Gzim Ocakoglu European Commission DG Enterprise - PowerPoint PPT Presentation

1 / 36

About This Presentation

Title:

Gzim Ocakoglu European Commission DG Enterprise

Description:

Network service and generic services delivered by Equant ... curia.webmail.eu-admin.net A 62.62.71.250. emcdda.eu-admin.net A 62.62.81.166 ... – PowerPoint PPT presentation

Number of Views:90

Avg rating:3.0/5.0

Slides: 37

Provided by: wellens

Category:

more less

Transcript and Presenter's Notes

Title: Gzim Ocakoglu European Commission DG Enterprise

1
Turkey IDA Info-Day PM Session, September 25, 2003
IDA Secure Communications Platforms TESTA and
PKI

Gzim OcakogluEuropean Commission - DG Enterprise
Ankara, 25 September 2003

2
Outline

TESTA at a glance
Sectoral projects using TESTA
What is TESTA? How to connect ?
TESTA today
The PKI service
The future of TESTA

3
TESTA at a glanceVocabulary...
4
TESTA at a glanceBenefits, Contractors, budget

Secured telecommunications services with
warranted Service Level Agreements (SLA)
Network service and generic services delivered by
Equant
Support services (advice, help desk) provided by
Unisys
Duration of the contract until 2004
Global potential value 28,5 million Euro

5
Sectoral Projects using TESTA

Employment and Social Affairs
EURES
TESS
Agriculture
CATS/STATEL
Transport
Care II
Fisheries
Fides
Regional Policy
Structural funds (SFC)
Health and consumer protection
Eudra projects
Euphin

Justice and Home Affairs
EURODAC
Trade
SIGL
Statistics
Datashop
Statel
Financial Intelligence
FIUNET
Humanitarian aid
HOLIS (14 points)
General applications
IntraComm
Circa

New users coming soon .. - Justice and Home
Affairs (VISA,SIS II) - Environmental
protection (PROCIV NET) - Energy and Transport
(SafeseaNet, TachoNet) - ...

6
What is TESTA ?. . . How to connect ?
7
TESTA principles

Trans European Services for Telematics between
Administrations
IP protocol on MPLS
Separation from the Internet
Registered but non-Internet routable address
range
Private domain-names (eu-admin.net)

8
TESTA a domain-based approach
9
TESTA a domain-based approach
10
Generic services
11
Architecture 62.62 addressing NAT
12
TESTA architecture DNS
bxl-vpn.cec.eu-admin.net A 62.62.69.14
care.eu-admin.net A 62.62.70.22
curia.webmail.eu-admin.net A 62.62.71.250
emcdda.eu-admin.net A 62.62.81.166
emea.eu-admin.net A 62.62.13.83
europaplus.eu-admin.net A 62.62.70.12 europarl-
ns.eu-admin.net A 62.62.72.96 nap01.dac.lu.eu-adm
in.net MX 62.62.0.17
Spain
13
Architecture DNS how it works
www.ai.mit.edu
14
Architecture DNS how it works
testa.eu-admin.net
Server
Local DNS Slave of eu-admin.net DNS
15
Connected Countries

? Luxembourg
? Netherlands
? Austria
? Portugal
? Finland
? France in the process
? Sweden in the process
? Iceland
? Norway

? Belgium
? Denmark
? Germany
? Greece
? Spain
? Ireland
? United Kingdom
? Italy

16
Connected Acceding Countries
? Czech Republic - 05 06 2003 ? Estonia - 30 06
2003 ? Malta 25 08 2003 ? Poland 27 06 2003 ?
Slovenia 24 04 2003
? Cyprus to be connected end of Sept 2003
? Slovakia in the process
? Hungary in the process
17
Connected EU institutions

? Council of the European Union
? European Parliament
? European Commission
? Court of auditors
? Court of Justice
? European Economic and Social Committee

? Committee of the regions
Expected
? European Investment Bank

18
Connected EU agencies

? CEDEFOP European Centre for the Development of
Vocational Training
? EUROFOUND European Foundation for the
Improvement of Living and Working Conditions
? EEA European Environment Agency
? ETF European Training Foundation
? EMCDDA European Monitoring Centre for Drugs and
Drug Addiction
? EMEA European Agency for the Evaluation of
Medicinal Products
? OHIM Office for Harmonisation in the Internal
Market (Trade Marks and Designs)
? EU-OSHA European Agency for Safety and Health
at Work
? CPVO Community Plant Variety Office
? CdT Translation Centre for the Bodies of the
European Union
? EUMC European Monitoring Centre on Racism and
Xenophobia
? EAR European Agency for Reconstruction
? EUROJUST

19
PE
Initial ArchitectureSite install
20
PE
CE
ArchitectureSite installPhase 1
CE
IPSEC TUNNEL
NAT
21
PE
CE
ArchitectureSite installPhase 2
IPSEC TUNNEL
CE
NAT
22
Back-Up
Current ArchitectureSite install
IPSEC TUNNEL
NAT
23
Site location

Concentration point for national agencies
Security (physical protection, site security
officer)
SLA (availability, helpdesk)
In function of projects of immediate interest
Sectoral projects
...

24
Cost sharing

All costs covered by IDA for
National administrative networks
EU institutions and EU agencies
Cost sharing for
Direct to TESTA connected local administrations
Back-bone costs are covered by IDA
Local loop costs not covered by IDA (Leased line,
router, monitoring, installation)

25
TESTA how to connect
Request connection
Request contacts
Send contact info Site info
Request installation
Send technical questionnaire start installation
Send technical data ( Unisys assist)
Site configuration test Request
acceptance Invoice
Acceptance
Payment
26
Sectoral request for direct TESTA link
Request connection
Request for possible integration national
network request price connection
Price Offer
Inform sector assistance
YES
NO
Inform sector
Order direct link
27
TESTA today
28
Activities on Network Extension

Connect national networks in all Member States
France
Sweden
Connect Acceding and Candidate Countries
Integrate new users
Environmental protection (PROCIV NET)
Energy and Transport (SafeseaNet, TachoNet)

29
Activities on Security Enhancements
Bulgaria Info-Day PM Session, April 15, 2003

On the Eurodomain
Add line-encryption
Prepare for TESTA security accreditation
For the border to local domains
Formulation of general security framework
Prepare for accreditation of the TESTA LDCPs
(Local Domain Connection Points)

30
Activities on Quality Enhancements

On TESTA services and TESTA environment
Enhance resiliency of generic services
Portal and newsletter
Workbook and applications guidelines
With end to end approach
Promote SLAs in local domains through TESTA MoU

31
Resiliency Component

Primary Site
Managed Resilient Firewall
Managed SMTP Messaging Service
Managed Intranet DNS
99.9 Monthly Service Availability (99.5 on
mailbox hosting)
Secondary Site
Managed Firewall
Managed SMTP Messaging Service
Managed Intranet DNS
99.8 Monthly Service Availability (99.5 on
mailbox hosting)
Management and Support 365x7x24
Planning was impacted by the findings of the
Security Assessment and the Encryption
requirements. Implementation is planned during
the course of the 2nd Quarter 2003.

32
Resiliency
33
(No Transcript)
34
The PKI Service
35
The IDA PKI project

Objectives of the Public Key Infrastructure (PKI)
ready to use by all networks of the IDA programme
adaptable or extensible to the specific
requirements of some networks
enable the members of a user community to access
other IDA networks with the same certificate
(subject to access rights control)
Set-up steps for each user community
requirements analysis
definition of organisation and services
service set-up
routine management of the infrastructure

36
Where can networks use the IDA PKI ?

Web-based applications
protection of web-based information repositories
and client/server communications
Secure messaging
secure e-mail
electronic signatures
authentication
integrity
confidentiality

37
TESTA the future
38
TESTA post 2004 - Objective

To define what TESTA will become after 2004 as an
IDA communication platform
To define the needs of communication at the
European level
the growing need for the exchange of information
between European administrations
the growing need of a secure and resilient
platform

39
TESTA post 2004 Working method

TESTA Steering Committee
Participants IDA, EC DI, Major Sectors (DG JAI,
DG TAXUD), the Council,
TESTA Expert Group Meetings
The group will meet 2 or 3 times and will give
regular feedback to the TAC WHAM and the TAC
previous meetings held on 10/12/2002, 09/09/2003
next meeting foreseen on 01/10/2003
An Info-Day with private sector in 4Q2003

40
Further information