Nyob zoo tav su, nyob zoo nyeem!
Kuv tau ua raws li cov kev hloov tshiab thiab xov xwm ntawm Digital Economy program rau qee lub sijhawm. Los ntawm qhov pom ntawm ib tus neeg ua haujlwm sab hauv ntawm EGAIS qhov system, tau kawg, cov txheej txheem yuav kav ntau xyoo. Ob qho tib si los ntawm qhov kev pom ntawm kev txhim kho, thiab los ntawm qhov kev pom ntawm kev sim, rov qab thiab kev siv ntxiv, ua raws li kev hloov kho tsis pom kev thiab mob ntawm txhua yam kab. Txawm li cas los xij, qhov teeb meem yog qhov tsim nyog, tseem ceeb thiab ceev ceev. Cov neeg siv khoom tseem ceeb thiab tus tsav tsheb ntawm txhua qhov kev lom zem no yog, ntawm chav kawm, lub xeev. Qhov tseeb, ib yam li thoob plaws lub ntiaj teb.
Tag nrho cov txheej txheem tau ntev txav mus rau hauv digital lossis tab tom taug kev mus rau nws. Qhov no tseem zoo kawg nkaus. Txawm li cas los xij, muaj cov downsides rau medals rau kev ua tau zoo. Kuv yog ib tug neeg uas niaj hnub ua haujlwm nrog kev kos npe digital. Kuv yog tus txhawb nqa ntawm tej zaum " nag hmo", tab sis "laus-fashioned" txhim khu kev qha thiab yeej-yeej txoj kev tiv thaiv hluav taws xob kos npe siv tokens. Tab sis digitalization qhia peb tias txhua yam tau nyob hauv "huab" tau ntev thiab CEP tseem xav tau nyob ntawd thiab xav tau sai heev.
Kuv sim txiav txim siab, nyob rau theem ntawm txoj cai lij choj thiab cov txheej txheem, qhov twg ua tau, yuav ua li cas cov khoom sawv nrog huab hluav taws xob kos npe ntawm no thiab hauv Tebchaws Europe. Qhov tseeb, ntau tshaj ib daim ntawv pov thawj scientific twb tau luam tawm ntawm lub ncauj lus no. Yog li ntawd, peb txhawb cov kws tshaj lij hauv qhov teeb meem no los koom nrog kev txhim kho cov ncauj lus.
Vim li cas CEP hauv huab tau ntxim nyiam? Qhov tseeb, muaj qhov zoo. Muaj txaus ntawm cov txiaj ntsig no. Nws yog ceev thiab yooj yim. Nws suab zoo li cov lus tshaj tawm, koj yuav pom zoo, tab sis cov no yog cov yam ntxwv ntawm lub hom phiaj ntawm huab digital kos npe.
Kev ceev yog nyob rau hauv lub peev xwm los kos npe rau cov ntaub ntawv yam tsis tau khi rau tokens los yog smart cards. Tsis yuam kom peb siv lub desktop xwb. Ib puas feem pua ββzaj dab neeg hla lub platform rau txhua OS thiab browsers. Qhov no yog qhov tseeb tshwj xeeb tshaj yog rau cov kiv cua ntawm Apple cov khoom, rau cov uas muaj qee qhov teeb meem hauv kev txhawb nqa hluav taws xob kos npe hauv MAC system. Tawm ntawm txhua qhov chaw hauv ntiaj teb, kev ywj pheej xaiv ntawm CAs (txawm tias tsis yog Lavxias). Tsis zoo li CEP hardware, huab technologies tso cai rau koj kom tsis txhob muaj teeb meem nrog kev sib raug zoo ntawm software thiab kho vajtse. Qhov twg, yog, yog yooj yim, thiab, yog, ceev.
Thiab yuav ua li cas ib tug tsis tau ntxias los ntawm xws li kev zoo nkauj? Dab ntxwg nyoog yog nyob rau hauv cov ntsiab lus. Wb tham txog kev nyab xeeb.
"Huab" CEP nyob rau hauv Russia
Kev ruaj ntseg ntawm huab kev daws teeb meem, thiab tshwj xeeb tshaj yog digital kos npe, yog ib qho ntawm cov ntsiab lus mob tseem ceeb rau cov kws tshaj lij kev ruaj ntseg. Qhov kuv tsis nyiam tiag tiag, tus nyeem ntawv yuav nug kuv, vim tias txhua tus tau siv cov kev pabcuam huab tau ntev, thiab nrog SMS nws tseem ntseeg tau ntau dua los ua kev hloov pauv hauv txhab nyiaj.
Qhov tseeb, dua, cia peb rov qab mus rau cov ntsiab lus. Huab digital kos npe yog lub neej yav tom ntej uas nyuaj rau kev sib cav. Tab sis tsis yog tam sim no. Ua li no, kev hloov pauv yuav tsum tshwm sim uas yuav tiv thaiv tus tswv ntawm huab digital kos npe.
Peb muaj dab tsi niaj hnub no? Muaj ntau cov ntaub ntawv uas txhais lub tswv yim ntawm kev kos npe digital, kev tswj cov ntaub ntawv hluav taws xob (EDF), nrog rau cov cai lij choj ntawm kev tiv thaiv cov ntaub ntawv thiab cov ntaub ntawv ncig. Tshwj xeeb, koj yuav tsum coj mus rau hauv tus account Civil Code (Civil Code ntawm Lavxias teb sab Federation), uas tswj kev siv hluav taws xob kos npe rau hauv cov ntaub ntawv.
Tsoom Fwv Teb Chaws Txoj Cai No. 63-FZ "Rau Electronic Signatures" hnub tim 06.04.2011/XNUMX/XNUMX. Txoj cai yooj yim thiab lub hauv paus ntsiab lus uas piav txog lub ntsiab lus dav dav ntawm kev siv cov kos npe digital thaum ua kev lag luam ntawm ntau hom thiab muab kev pabcuam.
Tsoom Fwv Teb Chaws Txoj Cai No. 149-FZ "Rau cov ntaub ntawv, cov ntaub ntawv thev naus laus zis thiab kev tiv thaiv cov ntaub ntawv hnub tim 27.07.2006 Lub Xya Hli XNUMX. Cov ntaub ntawv no qhia txog lub tswv yim ntawm cov ntaub ntawv hluav taws xob thiab txhua ntu.
Muaj cov kev cai lij choj ntxiv uas koom nrog hauv txoj cai ntawm EDI
Tsoom Fwv Teb Chaws Txoj Cai 402-FZ "Rau Kev Sau Npe" hnub tim 06.12.2011 lub Kaum Ob Hlis XNUMX. Txoj cai lij choj muab rau systematization ntawm cov cai rau accounting thiab accounting ntaub ntawv nyob rau hauv electronic form.
Incl. Koj tuaj yeem coj mus rau hauv tus account Arbitration Procedural Code ntawm Lavxias Federation, uas tso cai rau cov ntaub ntawv kos npe los ntawm hluav taws xob kos npe ua pov thawj hauv tsev hais plaub.
Thiab nws tau nyob ntawm no tias nws tau tshwm sim rau kuv kom nkag siab tob rau hauv qhov teeb meem ntawm kev ruaj ntseg, vim tias peb cov qauv kev tiv thaiv kev tiv thaiv crypto yog muab los ntawm FSB thiab xyuas kom muaj cov ntawv pov thawj ntawm kev ua raws. Thaum Lub Ob Hlis 18, GOST cov qauv tshiab tau qhia. Yog li, cov yuam sij khaws cia hauv huab tsis ncaj qha tiv thaiv los ntawm FSTEC daim ntawv pov thawj. Tiv thaiv cov yuam sij lawv tus kheej thiab nkag mus rau hauv "huab" yog lub hauv paus tseem ceeb uas peb tseem tsis tau daws. Tom ntej no, kuv yuav saib cov piv txwv ntawm kev tswj hwm hauv European Union, uas yuav ua kom pom tseeb txog kev ruaj ntseg zoo dua.
European kev paub siv huab digital kos npe
Cia peb pib nrog qhov tseem ceeb - huab technologies, tsis tsuas yog digital kos npe muaj tus qauv meej. Lub hauv paus yog Cloud Standard Coordination (CSC) pawg ntawm European Telecommunications Standards Institute (ETSI). Txawm li cas los xij, tseem muaj qhov sib txawv ntawm cov qauv kev tiv thaiv cov ntaub ntawv thoob plaws ntau lub tebchaws.
Lub hauv paus rau kev tiv thaiv cov ntaub ntawv yog yuav tsum tau ntawv pov thawj rau cov chaw muab kev pab raws li ISO 27001: 2013 rau cov ntaub ntawv kev ruaj ntseg tswj systems (tus coj Russia GOST R ISO / IEC 27001-2006 yog raws li nyob rau hauv 2006 version ntawm tus qauv no).
ISO 27017 muab kev ruaj ntseg ntxiv rau huab uas ploj lawm los ntawm ISO 27002. Lub npe tag nrho ntawm tus qauv no yog "Code of practice for information security controls based on ISO/IEC 27002 for cloud services." ISO/IEC 27002 for cloud services ").
Thaum lub caij ntuj sov xyoo 2014, ISO tau tshaj tawm ISO 27018: 2015 tus qauv ntawm kev tiv thaiv tus kheej cov ntaub ntawv hauv huab, thiab thaum kawg ntawm xyoo 2015, ISO 27017: 2015 ntawm cov ntaub ntawv kev ruaj ntseg tswj kev daws teeb meem huab.
Nyob rau lub caij nplooj zeeg xyoo 2014, qhov kev daws teeb meem tshiab ntawm European Parliament No. 910/2014, hu ua eIDAS, tau pib siv. Cov kev cai tshiab tso cai rau cov neeg siv khaws cia thiab siv tus yuam sij EPC ntawm tus neeg rau zaub mov ntawm tus neeg muab kev pabcuam uas tau lees paub, lub npe hu ua TSP (Trust Service Provider).
Thaum Lub Kaum Hli 2013, Pawg Neeg European rau Cov Qauv Txheej Txheem (CEN) tau txais qhov kev qhia tshwj xeeb CEN / TS 419241 "Cov Cai Tswj Xyuas Kev Nyab Xeeb rau Cov Txheej Txheem Ua Haujlwm Txhawb Cov Neeg Siv Khoom Kos Npe", nplooj siab rau cov kev cai ntawm huab digital kos npe. Cov ntaub ntawv piav qhia ntau theem ntawm kev ua raws li kev ruaj ntseg. Piv txwv li, "theem 2" kev ua raws cai yuav tsum tsim kom muaj kev kos npe hluav taws xob tsim nyog yuav tsum muaj kev txhawb nqa rau cov neeg siv cov kev xaiv muaj txiaj ntsig zoo. Raws li qhov yuav tsum tau muaj ntawm qib no, tus neeg siv kev lees paub tshwm sim ncaj qha rau ntawm tus neeg rau zaub mov kos npe, piv txwv li, rau qhov kev lees paub tau tso cai rau "theem 1" hauv daim ntawv thov uas nkag mus rau tus neeg rau zaub mov kos npe rau nws tus kheej. Tsis tas li ntawd, raws li qhov tshwj xeeb no, tus neeg siv kos npe cov yuam sij rau kev tsim hluav taws xob kos npe tsim nyog yuav tsum tau muab khaws cia rau hauv lub cim xeeb ntawm cov cuab yeej tshwj xeeb ruaj ntseg (hardware security module, HSM).
Cov neeg siv authentication nyob rau hauv ib qho kev pabcuam huab yuav tsum yog tsawg kawg yog ob yam. Raws li txoj cai, feem ntau siv tau thiab yooj yim-rau-siv kev xaiv yog kom paub meej tias tus ID nkag mus ntawm tus lej tau txais hauv SMS lus. Piv txwv li, feem ntau ntawm tus kheej RBS account ntawm Lavxias teb sab txhab nyiaj tau siv. Ntxiv rau qhov niaj zaus cryptographic tokens, ib daim ntawv thov ntawm lub xov tooj smartphone thiab ib lub sij hawm tus password generators (OTP tokens) kuj tseem siv tau los ua ib qho kev lees paub.
Txog tam sim no, kuv tuaj yeem kos cov lus xaus ib ntus hais txog qhov tseeb tias huab CEPs tseem tab tom tsim thiab nws tseem ntxov dhau mus kom deb ntawm hardware. Hauv txoj ntsiab cai, qhov no yog txheej txheem ntuj tsim, uas txawm tias nyob hauv Tebchaws Europe (oh, zoo heev!) tau siv sijhawm li 13-14 xyoo kom txog thaum cov qauv tsim muaj ntau dua lossis tsawg dua.
Txog thaum peb tsim cov qauv zoo GOST tswj peb cov kev pabcuam huab, nws tseem ntxov dhau los tham txog kev tso tseg tag nrho cov kev daws teeb meem kho vajtse. Hloov chaw, tam sim no lawv yuav, ntawm qhov tsis sib xws, pib txav mus rau "hybrids", uas yog, ua haujlwm nrog huab kos npe thiab. Qee qhov piv txwv uas ua tau raws li European qauv rau kev ua haujlwm nrog huab tau raug coj los siv. Tab sis peb yuav tham txog qhov no me ntsis ntxiv hauv cov khoom tshiab.
Tau qhov twg los: www.hab.com