E-Procurement for Improving Governance

abdomendebonairSecurity

Nov 2, 2013 (4 years and 5 days ago)

106 views





<
Back
|
Next
>



E
-
Procurement for Improving Governance


Session 5:

Standards in
eProcurement

A World Bank live e
-
learning
event addressing the design and
implementation of e
-
procurement infrastructure


E
-
Procurement for Improving Governance





<
Back
|
Next
>



E
-
Procurement for Improving Governance






<Back
|
Next>



E
-
Procurement for Improving Governance


In this session, you will review:



Context for eProcurement Business
Model Standards Decisions



The general case for standards



The specific case for standards within
eProcurement



Standards to consider for different
phases of eProcurement



Reality check on standards adoption



Recommendations to consider.


Topics

Standards in eProcurement

Select Next to continue





<
Back
|
Next
>



E
-
Procurement for Improving Governance


Publication / Search /

Disclosure Facilities

Buyer/Seller Support Facilities

Processing Center

E
-
Tendering


E
-
Reverse Auction


E
-
Catalog Purchasing



System integration/

Collaboration

Transaction Facilities

Public Sector


Systems

Asset
management

Contract
management

Indent
management

Financial
management

Budgeting

Private Sector


Systems

Bid/Proposal
Preparation

Catalog
management

Order
management

Invoicing


Functional Scope of an eProcurement System

Select Next to continue





<
Back
|
Next
>



E
-
Procurement for Improving Governance


WHY

STANDARDS?



Prevent failures

Increase efficiency of
complex operations

Introduce order and
predictability in
electronic exchanges

Reduce risk

Increase trust


Why do we Need Standards?

Select Next to continue





<
Back
|
Next
>



E
-
Procurement for Improving Governance



Enhance B2G/G2G connectivity and
interoperability


Generate trust in electronic experience


Enhance competition and inclusion


Enhance efficiency and flexibility of public
procurement function


Enhance cooperation and transparency


Facilitate evolution and innovation


Increase return, reliability of investments


Avoid vendor lock
-
in

How standards can
help eProcurement


How Standards can help eProcurement Systems

Select Next to continue





<
Back
|
Next
>



E
-
Procurement for Improving Governance


Development
Methodology

(UML, RUP)

Quality

(CMM)

Architecture

(SOA,WOA )

Workflow

(BPMN, UMM,
BPSS)

Networking

(TCP/IP)



Standards for eProcurement System Specification/Construction

Select Next to continue





<
Back
|
Next
>



E
-
Procurement for Improving Governance



eProcurement System
Disclosure


Laws/Regulations


Business opportunities


Bidding documents


Contract awards



Key Standards for Disclosure Facilities

Model legislation

(UNCITRAL, EC
Directives
2004/17/EC and
2004/18/EC )

Identification

(UN
-
SPSC, GPC, CPV,
eCl@ss

)

Formatting


(ODF, PDF,
OOXML)

Select Next to continue





<
Back
|
Next
>



E
-
Procurement for Improving Governance


eProcurement System:
User Support Facilities

Supplier

registration

& alerts

Electronic

payments

Reference

prices

Research

support


Supplier Registry

Communication

(SMTP/
Imap
)

ePayments


(SET, IFX, ISO 2022..)

Identification

(UN
-
SPSC, GPC, CPV,
eCl@ss

)

Registration

(DUNS)



Standards for eProcurement System Support Facilities

Select Next to continue





<
Back
|
Next
>



E
-
Procurement for Improving Governance


Reliability

(HTTP
-
R)

Directory Service

(LDAP, DSML)

Computer security

ISO/IEC 15408

Site security

(RFC 2196)

IT Service
Management
(ISO/IEC 20000)

Network security
(ISO/IEC 18028
-
1 )



Standards for eProcurement System Data Centers

eProcurement

Data Processing

Center

Select Next to continue





<
Back
|
Next
>



E
-
Procurement for Improving Governance


Reliability
(WSR)

Information
Security Controls

(ISO 17999)

Information security
management

(ISO/IEC 27001)

Information
Security Testing

(OSSTMM)

E
-
Reverse Auctions

E
-
Catalog Purchasing


System integration/

Collaboration Facilities

E
-
Tendering



Standards for eProcurement Transaction Systems

Select Next to continue





<
Back
|
Next
>



E
-
Procurement for Improving Governance


Communication
(
Imap
)


E
-
Reverse Auction

Facilities



Key Standards for e
-
Reverse Auctions

Select Next to continue





<
Back
|
Next
>



E
-
Procurement for Improving Governance


Authentication

(X509, XML
DSig
, XKMS)

Encryption

(SSL, XML
Encryp
)

Traceability

(ISO 13335 )



Standards for eProcurement Phase
IIa



eTendering Systems

Select Next to continue





<
Back
|
Next
>



E
-
Procurement for Improving Governance


Messaging

(SOAP)

Reliability
(HTTP
-
R, WS
-
R)

Interoperability
(WSDL, BPEL)

Documentation


(UBL, C
-
CATALOG)

Secure Access

(SAML, XACML)

Publication
(UDDI)



Standards for eProcurement Phase
IIb



eCatalog Purchasing Systems

Select Next to continue





<
Back
|
Next
>



E
-
Procurement for Improving Governance


Interpretation

(DSDL, Relax NG)

Interoperability/Collaboration


(
ebXML
, WS
-
I Profiles, WSCI, BPEL)

Provisioning


(SPML)

Web Security

(WS Security, SAML, XACML)

Registration of
Services

(UDDI)

Web Services

(WS*)



Private
Sector
Systems


EGP
System


Public
Sector
Systems




Standards for System Integration/Collaboration Facilities (Phases III and IV)

Select Next to continue





<
Back
|
Next
>



E
-
Procurement for Improving Governance



Mandated already by many
governments (India, UK, Canada,
EU, Phil, Brazil…) and
recommended by most.




Embraced in varying degrees by
large vendors (IBM, HP, Oracle…)

Adoption of Open Standards
is:



Open Standards

However, from 2006 MDB survey of
eProcurement systems in 14 leading
countries*…



No one allows ODF documents.


Only 6 use
UNSPSC.


Only 4 use XML, and only one uses
ebXML

for interoperable electronic business


Only 4 use SOAP, 3 use UDDI, only 1 uses
WSDL and none use
BPEL, WS
-
Security,
WSCI


However, most use digital certificates and
asymmetrical encription for authentication.

*Argentina, Australia (State of New South Wales), Brazil, Chile,
Finland, Hong Kong, India (Indian Railways), Italy, Mexico,
Norway, Romania, Singapore, South Korea, The Philippines

Select Next to continue





<
Back
|
Next
>



E
-
Procurement for Improving Governance



Adopt an open standards policy
for all eProcurement
-

related work. Refer to standards by name (“or
substantially equivalent”) in SRSs and SLAs.


Investigate and if possible adopt
ebXML

family of
standards
(ISO 15000) for all eProcurement
-
related work
.


Adopt SOA and Web services
as the architectural
standards for eProcurement.


Adopt a business process modeling standard
(BPMN or
UMM) and use to document functional requirements of
eProcurement systems, even if procuring a COTS solution.
It will serve well in acceptance testing and in avoiding
vendor lock
-
in.

Recommendations
to Consider



Summary / Recommendations

Select Next to continue





<
Back
|
Next
>



E
-
Procurement for Improving Governance



Reserve Digital signatures and PKI for strong
authentication and signing of legally
-
enforceable
documents.
For other purposes, experiment first with
simpler methods (encryption, two
-
factor
authentication).


Assign a person to watch and recommend standards.
This may be done centrally for whole government.


Consider OSS products
as they often implement and
promote open standards.


Strongly consider adopting international
classification/description standards
(UN SPSC, CPV,
GTIN or similar) instead of a home
-
grown alternative.

Recommendations
to Consider



Summary / Recommendations

Select Next to continue