STATE OF THE ART LARGE- SCALE CONCEPT SECURITY NOTIONS THE CONCEPT IN DETAIL SECURITY ON DEMAND MOBILITY ARCHITECTURE STRUCTURE MESH PARADIGMS NETWORKS ON DEMAND SERVICES EBEEOFFICE A PRODUCT BASED ON DIGITAL TRUST jean- marie.crbois@almerys.com
DIGITAL TRUST
DIGITAL TRUST ABSENCE Limits internet usages Provisions for risk Internet users pay the risk
Propriété d almerys, filiale de France télécom - Orange document à valeur non contractuelle 2013 DIGITAL TRUST ABSENCE
Today Propriété d almerys, filiale de France télécom - Orange document à valeur non contractuelle 2013 DIGITAL TRUST ABSENCE
DIGITAL TRUST Establishes over time Is here to stay Is lost in doubt
SOLUTIONS Physical security Logical security Security processes Safety access Special Tools for users
EBEEOFFICE
EBEEOFFICE This is a consequence of digital trust It answers questions related to trust It addresses the concerns of individuals It responds to business concerns It generates profit for business It reconciles individuals with their data
BASE OF CHANGING SOCIAL RELATIONS LARGE SCALE
!""#$%&!#"' '&$*!&'&#$* *+%!(),' EBEEOFFICE : SCOPE )$+'&!$)* *,"-'$+.$/$.%)*!"#$%&#!'( 1$/"!+0%&$** 20+%&!&20%&'$* 01/.&)%+0%&".)* * )$+'&!$)*!"##$!%&'&%()* * )$+'&!$)* )$+'&!$)* *!"//-.0-%()* 3&$.45%+$* )0.%(* #)*'+%,)'( )$+'&!$)* * $.%+$2+&)$)* * * ()*+)(*+)' '&$*!&%"6$..$* -%(#./&(),' -0"1)(,'
#" ' %&!!" "# $,' () /& 3&$.45%+$* )0.%(* #)*'+%,)'( -% (#.,' () ) $+ '&!$ )* * +$2 +&)$ )* * * '&$*!&'&#$* ) $+ '&!$ )* * +$2 +&)$ )* * * /&,' -% (#. )$+'&!$)* *!"//-.0-%()* -0"1)(,' '&$*!&%"6$..$* * &!$) )$+' *.%)* $ /$ $+. $.%!% & * '&%( )* &!$ )* () %!,' #)*'+%,)'( *+ () %! 3&$.45%+$* )0.%(* ##$ +' ',"- -0"1)(,' '&$*!&%"6$..$* * &!$) )$+' *.%)* $ /$ $+. *+ )$+'&!$)* *!"//-.0-%()*!" )$ $.% %&!!" "# $ *.) %&" +0 &)% * *. ) / &!$ 01 +' )$!% & * '&%( )* &!$ )* ',"- '&$*!&'&#$* ##$ +' )' )'!" )$ *+ )( *+ )( *+ *.) % &" +0 &)% * *. ) / &!$ 01 +' )$ Propriété d almerys, filiale de France télécom - Orange document à valeur non contractuelle 2013 1$/"!+0%&$** 20+%&!&20%&'$* *+!"#$%&#!'( 1$/"!+0%&$** 20+%&!&20%&'$* ()!"#$%&#!'( () #" ' EBEEOFFICE : EVERYTHING IN INTERCONNECTION
FUNDAMENTAL ASPECTS SECURITY
EBEEOFFICE : FUNDAMENTALS(1/6) A highly secure space Strong Authen9ca9on NotarizaCon Proof management Signature Security on Demand A user centric space Trust Space Professionnal Private individual Shareable or not all or part Alert management
EBEEOFFICE : FUNDAMENTALS(2/6) A highly secure space Strong AuthenCcaCon Notariza9on Proof Management Signature Security on Demand A user centric space Trust space Professionnal Private individual Shareable or not all or part Alert Management
EBEEOFFICE : FUNDAMENTALS(3/6) A highly secure space Strong AuthenCcaCon NotarizaCon Proof Management Signature Security on Demand A user centric space Trust space Professionnal Private Individual Shareable or not all or part Alert Management ALL NOTARIZATION LEVELS Être en confiance nécessite un très haut niveau de sécurité
A highly secure space Strong AuthenCcaCon NotarizaCon Proof Management Signature EBEEOFFICE : FUNDAMENTALS(4/6) Security on Demand A user centric space Trust space Professionnal Private Individual Shareable or not all or part Alert Management Être en confiance nécessite un très haut niveau de sécurité
EBEEOFFICE : FUNDAMENTALS(5/6) A highly secure space Strong AuthenCcaCon NotarizaCon Proof Management Signature Security on Demand A user centric space Trust space Professionnal Private individual Shareable or not all or part Alert Management Être en confiance nécessite un très haut niveau de sécurité
EBEEOFFICE : FUNDAMENTALS(6/6) A highly secure space Strong AuthenCcaCon NotarizaCon Proof Management Signature Security on Demand A user centric space Trust space Professionnal Private individual Shareable or not all or part Alert Management
REVERSAL OF CURRENT INTERNET THE CONCEPT
Data Room Data Room Dashboard Public Univers Universe Public Univers Private Universe Privé Tableaux de bord EBEEOFFICE : CONCEPT Data Room Employer Univers Universe Employeur Alarms Home Accueil ebeeoffice Data Room Insurance Univers Universe EDF News Dashboard Store Univers City Hall Ville de Universe Québec Univers Bank Universe Banque Data Room Data Room entrée Door
EBEEOFFICE : DEPARTITIONED SPACES The space is devided in differents universes Public Universe Private Universe Professional Universes Provider Universes Each universe uses specific s Health Book, GeolocalizaCon, Signature, Vote, Polls, Forms, There is no limitacon on types The integracon for all or part of processus near uses is possible Each universe uses data Video files, audio files, pdf USES
For the sake of my presentacon FLASH BACK
Propriété d almerys, filiale de France télécom - Orange document à valeur non contractuelle 2013 DIGITAL TRUST ABSENCE
Propriété d almerys, filiale de France télécom - Orange document à valeur non contractuelle 2013 REMEMBER AGAIN!
WITH EBEEOFFICE & DIGITAL TRUST ebeeoffice
EBEEOFFICE : INTERNET REVERSAL Data Room Data Room Dashboard Public Univers Universe Public Univers Private Universe Privé Tableaux de bord Data Room Employer Univers Universe Employeur Alarms Home Accueil ebeeoffice entrée Door Data Room Insurance Univers Universe EDF News Dashboard Store Univers City Hall Ville de Universe Québec Univers Bank Universe Banque Data Room Data Room
EBEEOFFICE : INTERNET REVERSAL Data Room Data Room Dashboard Public Univers Universe Public Univers Private Universe Privé Tableaux de bord Data Room Employer Univers Universe Employeur Alarms Home Accueil ebeeoffice entrée Door Data Room Insurance Univers Universe EDF News Dashboard Store Univers City Hall Ville de Universe Québec Univers Bank Universe Banque Data Room Data Room
EBEEOFFICE : INTERNET REVERSAL Data Room Data Room Dashboard Public Univers Universe Public Univers Private Universe Privé Tableaux de bord Data Room Employer Univers Universe Employeur Alarms Home Accueil ebeeoffice entrée Door Data Room Insurance Univers Universe EDF News Dashboard Store Univers City Hall Ville de Universe Québec Univers Bank Universe Banque Data Room Data Room
CHOOSE THE SECURITY AS REQUIRED SECURITY ON DEMAND
EBEEOFFICE : SECURITY AS REQUIRED Possible accesses Login/Password One Time Password Chip cards Dongles Different tokens (biometry for instance ) Data are shown by access types!"#"$%&&'$!"#"$%&&'$?"72,"4@$ (-*50#,( $5472*8$ -&#$4( 5-*+6$!"#"$%&&'$!"#$%&'( -&./%''#.""%0( ()*+,-.$ /'12&3,4-$ 1#00%(2%( 3*45%,( >884,*2$,7,,!"#$%,)#-6,$ %"8&4%(!"#"$%&&'$ "2"-',.$ )''*&+",%( /!0$ Login/Password : data without security (non sensicve data) One Cme Password : highly secure data, signature (sensicve data) Chip cards : highly secure data, qualified signature (sensicve data)?"72,"4@$ A,B.$?"72,"4@$ C#&-,$ ;*22,$<,$=467,8$ 6+"7*%( 9"):4,$ 1#00%(!"#"$%&&'$!"#"$%&&'$
Data Room Data Room EBEEOFFICE : SECURITY AS REQUIRED Dashboard Public Univers Universe Public Univers Private Universe Privé Tableaux de bord Data Room Employer Univers Universe Employeur Alarms Home Accueil ebeeoffice Data Room Insurance Univers Universe EDF News Dashboard Store Univers City Hall Ville de Universe Québec Univers Bank Universe Banque Data Room Data Room entrée Door
Anywhere and anycme THE MOBILITY
MulC Media access to set up All touch tablets on the market Any type of pc and laptop Any type of smartphone webs Mobility access with the same security leve UnCl 4G Wifi Secure excha,ges ebeeoffice in mobility Voice, pictures Forum, chat, private networks tablets Laptops/PCs GesCon des autorisacons DATA GesCon des autorisacons smartphones WebServices
Mobile Virtual Office : On mobile medium Virtual office is shareable with some users (one, two, three or more ) Goal: Access to its private or professional data partrimony as well as associated s securely, anywhere and at anyb Cme Major points: ebeeoffice is also a virtual office AboliCon of distance nocons Making the mobile a space trust Keep the same security level regardless the medium Manage the security level ebeeoffice User A ebeeoffice User B Virtual Office
ipader 1 ipader 2 ipader 1 ipader 2 ipader 1 1 SEND RECEIVE ipader 3 ipader 4 SESSION EXCHANGES/NOTARIZATION/PROOF THIRD TRUST PARTY ZONE WHITE BOARD ipader 3 ipader 4 ipader 2 SEND RECEIVE ipader 1 ipader 2
SECURITY IS EVERYWHERE THE ARCHITECTURE
EBEE : AN OPEN PLATEFORM %&%%!"#$% 9*$:1)*&+ I 9*$:1)*&++,+:%-*($+/$70%"'*+!"#$%&'$()'($*++,+)-.&+/(0-12(*&+ 3$)41'*)'($*+!"#$ 5*+67"8%")*+ ;<=9>3>3!<=+?=+9=<@!6=9+?=+6ABC!3B6=+ ;<=9>3>3!<=9+?=+9=<@!6=9+ 9*$:1)*&++,+:%-*($+/$70%"'*+!B?!@!?D+D>!E!93>=D<+F;=<9ABB=G+=B><=;<!9=+AD+!B9>!>D>!ABH+ I PKI Trust Arch. Third Trust Party PrestaCons PKI 9*$:1)*&+ %&%%!"#$% Private individual (individual, Company, Governement)
ECERYTHING IS LATENT BUT EVERYTHING CAN BE ACTIVATED MESHED NETWORK STRUCTURE
EBEEOFFICE : ENLARGEMENT OF THE CONCEPT!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$ -&./%''#.""%0( /'12&3,4-$ )''*&+",%( /!0$ A,B.$?"72,"4@$ -&#$1( 5-*+6$ (-*20#,( $5472*8$ -&#$1( 5-*+6$ (-*20#,( $5472*8$?"72,"4@$ -&./%''#.""%0( /'12&3,4-$ )''*&+",%( /!0$ A,B.$?"72,"4@$?"72,"4@$?"72,"4@$ >884,*2$,7,,!"#$% "2"-',.$ C#&-,$,)#-6,$ %"6&1%(!"#"$%&&'$!"#"$%&&'$?"72,"4@$ >884,*2$,7,,!"#$% "2"-',.$ C#&-,$,)#-6,$ %"6&1%( ;*22,$<,$=467,8$ 4+"5*%( 9"):4,$ 3#00%( ;*22,$<,$=467,8$ 4+"5*%( 9"):4,$ 3#00%(!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$?"72,"4@$ LATENT POSITION!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$ -&./%''#.""%0( /'12&3,4-$ )''*&+",%( /!0$ A,B.$ -&#$1( 5-*+6$ (-*20#,( $5472*8$ -&#$1( 5-*+6$ (-*20#,( $5472*8$?"72,"4@$ -&./%''#.""%0( /'12&3,4-$ )''*&+",%( /!0$ A,B.$?"72,"4@$?"72,"4@$?"72,"4@$ >884,*2$,7,,!"#$% "2"-',.$ C#&-,$,)#-6,$ %"6&1%(!"#"$%&&'$!"#"$%&&'$?"72,"4@$ >884,*2$,7,,!"#$% "2"-',.$ C#&-,$,)#-6,$ %"6&1%( ;*22,$<,$=467,8$ 4+"5*%( 9"):4,$ 3#00%( ;*22,$<,$=467,8$ 4+"5*%( 9"):4,$ 3#00%(!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$
EBEEOFFICE : ELARGEMENT OF THE CONCEPT!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$ -&./%''#.""%0( /'12&3,4-$ )''*&+",%( /!0$ A,B.$?"72,"4@$ -&#$1( 5-*+6$ (-*20#,( $5472*8$ -&#$1( 5-*+6$ (-*20#,( $5472*8$?"72,"4@$ -&./%''#.""%0( /'12&3,4-$ )''*&+",%( /!0$ A,B.$?"72,"4@$?"72,"4@$?"72,"4@$ >884,*2$,7,,!"#$% "2"-',.$ C#&-,$,)#-6,$ %"6&1%(!"#"$%&&'$!"#"$%&&'$?"72,"4@$ >884,*2$,7,,!"#$% "2"-',.$ C#&-,$,)#-6,$ %"6&1%( ;*22,$<,$=467,8$ 4+"5*%( 9"):4,$ 3#00%( ;*22,$<,$=467,8$ 4+"5*%( 9"):4,$ 3#00%(!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$?"72,"4@$ ACTIVATED POSITION!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$ -&./%''#.""%0( /'12&3,4-$ )''*&+",%( /!0$ A,B.$ -&#$1( 5-*+6$ (-*20#,( $5472*8$ -&#$1( 5-*+6$ (-*20#,( $5472*8$?"72,"4@$ -&./%''#.""%0( /'12&3,4-$ )''*&+",%( /!0$ A,B.$?"72,"4@$?"72,"4@$?"72,"4@$ >884,*2$,7,,!"#$% "2"-',.$ C#&-,$,)#-6,$ %"6&1%(!"#"$%&&'$!"#"$%&&'$?"72,"4@$ >884,*2$,7,,!"#$% "2"-',.$ C#&-,$,)#-6,$ %"6&1%( ;*22,$<,$=467,8$ 4+"5*%( 9"):4,$ 3#00%( ;*22,$<,$=467,8$ 4+"5*%( 9"):4,$ 3#00%(!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$
!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$?"72,"4@$ -&#$1( 5-*+6$ (-*20#,( $5472*8$ EBEEOFFICE : DATAROOMS!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$ -&./%''#.""%0( /'12&3,4-$ )''*&+",%( /!0$ A,B.$ -&#$1( 5-*+6$ (-*20#,( $5472*8$?"72,"4@$ -&./%''#.""%0( /'12&3,4-$ )''*&+",%( /!0$ A,B.$?"72,"4@$?"72,"4@$ >884,*2$,7,,!"#$% "2"-',.$ C#&-,$,)#-6,$ %"6&1%(!"#"$%&&'$!"#"$%&&'$?"72,"4@$ ;*22,$<,$=467,8$ 4+"5*%( 9"):4,$ 3#00%( ;*22,$<,$=467,8$ 4+"5*%( 9"):4,$ 3#00%( >884,*2$,7,,!"#$%?"72,"4@$ "2"-',.$ C#&-,$,)#-6,$ %"6&1%( MODERATOR!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$!"#"$%&&'$?"72,"4@$ ACTIVATED POSITION!"#"$%&&'$!"#"$%&&'$ -&./%''#.""%0( /'12&3,4-$ )''*&+",%( /!0$ A,B.$ -&#$1( 5-*+6$ (-*20#,( $5472*8$?"72,"4@$?"72,"4@$ >884,*2$,7,,!"#$% "2"-',.$ C#&-,$,)#-6,$ %"6&1%( ;*22,$<,$=467,8$ 4+"5*%( 9"):4,$ 3#00%( DATAROOM!"#"$%&&'$!"#"$%&&'$
TAKE THE HEIGHT EBEEOFFICE PARADIGMS
EBEEOFFICE : PRIVATE INDIVIDUAL PARADIGM!((0,#!3#0+$ ")3)'&&'$ )*+&,((,#( )+$-%$.#( '"4&05')*$ #+(3#3)3#0+$ Ebeenaute!"##$%&'#( CITIZEN!"#$%&'(!"#$ 2!+/)'$,0&&'1)'$ %!"#&&'$ -./$ VILLE!(()*!+,'$ Être centré individu
$8#9&!,-$( EBEEOFFICE : PARADIGME VILLE )*-*%''%(!"#$%&& %'&!#()*(+'& %)+'"8:;%<$( &#$-&-*-&"#$( Ebeenaute!"#$ VILLE!"#$%&'( )*#&!&+,'( 6,#7*%( briques de confiance 5"*.#&$$%*.$( PROVIDER,$$"!&,-&"#$(!/01234( CITIZEN,$$*.,#!%(
EBEENET : SECURE NETWORK(S) Cloud de Confiance EMPLOYÉ ENTREPRISE FOURNISSEUR briques de confiance EMPLOYÉ EMPLOYÉ briques de confiance Cloud TrusLng VILLE AVOCAT briques de confiance Cloud TrusLng EMPLOYÉ Cloud de Confiance ASSURANCE CLIENT briques de confiance EMPLOYÉ ENTREPRISE
WHILE MAINTENING THE SECURITY NETWORKS ON DEMAND
EBEENET : SECURE NETWORKS ON DEMAND -()&*+$."%/*7$01/2($!"#$%&'(!)*+!#+,-!( 1%/+),--!/+(!"#$%&'(!"#$%&'(!)*+!#+,-!(.2%0.*(!"#$%&'(!"#$%"##&%'()$*+,$-()&*+,$."%/*+,$ 01/2()$.--/+.)0!( 0$,!)*(!"#$%&'(!)*+!#+,-!( -()&*+$01/2($345#'1&61/)&)$ -()&*+$01/2($3$45#'1&61&#&+1)$
NO LIMITES SERVICES
EBEEOFFICE : OPENED SERVICES Services are part of universe Services are grouped into universes A universe assigned by provider Services can be developped by any company Services are developped by any provider Services are then approved Services are integrated in the universe Ebeestore Shop of Services available for ebeenaute Services are free or not AmanaCon of processes nearest of the ebeenaute Industrial Processes are accessible anywhere and anycme
THANK FOR YOUR ATTENTION