PKI in Australia PKI Forum Sydney 2000 Members

PKI in Australia PKI Forum Sydney 2000 Members Meeting Stephen Wilson Chair -- Certification Forum of Australia Director -- Pricewaterhouse. Coopers be. TRUSTed

PKI in Australia n Evolution of PKI in Australia n What’s hot in PKI? n The PKI market n Certification Forum of Australia n Towards a national PKI Forum Sydney 2000

Standards Australia PKAF Report Evolution of PKI in Australia AS 4539 PKAF Project Gatekeeper Report Gatekeeper 2 First CAs Law reform A-G’s Expert Group ETA States Certification Forum Non Govt PKI Model Unified model NEAC “Light touch” PKI policy 1996 1997 1998 Research Projects 1999 2000 2001 PKI Forum Sydney 2000

n Internet transaction value -- What’s and risk -onin the hot rise PKI? n Applications: corporate banking, health, govt services n Non-value transactions n n n corporate & taxation reporting online healthcare superannuation, conveyancing n Communities of Interest; certificate policy customisation n Mutual recognition rather than cross PKI Forum Sydney 2000 certification

Characterising the Australian PKI n Light touch politics & regulatory settings environment (UNCITRAL) n Strong Internet & e-commerce uptake n Strong history of e-security technology companies n Government a vigorous PKI user and regulator (Gatekeeper) n Increasing latent demand for authentication n But historically difficult to crystalise PKI business case PKI Forum Sydney 2000

PKI market highlights in n Australian Tax. Australia Office certificates for GST returns 300, 000 certs issued; 20 -40, 000 used n leading to general purpose govt endorsed Australian Business Certificate (see www. noie. gov. au/projects/govt/ABNDSC. htm) n n Finance sector experience n n n National Australia Bank retail Internet banking Australian Stock Exchange block trading system Identrus (three of the four majors joined up) PKI Forum Sydney 2000

PKI market highlights in Australia (cont. ) n Government services delivery n n n Australia Securities & Investment Commission (live) Electronic Conveyancing Victoria (planned) Health. Connect national health network n n PKI central to practitioner & patient identifiers see www. health. gov. au PKI Forum Sydney 2000

The Certification Forum of n Pre-eminent authentication sector industry Australia group n n n lobbying & position papers awareness & education Code of Practice & control model represent PKI on the NEAC 40+ members n n PKI services and vendors users & user groups governments lawyers, auditors, insurers PKI Forum Sydney 2000

The CFA model: audit-based PKI Accreditation Body ISO/IEC Auditor Supplier Goods or Services Security System AS/NZS 4444 Guides Auditor CA Guides e. g. AS 4539 CA Alice Accreditation Body ISO/IEC CP CPS 1010111001 PKI Forum Sydney 2000

Advantages of audit-based PKI n Light touch; no legislation needed n Industry-based yet highly trusted n Utilises existing bodies & processes n Transparent liability for all types of CA n Demystifies the role of Root CA n Supports fitness for purpose PKI Forum Sydney 2000

[We] can expect that it will soon become normal practice Independent NEAC for every electronic business system … to undergo review regular audits of compliance with legal and regulatory requirements. . . there will be considerable demand for an accreditation framework for electronic authentication products and services, driven by the need for businesses to assure their information systems and processes in the emerging climate of electronic business there is already a general framework for certifying appropriate auditors and development of appropriate audit standards n NEAC now proposing a joint Gatekeeper-CFA national PKI Forum Sydney 2000 model

PKI as communities of interest Australian PKI Accreditation Body Doctors Bank 1 Nurses Health sector Auditor Bank 2 Auditor A ATO ABN-DSC CA Auditor B Gatekeeper Auditor Bank 3 Identrus PKI Forum Sydney 2000

Discussion www. aeema. asn. au (look for CFA under “Groups”) www. noie. gov. au/neac www. gpka. gov. au www. health. gov. au/healthonline/ehr_rep. htm www. apii. or. kr/apec/atwg/preatg. html PKI Forum Sydney 2000