Serving Canadians Securely through Government On-Line Global Platform Business Seminar August 21, 2002 Michelle d’Auray Chief Information Officer Government of Canada
2 Implementing the GOC service vision depends on… The Service Vision Using information and communication technology to enhance Canadians’ access to improved citizen-centred, integrated services, anytime, anywhere and in the official language of their choice E-Service Delivery Target Service Improvement Target Most frequently used services on-line by 2005 10% increase in citizen satisfaction by 2005 …a government-wide approach to service and infrastructure
3 Go. L and service priorities w Service transformation / multi-channel integration : usercentric approach to electronic service delivery, driven by client priorities, satisfaction, efficiencies and feasibility w Common secure infrastructure: electronic service platform to enable integrated services and support secure Internet, telephone and in-person access w Policy and standards frameworks: build citizen confidence in eservices by addressing privacy and security, measure client satisfaction w Communications and measurement: encourage take-up, engage citizens through on-line consultations and public reporting and assure citizens of commitment to channel choice w Human resources: cross-government approach to develop the right skills for electronic and other service delivery, focused on change management and competencies
Service Delivery
5 oan t. L den an t Lo denyment Stuepa R ce ran Insuemium Pr Stu Birth School Death OAS GIS OAS Allowance Ch il Cr d Ta ed x it O A CP Al S S CP lo u wa rv Be. P D P ne eat nc ivo Pe Su fit h e r rv ns io ivo CP n r Be. P Ch ne ild fit SIN One department from the perspective of a citizen Work CPPution ib ontr C t Low Income Pensioner n yme mplorance E u Ins Sickness Allison’s Life CPP Disability OASon si Pen Retired Disability Tax Credit CPPon si Pen Maternity / Paternity Homeless Unemployed Volunteer Community Assistance Employment Insurance Grant Contribution Em plo Le yme ave nt Sa Educ vin ati gs on Gr an Ch t ild Cr Ta ed x it
6 Government from the perspective of a business Copyrights Imports Exports Patents Customs Trademarks Spectrum Intellectual Property Invoicing Import/ Export Permits & Licenses Hazardous Materials Vendors Bidding Allison’s Business Registration Business Number Registration ROE Regulatory Filings Environmental Taxes Financial Assistance Grants/Loans Subsidy Programs GST Source Deductions Corporate Taxes
7 Transforming Service Delivery Departmental Focus User / Client Focus w Automation of existing processes w Rethinking service delivery w Services provided in e-silos w Integrated services w Program by program solutions w Shared or common solutions w Program by program access w Single window access
8 Canada Site and Gateways are evolving to… …become the e-platform for service delivery
Common Infrastructure
10 The federated architecture plan – a strategy to implement… Department Unique Components Departmental Architectures Cluster Department Shared Components Federated Architecture Government-wide Shared Components Business Process …a horizontal, cross-government enterprise architecture
11 The Secure Channel anchors the federated architecture Phone E-Mail … Secure Store Profile Settlement Session Mgmt Authent. Mgmt Workflow . . . Access Domain Secure Channel Domain Back Channel Mobile Client CA Mgmt Communication Adapter Web Front Channel Platform Directory Business Logic & Data Back Channel Kiosks Distributed Processes Back Channel Central Processes/Data Dept A Systems Data Dept B Systems Data Dept C Systems Data Departmental Domain
12 Go. C Authentication Model • One or more certificate management facilities support multiple service providers • Certificates only contain a Meaningless But Unique Number (MBUN) as the Distinguished Name. • Consent-based model: clients choose whether or not to link multiple programs to the same MBUN (certificate). • Identity-proofing: done by each program on-line or in person, and can be nominal or robust. CA • At each program (only), a program specific client-identifier is associated to each MBUN to ensure repeat recognition. . • Recovery process: uses robust, clientselected shared secrets process (automated & on-line); if successful, a new certificate using the same MBUN is issued Ease of Implementation User Friendliness Privacy and Security Multichannel Suitability
13 Certificate Issuance Process 1. Client browsing department website is provided option to enroll for a program service and obtain a certificate (“e. Pass”) for on line transactions. 2. “Shared secret” or in person identityproofing done by each program with rigor meeting its business/security needs. 3. Shared secrets or access code (in person identity proofing) verified by the program against its records. Client is seamlessly passed to the e. PASS central key management system 5. For recovery purposes, 4. Client chooses a client selects a number of User ID and pre-determined questions password –the and provides answers. User ID must be unique but need not be the 4 b. Encryption and signing client’s actual keys are generated and name. stored in a profile that is protected with double encryption – accessible only to the client. . 6. Certificate (e. Pass) is issued and downloaded to client’s browser. Client passed back to program area 7. Program completes enrollment process by associating the MBUN with program-specific identifiers. 8. MBUN-Identifier bindings remain only with the program – in an encrypted database. …ID Proofing can occur prior to conducting an online transaction
Cards and Biometrics
15 Perceptions of Canadians about privacy and security… Recent focus testing confirmed that Canadians: w Make the distinction between privacy and security Feel that the banks do a better job on security Feel that the government does a better job on privacy w Expect more from government than banks or the private sector in terms of privacy and security w Are most concerned about privacy of financial & health information w Are strongly influenced by media, family and friends w Want information on privacy and security from Go. C …will determine pace of take up of on-line services
16 The Privacy Impact Assessment Policy (PIA)… w Provides consistent framework to identify and resolve privacy issues during design or redesign of programs and services w As of May 2, 2002, PIAs mandatory for situations where privacy issues may by be inherent including: increased collection, use or disclosure of personal information broadening of client populations; shift from direct to indirect collection of personal information new data matching or increased reuse or sharing of personal information w Summaries of PIAs to be made available publicly w Policy and guidelines available at www. tbs-sct. gc. ca …a new development on the privacy front
17 Cards and Biometrics w Cards/biometrics viewed as enablers of service transformation and secure access. w Cards are portable, support security and can be implemented in a privacy friendly way w Cards can leverage the existing infrastructure built for access to Government on Line. w Interoperability, infrastructure, policy and standards are key challenges.
18 Current Situation in the Federal Government Emerging program requirements for: w (advanced) cards and biometrics (Canada – US Smart Border) w interoperability and document integrity w common IM/IT and infrastructure services Major challenges: w multiplicity of domestic and international requirements and interoperable technology platforms
19 Go. C Activity w Departments have several card initiatives in planning stages or underway to improve service or complement US initiatives. Future phases may include the addition of a smart chip or biometric. CIC Optical stripe card for a Permanent Resident card CCRA Nexus and EPPS for expedited border crossing Environment: transportation of hazardous materials Justice: firearms registration card Passport: travel/visa waiver card INAC: Access to services for Status Indians
20 Key Issues Interoperability Adherence to standards and open systems needed. Private/public sector working partnership to advance interoperability. Infrastructure and sustainability Need to leverage common infrastructure/production facilities. PKI already in place – considered a major cost of card deployment for applications requiring secure comm. 's. Standards Technology standards to be selected to allow the widest compatibility and availability of components. Stovepipe solutions are not the answer.
21 Our Goal: any card, any reader, any application
22 We are on the right track for Go. L. . . Canada no. 1 among 23 countries for 2 nd year in a row according to Accenture 1 1 April 2002 April 2001 …but must maintain momentum to remain a leader
23 For more information www. canada. gc. ca www. gol-ged. gc. ca www. cio-dpi. gc. ca
Serving Canadians Securely through Government On-Line Global Platform Business Seminar August 21, 2002 Michelle d’Auray Chief Information Officer Government of Canada
Скачать презентацию Serving Canadians Securely through Government On-Line Global Platform
8ccda3d2c8615dd405bc53bfa0bb61a1.ppt