[Lithuania] DigiCerts and DigiID to Enterprise apps
1. DigiCerts and DigiID in Enterprise apps.
So yesterday and so tomorrow.
Martynas Savicka
2. Types of digital certificates:
Certificate Authority (CA) certificates
Server or client certificates
Object signing certificates
User certificates
3. Speed!
Automation!
Do more with less!
Automation!
Cost reduction!
Automation!
Increase performance!
Automation!
Innovation!
Automation!
Value!
Business needs 2015, 2016, 2017… 2
4. Speed!
Automation!
Do more with
less!
Automation!
Cost reduction!
Automation!
Increase
performance!
Automation!
Innovation!
Automation!
InfoSec needs 2015, 2016, 2017… 2X
Integrity
Confidentiali
ty
Non
repudiation
Access
control
+ Fight and pushback all
this stuff
7. Encryption costs close to nothing.
Encrypt and let cavalierly rest.
Goals? Sure. Compliance to:
- standards
- data classification requirements
- data privacy
9. Data exchange is easy… until you hit into
InfoSec (the one who thinks he is A
Cavalierly) …
10. Digi Sign The document market.
What market?
ADOC [GGeDOC; GeDOC; BeDOC; CeDOC;] -
Lithuania
BDOC – current Estonian official format…
DDOC - Legacy Estonian format
EDOCs – current Latvian official format…
PDF – this is just real simple pdf…
11. Containers
ASiC Simple (ASiC-S). Single file object with
either one signature file or one time assertion
file.
ASiC Extended (ASiC-E). Each signature is
associated with all or part of the files in the
container
12. What if I do not trust online DigiSign
services?
I really don’t!
13. Digi ID and Digi Sign hardware tokens
advantages and disadvantages:
Smart ID [Chip on smartcard]
Mobile ID [SIM card]
Token ID [USB token]
14. And what if we try to change the
world?
Once again.
15. Adopt it in Enterprise apps and give me
some
SECURITY AUTOMATION!