The document discusses Norway's e-ID system and the Agency for Public Management and eGovernment (Difi) which oversees it. Difi aims to establish a common e-ID platform to enable authentication, electronic signatures, secure communication and other e-government services. The system currently supports various e-IDs like BankID and plans to expand support for European and international e-IDs. Difi also focuses on improving the user experience, availability across platforms, and professional management of the e-ID gateway.

1. Identity Relationship
Management Summit - Dublin
Tor Alvik, Specialist Director e-ID, Agency for Public Management and eGovernment (Difi)

2. Difi - The Norwegian Agency for
Public Management and
eGovernment
• Executive Agency established 1
January 2008
• To assist in reforming and
developing the public sector
• Ca. 230 employees: 90 in
Leikanger and 140 in Oslo
• Reports to the Ministry for Local
Government and Modernisation
Direktoratet for forvaltning og IKT

3. Setting
up a
common
platform

4. Actions
New regulation: From Consent to Reservation
Common components – building blocks
eID solution for security
Secure eMailbox for information delivery
Contact Register with mobil-number and email-adresses
for alerting - for citizens and enterprises
Register for reservation
Common infrastructure for reporting – Altinn
Central registers for people, enterprises and properties
available
April 17th 2012
Agency for Public Management and
eGovernment
You have new message

5. …. 2006 2007 2008 2009 ++ 2010
Januar

6. Tjenestenes fordeling:
597 95 65 15 2

7. ID-porten (the ID-portal) – common
authentication to eGov services
…
Nasjonalt ID-kort
About 500 services
from about 300 public
agencies
ID-porten authentication
portal. 50 mill
transactions in 2014
National ID-card with eID is
planned for 2016 - 2017

8. eID in Norway (pop. 5 million)
MinID (MyID) – Difi’s common eGov eID (open source)
> 3.1million users
One-time password based, medium security (level 3 of 4)
BankID – common solution for all banks
>3.1million users, > 234 services (mainly bank, finance, payment)
PKI-based, closed, proprietary solution, high security (level 4)
BankID on mobile phones, electronic identification and signing with the security elements
stored in the mobile phone’s SIM card, 425. 000 users
Buypass – smart card solutions
> 2 million cards, mostly National Lottery cards, many services
National Lottery cards issued at security level 3 (3DES, non-PKI)
Cards are easily upgraded to PKI-based (level 4), about 350.000 users
Main model: Closed, proprietary – but also open solutions
Commfides – small actor, open (and open source) solutions
Aiming particularly at employee eID using USB sticks (level 4)
FEIDE – common eID in higher education
Password-based (level 2)“Kalmar-2” union across Nordic countries

9. Authentication via ID-porten
ID-porten
Service
Autenticate
Back-channel between
service and ID-porten
Redirect to ID-porten
eID
SAML token identifying
user, eID used and
assurance level of eID
Set session cookie to
enable single sign-on

10. Facts and numbers
140,000
120,000
100,000
80,000
60,000
40,000
20,000
Direktoratet for forvaltning og IKT
7,000,000
6,000,000
5,000,000
4,000,000
3,000,000
2,000,000
1,000,000
0
Januar Februar Mars April Mai Juni Juli August September Oktober November Desember
2014
2013
Transactions
20000
19000
18000
17000
16000
15000
14000
13000
12000
11000
10000
9000
8000
7000
6000
5000
4000
3000
2000
1000
0
Series1
Help desk
-
00:00 - 01:00
02:00 - 03:00
04:00 - 05:00
06:00 - 07:00
08:00 - 09:00
10:00 - 11:00
Taxes made public
12:00 - 13:00
14:00 - 15:00
16:00 - 17:00
18:00 - 19:00
20:00 - 21:00
22:00 - 23:00
Dag 1

11. External forces promoting changes in the e-
ID gateway
Common needs
and requirements
Public agencies and end-users
Possible new service New service?
Changes to existing services
Technology
Cost-/benefit,
possibilities and
innovation
Trends
Developments in
society
Agency for Public Management and
eGovernment

12. Strategic priority areas:
e-ID services
Agency for Public Management and
eGovernment
• Physical persons with a european
e-ID can be authenticated in the e-
ID gateway.
• Persons without a norwegian or
european e-ID kan be
authenticated in the e-ID
gateway.
• The e-ID gateway is used by
employee end-users to a greater
degree.
Authentication
• End-users with a Norwegian e-ID
can sign documents electronically
for public services.
• Signed electronic documents can
be validated.
• End-users with a european e-ID
can sign documents electronically
for Norwegian public services.
E-signature and
validation
• End-to-end secure
communication between
customers of the e-ID gateway
and the end-users.
Encryption
• Offer timestamping services to
the customers of the e-ID
gateway.
Timestamping
Public services’ needs for
authenticating persons
are covered.
Public services’ needs for
e-signature and validation
services are covered.
Assist in enabling secure,
digital communication
between end-users and
public services.
Public services’ needs for
timestamping services are
covered.
Icons by flaticon.com under CC BY. Authors: Appzgear and Freepik

13. Strategic priority areas:
User experience and Professional management
Agency for Public Management and
eGovernment
• The e-ID gateway has a high
usability for the end-users.
• The e-ID gateway is available
to most end-users.
e-ID
• Services on the e-ID gateway
can be intregrated in apps
and similar technologies
• Services on the e-ID gateway
are available on the most
relevant end-user platforms.
Mobile
platforms
• Continuous improvement of
processes that contribute to
secure, robust and effective
services.
•Management of the e-ID
gateway is coordinated with
the other common
components in the public
sector.
Professional
management
The e-ID gateway is
available to most end-users,
with high usability.
Services on the e-ID
gateway are available on
end-users’ preferred
platforms.
Professional, continous
improvement of e-ID
gateway management.
Icons by flaticon.com under CC BY. Authors: Appzgear and Freepik

14. e-ID gateway roadmap
Professional management
2015 2016-2019
e-ID services User experience
e-ID services
2014
Self-registering e-ID
service
VISION
The e-ID gateway ensures
secure digital, public
management
2020+
TODAY
■ The e-ID gateway enables
secure login for Norwegian
citizens
Professional, continous improvement
of e-ID gateway management.
Covered public agencies’ needs for:
• Authenticating persons
• E-signature and validation services
• Timestamping servicess
• Secureelectronic communication
The e-ID gateway is available
to most end-users, with
services available on relevant
platforms, with high usability.
Support for european e-IDs
The e-ID gateway is used
by employee end-users
e-signature on documents from citizens
(C2G)
Support for
international e-IDs
e-ID validation
services
Timestamping service
National e-ID
Revised principles for
e-IDs available
through the gateway
Mobile platforms
Governance processes
Coordination with the other common components
Agency for Public Management and
eGovernment

15. Independence of customer-installed
software is central

16. Availability on ”all” end-user
platforms is important

17. BankID 2.0 was built as a web
app based on standard web
technologies

19. ID-porten and cross border services.
Norway is member of e-SENS and CEF and
must follow Eidas regulation.
Cross border services is so far planned used in
two e-SENS pilots
5.4 Business life cycle Cross border company registration
together with Sweden.
5.1 – Procurement . Tendering process between Contracting
Authorities (CA) and Economic Operators (EO) mentioned in the
WP5 Domain Use Case for eTendering. Preaward face.
Direktoratet for forvaltning og IKT

20. Identifikator
Person nummer
Samordningsnummer
Identifikator
Person nummer
D-nummer
Business registration NO
SE
19.06.2014 Dörthe Koerner

21. Tor.alvik@difi.no www.difi.no