stork 2.0 etsi security week 2015€¦ · etsi security week 2015 thematic stream eidas arvid welin...
TRANSCRIPT
![Page 1: STORK 2.0 ETSI Security Week 2015€¦ · ETSI Security Week 2015 Thematic Stream eIDAS Arvid Welin (SE) Adam Cooper (UK) ... • Open source reference implementations Stork 2.0 is](https://reader033.vdocuments.us/reader033/viewer/2022060221/5f0736e07e708231d41be095/html5/thumbnails/1.jpg)
STORK 2.0ETSI Security Week 2015Thematic Stream eIDAS
Arvid Welin (SE)Adam Cooper (UK)
Stork 2.0 is an EU co‐funded project INFSO‐ICT‐PSP‐297263
June 25th 2015
![Page 2: STORK 2.0 ETSI Security Week 2015€¦ · ETSI Security Week 2015 Thematic Stream eIDAS Arvid Welin (SE) Adam Cooper (UK) ... • Open source reference implementations Stork 2.0 is](https://reader033.vdocuments.us/reader033/viewer/2022060221/5f0736e07e708231d41be095/html5/thumbnails/2.jpg)
STORK 1 Key‐facts
Project that ran from 2008‐2011
National eID federation between:
• 100+ national eID token types
Resulted in:
• Open specifications (SAML 2 + QAA)
• Open source reference implementations
Stork 2.0 is an EU co‐funded project INFSO‐ICT‐PSP‐297263
![Page 3: STORK 2.0 ETSI Security Week 2015€¦ · ETSI Security Week 2015 Thematic Stream eIDAS Arvid Welin (SE) Adam Cooper (UK) ... • Open source reference implementations Stork 2.0 is](https://reader033.vdocuments.us/reader033/viewer/2022060221/5f0736e07e708231d41be095/html5/thumbnails/3.jpg)
Borders will open & National online services will improve
CITIZEN
CITIZEN CITIZENCITIZEN
CITIZEN
Stork 2.0 is an EU co‐funded project INFSO‐ICT‐PSP‐297263
![Page 4: STORK 2.0 ETSI Security Week 2015€¦ · ETSI Security Week 2015 Thematic Stream eIDAS Arvid Welin (SE) Adam Cooper (UK) ... • Open source reference implementations Stork 2.0 is](https://reader033.vdocuments.us/reader033/viewer/2022060221/5f0736e07e708231d41be095/html5/thumbnails/4.jpg)
Licensing
EUPL for nearly all STORK software
LGPL for Integration Package
• Lesser General Public License
• Free to use, copy (no license fee), just like
Apache
• No copyleft; your code using the STORK code can
be private, just like Apache
• If our source is modified, this modification must
be public
Stork 2.0 is an EU co‐funded project INFSO‐ICT‐PSP‐297263
![Page 5: STORK 2.0 ETSI Security Week 2015€¦ · ETSI Security Week 2015 Thematic Stream eIDAS Arvid Welin (SE) Adam Cooper (UK) ... • Open source reference implementations Stork 2.0 is](https://reader033.vdocuments.us/reader033/viewer/2022060221/5f0736e07e708231d41be095/html5/thumbnails/5.jpg)
The STORK 2.0 visionBusiness Processes
Authentication on behalf of:
• Allow access to an application with data of another legal/moral person.
Powers (for digital signature)
• A signature has been received (as part of a contract, commercial proposal,
etc.), and representation powers of signatory should be verified.
Business Attributes
• Attributes proceeding from a certain business sector are to be retrieved
from various Attribute providers.
Stork 2.0 is an EU co‐funded project INFSO‐ICT‐PSP‐297263
![Page 6: STORK 2.0 ETSI Security Week 2015€¦ · ETSI Security Week 2015 Thematic Stream eIDAS Arvid Welin (SE) Adam Cooper (UK) ... • Open source reference implementations Stork 2.0 is](https://reader033.vdocuments.us/reader033/viewer/2022060221/5f0736e07e708231d41be095/html5/thumbnails/6.jpg)
STORK attributes
![Page 7: STORK 2.0 ETSI Security Week 2015€¦ · ETSI Security Week 2015 Thematic Stream eIDAS Arvid Welin (SE) Adam Cooper (UK) ... • Open source reference implementations Stork 2.0 is](https://reader033.vdocuments.us/reader033/viewer/2022060221/5f0736e07e708231d41be095/html5/thumbnails/7.jpg)
Long‐term Sustainability
• In the framework of the eIDAS regulation.
• STORK infrastructure already maintained by ISA.
• Merge of STORK 2.0 code with STORK code already maintained by DIGIT.
• STORK is a planned building block of the CEF e‐ID solution.
• Adoption and promotion of standards.
![Page 8: STORK 2.0 ETSI Security Week 2015€¦ · ETSI Security Week 2015 Thematic Stream eIDAS Arvid Welin (SE) Adam Cooper (UK) ... • Open source reference implementations Stork 2.0 is](https://reader033.vdocuments.us/reader033/viewer/2022060221/5f0736e07e708231d41be095/html5/thumbnails/8.jpg)
With STORK and eSENS Participantswe have a foundation for uptake of CEF and eIDAS
• Austria• Belgium• The Czech Republic• Denmark• Estonia• Finland• France• Germany• Greece• Iceland• Ireland • Italy• Lithuania• Luxembourg
• The Netherlands• Norway• Poland• Portugal• Romania• Slovakia• Slovenia• Spain• Sweden• Switzerland• Turkey• The United Kingdom• European Commission
![Page 9: STORK 2.0 ETSI Security Week 2015€¦ · ETSI Security Week 2015 Thematic Stream eIDAS Arvid Welin (SE) Adam Cooper (UK) ... • Open source reference implementations Stork 2.0 is](https://reader033.vdocuments.us/reader033/viewer/2022060221/5f0736e07e708231d41be095/html5/thumbnails/9.jpg)
How do STORK and the eIDAS Regulation fit together?
Technical interoperability: SAML profile, QAA Levels, Minimum person identification dataset,
common terminology, security, technical governance
Stork 2.0 is an EU co‐funded project INFSO‐ICT‐PSP‐297263 9
![Page 10: STORK 2.0 ETSI Security Week 2015€¦ · ETSI Security Week 2015 Thematic Stream eIDAS Arvid Welin (SE) Adam Cooper (UK) ... • Open source reference implementations Stork 2.0 is](https://reader033.vdocuments.us/reader033/viewer/2022060221/5f0736e07e708231d41be095/html5/thumbnails/10.jpg)
Stork 2.0 is an EU co‐funded project INFSO‐ICT‐PSP‐297263 10
IDAS node
![Page 11: STORK 2.0 ETSI Security Week 2015€¦ · ETSI Security Week 2015 Thematic Stream eIDAS Arvid Welin (SE) Adam Cooper (UK) ... • Open source reference implementations Stork 2.0 is](https://reader033.vdocuments.us/reader033/viewer/2022060221/5f0736e07e708231d41be095/html5/thumbnails/11.jpg)
An agreed set of standards will provide aplatform for interoperability.
11
![Page 12: STORK 2.0 ETSI Security Week 2015€¦ · ETSI Security Week 2015 Thematic Stream eIDAS Arvid Welin (SE) Adam Cooper (UK) ... • Open source reference implementations Stork 2.0 is](https://reader033.vdocuments.us/reader033/viewer/2022060221/5f0736e07e708231d41be095/html5/thumbnails/12.jpg)
eIDAS interoperability framework
STORK 1.0 as a baseline: add to this privacy protecting enhancements, specific attributes for
natural and legal persons, and operational security standards
Stork 2.0 is an EU co‐funded project INFSO‐ICT‐PSP‐297263 12
![Page 13: STORK 2.0 ETSI Security Week 2015€¦ · ETSI Security Week 2015 Thematic Stream eIDAS Arvid Welin (SE) Adam Cooper (UK) ... • Open source reference implementations Stork 2.0 is](https://reader033.vdocuments.us/reader033/viewer/2022060221/5f0736e07e708231d41be095/html5/thumbnails/13.jpg)
Requirements for standardisation
STORK is built on established international standards: OASIS web SSO, ISO/IEC 27001,
OASIS DSS
Stork 2.0 is an EU co‐funded project INFSO‐ICT‐PSP‐297263 13
![Page 14: STORK 2.0 ETSI Security Week 2015€¦ · ETSI Security Week 2015 Thematic Stream eIDAS Arvid Welin (SE) Adam Cooper (UK) ... • Open source reference implementations Stork 2.0 is](https://reader033.vdocuments.us/reader033/viewer/2022060221/5f0736e07e708231d41be095/html5/thumbnails/14.jpg)
STORK 2.0 has helped to create the present day, and may now influence the future of eIDAS:AQAA, domain specific attributes, mandates.
14
![Page 15: STORK 2.0 ETSI Security Week 2015€¦ · ETSI Security Week 2015 Thematic Stream eIDAS Arvid Welin (SE) Adam Cooper (UK) ... • Open source reference implementations Stork 2.0 is](https://reader033.vdocuments.us/reader033/viewer/2022060221/5f0736e07e708231d41be095/html5/thumbnails/15.jpg)
Thank you for your attention!www.eid‐stork2.eu
Stork 2.0 is an EU co‐funded project INFSO‐ICT‐PSP‐297263