The Analytical Center's experts and representatives of federal and regional executive authorities continue to discuss the E-Government 2020 System-Level Project for the Russian Federation; specifically, they are talking about the security of electronic government and the public’s trust in it.
Independent expert Ilya Trifalenkov has noted three groups of risks to the information security of electronic government: systemic risks, technological risks, and regulatory and legal risks. “In order to minimize the regulatory and legal risks we need to improve the existing laws and regulations to ensure equal protection for all categories of information,” the expert explained. “In addition, we need to put a government agency in charge of it and define the rules for the interaction between ministries and agencies using the e-government system. As far as systemic risks are concerned, basic methodologies and a technology policy must be developed to ensure information security within e-government, the specialist noted. “And as for minimizing information security risks with regards to technologies, a set of global services need to be developed and deployed that would include performance monitoring systems, systems to control the security of components and users of public services, systems that ensure cryptographic security of the infrastructure databases and monitor the security of application software,” Mr. Trifalenkov said.
During the discussions the experts also talked about such an important aspect as public trust in e-government. Today, public trust is ensured through a set of services that create the Shared Space of Trust. At the same time a network of Information Systems of Head Authentication Centers has been created that offers some of these services but it is not yet being used to capacity. Those participating in the discussions believe that information system operators are not particularly interested in working with the Shared Space of Trust: they would prefer to limit the number of authentication centers that accept certificates and thereby restrict the number of digital signature operators. This often results in the operators raising the price of digital signatures by a factor of 2-3. In addition, the regulations that govern digital signature management processes are incomplete and methodological documents describing the benefits of using the Shared Space of Trust and recommendations for how to use its services are lacking.
The discussions are organized by the Analytical Center for the Government of the Russian Federation in conjunction with G.V. Plekhanov Russian Economic University and the Institute for the Development of Information Society.
Schedule of upcoming discussions:
April 21st: “E-Government 2020 System-Level Project for the Russian Federation: Integration and Cooperation Mechanisms for the E-government” and “E-Government 2020 System-Level Project for the Russian Federation: Managing E-government Development
April 25th: E-Government 2020 System-Level Project for the Russian Federation: Provisional Plan for E-government Development in Russia