AK IT-Security 1 Electronic Delivery Graz, 05.11.2014 Das E-Government Innovationszentrum ist eine gemeinsame Einrichtung des Bundeskanzleramtes und der TU Graz
Motivation Source: Wikipedia Graz, 05.11.2014 2
Motivation» Registered mail is a particular service of the Austrian postal service.» Advantages compared to standard delivery» Traceability (Track & Trace)» Handover only against signature» Advice of delivery» Extended benefits» By one s own hand» Not to authorized postal representatives» Insurance, Graz, 05.11.2014 3
Motivation» Security of electronic communication?» E-mail (de-facto standard)» Developed in the early 70 s (ARPANET)» SMTP per se has no security features» Comparable to sending a post card» S/MIME respectively (Open)PGP» Signature/Encryption» Authenticity» Integrity» Non-repudiation (Sender)» Confidentiality (Encryption) Graz, 05.11.2014 4
Motivation» Postal security services missing» Non-repudiable delivery» Acknowledgement of receipt/delivery,» Inherent problem of the open Internet architecture» Multiple nice approaches (RFCs)» Message Disposition Notification (MDN)» Delivery Status Notification (DSN)» SMTP Service Extensions for Message Tracking» S/MIME Receipts (Sender/Receiver signatures) Graz, 05.11.2014 5
Electronic Delivery Security Terms» Fairness» Strong, weak, true, light, probabilistic» Trusted Third Parties» Inline, Online, Offline» Evidences» Non-repudiation of Origin (NRO)» Non-repudiation of Submission (NRS)» Non-repudiation of Delivery (NRD)» Non-repudiation of Receipt (NRR)» Communication channel» Operational, unreliable, resilient» Deadlines, Timeliness» State storage Graz, 05.11.2014 6
Electronic delivery - Process Source: Tauber UA = User Agent, MS = Message Store, MTA = Mail Transfer Agent Graz, 05.11.2014 7
Electronic Delivery Systems» Delivery systems» Many systems on national/regional respectively local level» Standards» ETSI Registered Electronic Mail (REM)» UPU Postal Registered Mail (PReM)» Online Services Computer Interface (OSCI) Graz, 05.11.2014 8
Delivery Landscape» Legal Basis De-Mail ZUSE PEC Quelle: Tauber Graz, 05.11.2014 9
Delivery Landscape» Postal service provider E-Postbrief Correos LaPoste Postmanager IncaMail Quelle: Tauber Graz, 05.11.2014 10
Delivery Landscape» Private delivery services Certipost DigiDoc WKÖ Quelle: Tauber Graz, 05.11.2014 11
Delivery Landscape» E-Justice Systems EGVP JAB ERV Quelle: Tauber Graz, 05.11.2014 12
Electronic Delivery in Austria Register Citizen Card eid Official - Signature Special Applications ELAK Central Elements of E-Government Electronic Delivery Portal Group Security E- Inclusion Quelle: BKA Graz, 05.11.2014 13
Goal: Fully Electronic Processes Source: BKA 1 2 3 e.g. HELP.gv.at, USP.gv.at, Wien.gv.at etc. Portal e.g. ELAK, Registers ( CRR, GWR, Registers of addresses and of mandates), FinanzOnline, other special applications, etc. Application / Backoffice www.bka.gv.at/zustelldienste Dual Delivery Graz, 05.11.2014 14
Electronic Delivery Types Delivery to an electronic delivery address - Standard email or fax - Has to be communicated by the recipient to the authority for the delivery in a pending lawsuit ( 2 Z 5 ZustG) - Doubts about the reception of the document Fact and point in time have to be ascertained by the authority ( 37(1) ZustG) - No qualified e-delivery possible Graz, 05.11.2014 15
Electronic Delivery Types Electronic Communication System of the authority - delivery application owned by authority (see. 37 ZustG) - E.g. Databox in FinanzOnline - Delivery fiction: 3 rd workday after first delivery ( Bereithaltung) - Prior to this, the delivery has to be tried via e-delivery ( 37(2) ZustG) - No qualified e-delivery possible Graz, 05.11.2014 16
Electronic Delivery Types Immediate Electronic Delivery - Delivery within the same session as authentication (see. 37a ZustG) chronological close connection required - May include register polling - Requires the recipient s proof of authenticity and identity - Qualified delivery possible if the logon was carried out using the citizen card (qualified = quality RSa or RSb) Graz, 05.11.2014 17
Electronic Delivery Types E-Delivery - Accredited and supervised by the Federal Chancellery (ZustDV) www.bka.gv.at/zustelldienste - User-login only via mobile signature or citizen card - Qualified electronic delivery possible Graz, 05.11.2014 18
Architecture Delivery Agent 3 Delivery Service A 1 4 1. Recipient 2. Delivery services 3. Central lookup service 4. Sender 2 Delivery Service B Delivery Service C Graz, 05.11.2014 19
Recipient Delivery Agent Delivery Service A 1 Delivery Service B Delivery Service C» Recipient must register herself, using her mobile signature or citizen card, at one or multiple delivery service providers» A recipient s account is activated after the validation of a notification address (email) Graz, 05.11.2014 20
Delivery Service Providers Delivery Agent Delivery Service A 1 2 Delivery Service B Delivery Service C» Delivery service providers are Trusted Third Parties (TTP)» Similar to Trustworthy mail providers» Accredited and supervised by the Federal Chancellery» Provide technical services» Registration for recipients via mobile signatur or citizen card» Post-office box administration» Encryption certificate» Absence» Notification addresses» Delivery Graz, 05.11.2014 21
Central Lookup Service Delivery Agent 3 Delivery Service A 1 Delivery Service B Delivery Service C» Central register of recipients» Delivery service providers push recipient data» Senders have to register at the central lookup service» Query- and billing services for senders and delivery services providers Graz, 05.11.2014 22
Delivery Authority s Point of View Delivery Agent 2 Delivery Service A 1 1 3 Delivery Service B Delivery Service C 1. Requirement: Registration of the recipient at a delivery service provider 2. Authority queries the central lookup services / reply from lookup service 3. Forwarding the document to the corresponding delivery service provider Graz, 05.11.2014 23
Delivery Software MOA-ZS» MOA-ZS is a open source middleware for senders» Web service interface for simple integration in backend applications» Covers all necessary steps» Acceptance of delivery documents from backend applications» Central lookup service query» Forward documents to delivery service providers» Reception and processing of delivery confirmations Graz, 05.11.2014 24
MOA-ZS in a nutshell (1) Central Lookup Service Delivery service Web service oid X Backend Application MOA-ZS Delivery service OK Delivery service X Graz, 05.11.2014 25
MOA-ZS in a nutshell (2) Central Lookup Service Delivery service X oid Backend Application 1 MOA-ZS Delivery service OK Forwarding the deliver request recipient address as: a) Delivery-ssPIN (sspin[zu]) b) Name + an address registered at the delivery service (electronic or postal) [ + birthday at RSa quality] c) Name + postal address birthday + sspin of the own sector (sspin[zu] is calculated via the SourcePin Register) Delivery service X Graz, 05.11.2014 26
MOA-ZS Acceptance of a document Graz, 05.11.2014 27
MOA-ZS in a nutshell (3) Source PIN Registe r Central Lookup Service Delivery service? X oid Backend Application 1 MOA-ZS Delivery service OK Forwarding the deliver request recipient address as: a) Delivery-ssPIN (sspin[zu]) b) Name + an address registered at the delivery service (electronic or postal) [ + birthday at RSa quality] c) Name + postal address birthday + sspin of the own sector (sspin[zu] is calculated via the SourcePin Register) Delivery service X Graz, 05.11.2014 28
MOA-ZS in a nutshell (5) Querying the central lookup serivce Central Lookup Service 2 3 Delivery service X oid Backend Application MOA-ZS Delivery service OK Delivery service X Graz, 05.11.2014 29
Central Lookup Service - Query» Transport level» SSL client authentication (Gov-OID)» Request types» Single- / Bulk request» Combining identity attributes» (Encrypted) delivery-sspin (Sector ZU ) respectively SourcePin (non-natural persons)» Name + birthday» Name + notification address (email) Graz, 05.11.2014 30
Query- Example» Single-Query(HTTP-GET)» https://zkopf.zustellung.gv.at/query?give nname=max&sn=mustermann&mail=max @mustermann.at» Bulk-Query (SOAP Web-Service) Graz, 05.11.2014 31
Central Lookup Service - Reply not reachable - Not registered - Temporarily not registered - Delivery-Token reachable - Recipient s ID + billing data - Address of the delivery service - Accepted data formats of the recipient - Possible encryption certificate If more delivery services have to be considered: - Prefer the service where the user has configured an encryption certificate; else sender s can freely choose Graz, 05.11.2014 32
Response - Example Graz, 05.11.2014 33
MOA-ZS in a nutshell (5) Central Lookup Service Delivery service X oid Backend Application MOA-ZS 4 5 Delivery service OK Forwarding to the delivery service Delivery service X Graz, 05.11.2014 34
Forward to Delivery Service» Transport level» SSL client authentication (administration-oid)» Data» Delivery token (ID + billing data)» Address for delivery confirmation (email, WS)» Sender s data» Meta data» Subject» Delivery ID» Delivery quality Graz, 05.11.2014 35
Example Graz, 05.11.2014 36
MOA-ZS in a nutshell (4) Central Lookup Service Delivery service X oid Backend Application 6 MOA-ZS Delivery service OK MOA-ZS returns OK to the application, if the delivery was successful. Delivery service X Graz, 05.11.2014 37
MOA-ZS in a nutshell (6) Central Lookup Service Delivery service X oid Backend Application MOA-ZS Delivery service OK Feedback about the delivery success optional acknowledgement of receipt is either sent directly to the special application or (if configured) to MOA-ZS. 7 Delivery service X Graz, 05.11.2014 38
Delivery Confirmation - Example Graz, 05.11.2014 39
Benefits for Authorities»May be delivered electronically with delivery confirmation (RSa or RSb)»May be delivered electronically without delivery confirmation (standard letter quality)»document is considered to be delivered (Zustellwirkung) without being picked-up by the recipient»effective date of delivery is always documented for authorities(electronic advice of delivery); for instance the effective data of pickup of the document by the recipient (using her electronic signature)»delivery confirmation is sent back to the sending authority by the delivery service.»authority may automatically process this advice of delivery respectively assign it to an act. Graz, 05.11.2014 40
Benefits for Authorities (2)» Fee for governmental deliveries (to be paid by the delivering authority):» Half of the standard letter postage + VAT = 0,37 Euro» Possible postal notification fee = 0,744 Euro» Max. 1,116 Euro for RSa or RSb» Conventional: 4,75 Euro (RSa) respectively 2,65 Euro (RSb) + additional costs (print, enveloping, ) Graz, 05.11.2014 41
Citizen s Point of View 2 1 3 4 1. Document arrives at the delivery service 2. Email notification is sent to recipient 3. Login mobile signature or citizen card (respectively automatically triggered signature); acknowledgement of receipt gets signed 4. Check document, store or forward it Graz, 05.11.2014 42
Notifications issued by the Delivery Service 2 1 3 1. Electronic notification (immediately to all electronic registered addresses) 2. Electronic notification (if not picked up within 48 hours) 3. Postal notification (if not picked up within the next 24 hours and the recipient has registered a delivery address therefor) Graz, 05.11.2014 43
Example Graz, 05.11.2014 44
Login (1) Graz, 05.11.2014 45
Login (2) Graz, 05.11.2014 46
Login (3) Graz, 05.11.2014 47
Login (4) Graz, 05.11.2014 48
Login (5) Graz, 05.11.2014 49
Login (6) Graz, 05.11.2014 50
Login (7) Graz, 05.11.2014 51
Event of Delivery Effect» Document is at the latest considered as delivered when picked up ( 35(5) ZustG)» Else on the first workday after the 2 nd electronic notification has been sent ( 35(6) ZustG)» Else on the third workday after sending the 3 rd postal notification if a delivery address has been specified ( 35(7) ZustG)» Delay because of absence until return on the following day possible. Graz, 05.11.2014 52
Benefits for Citizens» Free registration and free usage» No electronic mailbox flooding» Simple handling (WAI-Standards legal requirements)» Absence configurable» Document pickup service 24 h/day, 7 days/week» No more visits to postal service offices because of absence at the delivery attempt» Electronic mandate possible (mail mandate for electronic delivery; https://vollmachten.stammzahlenregister.gv.at/) Graz, 05.11.2014 53
Trend Source: BKA Graz, 05.11.2014 54
Mail Pickup according to 35 Graz, 05.11.2014 55
Mail Pickup according to 35 STANDARD MAILCLIENT (POP) POP.deliveryservice.xy.at LOGIN TO DELIVERY BROWSER+CITIZEN CARD PICKUP MAILCLIENT + CERTIFICATE Identification based on the configure SSL client certificate. Delivery confirmation based on SSL handshake (of the mail client or the browser) according to 35 (3) ZustG. E.g. simple clicking a Link in the notification email. Graz, 05.11.2014 56
Concluding remarks Synergies with the industry - Sending documents on behalf of private persons ( 29(3) ZustG) Qualified e-delivery possible Much cheaper than traditional registered letters Information activities within the administration - Show benefit of electronic delivery - Walk the path together Graz, 05.11.2014 57
Dual Delivery» Brings together traditional delivery with electronic delivery» Intention: deliver electronically» If electronic delivery not possible: Postal delivery (Printing, Enveloping, )» ONE interface Graz, 05.11.2014 58
Dual Delivery Graz, 05.11.2014 59
Dual Delivery Best practice Styria Graz, 05.11.2014 60
Conclusion» E-Delivery necessary, because standard protocols do not provide the necessary security features (non-repudiation)» Fully (electronic) processes = avoid media breaks» Potential savings» Electronic delivery» 24 hours x 7 days» Reduction of delivery time and way» Dual delivery» Holistic concept (paper & e-delivery)» Delivery confirmation electronically integrated» Delivery time is documented for the authority (delivery confirmation); Time of pickup by the recipient (with her electronic signature)» Open source tools (MOA-ZS) used by public authorities and private sector Graz, 05.11.2014 61
References» Delivery law: http://www.ris.bka.gv.at/geltendefassung.wxe?abfrage=bundesnormen&gesetzesnummer=10005522» Specification: http://www.ref.gv.at/veroeffentlichte-informationen.353.0.html» Focus on electronic delivery: http://www.egiz.gv.at/de/schwerpunkte/1-edelivery» Delivery on website of the PDÖ: http://www.digitales.oesterreich.gv.at/site/5532/default.aspx» Central lookup service (productive): https://zkopf.zustellung.gv.at» Central lookup serivce (test): https://zustellung.egiz.gv.at/zkopf-test/» List of accredited delivery services: http://www.bka.gv.at/zustelldienste» Delivery services(stand 29.10.2013):» Meinbrief: https://www.meinbrief.at» Delivery service of the BKA: https://www.brz-zustelldienst.at/» Postserver.at: http://www.postserver.at» Eversand: http://ww.eversand.at» Publications:» Tauber A, A survey of certified mail systems provided on the Internet, Computers & Security, 2011» Tauber A, Kustor P, Karning B, Cross-border certified electronic mailing: A European perspective, Computer Law & Security Review, 2013» Tauber A, Apitzsch J, Boldrin, L, An Interoperability Standard for Certified Mail Systems, Computer Standards & Interfaces, 2012» Tauber A, Rössler T, A Scalable Interoperability Architecture for Certified Mail Systems, CEC 2010» Tauber A, Rössler T, Enhancing Security and Privacy in Certified Mail Systems using Trust Domain Separation, ISC 2011» Tauber A, Stranacher K, Medimorec D, SPOCS: Interoperable egovernment Services in the Context of the Services Directive, European Journal of epractice, 2012» Tauber A, Elektronische Zustellung in Europa - Vision eines grenzüberschreitenden Einschreibens, DuD, 2011» Tauber A, Draper-Gil G, Ferrer-Gomilla J.L., Hinarejos F, Towards a Certified Electronic Mai System, Architectures and Protocols for Secure Information Technology, 2013» Tauber A, Zwattendorfer B, Zefferer T, A Shared Certified Mail System for the Austrian Public and Private Sectors, EGOVIS 2011» Rössler T, Tauber A, Interoperability: Coupling of e-delivery Domains, EGOV 2009» Tauber A, Requirements for Electronic Delivery Systems in E-Government An Austrian Experience, IFIP I3E 2009» Tauber A, Zwattendorfer B, Zefferer T, STORK: Pilot 4 Towards Cross-border Electronic Delivery, EGOV 2011» Rössler T, Tauber A, The SPOCS Interoperability Framework: Interoperability of edocuments and edelivery Systems taken as Example, ISSE 2010» Tauber A, Rössler T, Interoperability Challenges for Pan-European Qualified Exchange of Electronic Documents, ECEG 2010» Tauber A, Zefferer T, Zwattendorfer B, Elektronisches Einschreiben im D-A-CH Raum, DACH 2011 Graz, 05.11.2014 62
Control Questions» Why do we need electronic delivery?» Enumerate 4 types of confirmation within the area of electronic delivery.» Enumerate 5 benefits of the electronic delivery from a sender s respectively a recipient s point of view.» Enumerate three standards in the field of electronic delivery.» What is the main functionality of the central lookup service?» Describe the steps carried out for e-delivery from a sender s point of view.» Briefly describe the single steps carried out within e-delivery from a recipient s point of view ( incl. the sequence of notifications).» Describe the concept of dual delivery.» Warum ist elektronische Zustellung notwendig?» Nennen Sie die 4 grundlegenden Typen von Nachweisen im Bereich der elektronischen Zustellung» Nennen Sie insgesamt 5 Vorteile der elektronischen Zustellung aus Sicht von Versender bzw. Empfängern» Nennen Sie die drei Standards im Bereich der elektronischen Zustellung» Welchen Zweck hat der behördliche Zustellkopf?» Beschreiben Sie kurz die einzelnen Schritte der elektronischen Zustellung aus der Sicht eines Versenders» Beschreiben Sie kurz die einzelnen Schritte der Abholung einer Zustellung aus Sicht eines Empfängers (inkl. der Abfolge von Verständigungen)» Beschreiben Sie das Konzept der dualen Zustellung Graz, 05.11.2014 63
Thank you for your attention! andreas.fitzek@egiz.gv.at www.egiz.gv.at