Sawubona, mfundi othandekayo!
Bengilokhu ngilandela ngenkuthalo izibuyekezo nezindaba zohlelo lwe-Digital Economy. Ngokombono wesisebenzi sangaphakathi sohlelo lwe-EGAIS, yiqiniso, inqubo yamashumi eminyaka. Futhi kusukela ekubukeni kwentuthuko, futhi kusukela ekuhloleni, ukuhlehliswa kanye nokuqaliswa okuqhubekayo, okulandelwa ukulungiswa okungenakugwemeka nokubuhlungu kwazo zonke izinhlobo zezimbungulu. Noma kunjalo, udaba luyadingeka, lubalulekile futhi seludlulelwe yisikhathi. Ikhasimende eliyinhloko nomshayeli wakho konke lokhu kujabulisa, kunjalo, umbuso. Eqinisweni, njengawo wonke umhlaba.
Zonke izinqubo kudala zigelezela kudijithali noma endleleni eya kuyo. Kusemnandi. Nokho, kukhona izinhlangothi ezihlehlayo zezindondo zomehluko. Ngingumuntu osebenza njalo ngesiginesha yedijithali. Ngingumsekeli mhlawumbe "izolo", kodwa "okudala" izindlela ezithembekile neziwinayo zokuvikela isiginesha ye-elekthronikhi usebenzisa amathokheni. Kodwa i-digitalization isibonisa ukuthi konke sekunesikhathi eside "kumafu" futhi i-CEP nayo idinga ukuya lapho futhi idinga ngokushesha okukhulu.
Ngazama ukuthola, kuze kube manje ezingeni lesisekelo somthetho nezobuchwepheshe, lapho kwakungenzeka khona, ukuthi izinto zinjani ngefu ES ezweni lethu naseYurophu. Eqinisweni, kushicilelwe incwadi yesayensi engaphezu kweyodwa ngalesi sihloko. Ngakho-ke, babiza abahle kulolu daba ukuthi baxhumane nokuthuthukiswa kwesihloko.
Kungani i-CEP efwini iheha? Eqinisweni, kukhona okuhle. Lezi pluses zanele. Kuyashesha futhi kuwusizo. Kuzwakala njengesiqubulo sokukhangisa, uzovuma, kodwa lezi yizici ezihlosiwe ze-EDS esekelwe efwini.
Isivinini sisekwazini ukusayina amadokhumenti ngaphandle kokuboshelwa kumathokheni noma emakhadini ahlakaniphile. Akusibophi ukuthi sisebenzise ideskithophu kuphela. Umlando we-cross-platform wamaphesenti ayikhulu wanoma iyiphi i-OS neziphequluli. Lokhu kuyiqiniso ikakhulukazi kubalandeli bemikhiqizo ye-Apple, okukhona kubo ubunzima obuthile ekusekeleni i-ES ohlelweni lwe-MAC. Phuma kunoma yikuphi emhlabeni, inkululeko yokuzikhethela ye-CA (hhayi ngisho neyaseRussia). Ngokungafani nezingxenyekazi zekhompuyutha ze-CEP, i-cloud computing igwema inkimbinkimbi ye-software nokuhambisana kwehadiwe. Okungukuthi, yebo, kulula, futhi, yebo, ngokushesha.
Futhi umuntu angalingwa kanjani ubuhle obunjalo? Usathane usemininingwaneni. Ake sikhulume ngezokuphepha.
"Liguqubele" CEP eRussia
Ukuvikeleka kwezixazululo zefu, futhi ikakhulukazi isiginesha yedijithali, ingenye yezinhlungu eziyinhloko zabantu abavikelekile. Yini ngempela engingayithandi, umfundi uzongibuza, ngoba wonke umuntu usebenzise izinsizakalo zamafu isikhathi eside, futhi nge-SMS kunokwethenjelwa nakakhulu ukwenza ukudluliselwa kwebhange.
Eqinisweni, futhi, emuva emininingwaneni. I-Cloud EDS yikusasa, okunzima ukuphikisana nalo. Kodwa hhayi manje. Ukuze wenze lokhu, kufanele kube nezinguquko zokulawula nezomthetho ezizovikela umnikazi we-EDS yamafu.
Yini esinayo namuhla? Kunenqwaba yemibhalo echaza umqondo we-ES, ukuphathwa kwemibhalo ye-elekthronikhi (EDF), kanye nemithetho yokuvikela ulwazi kanye nokusakazwa kwedatha. Ikakhulukazi, kuyadingeka ukucabangela i-Civil Code (Civil Code of the Russian Federation), elawula ukusetshenziswa kwe-ES kumadokhumenti.
I-Federal Law No. 63-FZ "On Electronic Signature" yangomhla ka-April 06.04.2011, XNUMX. Umthetho oyinhloko kanye nohlaka ochaza incazelo evamile yokusetshenziswa kwamasiginesha kagesi ekuthengiseni kwemvelo ehlukahlukene kanye nokuhlinzekwa kwezinsizakalo.
I-Federal Law No. 149-FZ "Ngolwazi, Ubuchwepheshe Bolwazi Nokuvikelwa Kolwazi" yangomhla zingama-27.07.2006 kuJulayi, XNUMX. Lo mbhalo ucacisa umqondo wedokhumenti ye-elekthronikhi nazo zonke izingxenye ezihlobene.
Kunezinye izenzo zomthetho ezibandakanyekayo ekulawuleni i-EDF
I-Federal Law 402-FZ "Ku-Accounting" yangomhla ka-06.12.2011. Umthetho womthetho uhlinzekela ukuhlelwa kwezidingo zemibhalo ye-accounting kanye ne-accounting ngendlela ye-elekthronikhi.
Kuhlanganisa. ungakwazi ukucabangela i-Arbitration Procedure Code ye-Russian Federation, evumela imibhalo esayinwe yi-ES njengobufakazi enkantolo.
Futhi kwaba lapha lapho kwenzeka kimi ukuthi ngimbe ngokujulile endabeni yokuphepha, ngoba izindinganiso zethu zamathuluzi okuvikela i-crypto-protection ahlinzekwa yi-FSB futhi ziqinisekisa ukukhishwa kwezitifiketi zokuvumelana. Kusukela ngo-February 18, kwethulwa ama-GOST amasha. Ngakho-ke, okhiye abagcinwe efwini abavikelwe ngokuqondile izitifiketi ze-FSTEC. Ukuvikelwa kokhiye ngokwabo kanye nokungena okuvikelekile "efwini" amatshe egumbi esingakanqumi ngawo. Okulandelayo, ngizocabangela isibonelo somthethonqubo e-European Union, esizobonisa ngokucacile uhlelo lokuphepha oluthuthuke kakhulu.
Okuhlangenwe nakho kwaseYurophu ekusebenziseni ifu ES
Ake siqale ngento esemqoka - ubuchwepheshe befu, hhayi i-ES kuphela, ibe nendinganiso ecacile. Isisekelo se-Cloud Standard Coordination (CSC) Group ye-European Telecommunications Standards Institute (ETSI). Nokho, kusenomehluko kumazinga okuvikela idatha kuwo wonke amazwe.
Isisekelo sokuvikelwa kwedatha okuphelele siyisitifiketi esiyisibopho sabahlinzeki ngokuya nge-ISO 27001:2013 yezinhlelo zokuphatha ukuphepha kolwazi (i-Russian GOST R ISO / IEC 27001-2006 ehambisanayo isekelwe enguqulweni yango-2006 yaleli zinga).
I-ISO 27017 ihlinzeka ngezinto zokuphepha ezengeziwe zefu ezingekho ku-ISO 27002. Isihloko esisemthethweni esigcwele saleli zinga sithi "Ikhodi Yokusebenza yezilawuli zokuphepha zolwazi esekelwe ku-ISO/IEC 27002 yezinsizakalo zamafu" ("Ikhodi yokusebenza yokuphepha kolwazi izilawuli ezisuselwe ku-ISO/IEC 27002 yezinsizakalo zamafu").
Ehlobo lika-2014, i-ISO ishicilele i-ISO 27018:2015 mayelana nokuvikelwa kwedatha yomuntu siqu emafini, futhi ekupheleni kuka-2015, ISO 27017:2015 kuzilawuli zokuphepha kolwazi zezixazululo zamafu.
Ekwindla ka-2014, uMthethonqubo omusha wePhalamende LaseYurophu No. 910/2014, obizwa nge-eIDAS, waqala ukusebenza. Imithetho emisha ivumela abasebenzisi ukuthi bagcine futhi basebenzise ukhiye we-CEP kuseva yomhlinzeki wesevisi othembekile ogunyaziwe, lokho okubizwa nge-TSP (Umhlinzeki Wesevisi Yokuthenjwa).
I-European Committee for Standardization (CEN) ngo-Okthoba 2013 yamukele ukucaciswa kobuchwepheshe CEN / TS 419241 "Izimfuneko Zokuphepha Zezinhlelo Ezithembekile Ezisekela Ukusayinwa Kweseva", ezinikezelwe ekulawuleni i-EDS yamafu. Idokhumenti ichaza amazinga amaningana okuthobela ukuphepha. Isibonelo, ukuthobela "izinga lesi-2" elidingekayo ukuze kwakhiwe isiginesha ye-elekthronikhi efanelekayo, ukusekela izinketho eziqinile zokuqinisekisa komsebenzisi. Ngokwezidingo zaleli zinga, ukuqinisekiswa komsebenzisi kwenzeka ngokuqondile kuseva yesiginesha, ngokuphambene, isibonelo, ekugunyazweni okuvunyelwe "kwizinga 1" kuhlelo lokusebenza, ngokwalo, olufinyelela iseva yesiginesha. Futhi, ngokuhambisana nalokhu kucaciswa, okhiye besiginesha yomsebenzisi bokwakhiwa kwe-ES efanelekayo kufanele bagcinwe kumemori yedivayisi evikelekile ekhethekile (imoduli yokuphepha kwehadiwe, i-HSM).
Ukuqinisekisa komsebenzisi kusevisi yefu kufanele okungenani kube yizinto ezimbili. Njengomthetho, inketho efinyeleleka kakhulu futhi esebenziseka kalula ukuqinisekisa ukungena ngekhodi etholwe kumlayezo we-SMS. Ngakho-ke, ngokwesibonelo, ama-akhawunti amaningi omuntu we-RBS amabhange aseRussia asetshenziswe. Ngokungeziwe kumathokheni avamile we-cryptographic, uhlelo lokusebenza ku-smartphone kanye namajeneretha ephasiwedi esikhathi esisodwa (amathokheni e-OTP) nawo angasetshenziswa njengendlela yokuqinisekisa.
Ngingafingqa umphumela omaphakathi okwamanje, mayelana neqiniso lokuthi ama-CEPs amafu asakhiwa ezweni lethu futhi kusesekuseni kakhulu ukuthi singasuka ensimbi. Eqinisweni, lokhu kuyinqubo yemvelo, okuthi ngisho naseYurophu (oh, enkulu!) Yahlala cishe iminyaka engu-13-14, kwaze kwathuthukiswa izindinganiso ezinembile noma ezingaphansi.
Kuze kube yilapho sithuthukisa ama-GOST amahle alawula izinsizakalo zethu zamafu, kusesekuseni kakhulu ukuthi singakhuluma ngokwenqatshwa okuphelele kwezixazululo zehadiwe. Kunalokho, manje, ngokuphambene nalokho, bazoqala ukuya βkuma-hybridsβ, okungukuthi, basebenze namasignesha amafu. Ezinye izibonelo ezihambisana namazinga ase-Europe okusebenza ne-Cloud sezivele zisetshenzisiwe. Kodwa okuningi mayelana nalokhu esihlokweni esisha.
Source: www.habr.com