSTRY DIRECTORATE-GENERAL Innovation policy Technology for innovation; ICT industries and E-business Brussels, 7 th December 2005 DG ENTR/D4 M 376 - EN STANDARDISATION
More informationEUROPEAN COMMISSION ENTERPRISE AND INDUSTRY DIRECTORATE-GENERAL. Space, Security and GMES Security Research and Development
Ref. Ares(2011)193990-22/02/2011 EUROPEAN COMMISSION ENTERPRISE AND INDUSTRY DIRECTORATE-GENERAL Space, Security and GMES Security Research and Development Brussels, 17 th February 2011 M/487 EN PROGRAMMING
More informationehealth in support of safety, quality and continuity of care within and across borders
ehealth in support of safety, quality and continuity of care within and across borders Gerard Comyn Acting Director Information Society & Media DG European Commission http://europa.eu.int/information_society/activities/health/index_en.htm
More informationEuropean Council Brussels, 2 February 2016 (OR. en)
European Council Brussels, 2 February 2016 (OR. en) EUCO 4/16 NOTE To: Subject: Delegations Draft Decision of the Heads of State or Government, meeting within the European Council, concerning a New Settlement
More informationTrusted e-id Infrastructures and services in EU
Trusted e-id Infrastructures and services in EU Recommendations for Trusted Provision of e-government services European Union Agency for Network and Information Security www.enisa.europa.eu About ENISA
More informationBCS, The Chartered Institute for IT Consultation Response to:
BCS, The Chartered Institute for IT Consultation Response to: A Comprehensive Approach to Personal Data Protection in the European Union Dated: 15 January 2011 BCS The Chartered Institute for IT First
More informationCouncil of the European Union Brussels, 4 July 2014 (OR. en) Mr Uwe CORSEPIUS, Secretary-General of the Council of the European Union
Council of the European Union Brussels, 4 July 2014 (OR. en) 11603/14 ADD 1 COVER NOTE From: date of receipt: 2 July 2014 To: No. Cion doc.: Subject: RECH 323 TELECOM 140 MI 521 DATAPROTECT 100 COMPET
More informationStudy on Mutual Recognition of esignatures: update of Country Profiles Icelandic country profile
Study on Mutual Recognition of esignatures: update of Country Profiles Icelandic country profile This report / paper was prepared for the IDABC programme by: Coordinated by: Hans Graux (time.lex), Brigitte
More informationETSI TR 119 000 V0.0.3 (2014-01)
TR 119 000 V0.0.3 (2014-01) TECHNICAL REPORT Electronic Signatures and Infrastructures (ESI); Rationalised structure for Electronic Signature Standardisation COMPLETE DRAFT FOR PUBLIC REVIEW UNTIL 7 MARCH
More informationCOMMISSION STAFF WORKING DOCUMENT. Report on the Implementation of the Communication 'Unleashing the Potential of Cloud Computing in Europe'
EUROPEAN COMMISSION Brussels, 2.7.2014 SWD(2014) 214 final COMMISSION STAFF WORKING DOCUMENT Report on the Implementation of the Communication 'Unleashing the Potential of Cloud Computing in Europe' Accompanying
More informationSecuring Identities & Trust
Securing Identities & Trust Agenda About Safelayer Identities & Trust eidas (eid, Authentication and Signature) Use case: Izenpe Mobile eidas services Safelayer Demo Portal Q& A? WWW.SAFELAYER.COM 2 About
More informationETSI TC ESI PRESENTATION TO CAB FORUM. ETSI 2015. All rights reserved
ETSI TC ESI PRESENTATION TO CAB FORUM Iñigo Barreira March 2015 meeting, Cupertino ETSI 2015. All rights reserved Index ETSI Deliverables. Dates ETSI audits eidas timeline: Qualified web site certificates
More information8970/15 FMA/AFG/cb 1 DG G 3 C
Council of the European Union Brussels, 19 May 2015 (OR. en) 8970/15 NOTE RECH 141 TELECOM 119 COMPET 228 IND 80 From: Permanent Representatives Committee (Part 1) To: Council No. prev. doc.: 8583/15 RECH
More informationMutual legal recognition of electronic communications and electronic signatures and paperless trade facilitation: challenges and opportunities
Mutual legal recognition of electronic communications and electronic signatures and paperless trade facilitation: challenges and opportunities Luca Castellani Secretary, Working Group IV (Electronic Commerce)
More informationForum of European Supervisory Authorities for Electronic Signatures (FESA) Working Paper on Qualified Certificates for Automatically Signing Systems
Forum of European Supervisory Authorities for Electronic Signatures (FESA) Working Paper on Qualified Certificates for Automatically Signing Systems October 12, 2004 It is a frequently asked question if
More informationEBA FINAL draft Regulatory Technical Standards
EBA/RTS/2015/03 03 July 2015 EBA FINAL draft Regulatory Technical Standards on resolution colleges under Article 88(7) of Directive 2014/59/EU Contents 1. Executive summary 3 2. Background and rationale
More informationVersion 56 (29/11/2011)
EUROPEAN COMMISSION Brussels, XXX [ ](2011) XXX draft Proposal for a REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL on the protection of individuals with regard to the processing of personal
More informationPKI - current and future
PKI - current and future Workshop for Japan Germany Information security Yuichi Suzuki yuich-suzuki@secom.co.jp SECOM IS Laboratory Yuichi Suzuki (SECOM IS Lab) 1 Current Status of PKI in Japan Yuichi
More informationDECREE 132 of the National Security Authority. dated from 26 March 2009
DECREE 132 of the National Security Authority dated from 26 March 2009 on the conditions for providing accredited certification services and requirements for an audit, the extent of an audit and the qualification
More informationPosition Paper e-regulation
Position Paper e-regulation Ecommerce Europe s Proposal for Sustainable Growth of E-commerce in Europe www.ecommerce-europe.eu POSITION PAPER 3 Table of contents 1 Introduction 4 5.1.4 Harmonisation and
More informationWritten Contribution of the National Association of Statutory Health Insurance Funds of 16.11.2015
Written Contribution of the National Association of Statutory Health Insurance Funds of 16.11.2015 to the Public Consultation of the European Commission on Standards in the Digital : setting priorities
More informationCryptomathic s Response to Eurosmart Paper on Server Signing
1 Background information In September 2014, Eurosmart published a position paper 1 on server signing within the eidas regulation. The eidas is driven by the European Commission Directorate General and
More informationCOMMISSION STAFF WORKING PAPER EXECUTIVE SUMMARY OF THE IMPACT ASSESSMENT. Accompanying the document. Proposal for a
EUROPEAN COMMISSION Brussels, XXX SEC(2011) 1227 COMMISSION STAFF WORKING PAPER EXECUTIVE SUMMARY OF THE IMPACT ASSESSMENT Accompanying the document Proposal for a DIRECTIVE OF THE EUROPEAN PARLIAMENT
More informationPUBLIC CONSULTATION ON POSTAL SERVICES
EUROPEAN COMMISSION PUBLIC CONSULTATION ON POSTAL SERVICES PART 2 CONSULTATION ENDS JAN 27 2006 NOV 2005 V1.9 Page 1 of 9 PART 2 CONSULTATION ON POSTAL SERVICES Part 2 asks more detailed questions on a
More informationPosition Paper Ecommerce Europe. E-Payments 2012
Position Paper Ecommerce Europe E-Payments 2012 Contents Introduction: Ecommerce Europe 3 1. Payments from the merchants perspective 5 2. Market outlook 6 3. Card-based payments and related fraud issues
More informationCOMMISSION OF THE EUROPEAN COMMUNITIES. COMMISSION REGULATION (EC) No /..
EN EN EN COMMISSION OF THE EUROPEAN COMMUNITIES Brussels, XX/XX/2007 COM(2006) XXX COMMISSION REGULATION (EC) No /.. of [ ] implementing Council Regulation (EC) No 1085/2006 establishing an instrument
More informationAn Electronic Signature Service Infrastructure for the European Commission
An Electronic Signature Service Infrastructure for the European Commission ETSI, 3 December 2013 Philippe Schneider European Commission, DG Informatics I.T. Contents t What is ESSI ESSI offering and orientation
More informationEUROPEAN COMMISSION Employment, Social Affairs and Equal Opportunities DG COMMUNITY PROGRAMME FOR EMPLOYMENT AND SOCIAL SOLIDARITY (PROGRESS)
EUROPEAN COMMISSION Employment, Social Affairs and Equal Opportunities DG Directorate-General General Coordination, Interinstitutional Relations Brussels, 21 December 2006 01/FB D(2006) PROGRESS/003/2006
More informationHow To Regulate Data Protection In European Union
EUROPEAN COMMISSION Brussels, XXX COM(2012) 11/3 draft Proposal for a REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL on the protection of individuals with regard to the processing of personal
More informationEU regulatory framework for e-commerce
EU regulatory framework for e-commerce WTO Workshop Geneva, 18 th June 2013 Denis Sparas European Commission Directorate General for Internal Market and Services Outline E-commerce Directive E-commerce
More informationAGENDA ITEM 15-16 : ELECTRONIC SIGNATURE
SCREENING CHAPTER 10 Country Session: 13- Content Legislation Main Points of Turkish Electronic Signature Legislation Electronic Certificate Service Providers and Market Standardization Aspect of Electronic
More informationEstate Planning and Patients' Rights in Cross-Border Healthcare
Directive 2011/24/EU on the application of patients rights in cross-border healthcare EPF for a patient-centred implementation Introduction These recommendations have been developed by the European Patients
More informationFSB launches peer review on deposit insurance systems and invites feedback from stakeholders
Press release Press enquiries: Basel +41 61 280 8037 Press.service@bis.org Ref no: 26/2011 1 July 2011 FSB launches peer review on deposit insurance systems and invites feedback from stakeholders The Financial
More informationTentative Action Plan
Republic of Serbia Ministry of Science and Environmental Protection Serbia and Montenegro Tentative Action Plan Draft 1 Belgrade, September 2005 Tentative Action Plan - Draft 1 Section 1 and 2 Information
More information