Embed Size (px)
Citation preview
Baltimore Technologies
Jack Nagle
E-Government
! Relationship between E-Business & E-Government growth
! Government as a Leader for Change
! Security Requirements
! An Irish Example– Revenue On-Line
! Real E-Business
! Needs real E-Security
! Conducted with Integrity
! In an “Infosphere” involving multiple stakeholders including Government
! Without which
!Real progress will be retarded
!“Islands of T rust” will persist
E-Security
Next-Generation Boundaries
! A foundation assumption: economic transition– The world is in transition from the industrial economy of
the past to the digital economy of the future– The network is no longer just a tool for doing business;
it’s the medium in which we do business– Organizations resist this change at their peril– The shift is self-perpetuating:
– The emerging capabilities of the network are driving dramatic change in business models
– The dramatic change in business models is having a substantial effect on enterprise network infrastructure
Next-Generation Boundaries
! The business web
“The twentieth century enterprise is giving way to the business-web, driven by the disaggregation
and reaggregation of the firm.”
Don TapscottDavid TicollAlex LowyDigital Capital,citing Ronald Coase
E-Business DriversLeverage the Internet to….
Create new sales channels
Develop new business partners
Develop new markets and business models
Improve operational efficiency
Increase productivity
Automate processes
Deliver better customer service
Enable customer self-service
Create customer loyalty
Create new products and services
Integrate supply chains
Improve business agility
Respond to competitive challenges
Increase revenues
Lower costs
Service customers
! The Virtual Enterprise Network
InternalSystems& Data
Employees
Employees
Partners
Partners
Suppliers
Customers
Virtual enterprise?Virtual network? It’s both.
Next-Generation Boundaries
Physical Delivery
Database
MainframePackages Custom
Applications
IntegratedOrganization
B2B ServicesInfrastructure
B2C ServicesInfrastructure
XML
Client
DynamicTrading Partners
Internet
Corporate Firewall
Secure Collaboration
Space
Enterprise Application Integration Web Application Integration
eMarket Integration
SpecialistNetworks
The Integrated Enterprise
E-Government
! What it it– G2B: corporation TAX, VAT returns..– G2C: Personal TAX, housing benefits, Motor TAX…– G2E: Government to Employee
! What are the Drivers behind this– External effectiveness
– Increased accessibility to the authorities through e-services
– One stop shop: single point of entry– EU directives
– Internal effectiveness– Increase efficiencies of work flow process– Cost reduction is the main driver
E -Government reflectsE - Business Growth
Moving from ! Information Searching/Providing -Websites,
D/B’s, Forms
! Interaction - Transaction engines, Secure Communications
! Interoperability – Front and Back Office Integration, Workflow, XML
“joined up government needs joined up information systems”
Waves of E -Government
InformationWebBased
Guide to Services
Electronic Leaflets
TransactionPrimarily one-way
Single Agency
Little backend integration
Interaction2 way transactions
Multiple Agencies
Single point of entry
Backend integration
Interoperability
On-line transparent Government
e-Voting
Cross boarder
Electronic
Passports
Val
ue o
f Ser
vice
Complexity
Barriers to full deployment of E-Business / Government
! Organisational– Change process / budgetary
! Legal Framework– Digital Signature– Data Protection– On-line transactions
! Security– Confidentiality– Strong Authentication of Citizen / Organization– Strong Authentication to ensure accurate provisioning
! Acceptance by users
– non-intrusive security measures – acceptance of technology
Government Leadership
! Legislation– Development of e-commerce and e-government
services relies on clear legal frameworks which also help in building public confidence in electronic transactions.(Hong Kong experience)
– Governments must ensure that the protection of fundamental rights meets the needs of the digital age (Netherlands experience)
! Provide Infrastructure
– E-commerce in Australia will be simplified by allowing businesses to use one digital certificate to carry out online transactions with banks, trading partners and government agencies. (Australian experience)
– Government can play an important role in driving the development of the Public Key Infrastructure. (Hong Kong)
E-Government Leadership contd..
! Promotion – Promotion of …on-line transactions, standards,
interoperability– (governments.)..don’t underestimate the effort required to
develop and grow user contacts, promote awareness of standards, attend relevant user groups and to manage business requirements. (UK experience)
! By Example
Security Challenges
! Making security;
– Easy to deploy– Readily available– Simple to use
Delivering real business benefit
Authentication
Authorization
Digital Signatures
Receipts
T imestamps
E-payments
! Establishing identity
! Providing access to the right resources
! Conducting e-business with integrity
How Much Authentication?
Passwords
• Easily broken• Easily forgotten• Must be protected by SSL• Suitable for low value applications• Scales to large numbers of users• Low cost• Not suitable for high value applications• No audit trail
Sensitivity of Data
Open User Group
Closed User Group
CRM Access
Intranet
Supply Chain
CD RetailWeb surfing
Corporate Mail
Pension
Tax Returns
eTrading
eBanking
Treasury
Web MailMicro-
payments
Social Site
Instant Messaging
Military
ePharma
Sensitivity of Data
Open User Group
Closed User Group
CRM Access
Intranet
Supply Chain
CD RetailWeb surfing
Corporate Mail
Pension
Tax Returns
eTrading
eBanking
Dynamic Passwords
• Too expensive for low value apps• Only suitable for closed user groups• No signed audit trail• Proprietary• Difficult to recover from lost token• Good security
Treasury
Web MailSocial Site
Instant Messaging
Military
How Much Authentication?
ePharma
Sensitivity of Data
Open User Group
Closed User Group
CRM Access
Intranet
Supply Chain
CD RetailWeb surfing
Corporate Mail
Pension
Tax Returns
eTrading
eBanking
Biometrics
• Can never be forgotten!• Adds extra security factor of “something you are” to broad authentication mechanisms like PKI• Uptake hindered by immaturity of technology and cost & availability of devices – now changing• Suitable for closed user groups• Socially difficult
Treasury
Web MailSocial Site
Instant Messaging
Military
How Much Authentication?
ePharma
Open User Group
PKI
• Worldwide standard system for digital certificates (like passports) and digital signatures• Bedrock of Internet security; easily combined with other mechanisms like smartcards & biometrics• Signed Audit Trail for dispute resolution/non-repudiation• Legacy integration can be expensive; web services making it easier
How Much Authentication?
Sensitivity of Data
Closed User Group
CRM Access
Intranet
Supply Chain
CD RetailWeb surfing
Corporate Mail
Pension
Tax Returns
eTrading
eBanking
Treasury
Web MailSocial Site
Instant Messaging
Military
ePharma
Security Framework
Employees
Partners
Suppliers
Customers
Portals
Applications
Systems
Identity Proved
Authorization GrantedT ransaction Signed
ProvisioningIdentity andEntitlements
ManagingIdentity andEntitlements
EnforcingIdentity and Entitlements
Any Device, any Platform, any Network
Security Services Platform
Irish E-Government
! Legislation– Data Protection Act: registration of use of data has
implications for e-government – 1988– Electronic Signature Directive 2000– E-Commerce Act 2000: recognition of on-line transactions– Electronic Commerce Directive– eInvoicing Directive
! Leadership– REACH initiative– ROS : E-Government in action
National IT & E-Security Summit21 March 2002
Revenue On-Line Service
Revenue On-Line ServiceRevenue On-Line Service
" Introduction" Colm Bermingham, ROS Project Manager
" Today’s Presentation – ‘RFT to Reality’" Background to ROS" Business considerations for the Service" Revenue’s security solution (PKI)" Sample Functionality" Conclusions
! Revenue one of the largest processors of information in Ireland
! Bulk of processing paper based
! Resource intensive
! Revenue also provides information to taxpayers and agents
! Paper mountain contributes to costs, delays, frustration
ROS - BackgroundROS - Background
DRIVERS! Revenue Board Statement of Strategy 1997 - 1999
50% of all business returns filed electronically by 2005Position ROS as the preferred method by which customers interact
with Revenue
eGovernment InitiativeInformation Society CommissionNational eBroker projects for Corporations & CitizensEuropean Union Benchmarking
ROS – DriversROS – Drivers
Government AchievementsGovernment Achievements
! Electronic Commerce Act 2000
! Investment - Broadband Infrastructure
! International Connectivity Project
! Action Plan for the Information Society
What is ROS?What is ROS?
! A facility to file returns over the Internet! Access over the Internet to specified tax information ! A facility to send information and correspondence to ROS users
over the Internet! Enhancement of payment options available to customers
Strategic Objectives of ROSStrategic Objectives of ROS
! Increase voluntary compliance by making it easier and cheaper to comply
! Improve Revenue’s Customer service
! Address our obligations under the Government’s Information Society Strategy
! Eliminate routine processing and paper handling to create a more effective and efficient organisation
" Filing Tax Returns– Employer’s Tax, VAT– Income Tax & Corporation Tax
" Making Payments– ROS Debit Instruction– Laser Card
" Access to Tax Information– Own Revenue data
" Access Control System– Agents and Companies
ROS FacilitiesROS Facilities
ROS - Development HistoryROS - Development History
! Business team - September 1998! Vision documented - November 1998! Corporate commitment - March 1999! Procurement process completed - Dec. 1999! Contractors appointed
– Accenture, January 2000– Baltimore, April 2000
! ROS Live 29th September 2000
ROS Procurement- ApplicationROS Procurement- Application
! Detailed RF T issued July ‘99 - to cover design, build and possibly support of ROS
! Eighteen responses to RFT
! Rigorous analysis and selection process
! Nine contractors selected for in depth evaluation
! Accenture selected
! ROS implementation commenced January 5
ROS Procurement-SecurityROS Procurement-Security
! Detailed RFT is sued Feb 2000 - to cover PKI, product integration, Certification Authority
! Eight responses to RFT
! Rigorous analysis and selection process
! Baltimore Technologies selected
! ROS implementation commenced April 2000
– Hosting facility commissioned August 2000
ROS - ApproachROS - Approach
! Senior management support and sponsorship
! Short ‘snappy’ phases
! Committed team
! Funding & Resources
ROS - ApproachROS - Approach
Internal Consultation! New Partnership Structure! Management! Staff! Unions
Effective and ongoing consultation is key to successExternal Consultation! Accounting/Professional
Representative Groups! Tax Agents! Software/Payroll Companies! Customer Panels! Individual Customers
ROS -SecurityROS -Security
" Business considerations" Confidentiality" Authentication" Integrity" Non-Repudiation
" Other factors
" Public Key Infrastructure
" Customer Service vs Technology
" Security
" Foreign Experience
" Certification Authority
" Customer Focus
" Digital Certificate ‘link’ to Revenue Records
" Documentation
ROS -SecurityROS -Security
" Policy Approval Authority (PAA)
" Certificate Policy Statement (CPS)
" Certificate Policy (CP)
" Terms and Conditions
" Independent PKI audit
ROS -SecurityROS -Security
ROS -SecurityROS -Security
! Confidentiality– 128 bit SSL– Verisign Global certification– Single session key generation
! Easy to implement once the US ‘strong Encryption’ export restrictions lifted
! ROS infrastructure security
ROS -SecurityROS -Security
Cryptographic Services
ApplicationSecurity
Web ServerSecurity
" Taxpayer" Agent
Web Server Firewall
ApplicationServer and Database
Internet
Strong authenticationdigital certificates
Certification Authority
encrypted data
FirewallsMultiple Firewalls
ROS - TechnicalROS - Technical
! Open systems approach
! Front end developed using mixture of standard HTML, JAVA applets, JAVA servlets
! Interface DTD specifications are for XML
! Compatible and tested with Screen Reader technology
ROS – Registration ProcessROS – Registration Process
" Step 1" Application for a ROS Access Number (RAN)
" Step 2" Application for a Digital Certificate
" Step 3" Retrieve the Digital Certificate
ROS – Registration ProcessROS – Registration Process
ROS – Sign & SubmitROS – Sign & Submit
ROS Usage to DateROS Usage to Date
! 5,960 Digital Certificates issued
! 57,256 on-line access requests to customer details
! 56,344 Returns filed
! €2.59 Bn collected in Business Taxes
! €170m repayments
What’s Next for ROS?What’s Next for ROS?
! Enhanced Services for Customers! Returns from Financial Institutions! Environmental Levy! Vehicle Registration Tax! Capital Acquisitions Tax Returns! Payments using On-line Banking! More seamless integration with 3rd party software
ROS – PKI -SummaryROS – PKI -Summary
" PKI
" Satisfies Revenue business requirements
" Revenue is own CA – Baltimore hosting
" Documentation overhead
" Still needs security infrastructure
" Can be customer friendly
How did we get here? – SummaryHow did we get here? – Summary
! Board and Top Management Commitment! Planning! Consultation! Legislation! Outsourced the Development! Outsourced the Security! Flexible and Nimble approach to Project Management! Funding
ConclusionsConclusions
! ROS is a success – eLabel award Nov 2001
! ROS is having a dramatic impact
! eBroker will streamline Public Service delivery
! eGovernment not eDepartment
! The public are trusting secure Internet sites
Colm [email protected]
Revenue - ROSwww.revenue.ie - www.ros.ie
ROS – Contact infoROS – Contact info
Conclusion
! There is a close relationship between adoption of E-Government and of E-Business
! Governments play a strong role in the growth the E-Economy
! Ireland is positioned well for this growth! ROS provides an excelent example of how E-
Government can be implemented
!Jack Nagle! [email protected]
