national german e-delivery solution - technical overview and … · 2015. 7. 15. · national...
TRANSCRIPT
De-MailNational German E-Delivery Solution
- Technical Overview and Challenges -
Michael Bode
25.06.2015
25.06.2015Michael Bode 2
Objectives of De-Mail
Security objectives:
ConfidentialityIntegrityNon-repudiationAuthenticity
Additional objectives:
AvailabilityEase of useFree of SPAM and malwareBuilt upon existing standards (TLS, SMTP, …)De-Mails are legally binding in the G2G-, G2B- and G2C-communication (“Schriftformersatz“)
25.06.2015Michael Bode 3
Ease of use
internetcompany / authority holding De‐Mail account
De-Mail provider
gateway
IT application /e-mail-server
The possible access means:Web interfacesMobile or fat clientDe-Mail gateways for organizations:
25.06.2015Michael Bode 4
Security Features– Confidentiality –
Transport encryption for all routesContent encryption between providersOptional end-to-end-encryption
25.06.2015Michael Bode 5
Security Features– Authenticity –
Identification:face-to-face identification with identity cardonline authentication with eID, qualified electronic signature (QES) etc.Authentication levels normal (username/password) and high(2nd factor)Option authoritative
25.06.2015Michael Bode 6
Security Features– Integrity and Non-repudiation –
Option: Confirmation of dispatchissued to sender by his De-Mail provider (incl. timestamp and QES)Option: Confirmation of receiptissued to sender and recipient by recipient's De-Mail provider (incl. timestamp and QES)
25.06.2015Michael Bode 7
Characteristic German regulations
Zustellfiktion:De-Mail delivered at the recipient's provider → Assumption that the recipient reads it within a given time
Schriftformersatz:Written declarations in communicationwith public administrations can be substituted by De-Mails
eGovernment-Gesetz:Most of the public administrations shall have De-Mail until April 2016
25.06.2015Michael Bode 8
Why we contribute to eSENS
De-Mail→ “obvious” candidate for an eIDAS qualified trust serviceexperience for standardisation of eDelivery between European nations
25.06.2015Michael Bode 9
Contact Details
Bundesamt für Sicherheit in der Informationstechnik (BSI)Federal Office for Information Security
Michael BodeGodesberger Allee 185 - 18953175 Bonn
Tel: +49 (0)228 - 999 582 - 6064Fax: +49 (0)228 - 9910 - 9582 - 5767