Employee Authentication Services EAS A potential pangovernment service

Employee Authentication Services (EAS) A potential pan-government service Chief Information Officer Group (CIOG) – DCSF

EAS – Scope and target benefits Scope A scalable, sustainable and secure solution for local government employees to access sensitive information in central government systems: – Ready to roll out from November 2008 – Scalable and flexible to support multiple applications across government – Endorsed and security accredited as a core shared government asset – Set-up funded by DCSF and CLG – DCSF acting as “driving customer” Target Benefits l Avoid the need for employees to use multiple authentication processes/tokens l Support greater collaboration/joint working for the benefit of citizens, children, learners l Provide cross government aligned processes and systems for secure sharing/ accessing of sensitive data l Improve efficiency through re-use within central and local government l Consistent with pan-government policies and architecture (PSIT, x. GEA)

Project development since March 2007 l Completed high level solution architecture – l l Evaluation of assets against requirements – GG, CJIT, NHS and market sounding – Response to invitation to participate from GG and CJIT Local Authorities positively engaged – l l 11 early adopter LAs on working groups (Registration and operation) Sub-group reports defining policy on key areas – l Design reviewed with CJIT, GG and Contact. Point and endorsed by Cross Gov CIO Council Registration, Operational Impact, Trust and Sustainability Full business case and evaluation of proposals completed end November Government Gateway appointed to develop components of solution

EAS Governance SRO DWP (Kenny Robertson) DCSF (Tim Wright) CLG (Roy Marshall) CIO/CTO Council (Kevin Murphy) Contact. Point EAA Working Group LAs: Brent LA EAS Project Board Becta Gov Connect EDT Salford Newham St Helens Herts Derbyshir CLG/DCSF Co. I working group e Hants Leeds London Connects Le. GSB DWP Cabinet Office / e. DT NHS Ministry of Justice / CJIT Mo. D CSIA / CESG Becta Operational model & implementation guide Salford +6 Policy on min registration procedures Achieving shared trust Sustainability and migration Le. GSB Hants Newham Brent NHS; CSIA DCSF CESG Gov Connect CLG DCSF EDT DWP

How will the solution look? Common Trust Framework (rules & standards) LA Shared Identity Provider Service (IDP) Authentication Broker LA LA NHS Own IDP Service Quick and simple integration LA DCSF Applications DWP Applications Other central govt apps

Components of the solution Registration Authority (LA or National Partner) People and processes Registration systems Administrator Central Hub Authentication Broker service Gateway service Shared Identity Provider Service Provider Account Attributes Identity checking People and processes Web service portal Issue credentials Service Integration Support Application integration service Store Attributes People and processes Test environment provision Integration support for central government services User Authentication New Government Gateway capability Existing Government Gateway platforms