Employee Authentication Services (EAS)

A potential pan-government service

Chief Information Officer Group (CIOG) – DCSF

EAS – Scope and target benefits

Scope

A scalable, sustainable and secure solution for local government employees to access sensitive information in central government systems:

– Ready to roll out from November 2008

– Scalable and flexible to support multiple applications across government

– Endorsed and security accredited as a core shared government asset

– Set-up funded by DCSF and CLG

– DCSF acting as “driving customer”

Target Benefits Avoid the need for employees to use multiple authentication processes/tokens Support greater collaboration/joint working for the benefit of citizens, children, learners Provide cross government aligned processes and systems for secure sharing/

accessing of sensitive data Improve efficiency through re-use within central and local government Consistent with pan-government policies and architecture (PSIT, xGEA)

Project development since March 2007

Completed high level solution architecture – Design reviewed with CJIT, GG and ContactPoint and endorsed by Cross Gov CIO

Council

Evaluation of assets against requirements– GG, CJIT, NHS and market sounding

– Response to invitation to participate from GG and CJIT

Local Authorities positively engaged– 11 early adopter LAs on working groups (Registration and operation)

Sub-group reports defining policy on key areas– Registration, Operational Impact, Trust and Sustainability

Full business case and evaluation of proposals completed end November

Government Gateway appointed to develop components of solution

ContactPoint

Brent LA

Becta

Gov Connect

EDT

DCSF (Tim Wright)

CLG(Roy Marshall)

EAS Project Board

EAA Working Group

CIO/CTO Council (Kevin

Murphy)

SRO

CLG/DCSF CoIworking group

Operational model &

implementation guide

Policy on min registration procedures

Achieving shared trust

Sustainability and migration

Salford+6

LeGSBHants

NewhamBrent

NHS; CSIADCSFCESG

Gov Connect

CLG DCSFEDTDWP

LAs: SalfordNewhamSt HelensHertsDerbyshireHantsLeeds

London ConnectsLeGSB

DWPCabinet Office / eDTNHSMinistry of Justice / CJITMoDCSIA / CESGBecta

EAS Governance

DWP(Kenny

Robertson)

How will the solution look?

LA

LA

LA

LA

NHS

SharedIdentityProviderService(IDP)

Own IDPService

Own IDPService

AuthenticationBroker

DCSF Applications

DWP Applications

Othercentral govt

apps

Quick and sim

ple inte

gration

Common Trust Framework (rules & standards)

Integration support forcentral government services

Central Hub

Registration Authority (LA or National Partner)

Authentication Broker

Shared Identity Provider

Service ProviderService Provider

AccountAttributesS

ervi

ce

AdministratorAdministrator

Identity checking

Issue credentials

Registration systems

Store Attributes

User Authentication

Web service portal

Service Integration Support

Application integration

service

People andprocesses

Test environment

provision

Broker service Gateway

service

Components of the solution

People andprocesses

People andprocesses

Existing Government Gateway platforms

New Government Gateway capability