SG Solutions & Services SG Solutions & Services

Global Business Team

1

CEO’s StatementAbout SGHistoryBusiness Scope and AreasBusiness ModelsFinancial StabilityOrganization Map

Contents

SG SolutionsProblems of e-Commerce/e-GovernmentSG KGSSG CASG RASG PKI ClientSG SecuKitSG OCSPSG TSASG EWSSG SSOSG SecuXML

PKI ApplicationsInternet BankingNational Tax Service (NTS)Public Procurement Service (PPS)Ministry of Health & WelfareCertificated e-Document AuthorityMobile Auth Mobile KeyAdvanced E-ProcurementSSLDevice Authentication

SG Abroad BusinessAbroad Business AreasProjectsThe PhilippinesPanamaVietnamEgyptCameroon

2

The first and the best Security service provider!

CEO’s Statement

The most important factors in Internet e-Commerce trade are Safety, Trust, and Convenience. Korea Information Certificate Authority, Inc., inaugurated as the 1 st licensed CA which was accredited by Ministry of Information & Commerce in 1999, are building a platform for e-Commerce activation with Safety, Trust, and Convenience by providing not only a certificate which is treated as “ Identification card on Internet ” , but also e-Commerce infrastructure of certification services on contents trading & device certificate, SSL certificates, security solutions, etc.

SG, which has core technologies on security area, participated in major e-Government projects processed on governmental agencies: Ministry of Health & Welfare, Ministry of National Defense, Ministry of Education & Human Resources Surveillance, Public Procurement Service, National Tax Service, Korea Customs Service, Postal Service, etc and takes a big role to maintain the e-Government systems, as well as participated foreign e-Government projects on Egypt, Vietnam, Philippine, etc. SG is a trustworthy partner of Korean government and top-level nationwide licensed CA as well.

SG and its employees have all ears to hear any comment of our customer as well as trying to get ultimate customer-satisfaction with zeal and creativeness. As a representative licensed CA in Korea , we will not only do our best to meet the goal of safe Internet e-Commerce for nation people, but also expand our business globally.

Thank you!

Kim, In-sik, CEO & Chairman

3

Korea Information Certificate Authority

About SG

• Government authorities • Major banks• Samsung electronics, LG electronics, SK, GS• LG chemicals, CJ, Hyundai etc.• Telecom companies: KT, SKT, KTF

+Major Customers

Feb 2000, Designated by the Korea Government as the first accredited CA

Oct 2004, Achieved ISMS 04-004

Nov 2007, Designated the First digital contents transaction CA

Achieved Korea Evaluation and Certification Scheme by Korea National Intelligence Service (NIS)

We provide a safe and clean infrastructure for the Internet.

4

03 Supported an e-procurement system and established a CA system under the e-Government Committee in Costa Rica

10 Established a National PKI in the PhilippinesAcquired ISO 270001

08 Established an e-procurement pilot system in Vietnam

03 Conducted a PKI feasibility study in Cameroon

12 Awarded the prize for excellent for internet part of information security by KISA

11 Conducted a PKI feasibility study in Indonesia

08 Completed the establishment of an e-Government project in Panama

05 Took over the certification services and systems of National Information Society Agency

03 Launched the mobile certification service (Mobilkey)

11 Designated as the 1st TCA for online contents transaction

08 Provided F/S consulting services for the electronic procurement project in Mongol

06 Signed a RA agreement for licensed certificates for the Ministry of Health and Welfare

08 Conducted a PKI feasibility study in Egypt

01 Provided the Linux banking solution for the Korea Post and started model services

09 Implemented the online security section and document distribution part for the Internet customs systems owned by the Korea Customs Service

01 Passed the security test by the National Intelligence Service (EWS, SecuKit (C, Java), SignGATE RA)

12 Developed wireless e-bidding system of Public Procurement Service

10 Granted ISMS (Information Security Management System) certification

12 Awarded a special prize in the second Information Security Award

04 Provided licensed certificate to 'Home tax service' of National Tax Service

11 Provided licensed certification service for electronic petitions for the four major national insurances (National Pension, National Health Care, Employment, Industrial Accident)

06 Provided licensed certification service for the electronic tax payment system for public organizations

02 Designated as the first national licensed certification authority by the government

07 Established Korea Information Certificate Authority

2007

2008

2006

2005

200420032002

20001999

History

2009

2010

5

PKI Technologies

SolutionsServices

CertificationService

WirelessService

DataSecurity

Biometrics

SystemSecurity

Water-marking

Smartcard Applications

Total Solutions

Business scope and areas

+Services +Solutions +Abroad Business

• Certification service• Time Stamping/OCSP• Device Authentication• Digital Contents

Transaction Certification• Certified e-Document

Authority

• PKI Solution: CA, RA, KGSSender authentication and data encryption

• EWS: Enterprise Web SecurityCorporation security system

• SecuKit: based on C, Java, etc.PKI –based certification Libraries

• SecuXML:XML-based data digitally signing/encryption

• Feasibility Studies powered by KIPA1)

- Cameroon for National PKI - Indonesia for PKI center- Mongolia for e-Procurement- Egypt for National PKI

• KOICA2) PKI Construction projects- Panama for e-Government- The Philippines for National PKI- Vietnam for e-Procurement

KIPA1):Korea SW Industry Promotion AgencyKOICA2):Korea International Cooperation Agency

6

Model Customers Model Customers

e-ProcurementPPS (Public Procurement Service), MND (Ministry of National Defense), KEPCO, SKT, KTF, … etc. (over 20 companies)

EDI for medical service KT, DACOM, S1

e-Marketplace Samsung Heavy Industries, Hyundai Heavy Industries, … etc.

e-Warranty Service

ECFC (Electronic Contractors’ Financial Cooperative), CG (Construction Guarantee)

Digital Contract KDC (Korea Development Cooperation), Kolon Engineering & Construction, … etc.

Internet Banking

MIC e-POST, Standard Chartered First Bank,Korea Exchange Bank, Woori Bank

e-Tax ServiceLG Electronics, Lotte Department Store, Lotte Magnet, Sinshege Department Store, E-mart, Hyundai Department Store, … etc.

Internet Insurance Almost all insurance companies

Internet Shopping Hansol CSN, InterPark, Auction, … etc.

InternetLottery

KRA (Korea Racing Agency)

Online Civil Service

Boyond Networks (SI Company), Local Governmental Office (Seo-Cho, Song-Pa, Gang-Nam Gu…etc.)

e-Marketplace for medicine KT Medilinks, En2B

Home-Tax Service

NTS (National Tax Service), Pusan province office e-Prescription Ilsan Hospital, KT Medilinks, … etc.

OthersKorail, KRIHS (Korea Research Institute forHuman Settlements)

Business Models

7

Total amount of capital 22 Million

Year 2007Net income 2.3 Million

Sales 16 Million

Year 2008Net income 2.5 Million

Sales 18 Million

Year 2009Net income 4 Million

Sales 20.5 Million

+Financial Statement

+Other Information

Human resources 100 Employees (52 Engineers)

Location16th FL., Nuritkum Square Business Tower, 1605,Sangam-dong, Mapo-gu, Seoul, Korea

Others No.1 ranked in corporate certification market

(Unit: USD)

Financial Stability

Total USD 22M of Capital

+Shareholders

8

Panama

Philippines Indonesia

Cameroon

Vietnam

Mongolia Iran Oman

Egypt

Contact Information - Worldwide

Asia16th Floor, Nurikum Square Building Mapo-guSeoul, KoreaPhone: +82-2-360-3223E-mail: ice031@signgate.com

America & Africa16th Floor, Nurikum Square Building Mapo-guSeoul, KoreaPhone: +82-2-360-3221E-mail: jhshin@signgate.com

Organization Map

SG Customer Satisfaction

Service

Certification Business

Team

Certification Business Division

Global Business

Team

Solution Teram

Strategic Business

Team

Technologies Laboratory

New Business Team

Strategic Innovation

TeamR&D Team

CEO

Management Planning Division

Planning Team

Management Support Team

Security Business

TeamService Team

Security Business Division

Costa Rica

9

- Connection of unspecified persons: no face-to-face contact makes difficult

to identity person

- Easy to change contents and make forgery document on digital document

- Possibility of repudiation of transactions

- Risk of breach about transactions and personal information

Thus, information and data protection with PKI Solutions is needed.

They cause to be weakened against cyber crimes and fakes

Problems of internet banking, online transactions, e-Government etc.Security Vulnerability

10

Korea Internet Banking

Digital Certificates for Internet Banking

When users try to log on or online transfer on Internet banking, digital certificates

are used for user identification and digitally signing

Number of daily domestic Internet banking transactions: about 28,000,000 (Jan. ’10)

Amount of daily money transferring: approx. 26,483,830,059 (USD)

Comparison of internet banking users among major countries

Country Number of e-Banking users Population Using rate of e-Banking as a percentage of population

China 14,818 134,580 11.0%

U.S.A 5,700 30,888 18.5%

England 2,150 6,138 35.0%

Korea 5.921 5,006 118.3%

World 37,000 680,895 5.4%

(Unit: 10,000)

11

Woori Bank http://www.woribank.com

SG PKI Toolkit on Internet Banking

12

Korea Post Bank http://www.epostbank.go.kr

SG PKI Toolkit on Internet Banking

13

SG PKI for Internet Banking

Benefits and Effects

SG established a convenient and secure Internet banking environment by signing Registration

Authority (RA) contracts with Korea Post offices and by providing security toolkits since 2000.

By using digital certificates which are more secure than ID/Password-based login, the amount

of customer deposits has been increased drastically and Banks are able to earn benefits from

online services such as “online deposit”.

Total amount of Korea Post’s deposits reached 44,965,000,000 USD (Apr 2010)

Internet-only deposit service of Korea Post released (Oct 2009)

Korean major banks such as Korea Exchange Bank (‘06), Woori Bank (‘06), Hana Bank(‘05),

Standard Chartered Bank (‘04) signed RA contract with SG and uses SG security toolkits for

their enhanced online security.

14

Home Tax Service (HTS)

National Tax Service

Korea National Tax Service has been providing HTS which is able to conduct tax

payment at home not visiting a tax office.

Since 2002, SG has been providing SecuTAX which is able to submit documents

related to e-tax bill to National Tax Service in a secured online way and issuing digital

certificates for tax payers.

Number of HTS online users hit 11,000,000 in 7 years.

The most of taxes such as corporate tax (96%), general income tax (81%), VAT (75%) are

being paid through HTS in Korea.

By improving user convenience such as Web Accessibility , using rate of HTS is higher

than U.S. (57%) and England (33%).

15

Home Tax Service http://www.hometax.go.kr (Korean)

SG PKI Toolkit on HTS

Consistent certificate

selection UI

MS Windows & IE

Linux & Firefox

MAC OS X, Safari

Diverse user environments

Web section encryption (by EWS)

16

Korea ON-line E-Procurement System (KONEPS)

Korea e-Procurement

Evaluation of online

document integrity

Identity authentication

for bidding applicant

Keeping deadline

by time stamping

Non-repudiationof bidding

KONEPS

SG e-Bidding ServerWith security add-on

for Web Application Server

SG e-Bidding ServerWith security add-on

for Web Application Server

World’s one of biggest market places (Handling volume: 36 billion US$/year)30,000 organizations & 110,000 corporations60,000 document transaction and 80,000 people web site visit

92% of bidding in public organizations (20 billion US$)Cut expenses 4.5 billion US$/year (Over 90% from private sector)Additional task except e-Bidding, handled on web site or shopping mall in digital way (online)Guarantee both legal protection and stable technology using licensed certificate infrastructure

Expected effects (Korea study case)Expected effects (Korea study case)Korean OnKorean On--line eline e--Procurement System (KONEPS)Procurement System (KONEPS)

17

SG SecuXML in KONEPS

KONEPS

SG has been issuing digital certificates for KONEPS users since 2000.

SG PKI system and SecuXML which provides digital signature functions and prevents

document altering and forgery are able to conduct user identification and guarantee enhanced

security.

KONEPS (including SG solutions) has been exported and introduced in other countries such as

Vietnam, Costa Rica.

<Structure map of SecuXML>

18

Charges for health insurance able to search via Online

Ministry of Health and Welfare (MHW)

SG has been providing digital certificates.

After logging on with a digital certificate, it’s able to view charges for medical on

the online service hosted by Ministry of Health and Welfare.

Service targets: 81,901 hospitals and clinics, 13,452 long-term nursing houses (as of 2009)

Able to request health insurance evaluation after logging on with a digital certificate

on the MHW website (since Jan 2008)

Able to calculate accurate statistics for medical items and rates via references and

documents submitted by the online service

EX) Prescription rate of antibiotics, etc.

It’s expected to reduce time and cost during an evaluation request and improve user

convenience.

19

National Health Insurance

MHW Online Service

20

Certificated Electronic Document Repository

PKI Applications

Issues on data management due to B2B connection between contracting companies and the contractorsIssues on data management during the consulting or execution of informatization for contracting companiesProvides premium services through transfer to the certified repositoryImplements services specialized for each site in addition to the basic functions of the certified electronic document repository

Cost reduction of human resources/ equipment related to storageSafe and reliable data storageEasy browsing and management of stored data

Expected effectsExpected effectsMethods of authentication and encryptionMethods of authentication and encryption

21

Copyright Certification Service

PKI Applications

Able to extend PKI technology to copyright industry Contribution to activating copyright industry by integrated management of copyright informationWorld-first realization of copyright certification technology and accumulating Know-how

Expected effectsExpected effects

3

CopyrightCopyrightOwnerOwner

4

CopyrightCopyrightOwnerOwner

KoreaKoreaCopyrightCopyright

CommissionCommission

CopyrightCopyrightCertificationCertification

AuthorityAuthority

12

5

Verification Process about Copyright Ownership(Interoperability of the two authorities)

4

Occurrence and Registration of Copyright1

Issue of Copyright Registration2

Request about Copyright Certificate Issue(with Attachment of Copyright Registration)3

Issue of Copyright Certificate(with Digital Signature Process)5

3KoreaKorea

CopyrightCopyrightCommissionCommission

CopyrightCopyrightCertificationCertification

AuthorityAuthority

1

24

Issue of License Certificate(with Digital Signature Process)

4

Occurrence of License Transaction &Registration of License Agreement1

Request about License Certificate Issue2

Verification Process about License Ownership(Interoperability of the two authorities)

3

ContentContentProviderProvider

Copyright Certification Process License Certification Process

22

Mobile auth

PKI Applications

Authentication and Sections to be encryptedAuthentication and Sections to be encrypted

Certification service via mobile phone where user’s certificate is storedAble to use in 3 mobile service providers’ environments (SK, KTF, LG)

Sending encrypted or signed data by performing computing operations inside mobile phone Service VM is installed in mobile phones in order to use certificates

Storing certificates into a mobile phone to prevent memory hacking

User have control to save and sign anywhere, anytimeExpand the PSE to mobile phone

Expected effectsExpected effects

Methods of authentication and encryptionMethods of authentication and encryption

Stored certificates into mobile phone are handy and safe preventing against memory hacking

User mobile

CP Web page

3. Sign for checking payment using the saved certificate in mobile phone

1. Decide to buy the item you selected

2. Send a payment request message will be signed

4. Send a signedpayment check message

5. Process the payment for user response

Server

23

Mobile Key

PKI Applications

Blinding by rearranging a private key to be transferred to mobile phone, PKI-based encryption and digitally signingDistribution to storing in an intermediary server to prevent loss of storage mediaStoring certificates into a mobile phone via only callback messages (without additional VM installation)

Enhance security level by applying diverse algorithmsApplicable to all services that require certificatesAll kinds of mobile phones are possible to usePrevent against loss of mobile phones

가입자 PC

Anywhere PC

Certification Service

이동통신사

Use certificate

SMS

SMS

Wireless

User’s mobile phone

Like special, local and saving banks, public authorities, credit card companies, etc.

Store Mobile Key into PC

Store mobile key Into mobile phone

User POHe has his certificate

Internet

Mobileserviceprovider

Internet

Expected effectsExpected effectsMethods of authentication and encryptionMethods of authentication and encryption

Stored certificates into mobile phone are handy and safe preventing against memory hacking

24

SSL/TLS

Secure Toolkit

1. Visit secure web site (https://...) and request secure session to web server

2. Respond secure session from web server installed SSL certificate

3. SSL session establishment SSL session

Web Browser Web Server

PCSecure Server

Secure ChannelPersonal information protection

SG

Issue a secure server certificate

Secure Server

PKI Applications

Client ToolkitClient Toolkit

ServerToolkitServerToolkit

2525

Using Suppliers’ and Buyers’ certificates stored in Bio HSMs

Promoting mandatory use of BIO HSM on joining in wireless environment such as PDA and mobile phoneUser registration, system log-in, and submitting and opening application documents

PKCS#11 API as interface of PKI applications and BIO HSMBIO HSM API to manage HSMs

In order to prevent illegal bidding using lent certificates, only registered substitutes are allowed to join by using their certificates stored in BIO HSMs

Certificate owners can create their digital signatures via verifying fingerprint information stored in BIO HSM and prevent problems caused by lent or lost certificatesBIO HSM offers dedicated hardware-based key management to protect personal certificate from attackAll digital signing operations are performed within the BIO HSM to increase performance and maintain security

Application

E-BiddingApplication

Certificate Mgmt. Program

Bio-secure token Mgmt. Program

BIO HSM Program

PKCS#11 API BIO HSMAPI

BIO HSMmgmt. API

Smart card MCU BIO

sensor

l USB2.0

l Private key and cert.l Personal distinguishing info

l Storing Bio-info

lBio-info scan

l Mobile Phone(24 pin)

Certification and Sections to be encryptedCertification and Sections to be encrypted

Methods of authentication and encryptionMethods of authentication and encryption

Expected effectsExpected effects

Advanced E-Procurement

PKI Applications

2626

URC Robot

RFID Cable Modem

CCTV CMLASet Top

Sections to be encrypted

Methods of authentication and encryption

Authentication based on device identity information such as MAC and serial numberDevice certificates to confirm that a device has passed authentication tests and approvedKey management and encryption such as Diffie-Hellman key exchange , digital signature and encryption (for integrity of data transferred)

Device Authentication guarantees secure communications and device authenticity by using device certificates when communication with diverse networking devices

Expected effects

Enhance security of device-based services and improve reliabilitiesEnsured services via device identity and authenticationRaise reliability of services via certification servicesIntegrity of a diverse of transferred information and encryptionAble to extend certification services of diverse devices

Devices accessible via networkInterconnect devices

Device Authentication

PKI Applications

27

SG KGS(Key Generation System) is to generate a digital signature creation key which will be used on CA and RA and allowed by only 3 or more authorized administrators.

| Functions |vGenerate a digital signature creation key that over 1,024 bit of RSA security is applied tovAble to be independently operated, not connected with internal/external information networksvEncrypt a digital signature creation key and keep the key at a creation key storage medium vDelete a digital signature creation key promptly after generating and storing the creation keyvGuarantee the integrity of the digital signature creation key in a creation key storage mediumvGenerate a digital signature creation key by 3 or more authorized staffvKeep details on fact, time, behavior, etc. as audit logs

| Features |vVerified solution operated by Accredited CA in KoreavLinkable with HSMs like lunaCA and nCiphervAble to create K of N via Secret Sharing methodvProvides administrator authentication by using smart cards

SG KGSSG Solutions

28

Certificate Issuance and Management System (SG CA) issues a digital certificate upon subscriber’s request after RA identifies and registers the subscriber. Also the system provides search service when a subscriber verifies a certificate by periodically updating a directory server.

| Functions |vManage certificate policy, CRL policy, directory policy which are important information as the basis of

PKI center operations by DatabasevProvide policy settings of certificate and CRL profilesv Implement certificate management works by administrator such as certificate issuance, re-issuance,

revocation, suspension, recovery for subscribers registeredvManage subscriber registration/certificates/information

| Features |vComplied with PKI international standards (PKCS, IETF) : national and international technical standardsvSupports to link HSM like Luna CA and nCipher, and PKCS#11vSupports administrator authentication using smart cardsvAble to real-time distribute CRL via DP (distribution point)vProvides programs only for CA administrators and RA administrators

SG CASG Solutions

29

SG RA, a system to register user information to a CA (Certificate Authority) in order to issue certificates which are necessarily used in a PKI-security environment, is able to manage user certificates more efficiently by complying with RFC 2510 and 2511.

| Functions |vEncryption of user information by using symmetric or public key algorithmvCreate digital signature of specific data and verifying the signature valuevUser certificate suspension/recovery/revocationvUser registration/information modification/re-registration/deletionvBRA administrator registration/modification/deletion/searchvRegister user registration status (daily/weekly/monthly/yearly)

| Features |vAs a single server, linkable with other CAsvPassed NIS security tests and verified by Korean government authoritiesvComplied with international certificate processing standards (RFC2510/2511)vProvides high-stability and reliability vRDBMS support : ORACLE, IBM DB2, INFORMIX

SG RASG Solutions

30

SG PKI Client means subscriber software installed on a subscriber’s PC, implements electronic signature key management, certificate management, identification using distinguishable numbers, digital signature creation/validation, certificate verification, PKI Client configuration.

| Functions |vDigital signature key management to generate a digital signature creation key and store into a storage

mediumvCertificate management includes a certificate management protocol, certificate storage, certificate

delivery vDigital signature and certificate validation, user software configurationv Identification via user’s certificatevComplied with International standards: PKCS7(signed-data, enveloped-data), CMS (Cryptographic

Message Syntax) vDiverse storage media: Floppy, HDD, smartcard, USB, HSM etc.

| Features |vAccredited CA product by passing KISA (Korea Information Security Authority) actual testsvProvides convenient and handy user interface and certificate mgmt. functionsvProvides integrated APIs to apply PKI to systemsvComplied with international PKI standards (IETF-PKIX, RSA-PKCS)vProvides certificate-based strong access certification

SG PKI ClientSG Solutions

31

SG SecuKit which consists of server and client toolkits, provides developers with APIs to easily use digital signature and encryption technology regardless of specialized knowledge of PKI

| Functions |vPublic key-based digital signature, encryption/decryption vComplied with international standards (PKCS)vSupport national and international algorithms of public key, symmetric key and message digestvActive-typed client toolkitvComplied with technical standards of accredited certification and digital signature management

schemesvCreate XML SOAP messagesvEnable XML documents by applying XML encryption and XML Signature Spec

| Features |vSupports a diverse of development environments such as Plug-In, ActiveX , Java, Windows , Unix and

LinuxvSupports multiple development languages such as Unix-C, .NET, ASP, PHP, JAVA, etc.vEasy to install modules, easy to apply to application programs by calling APIs

SG SecuKitSG Solutions

32

SG OCSP is a system to verify the validity of certificate in real-time via an OCSP server. SG OCSP conducts real-time certificate status service, interlocking CA database.When a problem occurs on the database, an operator verifies a respective certificate by using a CRL published on a Directory Server.

| Functions |vProvide rapid and reliable services relating to verification of the validity of user certificatesvAble to process multiple requests and to efficiently use resources as it is Multithread-basedvLogging service for various-level OCSP messages.vNotify operators of the fact that an error occurred in a server via SMSvAble to send error information of OCSP server to operators per every hour

| Features |vApplied by RFC 2560 in order to implement the management procedure for status inquiry messagesvApplied by RFC 3280 in order for certificate verificationvDiverse types of OCSP clients (jar, dll, so) that are based on Web Application developmentvTCP Socket daemons C/S based for OCSP message transactions

SG OCSPSG Solutions

33

SG TSA is a system to issue electronically signed tokens by using reliable time information in order to prove the fact that a document or data has been not altered since a specific time. It can be applied to time-based applications such as e-Bidding, e-Contract and others.

| Functions |v Issue time-stamping tokens and confirm forgery and alteringvProvide reliable time resources like GPS and support time modificationvAble to process multiple requests and to efficiently use resources as it is Multithread-basedvAble to search the details of time-stamping service, errors and management logs created by

administratorsvNotify operators of the fact that an error occurred in a TSA server via SMSvAble to send error information of TSP server to operators per every hour

| Features |vApplied by draft-ietf-pkix-time-stamp in order for requesting or issuing time-stamping tokensvApplied by RFC 3161 in order to prevent forgery or alteringvDiverse types of TSP clients (jar, dll, so) that are based on Web Application developmentvTCP Socket daemons C/S based for TSA message transactions

SG TSASG Solutions

34

SG EWS(Enterprise Web Security) is a solution to automatically encrypt/decrypt transferring data between web browsers and application server. Without any changes of applications, SG EWS provides security functions thru simple settings, doesn’t cause application’s speed down by applying important data selectively.

| Functions |vChange management of server environment settings by using XMLvSecurity functions are provided without any change s of application sourcesvTransaction management depending work priorities or characteristicsvTransferring diverse encrypted and plain texts according to security standardsvEncrypting and digitally signing of uploaded or downloaded filesvEnd-to-End encryption, digital signature and non-repudiation of sending/receiving historiesvPrevention to view sources due to source encryption

| Features |vSupports Java Cryptography Architecture standardsvSupports JSP1.3 and Servlet 2.3 SpecificationsvSupports national and international PKI standards and algorithmsvAutomatic client installation

SG EWSSG Solutions

35

By constructing an integrated certification/authority management system, It enables manage servers’ accounts and get system security and efficiency. It manages accounts and access lists of an existing application system and newly introduced application system so that it is able to apply the equal access control policy according to user authorities, group and security grades.

| Functions |vDesigned for a Java-based integrated certification/authority management server, provide system

security and extensity. vSupport a hierarchical model which is able to apply to complicated systems in a secure wayvProvide diverse authentication mechanisms according to target’s security grades

| Features |vAble to conduct quick response against failures due to distribution-based designv Improved efficiency through SSO server cachesvSupport diverse operation environments and easy management interface vFlexible scalabilityvStatistics and monitoringvSingle log-onvAccess control settings according to user characteristics and positions

SG SSO (Single Sign-On)SG Solutions

36

SG SecuXML is the strongest security product, based on XML (Extensible Markup-Language), used for data transfer between corporations, e-Procurement, e-Commerce and guarantees the best performance and security in XML security.

| Functions |v Digitally sign a whole or part of XML documentsv Digitally sign normal documents (binary data)vMultiply sign XML documents or binary-data documentsvSupport diverse key management methodsvProvide diverse encryption types (Element, Element Content, Binary)

| Features |vComplied with international standards

1) W3C XML Signature Syntax and Processing, 2) W3C XML Encryption Syntax and Processing

v Support international and domestic digital signature and encryption algorithmsv High-level scalability, flexibility and compatibilityvConvenient APIs able to apply to diverse environmentsv Cross-certification with certificates issued from other CAs in Korea

SG SecuXMLSG Solutions

37

Business Cooperation ► Taiwan CA & NII► China Infosec► HongKong Post► HTT, Cameroon

NPKI Certification Scheme Consultation &Establishment► Panama► The Philippines► Cameroon► Egypt► Vietnam►Mongolia► Costa Rica

Asia PKI Consortium► Leading experience on

Asia PKI Business WG

Abroad Business Areas

SG Abroad Business

38

Nation Project Name Cooperation Authorities Remark

Panama Innovation Project for e-Government and e-Learning

SIG (Presidential Secretariat for Governmental Innovation)MICI (Ministry of Commerce and Industry)

Established the PKI system2007.8 ~ 2008.07

Philippines National PKI Establishment for the Philippines

CICT (Commission on Information and Communications Technology)NCC (National Statistics Office, Policies, Research & Standards Office)DTI (Department of Trade and Industry)

Established the PKI system2008.07 ~ Present

EgyptEstablishment technology and operation system for Egypt PKI system

ITIDA (Information Technology Industry Development Agency)

Performed PKI Feasibility Study 2006.05 ~ 2006.08

VietnamEstablishment of an e-procurement pilot system in Vietnam

MPI (Ministry of Planning and Investment)Established CA system

under MPI2009.09 ~ Present

CameroonFeasibility Study Consulting for Establishing a National PKI of Cameroon

MINPOSTEL (Ministry of Posts and Communications)HTT (High Tech Telesoft)

Conducted the feasibility study research2009.05 ~ 2009.07

Abroad National PKI Establishment and Consulting Projects

SG Abroad Business

39

v The Title of the project: “National PKI Establishment for the Philippines”v Government Body: E-commerce Act

§ CICT (Commission on Information and Communications Technology)/NCC (National Statistics Office, Policies, Research & Standards Office)

§ DTI (Department of Trade and Industry)

v Current Status§ December 2, 2005 : KIPA (Korea IT industry Promotion Agency) entered into an MOU with NCC/CICT

for Feasibility Study project§ March 30, 2006 ~ July 10, 2006 : SG executed the F/S for NPKI establishment with CICT/NCC.§ September 2007: KOICA ISP study team performed local research for PKI project.§ July 2008 ~ Present: SG built the PKI system in the Philippines and carried out master plan

establishment.

DTI(Accreditation Unit)

DTI(Accreditation Unit)

CICT(Auditing Unit)

CICT(Auditing Unit)

NCC(Root CA Unit)

NCC(Root CA Unit)

AdvisoryCommittee

(ProvidingTechnicalAdvices)

AdvisoryCommittee

(ProvidingTechnicalAdvices)

ACA2ACA2ACA1ACA1

Cooperation

ACA3ACA3

The Philippines

SG Abroad Business

40

v The Title of the project: “Innovation Project for e-Government and e-Learning”v Government Body: E-signature Act

§ SIG (Presidential Secretariat for Governmental Innovation)§ MICI (Ministry of Commerce and Industry)

v Current Status§ September 2007

contracted with KOICA to build PKI system in Panama.§ October 15, 2007 ~ December 10, 2007

executed the PKI consulting for NPKI establishment with MICI/SIG.§ August 2007 ~ July 2008

built the PKI center and developed pilot application PKI-related.

Panama

SG Abroad Business

MICI(Auditing Unit/

Accreditation Unit)

MICI(Auditing Unit/

Accreditation Unit)

AdvisoryCommittee(Root CA Unit)

AdvisoryCommittee(Root CA Unit)

ACA2ACA2SIG(Government CA)

SIG(Government CA) ACA3ACA3

41

v The Title of the project: “Investment in building the evaluation center for secrecy and information security products”

v Government Body: E-transaction Act§ VGISC (Government Information Security Commission)

v Current Status§ June, 2006: VGISC and KIPA signed LOI to do consulting for Vietnam Feasibility Study§ August 1, 2006 ~ October 20, 2006 : SG is performing PKI Feasibility Study for about 3 months in

cooperation with VGISC.§ October 2007: Korea Eximbank visited VGISC for MOD.§ October 2009: established a electronic procurement pilot system for the Vietnam government

VGISC(Evaluation Unit)

VGISC(Evaluation Unit)

MPTRoot CA

(Accreditation Unit)

MPTRoot CA

(Accreditation Unit)

AdvisoryCommittee

(specialists)

AdvisoryCommittee

(specialists)

Cooperation

ACA2ACA2ACA1ACA1 ACA3ACA3

Vietnam

SG Abroad Business

42

v The Title of the project: “Establishment technology and operation system for Egypt PKI system”v Government Body: E-signature Act

§ ITIDA (Information Technology Industry Development Agency)

v Current Status§ March 14, 2006: ITIDA and KIPA signed MOU to do consulting for Egypt PKI Feasibility Study§ May 4, 2006 ~ August 10, 2006 : SG has performed PKI Feasibility Study for about 3 months in

cooperation with ITIDA.

Egypt

SG Abroad Business

43

v The Title of the project: “Feasibility Study Consulting for Establishing a National PKI of Cameroon”

v Government Body: Cyber Security and Cyber Criminality Act§ MINPOSTEL(Ministry of Posts and Communications)§ HTT (High Tech Telesoft)

v Current Status§ September, 2008: Signed Strategic Partnership Agreement with MPT§ May ~ July, 2009: Conducted the feasibility study research

Cameroon

SG Abroad Business

MINPOSTEL(Auditing Unit)MINPOSTEL(Auditing Unit)

MINPOSTEL(Root CA)

MINPOSTEL(Root CA)

HTT(Accredited CA)

HTT(Accredited CA)

AdvisoryCommittee

(specialists)

AdvisoryCommittee

(specialists)

44

keyguard@signgate.com youngyj3@yahoo.com T. +82-2-360-3215 M.+82-10-4729-7086

Thank you for your paying attention.We’re always ready to listen to your voice.

Young-joo KoTeam Manager /

Global Business Team