smart forms and process managing in israel government environment making gov service available any...
TRANSCRIPT
Smart Forms and Process Managing in Israel Government
EnvironmentMaking Gov service available
any time anywhere
June 2009
Agenda• eForms Solutions in Gov.il
• Government Service Bus = GSB
• Electronic signature
Government Process Management = GPM
Background• The goal: Improving service
Government ministries, as citizen serving units, are trying to provide as efficiently as possible the services for the end user.
• Main problems:
Many processes involve manual paper data entry increasing costs, errors and limit process availability.
History• 2002 – 2005
– Understanding what are forms– Pilots to understand customer/ministry needs– Evolution from product to service solution.
– Conclusions:
1.Build a central Form Service unit for all ministries and city councils
2.Develop technology to support needs and service
Service characteristics• Mimic paper characteristics:
– Signature: support digital signature
– Portable solution : Offline
• Compatible for offshore development: Stand alone, simple solution
• Easy web integration: based on HTML
• Flexible
• Modular : several solution components
• Cross ministry and city councils team solution
Government Form advantages
• Data is extracted and not re-typed• Does not require user management• Transparent to organization processes • Does not require opening organization network• Can be sent by using email• User can save a copy of the exact state of form• Does not dependent on site availability • Support digital signature• The form is an independent unit
Developers
• Using offshore- 30 developers
• Using state goal of preferred employment areas.
• ROI cost
• Basic development training needed.
Project manager
• Cross service knowledge (Forms, payments, GSB, security …)
• Every form is a project.
• Analyze and management capabilities
• Drive/push ministries for improved services
• Re-design processes and forms during analysis
• 10 Project managers.
Customers service
• Help Desk for all the forms 24 X 7
• Continues feedback process, integrated in Forms team Project managers, developers.
• Citizen single point of contact
• Sensitive to user suggestions and improving the forms accordingly.
• CRM management of issues reported
Current status (JUN 2009)
• Over 200 units are using AGForms.
• 1200 electronic forms have developed
• Over 540,000 users have downloaded Toolbar.
• 2000 planned forms are available on site.
• Most forms are ready for Digital signature.
Types of available forms
• Print and fill (Old)
• Fill and print –Readable, dynamic and minimizing errors
• Fill and submit - These forms are the most attractive forms for the citizens since they save him from going to the ministry and spending time.
DEMO
Travel Expense report
POPAL visit
Exporter Information
Registration card
AGForms Manager• Allow all ministries to manage online forms in
a central site with no IT effort
• Two stage implementation:– Move office to online forms submited to Gov site
– Then integrate form into back office systems
Typical architecture
BPMERPCRMPLM
XML
Website / Email
AGForms Server
AGFormAGForm
XML
1
2
3
4
5
Online / OfflineFAX
OCR
6
5a
AGFormAGFormXML
Optional
Payment integration• Payment service are an important part of
form processes
• AGForms solution offers a process with seamless direction to payment service while filling the form and end result of recipient implemented within the form for user.
• Demo before payment
• Demo after payment
Developer form features• Base on HTML.• Every HTML editor.• Every kind of html extension can be used
(AJAX..)• Tool kit for Dreamweaver and Microsoft Visual
studio.• SDK for Server Side.• BizTalk methodology.• Tutorial and Sample.• Curses for developer .
Signing forms digitally
• Digital signatures are growing rapidly common .• Thousands of people already hold smart cards and
soon the ID will hold a certificate.• The popularity of the digital signature is expected
to boost the use of smart forms and saving the citizens from signing paper forms.
• The solution is fully compatible with the digital signature law requirements.
• Form processing will become completely paperless.
Citizens Form advantages• Service is available anytime, anywhere.• Saving time by submitting form over web or by
email. • Minimizing errors by using values list and
validation checks.• The interactive government web site offers now
thousands of forms using AGFormsEvery Israeli citizen and company that interacts with the government is familiar with this solution and there for it has become a standard.
Implementation strategy• In general, each ministry has it’s own IT
resources.• The Israeli government would like a unified
solution, to motivate ministries using AGForms. It allows to use for free the resources of form analysis, designers and managers.
• Each ministry can choose to use some, all or none of the services.
• We also have now cross – ministry status system that allowing the user to track the status of the form regardless of the ministry dealing with it.
GSB GOALS
• Enable governmental access to the internet.
• Enhanced services to citizens.
• Publication of governmental information and services .
• Perform these tasks in a secure and safe manner.
E-GOV.IL HISTORY• Static Content Web sites.
– Update computers.
• Dynamic content Web Applications.– “Network Separator” computer.– “separate servers into different nets.
• Service based web applications.– New need.
WS-GOV.IL Requirements
• Real time connectivity.• Reserve data ownership.• Transaction.• Non distributed DB.
WS-GOV.IL - challenges
• Maintaining information Security.– Attacks.– Protocol proxy.– Content Inspection and Analysis.
• Non Repudiation.
• Standardization.
• Maintaining Confidentiality.
WS-GOV.IL – Implementation & Standardization
• Using known Standards (WS-I).• Support from different and diverse
development platforms.• Implementing WS-SECURITY standard
for government use
WS-GOV.IL advantages
• Why Web Services ?• Well known standards.• Flexible and manageable xml schema.• Cross Platform, widely accepted standard.• Easy SOA implementation.
• Meets rigid security requirements.» Strong Authentication.» Filtering Abilities.
Ws-gov.il request<soap envelope request>
<policy ws-gov.il><sign> x.509</sign>
<authentication>x.509 </authentication>
</policy>
<data><ID>000000018</ID>
</data>
</envelope>
Ws-gov.il response<soap envelope response>
<policy ws-gov.il><sign> x.509</sign>
<authentication>x.509 </authentication>
</policy>
<data><name> pinhas rozenblum</name>
</data>
</envelope>
Sample
Working Services• C2G:
– Renew passport (by form service)– Renew guard license (by form service)– Renew driving license
• B2G:– 200 customs agent use custom agency import and export WF
• G2G:– Import authority and customs – Clearing (credit) service by payment service
• G2M– RAF project and SHACHR project by Ministry of Welfare.
More by type
• Payments. • Ministry of Transportation. • Ministry of Interior.
• Forms Server – Processes.• Vehicle administration bureau. • Chief Scientist Office.
• Applications.• Ministry of Welfare.
• Services. • Customs. • Ministry of Justice.
– And 300 more services in G2G B2G G2M. And 400 applications user
Step 1 verify signature and userSignature regularity
Validation Credentials Issuer CRL
Verify Reply Attack User identify by LDAP
Step 2 soap regularity and authorization
WS-I regularityW3C - regularityWs-Gov.il – regularityXML Attack.Soap method authorization.
Stpp 3 XML by XSD
<TofesID>[email protected]</TofesID> <ZihuyMeshalem>33211475</ZihuyMeshalem> <MisparKabala>1785665</MisparKabala> <Schum>225</Schum> <TaarichTashlum>2008-02-05T11:07:54.0000000+02:00</TaarichTashlum> <MisKartisAshrai>4500</MisKartisAshrai> <ChevraSoleket>DINRS</ChevraSoleket> <IshurShva>0865644</IshurShva> <TarichIshurShva>2008-02-05T11:07:54.0000000+02:00</TarichIshurShva> <ShemMeshalemBemelelChofshi>ליאת פוקס</ShemMeshalemBemelelChofshi>
<xs:element name="TofesID" type="xs:string" /> <xs:element name="ZihuyMeshalem" type="xs:long" /> <xs:element name="MisparKabala" type="xs:long" /> <xs:element name="Schum" type="xs:float" /> <xs:element name="TaarichTashlum" type="xs:dateTime" /> <xs:element name="MisKartisAshrai" type="xs:int" /> <xs:element name="ChevraSoleket" type="xs:string" /> <xs:element name="IshurShva" type="xs:string" /> <xs:element name="TarichIshurShva" type="xs:dateTime" /> <xs:element name="ShemMeshalemBemelelChofshi" type="xs:string" />
SOA next Step
• To build an SOA there must be (Infrastructures ):– Strong identity credential for people (i.e. PKI certificate).– Strong identity credential for service providers and
service consumers (i.e. certificate.)– Provide white pages services.– To help control access.– To determine what privileges a person should have.
• God services (killer Applications).• Agility.• reuse• Cross offices process.• Long time process.
Some key to remember
• Think messages not files
• Expose functions.
• Small message some times is better.
• Thinks SOA
ThanksPinhas Rozenblum
Yoav CrombieAGForms Product Manager
End user TOOLBAR features
About
Options
IndexClear
Help
Import/Export
LockEmbed data
Attachment
Verify signatures
Submit
Save
Display form creator Encryption
AGForms Modules • AGForms browser Tool Bar
• AGForms Server
• AGForms – Visual Studio/Dreamweaver add on.
• Process Manager
Using AGForms
• In order to use and see AGForms, the user must install the AGForms Toolbar.
• The toolbar is visible only when AGForms content is shown by the browser and is hidden automatically in other situation.
• The toolbar can be installed from Gov.il site..
• The toolbar is free for use.
Technology Features & advantages
• Support saving locally and working offline• Full support of digital signature• Form data encryption• Display live content from web service in form• Validity checks during usage and before print• Submit as mail or by http• Build in service functions• Support attachments and images• Import and export data• Print template control• Authentication of form identity• Lock form
Digital signature of form
• Signature of form content includes images and attachments.
• Optional graphic display of scanned signature.• Automatic versioning of signed copies. • Option to display form as signed even after
changes. • Support of several levels of signature verification.• Digital signature rules to define certificate
properties that are required for signing.
Digital signature of form (cont)
• Content change alert
• Support multiple signatures on a single form
Back
Form encryption• AGForms can encrypt form data using PKI
certificates.• Encryption is done automatically upon
submission of the form , requiring compatible certificates to see data when receiving the form.
• Complex certificates definition are supported like needing 2 concurrent certificates out of 5 to see form data. Certificates are typically stored on a smart card or USB Token.
WEB SERVICE Connectivity Display live data from web service
• Display data from web service.• Configure form to load values on demand or
on form load. • Option to embed values into form for offline• Allow display of values from any system
supporting XML presentation of data.
Back
Build in validation checks
• Required fields.
• Min / Max length check.
• Unique values check for fields or field combinations.
• Build in data types such as date, integer, id num.
• Friendly error messages with names field.
• Custom Constrains integration.
Back
Form Submit
• Submit by mail.
• Submit by mail server.
• Submit by HTTP.– Action on return (Redirect, Payment process etc.).
– Authentication.
Press for Screen Shot
Back
Build in service functions
• Dynamic tables.
• Calendar.
• Dynamic change of form content.
• Conditional Hiding/Showing parts of form.
• Selection values dependencies.
• Floating window display for long text.
General form attributes
• Interface language and form direction.
• Required field marking.
• Visibility and activity of TOOLBAR icons.
• TOOLBAR version compatibility.
• Disabling browser file menu. Press for
Screen Shot
Back
Attachments
• Support adding attachments into the form and into the fields.
• File types control.
• Max file size control.
• Allow users to add images to be displayed embedded in the form.
Back
Printing capabilities• Ability to add a printing
template different from the regular form.
• Print layout control. Landscape / Portrait
• Print margin control.• Allow print only after
data validation .
Back
Import/Export
• Build in export data to XML.
• Optional import of data by user.
• Import supports automatic enlargement of dynamic tables.
Back
Form creator identification
User can check form creator by displaying his certificate
Form will automatically close upon changes that were done not by application interface
Back
AGForms – server API• AGForms server includes:
– Form Class
– Form Handler Class
– Attachment Class
– Signature Class
Back
Server API- Form Class• Main features:
– Extracting form data as XML. – Importing xml data into form.– Managing attachments.– Form XSD retrieval and checking.– Form compare.– Field encrypting.– Form originality check.– Locking and releasing fields.
Back
Server API- Form Handler Class• Main features:
– Filtering dangerous file such as applet, scripts.
– Check data compatibility by XSD schema.
– Mail submission of form by parameters.
Back
Server API- Attachment Class
• Main features:– Detaching and saving attachments local path.
– Get attachments properties.
– Adding and removing attachments.
Back
Server API- Signature Class
• Main features:– Collection and verification of signatures.
– Signed form retrieval.
Back
AGForms Process Manager
• AGForms Process Manager is a simple workflow solution for typical multistage form process flow in the organization.
• The process manager allows you to perform the following tasks:
– Update field values, Lock/Unlock fields, Hide/Show fields, Send form by mail, Execute external programs, Write form data into DB, Save form/Attachments, Import/Export data into XML, Verify signatures, Submit form to web service.
• Tasks are bundled by stages and can be executed using complex terms combining from data and/or external data.