United Shipbuilding Corporation created corporate certification center

On September 26, 2018 the Technoserv company announced project completion on creation of the corporate certification center (CC) for JSC United Shipbuilding Corporation (JSC OSK).

Basic functions of certification center are creation and issue to users of the strengthened unqualified electronic signatures (ES) and certificates of keys for their check for the purpose of the organization of internal legally significant electronic document management. Use of cards tokens increases legitimacy of the EDS and allows to formalize its use, providing the legal signature attestation of the electronic document.

Exhibition stand of JSC OSK. Photo: topwar.ru

Besides, the certification center has an opportunity to create the advanced electronic signature (with details about time of its creation and relevance of the used certificate) that is important for long-term archive storage of electronic documents and the proof of correctness of the EDS judicially.

"For all child structures of JSC OSK is a full-fledged management company, the center of adoption of the main solutions. The project on deployment of certification center became a logical process step of integration and creation from the enterprises entering into holding, harmoniously working mechanism. Uniform UTs significantly simplifies approval of documents in corporation and reduces costs at the organization of document flow. The project is complete in 7 months, all phases were completed qualitatively and in time". Anton Dumin, director of the department of information technologies of OSK

For September, 2018 UTs services about 400 users in the Moscow and St. Petersburg divisions of holding, however the architecture of an information system provides a possibility of expansion of number of users till 1000 without change of IT infrastructure. Also scaling of the solution within which already unrolled own UTs of some enterprises of JSC OSK will be integrated with a centralized system is supposed.

The structure of certification center includes two technology complexes: the first — means directly UTs intended for registration procedures of users, formation of keys, creation of certificates of verification of the electronic signature and management by them (updates, suspensions, resuming and cancellation); the second — the additional resources of protection ensuring functioning of service according to requirements of the legislation.

As noted integrator, within the project it was delivered cryptographic to software only of domestic production, included in the unified register of the Russian programs for electronic computers and databases. Physical protection of a system is also provided. The structure of the solution provides a role model of access isolation of employees of different categories to components of certification center.

"Available own UTs the companies having a huge geographically distributed information system which part local computer networks on technology platforms of divisions, and at the same time the observing increased requirements in the field of data protection are are especially interested. Develop such centers really difficult. Within historically developed IT landscape it is necessary to create the isolated secure system including in the perimeter important and not always public information (data on employees, their positions) and also algorithms of its processing (connection, removal, modification, actions in case of a compromise)". Sergey Terekhov, director of competence center of information security of Technoserv company

Within the project the command of Technoserv performed the following works:

• preproject examination of IT infrastructure is conducted, requirements to data security provision, processed in a system are created;
• the architecture of certification center according to regulations of the Russian legislation, first of all No. 63-FZ "About the electronic signature", and requirements of holding is developed;
• delivery and installation of the necessary equipment and the software of UTs and management system for lifecycle of hardware of authentication and the electronic signature is executed, installation and setup of information security tools and all necessary tests are carried out;
• organizational and administrative documentation is prepared and processes for work of employees with EDS certificates are implemented.