Transcript EAS Presentation May 2008

Employee Authentication Services (EAS)
A potential pan-government service
Chief Information Officer Group (CIOG) – DCSF
EAS – Scope and target benefits
Scope
A scalable, sustainable and secure solution for local government employees to access
sensitive information in central government systems:
–
Ready to roll out from November 2008
–
Scalable and flexible to support multiple applications across government
–
Endorsed and security accredited as a core shared government asset
–
Set-up funded by DCSF and CLG
–
DCSF acting as “driving customer”
Target Benefits

Avoid the need for employees to use multiple authentication processes/tokens

Support greater collaboration/joint working for the benefit of citizens, children, learners

Provide cross government aligned processes and systems for secure sharing/
accessing of sensitive data

Improve efficiency through re-use within central and local government

Consistent with pan-government policies and architecture (PSIT, xGEA)
Project development since March 2007

Completed high level solution architecture
–


Evaluation of assets against requirements
–
GG, CJIT, NHS and market sounding
–
Response to invitation to participate from GG and CJIT
Local Authorities positively engaged
–

Design reviewed with CJIT, GG and ContactPoint and endorsed by Cross Gov CIO
Council
11 early adopter LAs on working groups (Registration and operation)
Sub-group reports defining policy on key areas
–
Registration, Operational Impact, Trust and Sustainability

Full business case and evaluation of proposals completed end
November

Government Gateway appointed to develop components of solution
EAS Governance
SRO
DWP
(Kenny
Robertson)
DCSF
(Tim Wright)
CLG
(Roy Marshall)
CIO/CTO
Council (Kevin
Murphy)
ContactPoint
EAA
Working
Group
Brent LA
EAS
Project Board
Becta
Gov Connect
EDT
LAs:
Salford
Newham
St Helens
Herts
Derbyshir
CLG/DCSF CoI
working group
e
Hants
Leeds
London Connects
LeGSB
DWP
Cabinet Office / eDT
NHS
Ministry of Justice / CJIT
MoD
CSIA / CESG
Becta
Operational
model &
implementation
guide
Salford
+6
Policy on min
registration
procedures
Achieving
shared trust
Sustainability
and migration
LeGSB
Hants
Newham
Brent
NHS; CSIA
DCSF
CESG
Gov Connect
CLG
DCSF
EDT
DWP
How will the solution look?
Common Trust Framework (rules & standards)
LA
Shared
Identity
Provider
Service
(IDP)
Authentication
Broker
LA
LA
NHS
Own IDP
Service
Own IDP
Service
Quick and simple integration
LA
DCSF
Applications
DWP
Applications
Other
central govt
apps
Components of the solution
Registration Authority (LA or National Partner)
People and
processes
Registration
systems
Administrator
Central Hub
Authentication Broker
Broker
service
Gateway
service
Service
Shared Identity Provider
Service Provider
Account
Attributes
Identity
checking
People and
processes
Web
service
portal
Issue
credentials
Service Integration Support
Application
integration
service
Store
Attributes
People and
processes
Test
environment
provision
Integration support for
central government services
User
Authentication
New Government
Gateway capability
Existing Government
Gateway platforms