Electronic Postl Certifiction Mrk Electronic Postl Certifiction Mrk (EPCM) Evolution stndrd nd delivery end-user pplictions Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 1
Agend The EPCM inititive EPCM cpble IT solutions: Office 2007 Plug-In Potentil business opportunities Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 2
Agend The EPCM inititive EPCM cpble IT solutions: Office 2007 Plug-In Potentil business opportunities Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 3
The EPCM inititive In line its service innovtion strtegy, imed t meeting growing demnd for electronic communiction solutions, Universl Postl Union (UPU), through its stndrd bord nd support its member countries, hs developed Electronic Postl Certifiction Mrk (EPCM) service The EPCM service is specified in Secured Electronic Postl Services (SePS) stndrd: it provides evidence s integrity in electronic trnsctions, through set integrted digitl time-stmping nd signing cpbilities Through Secured electronic Postl Services, Posts wish to ply role trusted third prty in electronic communictions, similrly to wht y hve lwys been doing for secure movement physicl items Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 4
The EPCM inititive The im Electronic Postl Certifiction Mrk, its bsic scope pplicbility, constrints nd ssumptions, re estblished by UPU s Letter Post Regultion: In reltions between dministrtions which hve greed to provide this service, electronic postmrk, s defined by UPU Technicl Stndrd S43, provides chin evidence, stored by n dministrtion s trusted third prty, to prove existence n electronic event, for certin content, t certin dte nd time, nd involving one or more identified prties. The provision electronic postmrk service cross borders shll be governed by n ccepted Trust Model, s defined in multilterl greement between dministrtions prticipting in this service. This Trust Model is bsed on fct tht different electronic provider dministrtions shll mutully unticte mselves when deling cross-border electronic postmrk trnsctions. Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 5
The EPCM inititive Embedded EPCM EPCM Client Internet Appended EPCM The EPCM ( trusted timestmp nd Postl Opertor s digitl signture) cn be eir embedded in or ppended to it EPCM EPCM infrstructure Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 6
The EPCM inititive 2004 2005 On occsion Buchrest Congress, UPU recognizes new optionl postl service, nmed S43 Digitl Postmrk (DPM), for postl certifiction electronic s The first drft relese S43 technicl stndrd is relesed The first implementtion n DPM S43 cpble server is relesed by Cnd Post A new enhnced relese stndrd is issued (feturing updtes on trnsction mngement, metdt flexibility, X509 support) 2006 2007 The stndrd is stbilized through series minor djustments nd EPCM is included nd described in Letter Post Regultion The first S43 desktop ppliction, bsed developed by Poste Itline on Microst Office, is UPU resolves to refer to S43 stndrd s Secured Electronic Postl Services, nd Regultion chnges nme service to Electronic Postl Certifiction Mrk Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 7
The EPCM inititive Client A requests his/her Postl Opertor (DPO - A) to pply n EPCM to Postl Opertor A : Verifies Client A signture Applies EPCM Logs trnsction reference Sends mrked bck to client Postl Opertor A Postl Opertor A Postl Opertor B Postl Opertor B Client A sends mrked to Client B Client B requests his/her Country s Postl Opertor (DPO-B) to verify DPO - B verifies s integrity nd its signer s identity, nd sends confirmtion bck to Client B Client A Client A Client B Client B Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 8
The EPCM inititive The EPCM system is composed : Yellow Pges, globl registry tht provides informtion on vilble providers EPCM client pplictions, cpble requesting issunce nd verifiction mrks EPCM Servers tht cn verify nd issue mrks, nd store non repudition evidence Yellow Pges EPCM client EPCM Server Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 9
The EPCM inititive EPCM Enbling Cpbilities EPCM EPCM,, through through its its cross-border cross-border inter-operble inter-operble infrstructure, infrstructure, provides provides clients clients Postl Postl Opertors Opertors ssurnce ssurnce tht: tht: y y re re deling deling relible, relible, trusted trusted third third prty prty prties prties y y re re doing doing business business cn cn be be trusted trusted s s submitted submitted hve hve integrity integrity tht tht cnnot cnnot be be repudited repudited Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 10
The EPCM inititive The EPCM inititive hs quickly gined momentum ll over world: S43 technicl stndrd, hs been developed by tem composed representtives from Postl Opertors Cnd, Frnce, Itly nd Portugl Interest in EPCM s business enbler hs been stedily growing since its specifiction, so much so tht Microst hs endorsed progrm, by cooperting in development first client side EPCM cpble ppliction At present, severl Countries Postl Opertors believe tht EPCM will be crucil sset for providing secured electronic services: this is confirmed by fct tht bout 20 Countries re now tking prt to progrm; long those lredy quoted, we cn mention Sweden, Norwy, nd Denmrk The relevnce EPCM inititive is such, tht orgniztions involved in similr digitl communictions stndrdiztion endevors, re sking UPU for coopertion Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 11
Agend The EPCM inititive EPCM cpble IT solutions: Office 2007 Plug-In Potentil business opportunities Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 12
EPCM cpble IT solutions 2005 In order to foster use EPCM technology, UPU decides to implement EPCM cpble client ppliction, bsed on Microst Office ( most widespred productivity suite): to this end, Microst Corportion is engged in collbortion inititive 2006 Development guidelines re defined, resulting from outputs seminr held in Microst Pltform Adoption Center in Redmond, focused on new Microst Office Suite cpbilities At end yer, on behlf UPU, Poste Itline, in co-opertion Microst, releses test version EPCM Plug-In 2007 An interntionl tem, mde Postl Opertors from severl Countries, is crrying out Integrtion nd Functionl tests Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 13
EPCM cpble IT solutions The EPCM Plug-In for Microst Office 2007 is desktop dd-on ppliction tht llows ll Microst Office users to connect to designted S43 complint EPCM server The Plug-In mkes use new Digitl Signing infrstructure included in Office 2007 suite: EPCM Plug-in hs been developed on top this infrstructure, to integrte signture process into Office User Interfce, thus mking it trnsprent to end user Allows Allows development development custom custom Digitl Digitl signture signture provider: provider: MICROSOFT OFFICE 2007 DIGITAL SIGNING INFRASTRUCTURE Allows Allows visible visible signtures: signtures: digitl digitl signtures signtures visible visible over over vi vi grphic grphic signture signture imge imge Allows Allows mrk mrk to to be be n n integrl integrl prt prt Relies Relies on on industry industry stndrd stndrd XMLDSIG XMLDSIG to to crry crry signture signture informtion informtion Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 14
EPCM cpble IT solutions 1)Sign nd Mrk Document is is signed signed nd nd mrked mrked t t sme sme time time 2)Mrk Document only only Mrk Mrk is is pplied pplied on on,, stting stting its its existence existence nd nd content content t t certin certin time time 3) Mrk Signed Document include include EPCM EPCM in in tht tht hs hs been been previously previously signed signed 4) Online Verifiction verify verify signed signed nd nd mrked mrked (ccess (ccess to to Yellow Yellow Pges Pges nd nd EPCM EPCM Server Server is is required) required) 5) Offline Verifiction cryptogrphic cryptogrphic check check digitl digitl signture signture ginst ginst certificte certificte stored stored in in xmldsig xmldsig strem strem Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 15
EPCM cpble IT solutions Yellow Pges EPCM client EPCM Server Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 16
EPCM cpble IT solutions As DPM Plug-In development phse is finished, UPU hs defined n interntionl testing session progrm, divided into two phses: A Pilot test phse restricted to those Countries (Frnce, Itly, Portugl, nd Cnd) most experience on EPCM An Extended test phse, whit bout 15 more Countries joining tem The test phse is scheduled to finish by June 2007; following is sttus ctivity: Completed Test Test environment environment set-up set-up Integrtion Integrtion testing testing Cndin Cndin Server Server In progress To strt Functionl Functionl testing testing Cndin Cndin Server Server Integrtion Integrtion / / Functionl Functionl testing testing French French Server Server Cross-border Cross-border testing testing Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 17
Agend The EPCM inititive EPCM cpble IT solutions: Office 2007 Plug-In Potentil business opportunities Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 18
Potentil business opportunities The potentil business res tht cn benefit from EPCM cpbilities re: E-Archiving Implementtion Implementtion complementry complementry certified certified rchiving rchiving systems systems Certified digitl communiction Secured Secured messge messge exchnge exchnge (i.e. (i.e. Registered Registered E-mil) E-mil) E-Government support Certified Certified communiction communiction nd nd between between Public Public Administrtions Administrtions E-Tendering Certified Certified mngement mngement electronic electronic tender tender tion tion E-Accounting Certified Certified mngement mngement ccounting ccounting tion tion Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 19
Certified rchivl Bnk Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 20
Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 21 Certified rchivl Bnk B U S I N E S S C L I E N T P O R T A L P O S T E I T A L I A N E P O R T A L EPCM infrstructure DMS Internet? = ARCHIVAL VERIFICATION OK
Registered E-mil Registered E-Mil is one services tht EPCM most strightforwrdly lends itself to Severl lterntives re in course study; Poste Itline hs developed Registered Emil concept model, reclling tht physicl certified mil : 1) Both sender nd receiver cn rely on ir own e-mil provider 2) Appending suffix.posteitline to receiver s e-mil ddress (i,.e. mrio.rossi@yhoo.it.posteitline.it) emil is sent to Poste Itline s infrstructure 3) The receiver is notified by Poste Itline tht he/she hs to drw Registered emil t online Post Office 4) By logging to Poste Itline s online Post Office received credentils, receiver cn drw registered emil nd ttched files 5) Upon successful completion such opertion, Poste Itline sends notifiction to sender Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 22
Registered E-mil @@ Registered Emil Online Post Office Notice to recepient @ Receipt ck Sender giuseppe.binchi@hotmil.it Registered emil rwl @ Receiver mrio.rossi@yhoo.it All security nd evidence services re provided by EPCM infrstructure Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 23
Potentil business opportunities Thnk You Mssimo Fgiolo PostEurop IT Forum, Bonn 15 June 2007 24