Securing Identities & Trust

Size: px

Start display at page:

Download "Securing Identities & Trust"

Claribel Gordon
10 years ago
Views:

1 Securing Identities & Trust

2 Agenda About Safelayer Identities & Trust eidas (eid, Authentication and Signature) Use case: Izenpe Mobile eidas services Safelayer Demo Portal Q& A? 2

3 About Safelayer Providing ID technologies for: Multi-factor Authentication PKI Authentication Digital Signature Since 1999 Offices in Madrid & Barcelona R&D in Europe 3

Digital Signature Since 1999 Offices in Madrid

4 Providing ID Technologies for strong authentication, identity federation and digital signature management solutions REFERENCES CUSTOMERS 21 VAR s EMEA & LATAM R&D and INNOVATION Citizen identification nationwide projects: ecards and epassports, Estonia, Panama, Paraguay, Spain, Uruguay Over 20 global and regional financial institutions Large deployment of PKI infrastructures, electronic signatures, adaptive authentication, data encryption Local integration services and Competency Centers in 13 countries in EMEA & LATAM through Systems Integrators and Consultancy firms Alliance with leading technology Partners. OEM with ISV and Technology Transfer Common Criteria EAL 4+ ETSI CAdES/XAdES Interoperability Tests The TeleTrusT Innovation Award 4

infrastructures, electronic signatures, adaptive authentication, data encryption Local integration services and Competency Centers in 13 countries in EMEA & LATAM through Systems Integrators

5 Agenda About Safelayer eidas (eid, Authentication and Signature) Use case: Izenpe Mobile eidas services Safelayer Demo Portal Q & A? 5

elevation National Institute of Standards and Technology

6 Identifiers and Trust Levels Trust elevation Trust elevation LoA-4 LoA-1 LoA-3 LoA-2 Trust elevation Trust elevation National Institute of Standards and Technology (NIST) ITU-T X.1254 / ISO/IEC classifications 6

7 The User is the Center User-centric technologies 7

8 Ambitions Convenience & Trust How shall we handle the whole set of elements and rules of this «wider» game? Which are the Key Factors we should be able to handle? 8

So We need to able to Move «Authentication Complexity» from Relying Parties or Services Providers to Corportate Indetity Provider with Adapatative capabilitues Orchestrate Authentication Mechanims

9 So We need to able to Move «Authentication Complexity» from Relying Parties or Services Providers to Corportate Indetity Provider with Adapatative capabilitues Orchestrate Authentication Mechanims Trust Management Elevation Authentication Workflow Authentication Policy Authentication Mechanims Contextual Policy Securiy Rislk & LoA Contextual Analysis for Buisness Mision Authorithation Workflow Policy Driven Technology Authorzation Policy Integate Mechanims in «Scope» Context Securiy Rislk & LoA 9

Authentication Policy Authentication Mechanims Contextual Policy Securiy Rislk & LoA Contextual Analysis for Buisness Mision

10 TrustedX eidas 10

Identity provider (IdP) esignature provider (esigp) Integration standards Time Stamping Authority

11 Back-end: eidas Platform & Trust Service Provider Your branded Mobile ID App eidas services orchestration Identity Federation Web SSO API / SDK Digital Certificates Certification Authority Identity provider (IdP) esignature provider (esigp) Integration standards Time Stamping Authority Validation Authority Certification Authority LDAP Server Trust Services Platform Registration Authority Trust Service Provider 11

12 Safelayer eidas Platform Integration CLOUD Mobile 12

910/2014 on electronic identification and trust services for electronic transactions in the internal market (eidas Regulation)

13 Europe: eidas Ambitions 2018 Mandatory recognition of eids eid cross-border interoperability Digital Signature in Europe 2015 Voluntary recognition of eids 2014 Entry into force of the Regulation 2016 Date of application of rules for Trust Services Regulation (EU) N 910/2014 on electronic identification and trust services for electronic transactions in the internal market (eidas Regulation) Source: 13

14 Agenda About Safelayer eidas (eid, Authentication and Signature) Use case: Izenpe Mobile eidas services Safelayer Demo Portal Speakers 14

15 About Izenpe Provides identification and electronic signature services Major trust service provider in Spain WebTrust and ETSI TS / certified 15

16 eidas implementation at Izenpe New identification, SSO and federation service Identification Signature service adapted to mobile or server Signature Izenpe recognizes and verifies government and social credentials Izenpe provides its own credentials that can be used alongside previous ones 16

Signature Izenpe recognizes and verifies government and social

17 Izenpe Mobile App Mechanism for managing the Izenpe digital certificates on the citizen/user's mobile Invoked in the mobile's Apps/Browser or from other devices for authenticating and/or signing. Use is prompted for when the Identification service requires a high level of security. 17

Apps/Browser or from other devices for authenticating and/or signing.

18 Agenda About Safelayer eidas (eid, Authentication and Signature) Use case: Izenpe Mobile eidas services Safelayer Demo Portal Speakers 18

19 Safelayer Demo Portal Safelayer on-line demo:

20 Safelayer Demo Portal Try it by yourself! 20

21 Agenda About Safelayer eidas (eid, Authentication and Signature) Use case: Izenpe Mobile eidas services Safelayer Demo Portal Q & A? 21

22 Thank you: E. Crespo J. Buch Safelayer Secure Communications, S.A. All Rights Reserved. This material is intellectual property of Safelayer Secure Communications S.A. This material may be used or copied only in accordance with Safelayer.

TrustedX: eidas Platform

TrustedX: eidas Platform Identification, authentication and electronic signature platform for Web environments. Guarantees identity via adaptive authentication and the recognition of either corporate,