Single Window Systems

In the OIC Member States

archiving of data should be automated and configured to periodically archive data to data

warehouse system. The data warehouse (for backup and archiving) and clustering systems will

dramatically increase the performances of the SW System and simplify the restoration and

recovery of the operational database. On the technical level, the Microsoft

SQL Server 2008 EE

has integrated Transparent Data Encryption (TDE), designed to provide protection not only on

data (cell) level, but also for the entire database, without affecting existing applications. SQL

Server encrypts data with a hierarchical encryption and key management infrastructure. Each

layer encrypts the layer below it by using a combination of certificates, asymmetric keys, and

symmetric keys. Asymmetric keys and symmetric keys can be stored outside of SQL Server in an

Extensible Key Management (EKM) module

With regards to reporting and analysis services, the current setup of TULPAR produces complex

ICT administrative tasks. The reporting and analysis services are performed by querying the

operational database. The TULPAR application and enquiry systems are not flexible; in case of

minor changes or request for additional report and analysis would require an enormous amount

of administrative efforts.

Authentication and Authorization Services

The authentication service of the TUPLAR SingleWindow is based on the single sign-on protocol

for all provided services. The authentication combines entry of user name and password for

registered users and is not supporting strong password policy, or any additional authentication

mechanism (e.g. SMS or email validation). The TULPAR authorization services are role-based.

The agencies have three levels of roles – operator (acceptance and validation of structured and

unstructured data set), officer (processing of requests) and director (decision making level).

The TULPAR Single Window is supporting electronic signature for submissions to the system

and from the systems and system-to-system signature for interconnected systems. There is only

one Certificate Authority (CA) in the Kyrgyz Republic and the Certificate Revocation List (CRL)

(expiration of validity, verification, revoked / invalidated certificates etc.) is available online.

The price of the digital signature is approximately 22 USD per year and all registered users have

to obtain the digital certificate prior to subscribing to the TULPAR platform.

4.3.

Moroccan Single Window

4.3.1.

Implementation Process and Progress

The Moroccan Single Window, called PortNet, was launched in 2008 and the IT platform is

operational since 2011. The SW development was part of the Morocco Trade Facilitation

Program (TFP) and e-Government initiative and has gone through the following stages:

Microsoft, Encryptions Hierarchy unde

(accessed January 2017).