Regional sites:
Specialized sites:
The purpose of a secure eDocument is similar to that of a conventional (non-electronic)
one. It has to serve as valid proof of identity for the citizen, it should be
trusted by third parties and enable the citizen to access government services,
including remotely.
To meet this challenge, eDocuments are designed to include a specific set of features, particularly the cardholder’s data digitally signed by the government as proof of authenticity; biometric data to prove it matches that of the bearer; and a digital signature enabling the citizen and government to securely establish contracts online. The electronic component of the document securely manages the digital credentials.
A secure eDocument has a small integrated circuit (IC) – commonly referred to as a ‘microprocessor’ – embedded in it. Microprocessors are like a mini computer, with a central processing unit (CPU) and memory. In order to function and serve an application, the microprocessor requires operating software to be installed in its memory. This software is designed specifically to both run the CPU computing power and process personal data and credentials stored in the microprocessor. In microprocessors, operations are controlled by the operating software and executed by the CPU.
The purpose of the operating software is to manage microprocessor resources and interface with the external environment. It is the conductor of the activities taking place in the microprocessor. It may manage one or many applications at the same time, as is increasingly commonplace with multi-application secure documents.
The operating software is the layer running on top of the microprocessor hardware layer and, in an identity application, handles, processes and communicates data. It makes uses of the tools and capabilities offered by the microprocessors, but also handles its weaknesses. It is therefore easier to develop secure operating software on a secure – usually certified – microprocessor. A secure microprocessor will also provide better protection against physical attacks.
Secure eDocuments provide governments with the opportunity to introduce a wide range of electronic applications, the most obvious being electronic ID, providing positive proof of the bearer’s identity. This application can be introduced by storing printed data or electronic keys on the microprocessor for proof of identification.
In the interest of convenience for both government and citizens, secure eDocuments also enable the introduction of new online government services such as filing tax returns and electronic voting. They maximise government resources through automated processes while improving the quality of service for citizens. They also enable private services such as eBanking, or any electronic service requiring authentication, security or signature.
National eID cards offer flexibility, as they can support new applications once they’ve been issued to citizens, through multi-application and post-issuance capabilities. Emerging uses for secure eDocuments – such as eGovernment services – extend beyond the original scope of the ID documents: visual identification. New applications can be added over time, making the card an integral part of each holder’s day-to-day routine. As demonstrated, eDocuments are extremely secure devices on which to store the citizen’s electronic identity.
To capitalise on the secure electronic capabilities, additional applications are needed. The electronic component of the secure document – specifically, the operating software – is the key enabler for application introduction.
Electronic components include keys that enable identification, authentication and digital signature. In some instances, authentication occurs online, with the application and data stored on centralised databases. In other instances, applications run in offline mode with data stored, processed or maintained inside the electronic component.
As with any other digital environment, a secure eDocument is only as strong
as its weakest component. Because absolute security does not exist, high-level
security can best be described as a balance struck between the level of
implementation and the resulting benefits.
When migrated to an electronic format, secure documents must offer the extremely
high level of security that government authorities have come to expect. They
must enforce the basic security mechanisms of confidentiality, integrity and
availability, particularly to enable key functionalities used in secure
transactions and exchanges: authentication of the parties involved;,
confidentiality to prevent information disclosure;, integrity to ensure that
data is not altered; and non-repudiation to enable digital signature mechanisms.
Hackers of secure eDocuments are motivated by crime, terrorism and, in some
cases, the lure of fame. Although less rewarding to hack than databases – which
contain millions of data records – secure eDocuments are still potential targets
due to their widespread deployment and value.
Video
Sealys
Security Features
Providing Security, Providing Privacy
[
French version available]
Sealys
eTravel Operating System.
Sealys™
Secure Documents
| Why e-government is going to
change our lives?
|
| Success
of ‘e-Government supermarkets’ in Portugal
|
| ePassports and security
|
The
citizen shops in Portugal – making e-Government a physical and human reality. 
Fears have been expressed in
a dramatic way regarding ePassport’s security.