Thai Digital ID Co.,Ltd.

Size: px

Start display at page:

Download "Thai Digital ID Co.,Ltd."

Roxanne Lane
10 years ago
Views:

1 Thai Digital ID Co.,Ltd. Building Trusted National Root CA - Thailand s Experience ISO27001 Enabling Trust and Security for Reliability of your Business

2 TDID & CA Service Standard PKI Environment CA Hosting Service Trust Hierarchy Our Customers PKI-Enabled Applications 2

3 TDID Background TDID Established in December 2000, as the first CA Service Provider. Objectives : To deliver the world-class standard CA service Enterprise Personal Device SSL Enterprise Computer Personal SSL Enterprise User Router 3

4 CA Service Enterprise / Personal / Device Certificate Highly secure with USB Token validated FIPS Level2 Onboard key generation and cryptographic processing Asymmetric Key RSA 2048-bit for Private and Public Key Eliminates Weak Passwords with Two-Factor Authentication Identity-based and Role-based certificate SSL Certificate Secure Sockets Layer Certificate offers encrypted web site security to assures visitors of the web site's trustworthiness and authenticity. 4

Passwords with Two-Factor Authentication Identity-based and Role-based certificate SSL Certificate Secure Sockets

5 TDID & CA Service Standard PKI Environment CA Hosting Service Trust Hierarchy Our Customers PKI-Enabled Applications 5

CA Software Recognized Global Leader in PKI Primarily Centralized Administration Trusted by Government, Defense, Finance and Industry leaders around the globe Rich Policy and

6 CA Software Recognized Global Leader in PKI Primarily Centralized Administration Trusted by Government, Defense, Finance and Industry leaders around the globe Rich Policy and User Management World-class Technical Support Certified Common Criteria EAL4+ Web-based distributed administration Flexible go-tomarket approaches Comprehensive Audit and Monitoring 6

User Management World-class Technical Support Certified Common Criteria EAL4+ Web-based

Server2 Network Trust Link Service (NTLS) Certified

7 CA Hardware CA Server1 Internal K5 HSM Administration SSH, SNMP* High Performance with Partitions CA Server2 Network Trust Link Service (NTLS) Certified FIPS Level 3 CA Server3 Backup Token Backup Token PED 7

8 CA Operation (ISO Compliance) Compliance Security Policy Business Continuity Management Organization of Information Security Information Security Incident Management Information System Acquisition, Development & MA Access Control ACT CHECK ISO PLAN DO Communications and Operations Management Physical and Environment Security Asset Management Human Resources Security 8

System Acquisition, Development & MA Access Control ACT CHECK ISO 27001 PLAN DO Communications

9 CA Operation (WebTrust Compliance) Assurance Assessment Web Trust Remediation Analysis 9

10 CA Operation Certified ISO/IEC 27001:2005 Certified WebTrust for CAs 10

11 TDID & CA Service Standard PKI Environment CA Hosting Service Trust Hierarchy Our Customers PKI-Enabled Applications 11

12 TDID Background TDID Established in December 2000, as the first CA Service Provider. Objectives : To deliver the world-class standard CA Hosting service Bank of Thailand Interbank Transaction Management and Exchange Processing Center Company ธนาคารแห งประเทศไทย บร ษ ท เนช นแนล ไอท เอ มเอ กซ จาก ด บร ษ ท ศ นย ประมวลผล จาก ด 12

Objectives : To deliver the world-class standard CA Hosting service Bank of

13 CA Hosting Service Recognized CA TDID PKI Backend Enterprise User Data Center Personal User Backup Center 13

14 Imaged Cheque Clearing and Archive System (ICAS) Customer Sending Bank Clearing House (BOT) Paying Bank Data+Image Chq. Data+Image Chq. Data+Image Chq. Data BOT CA 14

15 Interbank Payment System ITMX CA Bulk & Single Payment System BPC User A CA Server Directory SPC User B RA Server Web Portal System IE User C IE User D User A User B User C User D 15

16 ATM Outsourcing Service

17 TDID & CA Service Standard PKI Environment CA Hosting Service Trust Hierarchy Our Customers PKI-Enabled Applications 17

18 Trust Hierarchy Thailand National Root CA Thai Digital ID CA G2 18

19 TDID & CA Service Standard PKI Environment CA Hosting Service Trust Hierarchy Our Customers PKI-Enabled Applications 19

20 Our Customers Applications Electronic Financial Services (EFS) DBD e-certificate User DPA Secure e-transactions e-tax Invoice & e-receipt Certificate-based VPNs Security Online e-data Submission 20

21 TDID & CA Service Standard PKI Environment CA Hosting Service Trust hierarchy Our Customers PKI-Enabled Applications 21

22 PKI-Enabled Applications Applications enabled by PKI Entity Identification Authentication and Authorization for Web Applications Electronic Document and Form Signing Authentication for VPNs S/MIME Signing and Encryption Application Encryption and/or Digital Signature (non Web) Desktop Encryption Wireless/Mobile Security

23 Thank You Please visit us Web:

Danske Bank Group Certificate Policy

Danske Bank Group Certificate Policy Document history Version Date Remarks 1.0 19-05-2011 finalized 1.01 15-11-2012 URL updated after web page restructuring. 2 Table of Contents 1. Introduction... 4 2. Policy administration... 4 2.1 Overview...