lanka gate core components - government cio workshop dec 2013
DESCRIPTION
Lanka Gate Core ComponentsTRANSCRIPT
1
Lanka Gate ArchitectureLanka Gate ArchitectureAnd itsAnd its
ComponentsComponents
Crishantha [email protected]
2
Lanka Gate is a typical SOA environment
3
SOA is an architectural style of building software applications that promotes
loose coupling between components so that you can reuse them
4
Service Registry
Service Consumer
Service Provider
Find
Publish
Bind
Web Service
Service Description
5
6
Lanka GateLanka Gate
CertificateAuthority
Country Portal
Lanka GovernmentNetwork
48 Ministries
Private SectorCompanies
60 Departments 8 ProvincialCouncils
Services
Mobile Portal
Mobile ServiceProviders
Citizens
Application
271 DS Offices
Application
Credit CardPayment Providers
Private SectorVPN
Application
Services
Application
Services
32 ProvincialMinistries
16 ProvincialDepartments
Application
Services
Mobile Payment Service
SMS, VXML
Mobile Payment Providers
Registry
7
LG Components● Core Components
– Lanka Interoperability eXchange (LIX)– Service Registry
● Supporting Components
– GovSMS– Lanka Government Payment Service (LGPS)– Lanka Government Cloud (LGC)– LGN and LGNCA
8
Lanka Interoperability Lanka Interoperability Exchange (LIX)Exchange (LIX)
9
10
The Service RegistryThe Service Registry
11
Service Registry
Service Consumer
Service Provider
Find
Publish
Bind
Web Service
Service Description
12
SecuritySecurity
13
Authentication
Confidentiality
Integrity
NonRepudiation
14
PKI enables enables parties of an ecommerce transaction to identify one another by providing authentication with digital
certificates, and allows reliable business communications by providing confidentiality
through the use of encryption, and authentication, data integrity and a
reasonable basis for nonrepudiation through the use of digital signatures.
(Resource WebTrust)
15
Encryption
16
Digital Signatures(Signing Process)
17
Digital Signatures(Verification Process)
Step 1
Step 2
18
LGN CA is the Sri Lankan Government PKI and it manages the digital
Certificates within the Sri LankanGovernment
19
The Transport Level Security
● One way (1way) SSL– The server must represent the certificate to
the client– The client is not required to present a
certificate to the server
20
The Transport Level Security● Two way (2way) SSL
– Known as client authentication as well– Server and Client both present their
certificate to each other (The authentication happens both ways)
21
Point to Point SecurityESB as a Security Gateway
22
End to End Securitywith a ”Pass Through Proxy”
23
End to End Security with a ”Secure Proxy”
24
Thank You!