电子政务标准.ppt

Standards in E-GovernanceSuchitra Pyarelal Technical Director E-Governance Standards NICE-Governance Standards Agenda• Existing Scenario of E-Governance Applications• E-Governance Standards: Background• Objectives• Approach , Steps and Methodology• E-Governance Standards :–Open Standards–Patents in Standards–National Considerations–Challenges–Government Policies–Summary–Principles• E-Governance Standards–Areas Identified for Standardisation–Areas :Working Groups • Working Groups – Status and RoadmapE-Governance Standards Existing Scenario of E-Governance Applications –Developed independently as stand-alone systems–Too much data and not enough information–No common data architecture–Isolated domains of information–Too expensive to bridgeE-Governance Standards E-Governance Standards : Objectives•Increased Adaptibility •To Provide Secretariat to the Working Groups , Apex Body;•Coordinate with the Working Groups , Apex Body and other bodies;•Implementation of the Portal – A powerful Collaborative medium;E-Governance Standards Approach and Steps taken IM•Most e-Government projects have the Interoperability Framework that specifies open standards;•If more countries are to insist on open standards, more vendors will be forced to open their file formats and technology specifications;•No good reason for an organisation not to mandate open standards .No vendor can reasonably complain about procurement terms mandating open standardsE-Governance Standards E-Governance Standards:Summary •Interoperability is crucial-Conformance to Standards needed;•Standards that are open and non-discriminatory preferred–No dependence on any single entity,all types of products can implement them and all interested parties can partake in their development;•Most governments specifying open standards in their IT policies. (Norway,Denmark,UK,Netherlands,France,Brazil,Australia,Ne w Zealand,Malaysia)E-Governance Standards E-Governance Standards: Principles •Easy accessibility for all to read and use/implement;•Developed by a process that is open and relatively easy for anyone to participate in; •No control or tie-in by any specific group /person / entity–Main disagreement is in whether to consider Standards that contain RAND-encumbered patents or not;available royalty free or at minimal cost, with other restrictions Areas of Standards in E-GovernanceE-Governance Standards Areas of Standardisation•Technical Standards and E-Governance Architecture •Network and Information Security Standards•Meta data and Data Standards •Localisation and Language Technology Standards •Quality and Documentation Standards•Legal Enablement of ICT Systems•Governance Process Re-engineering*• *being constitutedE-Governance Standards Areas of Standardisation- Working GroupsWorking Group•Technical Standards • Evolve Standards;• Manage interaction with similar initiatives and standards bodies elsewhere in the world;• Nominate members on various International standards committees and continuously strive towards key roles for India in such international forums;• Define the scope of any deliverables, expected milestones, and the process for the group participants to approve the release of these deliverables (including publishing intermediate results);• Determine any dependencies of other entities on the deliverables of this group; • Define the expected level of involvement by the members of the Team (e.g., to track developments, write and edit technical reports, , etc.);• Must also include an estimate of the expected time commitment from participants;• Requirements that a quorum of group participants support any formal decision of the group;• Change control of the Draft standard document and Version Management. • Create a supporting framework for implementation and testing• Setting timeline for the release of initial set of standards to the Apex Body of Standards of DIT.E-Governance Standards WG2-Network one such being setup at IIT, Kharagpur initially funded by Integrated Defense Staff, Ministry of defense. This can act as a hub for R & D activities in Information Security •DIT Sponsored Projects at IIT, Kharagpur on Cryptographic controls can be used in the area of access control •Development of secure OSs – expensive but possibly required in specific applications•Protection of Personal Data • Laws to be strengthened • Cyber forensic and related manpower development • Privacy preserving Data Mining • Balancing right to information with privacy protectionE-Governance Standards WG2-Network & Information Security Challenges and opportunities emanated•Security Development Life Cycle ( Threat Model & Secure Coding) practices shall be introduced in e- governance application development •Security Requirement Specifications Templates shall be developed and used as a part in SRS preparation. •Policy on Interoperability among different networks like SWANs, NICNET etc shall be framed •IP ( both Public and Private ) allocation sha。