Current Situation in Japanese PKI Market: Business Case & Application · 0 5 November, 2002 Japan...
Transcript of Current Situation in Japanese PKI Market: Business Case & Application · 0 5 November, 2002 Japan...
00
5 November, 2002Japan PKI Forum
Current Situation in Japanese PKI Market:
Business Case & Application
Current Situation in Japanese PKI Market:
Business Case & Application
All Rights Reserved,Copyright© 2002, Japan PKI Forum 11
Japan PKI Forum Japan PKI Forum
! Investigate and actualize safe and secure e-commerce environment in Asian countries and regions
! Promote the Asia PKI Forum for accelerating PKI interoperability and raiseawareness of PKI
! Liaison member of PKI Forum and founding member of Asia PKI Forum! The operation consists of:
" Business and Application Section" Interoperability Section
! Investigate and actualize safe and secure e-commerce environment in Asian countries and regions
! Promote the Asia PKI Forum for accelerating PKI interoperability and raiseawareness of PKI
! Liaison member of PKI Forum and founding member of Asia PKI Forum! The operation consists of:
" Business and Application Section" Interoperability Section
• Investigates PKI business and application models • With consideration of international interoperability • Studies business environments and relevant markets• Conducted survey of the Asian market in general (2001)• Currently conducting survey of the US and European Markets
• Investigates PKI business and application models • With consideration of international interoperability • Studies business environments and relevant markets• Conducted survey of the Asian market in general (2001)• Currently conducting survey of the US and European Markets
Business and Application SectionBusiness and Application Section
All Rights Reserved,Copyright© 2002, Japan PKI Forum 22
Japanese PKI Market Revenue (2001-2006)Japanese PKI Market Revenue (2001-2006)
xSPxSPCA & RACA & RA
3.0 Billion Yen(24.1 Million USD)
In 2001
3.0 Billion Yen(24.1 Million USD)
In 2001
Source: The Ministry of Public Management, Home Affairs, Posts and Telecommunications
22.5 Billion Yen(180.0 Million USD)
In 2006
22.5 Billion Yen(180.0 Million USD)
In 2006
CAGR 49.6%
3.3 Billion Yen(26.3 Million USD)
In 2001
3.3 Billion Yen(26.3 Million USD)
In 2001
19.3 Billion Yen(154.3 Million USD)
In 2006
19.3 Billion Yen(154.3 Million USD)
In 2006
CAGR 42.5%
PKI Software CA Service
PKI VendorPKI Vendor
・ Rapid growth of both software and CA services expected in 4 years.・ Rapid growth of both software and CA services expected in 4 years.
All Rights Reserved,Copyright© 2002, Japan PKI Forum 33
Survey of Use of PKI-Based Services (2002)Survey of Use of PKI-Based Services (2002)
• Conducted by ECOM (Electronic Commerce Promotion Council of Japan) on Feb-2002• Based on the feedbacks of questionnaires directed to member companies• The characteristics of 60 participants are as in the following tables
• Conducted by ECOM (Electronic Commerce Promotion Council of Japan) on Feb-2002• Based on the feedbacks of questionnaires directed to member companies• The characteristics of 60 participants are as in the following tables
10%Automotive and Transport Vehicle Manufacturing
15%Electronic Products Manufacturing
12%Bank, Insurance, Securities Business
8%Other Manufacturing Business
18%Wholesale, Trade, Other Service Business
10%Public Utility (Gas, Electricity, Water), Telecommunications, Broadcasting Business
27%Information Service, Research, Printing, Publishing Business
ShareShareIndustryIndustry
17%Under 10 Billion Yen(about 83 Million US$)
26%Over 1 Trillion Yen(about 8.3 Billion US$)
40%Under 1 Trillion Yen(about 8.3 Billion US$)
17%Under 100 Billion Yen(about 830 Million US$)
ShareShareSales Figure (2001)Sales Figure (2001)
All Rights Reserved,Copyright© 2002, Japan PKI Forum 44
B2G
B2B
B2E
B2C
– Secured by digital certificates? –(1) User Verification/Access Control
– Secured by digital certificates? –(1) User Verification/Access Control
3 0
0
1 3
6
2 3
3 8
1 7
1 9
2 0
3 3
2 3
3 6
3 2
4 8
5 7
8 9
0 1 0 2 0 3 0 4 0 5 0 6 0 7 0 8 0 9 0 1 0 0
Ave r a g e
Onl ine Au c ti on (4 )
Downl oa d S e r vi c e s (1 5 )
Onl ine S hopping (1 7 )
S u bs c r ibe r S e r vi c e s (2 2 )
AS P (1 3 )
R e m or t Ac c e s s (4 1 )
B ac k Offic e S y s te m (4 3 )
Intr ane t (4 9 )
e -B a nk ing (1 2 )
e -Mail (4 7 )
e -Mar k e t P la c e (1 1 )
e -P r oc u r e m e nt (2 5 )
Inte r ne t EDI (2 7 )
Onl ine Appl ic ation (1 4 )
e -B i dding (9 )
(%)(%)(%)(%)(n): total in number
All Rights Reserved,Copyright© 2002, Japan PKI Forum 55(%)(%)(%)(%)
B2G
B2B
B2E
B2C
– Secured by digital certificates? –(2) Communication and Data Exchange
– Secured by digital certificates? –(2) Communication and Data Exchange
3 6
0
3 3
2 4
4 1
3 1
1 7
2 3
2 2
4 2
2 3
4 5
4 4
5 6
6 4
7 8
0 1 0 2 0 3 0 4 0 5 0 6 0 7 0 8 0 9 0 1 0 0
A ve r a g e
On l i n e A u c ti on (4 )
Down l oa d S e r vi c e s (1 5 )
On l i n e S h oppin g (1 7 )
S u bs c r i be r S e r vi c e s (2 2 )
A S P (1 3 )
R e m or t A c c e s s (4 1 )
B a c k Offi c e S y s te m (4 3 )
In tr a n e t (4 9 )
e -B a n k i n g (1 2 )
e -Ma i l (4 7 )
e -Ma r k e t P l a c e (1 1 )
e -P r oc u r e m e n t (2 5 )
In te r n e t EDI (2 7 )
On l i n e A ppl i c a tion (1 4 )
e -B iddi n g (9 )
(n): total in number
All Rights Reserved,Copyright© 2002, Japan PKI Forum 66(%)
Issues raised by Current PKI UsersIssues raised by Current PKI Users
00
1 11 51 5
2 22 2
2 62 6
3 03 3
4 14 1
4 85 2
5 67 4
8 9
0 1 0 2 0 3 0 4 0 5 0 6 0 7 0 8 0 9 0 1 0 0
O th e r s
A c q u i s i t i o n o f P K I-r e l a t e d o ve r s e a s i n f o r m a t i o n
A d va n ta g e s o ve r o t h e r m e a n s
Is s u e s r e l a te d to i n d i vi d u a l l e ve l d a ta p r o te c t i o n
U s a g e o f p u b l i c c e r t i f i c a t e s
Ne c e s s i t y t o tr a i n /e d u c a te p e r s o n n e l
De g r e e o f m a t u r i ty o f P K I te c h n o l o g y
Im p l e m e n ta t i o n o f P K I-r e l a t e d l a w s a n d p o l i c i e s
A f f i n i t y w i th e x i s t i n g o p e r a t i o n f l o w s
Tr o u b l e s h o o ti n g a n d r e c o ve r y f r o m P K I s y s t e m f a i l u r e
C o m p l e x i ty o f p r o c e d u r e s e .g . i n i d e n ti ty ve r i f i c a t i o n
S ta n d a r d i z a t i o n o f P K I r e l a te d p r o d u c ts
P e r f o r m a n c e a n d f u n c t i o n o f s e c u r i ty
De p l o y m e n t e f f i c a c y o f P K I s y s t e m
A f f i n i t y w i th e x i s t i n g o p e r a t i o n s y s te m
De p l o y m e n t c o s t o f P K I s y s te m
U s a b i l i ty a n d m a n a g e a b i l i ty o f P K I
O p e r a t i n g c o s t o f P K I s y s t e m
All Rights Reserved,Copyright© 2002, Japan PKI Forum 77
PKI Deployment Barriers (non-users)PKI Deployment Barriers (non-users)
000
444
7777
1 11 51 5
1 92 2
2 63 03 03 0
0 5 10 15 20 25 30 35
M a n a g e m e n t i s n o t w i l l i n g t o i n t r o d u c e
Di f f i c u l t y i n i n d i v i d u a l l e v e l d a t a p r o t e c t i o n
Tr o u b l e s h o o t i n g a n d m e a n s o f r e c o v e r y n o t c l e a r
O t h e r s
S p e c i a l s k i l l s a n d p e r s o n n e l t r a i n i n g r e q u i r e d
In s u f f i c i e n t s e c u r i t y f u n c t i o n a n d p e r f o r m a n c e
Do n ' t k n o w P K I
No t r e q u e s t e d b y c u s t o m e r s a n d p a r t n e r s
C o m p l e x i t y o f p r o c e d u r e s e .g . i n i d e n t i t y v e r i f i c a t i o n
L a c k o f u s a b i l i t y /m a n a g e a b i l i t y o f P K I r e l a t e d p r o d u c t s
U k n o w n d e g r e e o f c h a n g e s n e e d e d f o r e x i s t i n g s y s t e m
O t h e r m e a n s a r e s a t i s f a c t o r y
Te c h n i c a l i m m a t u r i t y a n d l a c k o f w o r k i n g e x p e r i e n c e
C h a n g e s n e e d e d f o r e x i s t i n g o p e r a t i n g f l o w u n k n o w n
In s u f f i c i e n c y i n l a w a n d p o l i c y i m p l e m e n t a t i o n
De l a y o f s t a n d a r d i z a t i o n o f P K I-r e l a t e d p r o d u c t s
H a r d t o s e e e f f e c t a g a i n s t c o s t o f P K I d e p l o y m e n t
H i g h o p e r a t i n g c o s t o f P K I s y s t e m
H i g h d e p l o y m e n t c o s t o f P K I s y s t e m
(%)
All Rights Reserved,Copyright© 2002, Japan PKI Forum 88
Key Players in Japanese PKI MarketKey Players in Japanese PKI Market
VeriSignBaltimore
EntrustValicertHitachiFujitsuNEC
ToshibaMitsubishi Electric
NTT Group
VeriSignBaltimore
EntrustValicertHitachiFujitsuNEC
ToshibaMitsubishi Electric
NTT Group
GPKI/LGPKI(MITI, MLIT, MPHPT)Electronic Notarization (MOJ)Digital Notarization Authority
SECOM Trust.netTeikoku Databank
Japan Certification ServicesJapanese Bankers Association
JIPPAVeriSignJapan Net
NTT Group
GPKI/LGPKI(MITI, MLIT, MPHPT)Electronic Notarization (MOJ)Digital Notarization Authority
SECOM Trust.netTeikoku Databank
Japan Certification ServicesJapanese Bankers Association
JIPPAVeriSignJapan Net
NTT Group
e-ingBiz.com (Toshiba)MetalSite (MetalSite Japan)
Center for Notary PublicTEDI
Lawyer's AssociationMy Sony ID(Sony)
Keitaide-Music (KDDI)SECOM Secure Data Center
(SECOM Trust.net)GuardIT(NTT-C)
e-ingBiz.com (Toshiba)MetalSite (MetalSite Japan)
Center for Notary PublicTEDI
Lawyer's AssociationMy Sony ID(Sony)
Keitaide-Music (KDDI)SECOM Secure Data Center
(SECOM Trust.net)GuardIT(NTT-C)
PKI VendorPKI Vendor xSPxSPCA & RACA & RA
PKI Software CA Service
• Various players have been emerging in a variety of business fields. • Various players have been emerging in a variety of business fields.
All Rights Reserved,Copyright© 2002, Japan PKI Forum 99
Network Infrastructure Service
Financial Service
B2B EC
e-Government
B2C EC
B2E Intranet/Extranet
Network Infrastructure Service
Financial Service
B2B EC
e-Government
B2C EC
B2E Intranet/Extranet
Japanese Business Case & Application: 6 Types of PKI-based Service
Japanese Business Case & Application: 6 Types of PKI-based Service
xSPxSP
My Sony ID(Sony)Keitaide-Music (KDDI)My Sony ID(Sony)Keitaide-Music (KDDI)
Center for Notary PublicThe Japan Federation of Shiho-ShoshiLawyer's AssociationCommercial Registration System (Ministry of Justice)
Center for Notary PublicThe Japan Federation of Shiho-ShoshiLawyer's AssociationCommercial Registration System (Ministry of Justice)
e-ingBiz.com(Toshiba)Diamond Lease Co., Ltd.TEDI
e-ingBiz.com(Toshiba)Diamond Lease Co., Ltd.TEDI
eGuarantee(eGuarantee)Identrus member Banks(UFJ,Mizuho,BTM, SMBC etc..)InterDebit member (Sharp,ANA,Nomura Securities etc..)
eGuarantee(eGuarantee)Identrus member Banks(UFJ,Mizuho,BTM, SMBC etc..)InterDebit member (Sharp,ANA,Nomura Securities etc..)
SECOM Secure Data Center (SECOM Trust.net)GuardIT(NTT-C)SECOM Secure Data Center (SECOM Trust.net)GuardIT(NTT-C)
111222333444555
Key PlayersKey Players
PKIPKI--based Servicesbased Services
666
• PKI-based Service = e-Transaction, based on PKI and served by xSPs.• More companies are deploying PKI, following the public policy and the rising demand of
e-Transaction via internet. • Some advanced xSPs offer value-added services in various ways.
• PKI-based Service = e-Transaction, based on PKI and served by xSPs.• More companies are deploying PKI, following the public policy and the rising demand of
e-Transaction via internet. • Some advanced xSPs offer value-added services in various ways.
All Rights Reserved,Copyright© 2002, Japan PKI Forum 1010
PKI-based Services (1):Network Infrastructure Service
PKI-based Services (1):Network Infrastructure Service
• Network Infrastructure Service offers set of iDC, telecom, CA and other security services.• Becoming increasingly popular for iDC to deploy PKI.• However, whether used for transactions or not is up to the user.
• Network Infrastructure Service offers set of iDC, telecom, CA and other security services.• Becoming increasingly popular for iDC to deploy PKI.• However, whether used for transactions or not is up to the user.
Digital CertificationDigital Certification
UserUser
UserUser
UserUser
UserUser
Gateway
## HostingHosting
PKIPKI
CACA
PKI VendorPKI Vendor
PKI SoftwarePKI Software
InternetInternet
NetworkNetworkInfrastructureInfrastructure
ServiceService
Data Data CenterCenter## HousingHousing
## Fire WallFire Wall
## Anti VirusAnti Virus## Security Security
SurveillanceSurveillance
All Rights Reserved,Copyright© 2002, Japan PKI Forum 1111
PKI-based Services (1): Network Infrastructure ServicesCase Study – SECOM Secure Data CenterPKI-based Services (1): Network Infrastructure ServicesCase Study – SECOM Secure Data Center
Fire WallFire WallDigitalDigitalCertificatesCertificates
Secure Date Center
Security
Anti VirusAnti Virus SecuritySecuritySurveillanceSurveillance
HousingInternet
ConnectionService
ASPHosting
• Secom Secure Data Center, operated by a joint venture of Secom Co., Ltd. and Entrust Japan, provides set of iDC and whole security services.
• In this case, CA service is served for all of e-transaction.
• Secom Secure Data Center, operated by a joint venture of Secom Co., Ltd. and Entrust Japan, provides set of iDC and whole security services.
• In this case, CA service is served for all of e-transaction.
Secure Data CenterSecure Data Center
Source: SECOM Trust.net Co., Ltd.
All Rights Reserved,Copyright© 2002, Japan PKI Forum 1212
PKI-based Services (2): Financial ServicePKI-based Services (2): Financial Service
• Identrus is adopted by all 4 major Japanese banks.• Not many of Online-banking systems are PKI-based.• Credit Card is a major way for settlement through Internet, but without card-reader.• Inter-debit and electronic money themselves are not popular in Japan.
• Identrus is adopted by all 4 major Japanese banks.• Not many of Online-banking systems are PKI-based.• Credit Card is a major way for settlement through Internet, but without card-reader.• Inter-debit and electronic money themselves are not popular in Japan.
CACA
PKI VendorPKI VendoreMPeMP
eMPeMP
BusinessBusinessUserUser
ConsumerConsumer
BankBank
## SettlementSettlement ## FactoringFactoring
## BillingBilling ## EscrowEscrow
## PaymentPayment ## Credit Info.Credit Info.
Financial ServiceFinancial Service PKIPKI
Digital CertificationDigital Certification
PKI SoftwarePKI Software
All Rights Reserved,Copyright© 2002, Japan PKI Forum 1313
PKI-based Services (2): Financial ServiceCase Study – eGuarantee Inc.
PKI-based Services (2): Financial ServiceCase Study – eGuarantee Inc.
Workflow of Escrow ServiceWorkflow of Escrow Service
• eGuarantee uses CA Services for all Escrow service process via internet. (Order, Contract, delivery, Account, etc.)
• They connect with more than 27 eMPs (Food Info Mart, Ecpo-trade, Kouzai.com…)
• eGuarantee uses CA Services for all Escrow service process via internet. (Order, Contract, delivery, Account, etc.)
• They connect with more than 27 eMPs (Food Info Mart, Ecpo-trade, Kouzai.com…)
ë̂ –œ ‰~10000
10000
ë̂ –œ ‰~10000
10000
ë̂ –œ ‰~10000
10000
¿ ‹‡Š › ›
ë̂ –œ ‰~10000
10000
ë̂ –œ ‰~10000
10000
ë̂ –œ ‰~10000
10000
6. Pre-payment
3.Notice of Delivery
2.Contract Info.
4.Order Payment
5. Billing
1.Contract
7. Payment After 30~150 Days
Delivery
Seller Buyer
eGuarantee
eMP
Cert
Source: eGuarantee, TEIKOKU DATABANK,LTD.
Cert
Cert
Cert
Cert Cert
All Rights Reserved,Copyright© 2002, Japan PKI Forum 1414
PKI-based Services (3): B2B ECPKI-based Services (3): B2B EC
• Despite rising competitiveness in Internet-based B2B EC, the corporate private network without PKI remains dominant.
• TEDI, major Trade EDI promotional organization, launched RSP/ASP service companies, both of which employ PKI.
• Despite rising competitiveness in Internet-based B2B EC, the corporate private network without PKI remains dominant.
• TEDI, major Trade EDI promotional organization, launched RSP/ASP service companies, both of which employ PKI.
CACA
PKI VendorPKI VendorSellerSeller
ExporterExporter
ImporterImporter
DistributorDistributor
BuyerBuyer
## eMPeMP ## SCMSCM
## Trade EDITrade EDI ## eLogisticeLogistic
## eHuBeHuB
B2B ECB2B EC PKIPKI
Digital CertificationDigital Certification
PKI SoftwarePKI Software
All Rights Reserved,Copyright© 2002, Japan PKI Forum 1515
PKI-based Services (3): B2B ECCase Study – e-ingBiz.com
PKI-based Services (3): B2B ECCase Study – e-ingBiz.com
• Focused on Manufacturing industry, Toshiba delivers B2B EC Platform for manufacturersand customers.
• PKI is applied for most of the transactions (bidding, auction, specification, quotation, etc.)• Joined by approximately 1,400 companies.
• Focused on Manufacturing industry, Toshiba delivers B2B EC Platform for manufacturersand customers.
• PKI is applied for most of the transactions (bidding, auction, specification, quotation, etc.)• Joined by approximately 1,400 companies.
¿ ‹‡Š › ›
Specs
¿ ‹‡Š › ›
Quotation Sheet
¿ ‹‡Š › ›
Order Sheet
¿ ‹‡Š › ›
Specs
¿ ‹‡Š › ›
Order Sheet
Final Specs
Review
Engineer
Sales
Specific Customer
Specification Request
Specification Response
Quotation Request
Quotation Response
Order
Billing
ManufacturerManufacturer CustomerCustomer
¿ ‹‡Š › ›
QuotationSheet
Source: Toshiba Corp.
All Rights Reserved,Copyright© 2002, Japan PKI Forum 1616
PKI-based Services (3): B2B ECCase Study – Diamond Lease Co., Ltd.
PKI-based Services (3): B2B ECCase Study – Diamond Lease Co., Ltd.
• Covers the whole of B2B Lease Business Process, including quotation, contract, and payment.• Deploys Identrus, supported by Bank of Tokyo-Mitsubishi.• Covers the whole of B2B Lease Business Process, including quotation, contract, and payment.• Deploys Identrus, supported by Bank of Tokyo-Mitsubishi.
Other Banks
Diamond Lease Co., Ltd.
Identrus Rootidentrus
Customers
(Agreement) (Certificate) (Certificate Status Check)
(Certificate Status Response)
(Participant Status Response)
(Participant Status Request)
(Certificate Validity Response)
(Certificate Validity Request)
<Service Menu>• RFP• Contract Reference• e-Contract(with e-Sign)• Billing&Payment• Information Services• Expiration Procedure
Source: ECOM (Electronic Commerce Promotion Council of Japan)
All Rights Reserved,Copyright© 2002, Japan PKI Forum 1717
PKI-based Services (4): e-GovernmentPKI-based Services (4): e-Government
• Legal framework like e-Sign Law, Revision for the Basic Resident Register Law promotes PKI-based G2C/G2B public service delivery.
• GPKI for central government, and LGPKI for local government already launched, and are to extend their platforms further.
• Legal framework like e-Sign Law, Revision for the Basic Resident Register Law promotes PKI-based G2C/G2B public service delivery.
• GPKI for central government, and LGPKI for local government already launched, and are to extend their platforms further.
CACA
PKI VendorPKI Vendor
ConsumerConsumer
CompanyCompany
CompanyCompany
ConsumerConsumerEE--GovernmentGovernment
ApplicationApplication
CompanyCompanyRegistrationRegistration BiddingBidding
ResidentsResidentsRegistrationRegistration Tax Filling / Tax Filling /
PaymentPayment
Notarization Notarization
PKIPKI
Digital CertificationDigital Certification
PKI SoftwarePKI Software
InformationInformationServicesServices
ProcurementProcurement
All Rights Reserved,Copyright© 2002, Japan PKI Forum 1818
PKI-based Services (4): e-GovernmentCase Study – Center for Notary Public
PKI-based Services (4): e-GovernmentCase Study – Center for Notary Public
Workflow of Notary ServiceWorkflow of Notary Service
ElectricalElectricalRecordRecord
Company A Company Company BB
CA
Electronic Transaction
A B
• Time Stamp• Trucking• Archiving
Cert Cert
Certification
A B
• PKI is deployed to secure the Notary service via internet.• Notarizes the critical documents like contract and proof of corporate status. • Service for individuals (e.g. testament, invoice) is not available.
• PKI is deployed to secure the Notary service via internet.• Notarizes the critical documents like contract and proof of corporate status. • Service for individuals (e.g. testament, invoice) is not available.
Certification
Notary AuthenticationNotary Authentication
Source: Center for Notary Public
All Rights Reserved,Copyright© 2002, Japan PKI Forum 1919
PKI–based Services (4): e-GovernmentCase Study – Yokosuka City
PKI–based Services (4): e-GovernmentCase Study – Yokosuka City
• Introduces electronic Bidding for the first time among Japanese governmental organizations.• CA and VA services are applied for ensuring both certification and validation.• Introduces electronic Bidding for the first time among Japanese governmental organizations.• CA and VA services are applied for ensuring both certification and validation.
Yokosuka City Government
Bidder
Notary Authentication CA
Certificate
• Application to bidding• Screening Result• Bidding Form
Citizen
・Application to bidding・Screening Result・Bidding Form・Bidding Schedule
・Bid Opening Result
Source: New Media Development Association of Japan
All Rights Reserved,Copyright© 2002, Japan PKI Forum 2020
PKI-based Services (5): B2C ECPKI-based Services (5): B2C EC
• PKI has not generally been accepted by B2C market due to its lack of cost-effectiveness. • However, Mobile PKI-based services seems to be ready to go; Docomo’s FOMA(W-CDMA)has personal certificate function in UIM chip, and KDDI launched PKI-based music contentsdelivery in Nov. 2000.
• PKI has not generally been accepted by B2C market due to its lack of cost-effectiveness. • However, Mobile PKI-based services seems to be ready to go; Docomo’s FOMA(W-CDMA)has personal certificate function in UIM chip, and KDDI launched PKI-based music contentsdelivery in Nov. 2000.
CACA
PKI VendorPKI Vendor
MobileMobileUserUser
InternetInternetUserUser
InternetInternetUserUser
MobileMobileUserUser
B2C EC B2C EC
## mCommercemCommerce
## Online ShoppingOnline Shopping
## Contents DeliveryContents Delivery(Music, Game, Movie)(Music, Game, Movie)
## Internet banking / stock tradingInternet banking / stock trading
PKIPKI
Digital CertificationDigital Certification
PKI SoftwarePKI Software
All Rights Reserved,Copyright© 2002, Japan PKI Forum 2121
Delivery ServerSecure Multimedia Card
(SMMC) PlayerMobile Phone
Content E EncryptedContent
License E D License E
SMMC Private Key
Player Private Key
SMMCPublic Key
PlayerPublic Key
D
D
(1) Content Encrypted by Shared Key
(4) By PKI, license can only be extracted by legitimate player
(3) Using PKI, license is personalized to specific
SMMC (can’t be decrypted by other SMMC)
(5) Encrypted content can freely be copied and distributed
E
D
: Encryption
(2) Shared key encrypted by
SMMC public key
Shared Key
Shared Key
PKI–based Services (5): B2C ECCase Study – Keitaide-Music
PKI–based Services (5): B2C ECCase Study – Keitaide-Music
• PKI technology applied to realize digital rights management for music contents.• CA and certificates utilized for management of the public key pairs.• Both hinges on Secure Multimedia Card (SMMC) which allows secure digital processing in
the loose mobile environment.
• PKI technology applied to realize digital rights management for music contents.• CA and certificates utilized for management of the public key pairs.• Both hinges on Secure Multimedia Card (SMMC) which allows secure digital processing in
the loose mobile environment.
: Decryption
All Rights Reserved,Copyright© 2002, Japan PKI Forum 2222
• With PKI and smartcard, B2E transaction will be able to secure connection to intranet or extranet from internet.
• Sales person in the field, overseas offices, business partners, or employees working at home can enjoy the same B2E services and database access as in workplace.
• PKI is commonly deployed via insourced CA, but it can equally well be by outsourcing to CA service providers.
• With PKI and smartcard, B2E transaction will be able to secure connection to intranet or extranet from internet.
• Sales person in the field, overseas offices, business partners, or employees working at home can enjoy the same B2E services and database access as in workplace.
• PKI is commonly deployed via insourced CA, but it can equally well be by outsourcing to CA service providers.
CACA
PKI VendorPKI Vendor
Retailer /Retailer /SupplierSupplier
EmployeeEmployee’’ssHomeHome
ClientClient’’ssOfficeOffice
OverseasOverseasOfficeOffice
B2E Intranet / Extranet B2E Intranet / Extranet
## CRM CRM
## CAD / CAM / SCM CAD / CAM / SCM
## Personal aggregation portal Personal aggregation portal
## Internal DatabasesInternal Databases
PKIPKI
Digital CertificationDigital Certification
PKI SoftwarePKI Software
PKI-based Services (6): B2E Intranet/ExtranetPKI-based Services (6): B2E Intranet/Extranet
All Rights Reserved,Copyright© 2002, Japan PKI Forum 2323
PKI-based Services (6): B2E Intranet/ExtranetCase Study – Mitsui-Bussan Trading Co.
PKI-based Services (6): B2E Intranet/ExtranetCase Study – Mitsui-Bussan Trading Co.
• Developed global extranet in which security basis is unified by PKI.• The whole business process has become effective and efficient. • Developed global extranet in which security basis is unified by PKI.• The whole business process has become effective and efficient.
Business Unit AOverseas Branch/
Trader/Retailer
RA
Business Unit B
CA
(Certificate)
HQCertificates issuance request
• Cross-borderBusiness workflow
• Access to Intranet• Financial data transfer
Source: Baltimore Technologies Japan Co., Ltd.
All Rights Reserved,Copyright© 2002, Japan PKI Forum 2424
Network Infrastructure Service
Financial Service
B2B EC
e-Government
B2C EC
B2E Intranet/Extranet
Network Infrastructure Service
Financial Service
B2B EC
e-Government
B2C EC
B2E Intranet/Extranet
Summary: Status of PKI-based Services Market Development
Summary: Status of PKI-based Services Market Development
xSPsxSPs
• Docomo and KDDI’s eBusiness strategy covers PKI deployment.
• Docomo and KDDI’s eBusiness strategy covers PKI deployment.
• A variety of APs are on the road, while GPKI/LGPKI is going ahead. PKI-based TEDI is already launched.
• A variety of APs are on the road, while GPKI/LGPKI is going ahead. PKI-based TEDI is already launched.
• While struggling with corporate private network, there may be a change after the shakeout of eMP market.
• While struggling with corporate private network, there may be a change after the shakeout of eMP market.
• Identrus-based services are getting started.• Financial portals for B2B are emerging. • Identrus-based services are getting started.• Financial portals for B2B are emerging.
• It has become a common practice for iDC to deploy PKI• It has become a common practice for iDC to deploy PKI
111222333444555
Current SituationCurrent Situation
PKIPKI--based Servicesbased Services
666
• In Japan, Government sector is a leading market in terms of PKI deployment.• B2B market takes time to accept PKI, but financial sector’s Identrus-based services as well as some leading-edge business cases may accelerate dissemination of PKI-based services.
• Development of mobile commerce is required for PKI to pervade consumer market.
• In Japan, Government sector is a leading market in terms of PKI deployment.• B2B market takes time to accept PKI, but financial sector’s Identrus-based services as well as some leading-edge business cases may accelerate dissemination of PKI-based services.
• Development of mobile commerce is required for PKI to pervade consumer market.
• Many large businesses have been introducing PKI.• Many large businesses have been introducing PKI.
All Rights Reserved,Copyright© 2002, Japan PKI Forum 2525
Japan PKI Forum Business & Application Section
Japan PKI Forum Business & Application Section
! Participate in Asia PKI Forum Business Case & Application WG! Share information and discuss current PKI business situation! Comparative analysis towards market development
! Participate in Asia PKI Forum Business Case & Application WG! Share information and discuss current PKI business situation! Comparative analysis towards market development
Longer and Wider ScopeLonger and Wider Scope
PanPan--Asian collaboration under the Asia PKI Forum schemeAsian collaboration under the Asia PKI Forum scheme
! Towards international common infrastructure and further PKIbusiness opportunities
! Global information exchange to promote wider cross-bordersynergy
! Towards international common infrastructure and further PKIbusiness opportunities
! Global information exchange to promote wider cross-bordersynergy
Where does the above fit?Where does the above fit?
2626
Business and Application SectionToshiyuki Kinoshita
[email protected] Kamouchi
Thank you for your attentionThank you for your attention
Japan PKI Forumhttp://www.japanpkiforum.jp