IT Yearbook 2007

Department of State Information Systems
Information Technology
in Public Administration of Estonia
Yearbook 2007
TALLINN 2008
Compiled and edited by Ivar Odrats
Translated by Karin Rits and Kadri Põdra
Design by Katrin Põdra

Illustrations by Katrin Põdra
Printed by Vali Press OÜ
Translation into English © 2008 Ministry of Economic Affairs and

Communications of Estonia
ISSN 1406-5010
Co-authors of the yearbook:
Hannes Astok – Member of the Riigikogu;
Katrin Edasi, Mait Heidelberg, Ivar Odrats, Monika Saarmann and Uuno
Vallner – Ministry of Economic Affairs and Communications;
Hille Hinsberg and Kädi Riismaa – State Chancellery;
Epp Maaten – Member of the Estonian National Electoral Committee;
Lauri Leht and Tõnis Türna – National Archives of Estonia;
Reet Oorn, Rica Semjonova and Toomas Viira – Estonian Informatics Centre;
Gerli Hämmal and Ingmar Vali – Centre of Registers and Information Systems;
prof. Ahto Kalja and prof. Jaak Tepandi – Tallinn Technical University.
Acknowledgements:
The compiler would like to thank the following co-authors of the Estonian
edition of the yearbook 2007 for the opportunity to use their articles and data
in preparing this yearbook:
Katrin Hänni (Ch.6), Egert Ivask (Ch.4.1), Riina Kivi (Ch.2.7), Vaho Klaa-
mann (Ch.6), Tarvi Martens (Ch.2.8), Väino Olev (Ch. 4.7), Mai-Liis Pal-
ginõmm (Ch.6), Mart Parve (Ch.3.2), Geroli Peedu (Ch.4.1), Risto Pomerants
(Ch. 4.7), Mari Roots (Ch. 4.7), Monika Saarmann (Ch.6) and Rauno Temmer
(Ch.4.1).
The compiler is also thankful to Ms Karin Rits for her comments and sugges-
tions on the yearbook.
Contents
1. Policy formulation in the field of information society
in Estonia
1.1. Climbing the e-mountain (Mait Heidelberg) . . . . . . . . . . . . . . . . . . . . . 7
1.2. Information Society Strategy for Local Governments –
Municipality Online 2013 (Hannes Astok) . . . . . . . . . . . . . . . . . . . . . . . 9
2. Integration of state information systems into a single

interoperable whole
2.1. Estonian Semantic Interoperability Framework (Uuno Vallner). . . . . 13
2.2. Web Interoperability Framework (Uuno Vallner) . . . . . . . . . . . . . . . . . 14
2.3. Co-operation in the field of information security (Jaak Tepandi). . . . . 16
2.4. The X-Road: a key interoperability component within the
state information system (Ahto Kalja). . . . . . . . . . . . . . . . . . . . . . . . . . 19
2.5. Transition to paperless administration in government agencies
(Kädi Riismaa) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22
2.6. Developments in digital archiving (Lauri Leht) . . . . . . . . . . . . . . . . . . 24
2.7. Developments of the administration system of the state
information system . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26
2.8. Developments in the field of eID. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29
3. Increasing skills and participation

3.1. The use of IT solutions calls for knowledge (Rica Semjonova) . . . . . . . 33
3.2. „Computer Protection 2009“ helps us to increase security in
the information society . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34
3.3. Participatory democracy over the web (Hille Hinsberg ) . . . . . . . . . . . 37
3.4. Estonia’s second iVoting experience (Epp Maaten) . . . . . . . . . . . . . . . . 39
4. Developments related to ICT applications and user-
friendly online services in the public sector
4.1. Improvements to central state portals and related application
services . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43
4.2. Development of Estonian information systems to join the
Schengen area (Ivar Odrats) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 47
4.3. Company registration portal (Gerli Hämmal) . . . . . . . . . . . . . . . . . . . . 52
4.4. Transforming the archival information system into a virtual
research hall (Tõnis Türna) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54
4.5. eNotary – an information system for notaries (Ingmar Vali) . . . . . . . . 57
4.6. Internet-based information systems in education (Ivar Odrats) . . . . . 61
4.7. Development of e-services in Tallinn . . . . . . . . . . . . . . . . . . . . . . . . . . . 66
5. Cyber war – a new phenomenon of the information

society?
5.1. Cyber attacks against Estonia – what happened and conclusions
(Toomas Viira). . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 71
5.2. „Cyber war” and Estonia: legal aspects (Reet Oorn) . . . . . . . . . . . . . . . 74
6. Surveys on the information society and ICT

developments in Estonia . . . . . . . . . . . . . . . . . . . . . . . . 77
7. Annex
7.1. IT contacts in public administration agencies (Katrin Edasi). . . . . . . . 87
7.2. Information society contacts in the public administration
(Monika Saarmann) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 91
7.3. Useful links (Ivar Odrats) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 96
Information Technology in Public Administration of Estonia. Yearbook 2007
1.1. Climbing the e-mountain
Estonia has no real mountains. card. Although not everybody uses

Our highest top is, in reality, a the electronic functions of the card
small, though cute hill. Maybe it now, they still have the possibil-
is the lack of higher grounds in na- ity to do this once they so decide. A
ture that makes our people look for number of different services requir-
higher levels and achievements in ing electronic identity have already
other areas. been developed and there are many
more yet to be created. The wide
There are some simple things that
spread of electronic ID has enabled
need to be kept in mind both when
us to introduce services like voting
climbing a mountain and wishing
over the Internet, etc. When the
to move forward in the development
new Parliament was elected at the
of the information society. Namely,
beginning of 2007, more than 5% of
we have to ensure that everybody
voters preferred to cast their vote
involved is with us, safety rules are
electronically. The percentage as
followed and we make use of all
such might not be impressive, but
the best equipment and techniques
it has to be kept in mind that this
available to us. And, of course, we’d
was the very first time that iVoting
better have some kind of a plan on
was possible at the parliamentary
how to complete the task.
elections in Estonia (and, in fact, in
Year 2007 was, in some sense, a the world).
milestone in terms of creating pos-
Basic infrastructure of the informa-
sibilities for all to participate in the
tion society is available everywhere
information society. Today we can
and for everybody. This does not
say that high bandwidth Internet
mean that all the work is done, is-
services are available all over the
sues concerning the digital divide
country. Public money was used to
have been solved and full inclusion
stimulate service provision in re-
is achieved. Nowadays, we must fo-
mote and sparsely populated areas.
cus on different stratums of society
Service providers used the opportu-
rather than concentrate solely on
nity to make infrastructure invest-
the digital divide. Important issues
ments in regions, where it normally
to be tackled include motivation to
is not economically wise. New mar-
use technology, insufficient skills,
ket areas were created and today
and limited awareness about pos-
we can see competition even in
sibilities of the information society.
places, where broadband Internet
Recent studies show surprisingly
was not available at all just a cou-
that there are user-groups even
ple of years ago.
among the so-called heavy users of
In 2001-2002 there were heated the Internet, who are not aware of
discussions about the planned ID the existing eGovernment services.
card for citizens. Should it be elec- Traditionally, there is no budget
tronic or not, would everybody need line for marketing expenses in the
the electronic functions of the ID expenditure list of the state budg-
card or should there be different et, but some new programmes give
options? It was decided that there hope in this field.
would be one type of an electronic
In order to use the Internet for
ID card for everybody. Now, five
managing one’s affairs, people must

years later, most people have the ID
trust the new ways of interaction.
1. Policy formulation in the field of information society in Estonia
Fortunately, trust towards e-servi Mobiil-ID offers security and proof

ces is rather high in Estonia. Posi- of evidence that is comparable with
tive experiences with e-banking, the ID card – you just do not need
lack of big drawbacks and relatively the card reader, as necessary certifi-
high awareness of avoidable risks cates and keys are handled through
and threats have made the Internet your mobile phone.
a commonly accepted medium for
eGovernment has been one of the
all kind of activities in Estonia. Of
most advanced areas of the informa-
course, one cannot be too relaxed in
tion society in Estonia. As a small
this field. Thus, we have elaborated
country, Estonia cannot be the
our information security frame-
source of many new technological
work, created CERT-Estonia and
inventions (except maybe Skype),
introduced regulative guidelines
but we try to utilise ICT possibili-
for the use of information security
ties for streamlining the citizens’
measures in the public sector. In
interaction with the government.
2007, all these documents and ac-
In this context, one e-service devel-
tivities proved to be much needed.
oped in 2007 in particular deserv-
In April and May 2007, Estonian
ers special mentioning – the serv-
Internet resources fell under heavy
ice enabling the establishment of a
attacks. Inspired by the tense polit-
company in two hours (in practice
ical situation caused by the reloca-
even less). As all documents nec-
tion of a World War II monument,
essary for starting a company can
waves of heavy denial of service
be generated, digitally signed, ap-
attacks were targeted at Estonian
propriate payments handled and
websites. Significant damage was
confirmation acquired within very
avoided, but there were disrup-
short time, the service should be
tions in the accessibility of web-
encouraging for people with busi-
sites and temporary cutoffs from
ness ideas.
international traffic. These attacks,
also called the “cyber war”, caused As expected, there are plans for the
problems to government websites, development of the information so-
but – even more importantly – sig- ciety also on the governmental lev-
nificantly disturbed the conduct of el. The Estonian long-term strategy
everyday business of the private document in the field – Estonian
sector. As with most of the things Information Society Strategy 2013
in the world – these cyber attacks – was approved by the Government
also had a positive effect. The im- in 2006. Short-term policy is set out
portance of security and network in annual implementation plans
resilience are now better acknowl- and the first one of them – Imple-
edged and adjustments have been mentation Plan of the Estonian In-
done where needed. formation Society Strategy for 2007-
2008 was approved in 2007.
The “cyber war” is not the only
threat in the connected world. All The implementation plan focuses
kinds of “bad guys” use their crea- on the involvement of citizens,
tivity in order to get hold of other electronic business environment,
people’s identities and money. The paperless document management
Estonian private sector has co-opin the public sector, further devel-
erated with the government to pow- opment of public services, and se-
erfully promote Internet security. curity issues. Coherent policy plan-
The joint initiative called Computer ning is also done for utilising a part
Protection 2009 aims at increasing of available EU Structural Funds
the skills and ability of ordinary In- for the information society develop-
ternet users to protect themselves. ment, especially in horizontal ar-
Of course, for important transac- eas, where traditional institutional
tions we have a powerful tool – the planning is not effective.
electronic ID-card. In 2007, a new
When climbing a mountain, one
innovative solution was introduced

must always have a plan on how
for electronic identity – Mobiil-ID.
to get back down. In case of the in- essence of those improvements as

formation society, the situation is well as of challenges to be faced is
different – nobody seriously wants not always clear. What counts the
to turn back. Advancements are most is the satisfaction and well-
expected to be constant and con- being of customers – our citizens.
tinuous, despite the fact that the
1.2. Information Society Strategy for Local

Governments – Municipality Online 2013
Pursuant to the Estonian legisla- number of small municipalities for

tion, all 227 local governments in whom the development of eState by
Estonia – both the city of Tallinn themselves is clearly beyond their
with its 400,000 residents and the power.
parish of Piirissaare with 150 in-
Thus, a document entitled Infor-
habitants – have similar tasks to
mation Society Strategy for Local
perform. As the administrative
Governments: Municipality Online
organisation in Estonia is two-di-
2013. State Policy for 2007-2013.
mensional, local governments are
White Book was completed in spring
responsible for a whole range of ar-
2007. The policy document, com-
eas, beginning from education and
missioned by the Ministry of Inter-
territorial planning to public trans-
nal Affairs, was elaborated by the
port and development of public wa-
eGovernance Academy in co-opera-
ter supply and sewage.
tion with representatives from AS
Local governments have a vital role Andmevara, most of local govern-
in the development of the informa- ments, the Association of Estonian
tion society. Local government is Cities, the Association of Munici-
the closest representative of the palities of Estonia, the Department
public power to citizens. Thus, for of State Information Systems of the
citizens the “state” often takes the Ministry of Economic Affairs and
face of the local power, giving the Communications, and the Estonian
latter an excellent opportunity to Informatics Centre.
act as the introducer and imple-
The document was compiled as a
menter of possibilities enabled by
white paper that the Ministry of In-
the information society.
ternal Affairs could use both as an
However, the development of the input for the elaboration of other
information society at local level development plans and strategies
has been extremely uneven: along- and for making fundamental deci-
side well developed e-towns, such sions.
as Tartu and Tallinn, there are a
Summary of Information Society Strategy for Local

Governments: Municipality Online 2013. White Paper
So far, no information society local governments and enterprises.

strategy for local governments has Therefore, local governments have
existed. Also lacking have been not been able to modernise the pro-
an agreement on a co-operation vision of public services with ICT to
framework, division of work and the same extent as the state.
responsibility between central and

1. Policy formulation in the field of information society in Estonia
The White Book describes the cur- the most widespread ones. Only
rent situation, sets out demanding Tallinn and Tartu offer integrated
objectives, and determines roles e-services, while other local gov-
and responsible authorities. ernments are limited to some odd
forms to be completed in the web
In spring 2007, the situation in lo-
environment.
cal governments could be described
as following: Co-operation between local
governments in the field of the
All local governments have In-
information society usually
ternet connection and local
takes place within one county,
government officials have a
being dependent on the existence
computer. The problem lies in the
of leaders in local governments,
low quality of service and in the age
county governments and/or local
and incompatibility of the existing
government associations.
software and hardware.
There is no centre of excellence
Citizens’ access to fast Inter-
that would advise local govern-
net has improved constantly.
ments on issues related to technical,
Thanks to the joint efforts of tel-
legal and organisational aspects of
ecommunications companies and
the information society.
the state, broadband Internet is
available in most parts of Estonia. State support for the develop-
Real competition in the field is still ment of the information soci-
lacking. ety in local governments has
been unsystematic and based
Digital divide between rural
on single strong thematic pro-
and city areas. Cost of broadband
grammes (i.e. Tiger Leap, Village
Internet.
Road, internetisation of public li-
Two thirds of local governments braries). Pursuant to the legisla-
use digital document manage- tion, however, local governments
ment. Archiving of digital docu- have the obligation to independent-
ments has not yet been launched. ly develop various digital registers
(register of waste holders, register
Competence in the protection,
of misdemeanour). So far, there has
backup and secure preserva-
not been any co-operation in devel-
tion of data of local govern-
oping local e-services that would
ments is limited. In addition,
yield synergy and savings.
problems occur with the reliability
of outsourced services and weak le- The Information Society Strategy
gal competence in the conclusion of for Local Governments sets out the
contracts. following demanding objectives
in order to ensure the functioning
225 local governments of 227
of the state as a whole, increase the
maintain an official website.
welfare of citizens and enterprises,
The quality of information on web-
and to quickly modernise the public
sites is uneven.
sector and its services:
More active local governments have
Fast Internet for everybody. The
begun to implement eParticipa-
objective is to ensure high-quality
tion tools, making use of web
Internet of appropriate speed for
forums, publishing responses
a reasonable price for citizens and
given by officials to citizens’ en-
enterprises in every inhabited place
quiries and creating possibili-
of Estonia by 2009.
ties for submitting comments.
Some larger local governments also Transition to digital manage-
offer webcasts of municipal council ment of business. The objective is
sessions. to introduce digital document man-
agement in all Estonian local gov-
Provision of e-services is limit-
ernments, agencies administered
ed with blank document forms for
10
downloading and completing being
thereby, as well as related enter- ensure that by 2009, 95% of small

prises by 2009. businesses operating in traditional
branches of economy would make
Native language Internet and
use of ICT in their work.
development of content of local
government websites. The objec- Responsibility for the develop-
tive is to develop, in co-operation ment of the information society will
with residents, the native language primarily be divided between local
content of websites and make avail- governments and the Ministry of
able local historical heritage and Internal Affairs.
information on cultural events.
The Ministry of Internal Affairs
Easy searchability and system- will co-ordinate the general devel-
atic provision of information. opment and co-operation with other
The objective is to make, by 2009, state institutions.
all local government websites infor-
Local governments will be respon-
mation rich and easy to use also for
sible for all local matters, while the
people with special needs.
Ministry of Internal Affairs will as-
Extensive take-up of eDemoc- sume responsibility for the develop-
racy tools. The objective is to pro- ment, implementation and admin-
vide citizens with the opportunity istration of common solutions as
to participate, as from 2009, in in- well as the financing of joint activi-
teractive forums and debates on is- ties. Some services may be provided
sues concerning the development for local governments for a fee.
and organisation of life of local gov-
As the organisation of matters re-
ernments.
lated to the information society is
Widespread take-up of 24/7 e- of horizontal nature, other minis-
services. The objective is to entries and the State Chancellery will
sure, by 2010, the provision of all be responsible for the co-operation
kinds of local services also in the and development of services with
electronic form. local governments within their field
of responsibility.
Development and take-up of
geoinformation systems. The County governments and local
objective is the transition to digital government associations will be
administration of spatial data in all responsible for the organisation of
Estonian local governments, agen- county-level co-operation, develop-
cies administered thereby and re- ment of joint initiatives and leading
lated enterprises, enabling them to of joint projects in order to ensure
provide respective services gradu- the involvement of all local govern-
ally beginning from 2008. ments in the development of the in-
formation society.
Development of ICT infrastruc-
ture in local governments. The The development and quality of e-
objective is to equip all local gov- services in local governments has
ernments with up-to-date software, continuously been examined also
hardware and Internet connections by the National Audit Office. A
by 2010. survey conducted b the National
Audit Office on the development
User training and awareness-
of the information society was
raising. The objective is to ensure
treated in the previous yearbook
that by 2010, 90% of Estonian pop-
(see Information Technology in
ulation aged 12-74 can use the com-
Public Administration of Esto-
puter and Internet-based services.
nia, Yearbook 2006, Chapter 6.5
Implementation of the possi- http://www.riso.ee/en/pub/2006it/in-
bilities of new technology in dex.php?mn=44&prnt=39).
enterprises. The objective is to
11
2.1. Estonian Semantic Interoperability Framework
The Estonian Interoperability ganisational, social and educational

Framework as well as develop- nature. First, support is planned to
ments related to international in- be provided for system specialists
teroperability were dealt with in of various areas in order to better
the previous yearbook (see Chapter understand each other’s fields of ac-
1.2 http://www.riso.ee/en/pub/2006it/in- tivities, to compile sound documen-
dex.php). tation of data structures and proto-
cols, and to facilitate the search of
While IT interoperability means
such documentation. Information
the ability of information systems
systems use different tools for pub-
and of business processes they sup-
lishing knowledge stored in them,
port to exchange data and share
beginning from languages, diction-
information and knowledge, se-
aries, classifications, and rules to
mantic interoperability denotes the
complicated ontologies.
ability of information systems as
well as of their developers to simi-
larly understand, what type of data
is exchanged and what kind of in- Semantic assets
formation is used. In other words,
semantic interoperability refers to Similarly to software and hardware
the ability of organisations to un- of an information system, we can
derstand the exchanged data in a also speak of its semantic assets.
similar way. The semantic interoperability as-
Semantic interoperability is com- sets are divided into syntactic as-
plicated by the fact that the use of sets and semantic assets. In order
software systems, their objectives, to ensure semantic interoperability
as well as contexts differ, leading between two information systems,
thus differences in ways of presen- a semantic gateway has to be estab-
tation, coding and shades of mean- lished between them. The semantic
ing. In order to achieve semantic gateway has to ensure semantic al-
interoperability, it has to be clearly terations leading to adequate use of
defined, which components of an in- each other’s data between informa-
formation system should be seman- tion systems. The semantic gateway
tically described in the first place. of the state information system is a
Since the development and admin- set of multilateral agreements and
istration of the semantics of infor- rules that facilitates the mutual
mation systems is a rather costly linking of systems on the semantic
process, the framework focuses level.
on most widely-used components, Syntactic interoperability as-
i.e. information systems that have sets include XML schemas, meta-
been joined with the middleware data schemas, and models. In this
X-Road. Semantic interoperability area, the objective for the coming
is regarded as a task to facilitate years is to establish principles on
the work of software engineers and the publication of data-schemas
developers, who have to build inter- and definitions of metadata. The
faces with other software systems. syntactic level of interoperability is
Reaching semantic interoperability the first stage in achieving seman-
tic interoperability and it can be
13
is, to a great extent, a matter of or-
2. Integration of state information systems into a single interoperable whole
achieved by creating repositories needed, as it will be easier to re-

for XML schemas. use the existing data;
Semantic assets of semantic in- • parties will have to spend less
teroperability denote information time on integrating the informa-
resources that have been created in tion systems of different organi-
order to ensure interoperability of sations;
information systems. Semantic as-
• sustainability of the information
sets of semantic interoperability
systems will increase and it will
are divided as following (the divi-
be easier to make further devel-
sion is based on the IDABC work-
opments. The knowledge base
ing paper IDABC Content Interop-
related to information systems
erability Strategy):
will be preserved also after key
• dictionaries, persons have left the organisa-
tion.
• thesauri,
The Semantic Interoperability
• nomenclatures,
Framework’s chapter on require-
• taxonomies, ments sets out specific tasks and
timetables for public sector institu-
• mapping tables,
tions. The tasks are furnished with
• ontologies, explanations.
• service registers. For an in-depth overview of prob-
lems related to semantic interop-
The benefits of implementing se-
erability, see Methodology for the
mantic assets are the following:
Semantic Interoperability of Data-
• the quality of data will improve, bases and Operations Performed by
data from different sources can Databases and Instructions for the
be integrated, there will be less Semantic Interoperability of Data-
errors and inaccuracies upon us- bases and Operations Performed by
ing the data and making deci- Databases at: http://www.riso.ee/en/in-
sions; formation-policy/interoperability (in Eng-
lish).
• less investments in the produc-
tion (acquisition) of data will be
2.2. Web Interoperability Framework
Every public sector institution The Web Interoperability Frame-

maintains a website. As websites work deals with interoperability of
are considered parts of agencies’ central and local government agen-
information systems, they could be cies’ websites. The main emphasis
regarded as Internet-based human- of the document is placed on seman-
readable views of them. The devel- tic and organisational interoper-
opment of the website of a public ability. The semantic interoperabil-
body is procured by its manage- ity of websites means access to data
ment. The website can be designed, (names, addresses, dates, texts,
developed and administered inter- etc.) in a form enabling their fur-
nally by the agency or it can be (en- ther automatic processing, not just
tirely or partly) outsourced. Every for displaying them. The organisa-
state agency is responsible for the tional interoperability of websites
content and form of its website. in turn describes the administra-
14 tion and implementation processes

of web content. The framework to- Key principles of web interoper-

gether with the related documents ability
is available at: http://www.riso.ee/et/
The framework establishes the fol-
koosvoime/internet (only in Estonian).
lowing principles to be pursued in
The Web Interoperability Frame- the development of websites:
work does not provide require-
• the content of websites is XML-
ments or recommendations for
based and re-usable by any
state agencies’ intranets. Neither
agency or person in any informa-
contains the document detailed re-
tion system;
quirements for the websites’ con-
tent and form. Recommendations • for data exchange, HTML or
and requirements for the content XML format is used over http or
of websites have been set out in the https protocol;
Public Information Act, while rules
• the used XML format is easily
for the form of websites have been
comprehensible, documented in
established in WAI standards (see
an understandable manner for
http://www.w3.org/WAI/). The frame-
the developers, and does not
work deals, first and foremost, with
contain noise – unnecessary tags
problems related to the semantic
and details;
and organisational interoperability
of websites. No direct state-level re- • the presentation layer is realised
quirements have been established as a separate application that
for the hardware and software of communicates with the main ap-
websites – every institution is free plication via XML documents;
to choose the most suitable plat-
• public sector websites are dis-
form.
played in the user’s browser in
Nationwide portals, such as the eS- HTML or XHTML format;
tate portal at http://www.riik.ee and
• public sector websites use clear
the Citizen portal at http://www.eesti.
addresses with semantic content
ee serve as single point of entries
(use of dynamic addresses is not
that operate in collaboration of in-
recommended);
formation systems/websites. Users
of these portals are not interested • files to be downloaded from pub-
in information systems/websites lic sector websites are in open for-
that have generated the informa- mat, i.e. .odf, .pdf, .png, .svg, .rtf
tion, but rather in the data main- or compressed versions thereof
tained in them. Thus, websites in zipped format. Use of compa-
maintained by public, private and ny-specific formats (such as, e.g.,
third sector organisations must co- .doc, .xls, .ppt, etc.) should be
operate and function as a whole for avoided. Files published on the
users. website must be readable (and
editable if necessary) with open
The framework sets out general ar-
source software;
chitectural principles for the web-
sites and portals of central and lo- • the content of public sector web-
cal government agencies as well as sites must be easy to index by
requirements for the organisational search engines and SEO (Search
and semantic interoperability. The Engine Optimisation) principles
requirements are obligatory in the are to be followed;
development of state portals http://
• in the development of public sec-
www.riik.ee and http://www.eesti.ee and
tor websites uniform copyright
recommended for all public sector
principles are followed;
information systems.
• the tables of contents and sum-
maries of websites are present-
ed, in addition to their visual de-
sign, also as RSS or RDF feeds;
15
• standard-based interoperabil- esses and increase the interac-

ity is ensured between institu- tivity of websites through wikis,
tional/thematic portals and the forums, polls, etc.;
Citizen information portal http://
• each ministry has the obligation
www.eesti.ee and the eState portal
to organise, for its websites, the
http://www.riik.ee/;
development and administration
• in the development of websites, of semantic assets proceeding
recommendations of the Web from its administrative area;
Content Accessibility Guidelines
• the content of websites must
Working Group (WCAG WG)
correspond to the standard EVS
have to be followed http://www.
8:2000 “Requirements on Infor-
w3.org/WAI/;
mation Technology in Estonian
• a state agency’s website is lacon- Language and Cultural Envi-
ic, aesthetic, adequate, topical ronment”;
and ergonomic. The structure of
• the content of websites must be
text material on state agencies’
encoded in UTF8 format.
websites has to be well-consid-
ered. The information and data The framework sets out deadlines
management of a website must for the realisation of the key princi-
ensure that users could find solu- ples, e.g. public sector portals have
tions to their problems in a fast to be brought into accordance with
and transparent manner. Use of the principles of the framework by
pictorial material on state agen- July 1, 2008 and central portals by
cies’ websites should be brought January 1, 2008. The framework
to a minimum; also establishes deadlines for the
development and implementation of
• the websites of public sector in-
specific tools (e.g. lemmatizer, etc.)
stitutions make use of modern
and functionalities (RSS, wikis, fo-
technologies and solutions in or-
rums, polls, blogs, etc.).
der to promote democratic proc-
2.3. Co-operation in the field of information security
The Estonian economy is largely ple’s awareness of security issues.

based on the development of IT. Ensuring information security is no
Although the recent episode of cy- longer up to one authority, compa-
ber attacks put Estonia to test, it ny, working group or the state – all
strengthened Estonia’s resistance stakeholders in Estonia and abroad
and highlighted the weaknesses of need to join their efforts.
our IT systems and infrastructure.
To this end, a number of co-opera-
Information security is of utmost
tion principles have been included
importance when it comes to situ-
in the Information Security Inter-
ations where cyber attacks that are
operability Framework. This docu-
technically not that complex might
ment aims at establishing a safe,
disturb the external communication
security-conscious and develop-
of state agencies or the Internet
ment-oriented information society
banking operations of major banks.
in Estonia. That includes the fol-
The Estonian Information Society
lowing activities: management of
Strategy 2013 also envisages in-
IT related risks; protection of fun-
creasing the security of the public
damental human rights; raising of
sector services provided to busi-
the competitiveness of Estonia’s
16
nesses and citizens and raising peo-
economy; public and private sector
co-operation on information secu- both public and private sector agen-

rity; acknowledgement of informa- cies. The following table outlines
tion security related problems, and the five IT security fields along
IT security training. with examples of respective activi-
ties and field co-ordinators.
The framework comprises five pri-
mary fields of IT security, covering
Field Examples of activities Co-ordinating

authority
Co-operation Co-ordination of conducting the risk Ministry of Eco-
and co-ordina- analysis of the Estonian IT environ- nomic Affairs and
tion ment; raising of the effectiveness of Communications
handling security incidents in Estonia
Acknowledge- Provision of IT security training for Ministry of Educa-
ment and the top management and IT man- tion and Research
training agers of public agencies; raising of in co-operation
the awareness of security issues in with the State
schools and universities Chancellery, the
Ministry of Defence
and the Ministry of
Economic Affairs
and Communica-
tions
Elaboration of Drafting and updating of legislation Ministry of Eco-
regulations on information security and electronic nomic Affairs and
communications; drafting of regula- Communications in
tions for the protection of critical co-operation with
information infrastructure; co-ordi- the Ministry of In-
nation of database administration ternal Affairs
pursuant to the requirements of the
system of security measures; elabora-
tion of information security standards
applied in public procurement
Protection of Provision of protection of information Ministry of Inter-
information infrastructure; organisation and co- nal Affairs in co-
infrastructure ordination of fight against cyber crime operation with the
Ministry of Defence
Implementa- Implementation of personal data pro- Ministry of Inter-
tion activities tection measures; development and nal Affairs in co-
for the protec- introduction of secure (ID card based) operation with the
tion of people standard solutions; launch of cross- Ministry of Defence
and assets border ID card based services
The framework is aimed at better clude the Department of State Infor-

protection of vital information and mation Systems and the Communi-
communication infrastructure; it cations Department of the Ministry
does not cover data or systems re- of Economic Affairs and Communi-
lated to state secrets or military cations, the Estonian Informatics
use. In terms of technology, the in- Centre, the Data Protection Inspec-
formation security framework com- torate, the Technical Inspectorate,
prises the security of IT systems as the information technology crime
well as electronic communications. division of the Central Criminal Po-
lice, the IT lab of the Forensic Serv-
Other authorities closely related to
17
ice Centre; the development and
the field of information security in-
learning centre of communication • Information security policy-

and information systems (SIVAK) making and budgeting in an
of the Defence Forces, a NATO co- agency should, among other
operative cyber defence centre of things, draw from the informa-
excellence to be established, the tion policy documents and re-
EENet, the Consumer Protection lated implementation plans, the
Board, and others. Estonian IT Architecture and
Interoperability Framework and
The main private sector stakehold-
the concept of central infrastruc-
ers are banks, telecommunications
ture services of the state infor-
companies, Eesti Energia, AS Ser-
mation system. It is also useful
tifitseerimiskeskus, IT service pro-
to consider recommendations on
viders and security companies.
an agency’s information security
The organisation of information policy as well as the continuity
related activities should, above and recovery plans of an agency’s
all, proceed from the Government information system but also the
Regulation on establishing a sys- proposals outlined in the “Com-
tem of security measures for infor- puter Protection 2009” initiative
mation systems and the methodol- (see also Chapter 3.2).
ogy of ISKE (a three-level baseline
• The development of databases
protection system for information
should, in addition to the ISKE
systems). The purpose of ISKE is to
methodology, proceed from the
provide security for the data proc-
Public Information Act, the gov-
essed in information systems and
ernment regulation on the imple-
related information assets. ISKE
mentation of the data exchange
can be used also in other state
layer of information systems,
and local government agencies,
and the standards listed in the
the business sector and non-profit
Information Security Interoper-
organisations. However, it is not
ability Framework.
meant for ensuring the security of
information systems that handle • As regards personal data, it is
state secrets. ISKE is based on the also necessary to adhere to the
information security standard IT Personal Data Protection Act and
Baseline Protection Manual (IT Gr- the requirements established by
undschutzhandbuch) published by the Data Protection Inspectorate
the German Federal Office for In- for ensuring availability, integri-
formation Security (Bundesamt für ty and confidentiality in personal
Sicherheit in der Informationstech- data processing.
nik – BSI). The BSI’s system is doc-
The ISKE methodology, informa-
umented in considerable detail and
tion security standards, the CoBIT
it is revised regularly once a year.
framework and strategy documents
The BSI’s website (http://www.bsi.de/
should be observed, when neces-
gshb/downloads/index.htm) includes var-
sary, also if an agency does not
ious materials on ISKE, including
maintain databases or process per-
guidelines in German and English.
sonal data.
According to the information secu-
In addition to the domestic co-op-
rity framework, the senior manag-
eration projects described above,
ers, IT managers or IT experts who
Estonia participates in various in-
maintain state or local government
ternational information security
databases must consider also the
initiatives: the establishment of a
following principles:
NATO co-operative cyber defence
• It is recommended to take into centre of excellence; the activities
account the IT governance frame- of ENISA (European Network and
work CoBIT and information secu- Information Security Agency); a
rity standards, such as ISO 27002, high-level expert group on cyber
EVS-ISO/IEC TR 13335 etc. crime under ITU (International
18
Telecommunication Union), etc.
2.4. The X-Road: a key interoperability component

within the state information system
The X-Road, the data exchange layer of the state information system,
has from the very start drawn from various strict principles that stress
the uniqueness of that solution. The key starting point for building the
X-Road architecture was to include a complex security solution: authen-
tication, multi-level authorisation, a high-level log processing system,
encrypted data traffic with time stamps, a warning system for servers
against cyber attacks etc. No earlier public sector information systems
had been designed by such strict principles. As a rule, the information
system is first designed and launched, and only then do data security and
availability risks become an issue.
Another important principle applied from the very start of the X-Road is
its service-oriented architecture. For developers, this means that a ma-
jority of the application systems that use the X-Road can be, and already
have been, built on the basis of services. Today, this principle is consid-
ered vital also elsewhere in the world, whereas in 2001 when the X-Road
started off, it was not that topical.
For the X-Road, year 2007 – just as several previous years – was the year
of extensive penetration, as the use of its services grew by over ten mil-
lion times in number. The following gives a short overview of the develop-
ments and modifications of the X-Road carried out in 2007.

For the principles and developments of the X-Road see the previous issues of the
Yearbook. A summary of the previous period is available in the IT yearbook of 2006 at
http://www.riso.ee/en/pub/2006it/index.php?mn=10&prnt=6.
New application areas of Family doctors, notaries, pharma-

the X-Road cists and others will be using X-
Road services provided by the Es-
The universal single user portal tonian Health Insurance Fund and
is a further improvement of the X- other databases that have joined
Road portals, which enables to cre- the X-Road. In principle, the users
ate specialised portals similar to of the new solution will be using
the Entrepreneur Portal. For that X-Road services via programmes;
purpose, the definition of the “sub- i.e. the queries will be made by the
office” applied in the Entrepre- softwares of the users. In addition
neur Portal was specified. Instead to the main users (e.g. family doc-
of a “sub-office”, “unit” is defined. tors), the software will be used by
“Unit” is an object within a univer- other parties work-wise related to
sal portal, representing the owner the user (the support staff of family
of legal rights. For instance, legal doctors, e.g. nurses). Therefore, the
person is the unit in the Entrepre- latter will also have to use X-Road
neur Portal; in the Family Doctors queries that are provided for the
Portal it is the family doctor. The main users.
unit in the Health Service Provid- Since it would be too complicated
ers Portal would be the “health care for single users (e.g. family doctors)
institution”; that is the legal person to join the X-Road separately, as
entered in the respective register this would require making queries
and having a licence. through their own security servers, a
19
common portal was created for user
groups, such as family doctors, spe- other state information system

cialist doctors, notaries, etc. components, like portals and ap-
plication systems (e.g. the Work
The software of such a group of
Schedule and Project Manage-
single users will be making X-Road
ment information systems). One
queries via programmes through
of the latest technological changes
the Family Doctors Portal, the No-
in the X-Road stemmed from the
taries Portal, etc. Moreover, the
decision that the officially out-
single user will be able to make
dated data transmission protocol
queries from the user’s portal in
XML-RPC would no longer be sup-
a traditional way; that is through
ported as of 2007. Consequently,
the portal’s web interface.
all the services were made SOAP-
For Estonia’s accession to the based by the end of 2007.
Schengen information system,
The existing state portals were
various X-Road services were de-
joined with a new single platform
veloped both for police officers and
under a common design in 2007.
border guard officials. At the same
Consequently, it was possible to
time, the Ministry of Internal Af-
start with the project of developing
fairs also provides other minis-
the presentation layer of X-Road
tries with data from databases re-
queries. This project will result in
lated to the Schengen information
a uniform presentation mode of
system through the X-Road. The
the portals. Citizens will be able
control commission of the Schen-
to see their data in the registers
gen information system controlled
in the portal www.eesti.ee and use
compliance with the very strict
the services provided by the regis-
safety rules and adopted the whole
ters in the same format as avail-
service package. The entire system
able in other parts of the portal.
had to be, and was, launched at
The temporary solution launched
the very moment of Estonia’s ac-
for several years ago, known as
cession to the Schengen visa area
the “blue citizen’s query portal”
(December 22, 2007).
after its blue design, will be ter-
The most wide-spread X-Road minated. The same bluish design
services at the present day include will be seen for a while in 2008
the e-services of the social sec- in the so-called MISP-portals of
tor. The Social Insurance Board state agencies. A new design will
has been providing its services (pa- be developed during 2008.
rental benefits, family allowances
In 2008, the new Public Informa-
etc.) through the X-Road already
tion Act entered into force, which
for many years. From 2006 on,
among other things envisages the
the most popular services with the
elaboration of a new version of the
largest number of users have been
regulation on the implementation
those provided by the Estonian
of the data exchange layer of in-
Health Insurance Fund (for further
formation systems (also known as
information see the IT yearbook of
the X-Road regulation). In 2007,
20062). In 2007, various eHealth
also a new set of X-Road rules, the
project solutions that are based on
implementation guide of the X-
the X-Road were completed.
Road, was completed.
All developers of the X-Road serv-
ices and application systems have
Improvements to X-Road been provided with training on an
solutions annual basis and will be provided
also in the future. In 2007, train-
Information technology is a rapid- ing was organised for the develop-
ly developing area. The X-Road is ers from various IT development
constantly improving, and so are companies.
20
2
http://www.riso.ee/en/pub/2006it/index.php?mn=10&prnt=6
The use statistics of the X-Road of family doctors was established.

show that private companies have In the short run, similar services
started to design and utilise more for the authorisation of specialist
and more X-Road services. For ex- doctors and pharmacists will be
ample, the usage of data by SEB introduced. Further on, the over-
Eesti Ühispank from the data- all functionality of authorisation
bases of the Citizenship and Mi- will be expanded. To this end,
gration Board and other similar new options will be added to por-
services were introduced. tals and application systems for
the authorisation of officials and
One of the biggest development
enabling and it will also be possi-
projects of the Estonian Informat-
ble to copy the authorisation data
ics Centre in 2007 was the devel-
between different service provid-
opment of a new version of the ad-
ers and users.
ministration system for the state
information system (RIHA; see
Chapter 2.7). The launch of this
new solution should result in the Statistics of the use of X-
automation of various activities
of the agencies that have joined Road services
or will join the X-Road, thus also The statistics of the use of the X-
making their activities more pa- Road indicate that in 2006, over
perless. Joining the X-Road will 29 million X-Road services (que-
become RIHA-based in the near ries, data transmission, document
future. RIHA will be offering a exchange, etc.) were utilised,
complete overview of all X-Road whereas in 2007 the use of X-Road
services. services was more active and more
Year 2008 will see improvements progressive over months. In Feb-
to the authorisation services of the ruary 2007, for instance, 2.85 mil-
X-Road. The authorisation of the lion services were used per month;
users of social services started off in October, the respective figure
already in 2007 when the register stood at 4.37 million (see Figure
2.4.1).
21
Figure 2.4.1. Statistics of the X-Road services during 2003-2007
The X-Road is scalable (it is possi- in Estonia, whereas web-based so-

ble to add security servers that are lutions are applied also in countries
running in parallel), which enables where services (e.g. Internet bank-
the X-Road Centre to increase the ing) are being used by hundreds of
power of the servers processing the millions. The scalability of the X-
system by adding new servers to, as Road was highly acknowledged by
the availability grows. There is no the auditors of the Gartner Group
need to worry about exceeding the who drafted a report commissioned
maximum power, as there is only by the European Union on Esto-
about one million potential PC users nia’s IT solutions.
2.5. Transition to paperless administration in

government agencies
At the beginning of October 2007, under the same obligation. Transi-

the Estonian Government adopted tion in these agencies will now be
amendments to the regulation on primarily facilitated by supportive
uniform bases for records manage- measures.
ment procedures with the objective
To ensure the transition to paper-
to speed up the transition to paper-
less administration, a number of
less administration in state agen-
changes were introduced to the
cies. Consequently, the ministries
requirements for records manage-
and the State Chancellery were
ment systems and exchange of dig-
obliged to introduce the exchange of
ital documents between systems.
digital documents between records
As a result, records management
management systems by December
is now treated as an integral proc-
3, 2007, at the latest. County gov-
ess. Digital documents have to be
ernments, boards and inspector-
drawn up on the basis of document
ates will have to be ready by May
forms with uniform data structure
5, 2008, at the latest. (An exception
and linked to the metadata of docu-
has been made to three ministries
ment management. These meta-
who have a longer transition pe-
data describe the context, content,
riod.)
structure and management history
The amended regulation provides of a document and ensure the au-
for exchange of digital documents thenticity, integrity and usability
via the inter-agency Document of the document throughout its life-
Exchange Centre of the X-Road, cycle; that is, until the destruction
using the internationally recog- or transfer to an archive.
nised standard for data exchange
The administration of metadata
– the Extensible Markup Language
is an integral part of records man-
(XML). The transition to document
agement and involves various func-
exchange between systems will be
tions and objectives. Metadata are
implemented in stages (by agen-
structured or partly structured in-
cies and types of documents). In
formation that enables to draw up,
the case of local governments and
register and classify documents,
other groups of agencies the level
provides access to and ensures the
of administration and availability
storage and separation of docu-
of resources is more uneven, which
ments in time within one domain as
is why it takes more time to pre-
well as between different domains.
pare for the transition to electronic
Metadata first define the document
document exchange and it is not
at the time of its acquisition in a
22
expedient to put all state agencies
records management system by DEC transfers documents to that

registering the document through agency by e-mail.
further activities and establishing
3) Citizens can e-mail documents
control over it. New metadata are
to the DEC to be forwarded to rel-
added to documents or document
evant agencies. Agencies can reply
sets on a current basis when new
to citizens by e-mail (either directly
operations are performed or chang-
or through the DEC).
es made. Metadata can be used in a
number of systems and reused for In the future, the Document Ex-
different purposes. The metadata change Centre will also be used for
related to a document during its sending other types of XML-based
lifecycle may be needed also when documents besides letters, such as
the document is no longer neces- legal and financial documents, in-
sary for performing current tasks voices etc.
but is stored for future analyses
In addition to the IT support of the
or some other value (incl. archival
DEC, the interoperability of records
value). Furthermore, metadata also
management systems and the au-
support the transfer of documents
tomatic, secure and paperless docu-
between different environments or
ment exchange between agencies
platforms.
calls for the uniformity of the trans-
The abovementioned regulation ferred documents and their meta-
allows for simultaneous records data. Therefore, the exchange of
management within one records digital documents between records
management system for numerous management systems through the
agencies at a time. This way small- Document Exchange Centre makes
er agencies can economise on the use of document forms with uni-
resources needed to create a records form data structure, the Extensible
management system. Records man- Markup Language recommended
agement systems should support by the World Wide Web Consorti-
this kind of approach and provide um (W3C) and the State Chancel-
for the use of different and autono- lery’s guidelines on document ele-
mous systems for the classification ments and metadata. To guarantee
of documents. uniform presentation of document
content, state agencies must co-or-
The transition to exchange of dig-
dinate the XML-based presentation
ital documents between systems
forms of the documents to be chan-
will substantially improve the effi-
nelled through the DEC with the
ciency of state agencies. The Docu-
State Chancellery. The co-ordinat-
ment Exchange Centre (DEC)
ed XML-based presentation forms
is a central information system
will be used for setting up a data-
for connecting dispersedly located
base that would allow the reuse of
records management systems via
uniform presentation forms.
the X-Road.3 Its primary function
is to transfer documents, in par- The transition to electronic records
ticular digitally signed documents. management is a long process. In
There are three ways to do that: addition to inter-agency electronic
document exchange, it entails the
1) If the agency has got a records
development of intra-agency elec-
management system, it is connect-
tronic records management, opti-
ed with the DEC, which enables to
misation of agencies’ work proc-
send documents to the records man-
esses and related records manage-
agement systems of other agencies.
ment processes, and so on. The
2) If the agency does not have a amendments to the regulation on
records management system, the uniform bases for the records man-
3
For further information on the Document Exchange Centre, see the IT yearbook of 2006
(http://www.riso.ee/en/pub/2006it/index.php?mn=11&prnt=6) and the web site of the Estonian Infor-
matics Centre (http://www.ria.ee/28567).
23
agement procedures set out the make the transition as smooth as

tasks for ministries and the State possible, the State Chancellery is to
Chancellery for the co-ordination of consult and assist other state agen-
the transition to electronic records cies in the procurement, application
management. The State Chancel- and development of the necessary
lery is expected to plan and organ- software; organise trainings; intro-
ise the development of and transi- duce the best practices of records
tion to electronic records manage- management; harmonise records
ment in the public sector as well management procedures etc.
as provide related guidelines. To
2.6. Developments in digital archiving
The development of the Estonian in Estonian National Archives”.5

digital archiving is comparable to The strategy was fully completed in
the respective developments in ad- 2005 and followed by further steps
vanced European countries. The necessary to achieve the abovemen-
National Archives of Estonia4 con- tioned objective as laid down in the
ducts close co-operation with the na- strategy.
tional archives of Sweden, Finland
In 2006, in co-operation with the con-
and Portugal as well as the long-
sultation company Ernst&Young
term preservation centres in Luleå
Baltic, the key preparatory compo-
(Sweden) and Mikkeli (Finland) to
nents of the digital archive struc-
implement various EU projects and
ture were completed: namely the
prepare for project applications.
vision, architecture and a project
Digital archiving is enhanced in
plan for the architecture. These
Estonia simultaneously with the
components contribute to further
general development of electronic
developments of the digital archive
records management, databases
in the National Archives.
and software applications.
One of the main prerequisites for
To this end, the Digital Archiving
designing the architecture of the
Strategy 2005–2010 has been elab-
digital archive information system
orated to achieve legal, intellectual
is the conception of the functioning
and technological readiness for the
of a digital archive. This is set out
evaluation, receipt, preservation
in the functioning model of the dig-
and use of digital materials in the
ital archive, which is based on the
National Archives, and facilitate
Open Archival Information System
the proper management, descrip-
standard, later known as the inter-
tion and archiving of digital docu-
national standard ISO 14721:2003,
ments and transfer of archives in
and the current practices of the
state agencies. For a short overview
State Archives and the Estonian
of the Estonian Digital Archiving
Historical Archives6.
Strategy, see “Digital preservation
4
The National Archives of Estonia is a government agency which was founded on the basis
of the Archives Act in 1999 by reorganising the Public Archives Services. It is a system of
state owned public archives and includes 13 archives in different locations of Estonia, and
acts under the administration of Director General, who resides in Tartu. It is subordinated
to the State Chancellery. The National Archives ensures the preservation of and access to
information about the changes in the Estonian society.
5
See http://www.ra.ee/galahad/file_storage/2/949.
24
6
The State Archives and the Historical Archives are the two central archives under the Na-
tional Archives.
The main functions and processes User interfaces – components

of the digital archive have been that provide access for information
mapped and analysed, serving as system users to the functionalities
the basis for the role model, concep- of the digital archive.
tual model and functional require-
Search engine – an index base
ments of the archive that specify
that is based on the information
the archive’s functioning model and
available in the records and serv-
lay a foundation for the architec-
ices client’s queries.
ture of the digital archive informa-
tion system. Administrative support sys-
tems – systems that guarantee the
The core concept for designing the
information security (access rights,
digital archive infrastructure re-
logs), configuration management
lies on the service-based architec-
and backup of the digital archive.
ture. Proceeding from the above-
described archiving processes, the The National Archives is establish-
use of services of different compo- ing the digital archive in stages.
nents is related and co-ordinated The objective is to complete the
by workflow management tools. digital archive infrastructure by
the end of 2009, so as to be able to
The design of the architecture
start collecting digital records from
strictly follows the principle of stor-
archivists as of 2010.
ing the applications of different
data operations, logic of function- The digital archive itself will be
ing, user interfaces and other inter- established in four stages during
faces logically separately. Such an 2007–2010. Every stage consists
approach makes the administration of a number of projects for imple-
and further development of the sys- menting different parts of the dig-
tem as simple as possible, similar ital archive.
to a service-based architecture.
In the first stage, practical activities
The digital archive information for offline receipt of digital records
system is divided into the following will start and additional analyses
logical key components. for the development of the integral
digital archive will be made. This
Workflow management – compo-
will entail additional research on
nents that ensure the functioning
the different components of the
and traceability of the main proc-
digital archive and the functioning
esses of the digital archive, includ-
of these components. In addition,
ing the receipt of records, access to
world practices and already avail-
and management and storage of
able solutions will be examined to
records.
see if they could be applied in the
Repository – systems for stor- Estonian National Archives.
ing data preserved in the digital
The second stage is aimed at the
archive, which can be divided into
development of the basic function-
components of permanent storage,
ality of the digital archive to a lim-
components securing the work of
ited extent – primarily for internal
archivists and components secur-
use in the National Archives. In the
ing customer service.
third stage, the majority of the ar-
Records – the general register of chive’s functionalities (addressed to
the digital archive that includes all stakeholders, including the cus-
content and technical metadata tomers, the archivists and the staff
about the information packages of the digital archive) will be imple-
stored in the archive. mented. A special emphasis will be
laid on the functionality that ena-
Support registers – registers that
bles the receipt and transfer of data
store the support data of the digital
only via electronic channels. The
archive workflows and include the
fourth stage will witness the final
main functionalities for adding, in-
25
elaboration and introduction of the
quiring and changing data.
digital archive, including setting up itself. In 2007, the implementation

a duplicate repository for storage of the UAM and preparations for
packages and developing systems creating the library of records of
that would provide for reporting the digital archive were started.
and for analysing user statistics.
Another set of instructions related
In addition, external interfaces to the receipt of digital documents
need to be established, so that also from agencies is the National Ar-
other systems (e.g. records man- chives’ requirements for archiving
agement systems; query systems of digital documents that handle the
other countries) could be integrated separation of digital documents
with the functionality of the digital and their metadata from electron-
archive. ic records management systems
and transfer to the public archive.
In 2007, an analysis of the acquisi-
The requirements help to define
tion of records metadata from elec-
the description elements of docu-
tronic records management systems
ments with archival value and give
was prepared. Another analysis
guidelines for the development of
carried out last year examined the
an agency’s electronic records man-
functionalities of the preliminary
agement systems so that the docu-
universal archiving model (UAM).
ments and/or their descriptions
The UAM will be used for bringing
drawn up would be suitable for
digital documents to the format set
transfer to the public archive.
out in the archive’s requirements
and is located in the agency that All the existing and future docu-
stores the data. The module comments related to the establishment
municates with the National Ar- of the digital archive and the devel-
chives’ reception module via the X- opment of digital archiving will be
Road (data exchange layer) and the available in the digital archiving
DEC (Document Exchange Centre), consulting environment of the Na-
and enables to store data both in the tional Archives (http://www.ra.ee/di-
National Archives and the agency giaken/ – in Estonian only).
2.7. Developments of the administration system of the

state information system
Background and objective of RIHA is to ensure transparent

administration of the state infor-
The development of the state information system, plan for the state
mation system as a logical whole is information administration and
based on information of the existing support the interoperability of da-
state information systems and data- tabases that provide public services
bases and the services they provide. (see also http://www.ria.ee/27313).
In other words, it is necessary to
have a central overview (metadata) In Estonia, as of 2008 the establish-
of all available information systems ment and maintenance of public
and the services they provide. sector information systems and da-
tabases is regulated by the Public
To this end, the Ministry of Eco- Information Act. Pursuant to this
nomic Affairs and Communications Act, information system managers
is establishing the sixth support are obliged to register their data-
system for the state information bases and information systems in
system, namely the administra- RIHA and ensure that the related
tion system for the state informa-
26
metadata are up-to-date. The ad-
tion system (RIHA). The objective ministration system for the state
information system gives a new per- 2) users of the services of the infor-
spective to the regulation of data- mation systems belonging to the
bases in Estonia, as it proceeds from state information system;
the need to introduce a state infor-
3) administrators and maintainers
mation system that would be func-
of classifications used in infor-
tioning according to new principles.
mation systems;
New legal solutions are necessary so
as to develop the state information 4) legal persons in private law and
system into a single interoperable citizens as receivers of informa-
service-based data environment in tion about the state information
place of the current decentralised system;
state information system.
5) Ministry of Economic Affairs
RIHA is an improvement of the and Communications as the au-
State Register of Databases (ARR), thority co-ordinating the devel-
established in 1997 to maintain opment of the state information
records of national databases and system;
state registers. By today, ARR has
6) Estonian Informatics Centre as
become outdated and its function-
the central administrator and
ality no longer meets the needs re-
maintainer of the state informa-
lated to the description of services
tion system;
provided by various information
systems. Therefore, RIHA is cur- 7) Statistics Estonia as the co-or-
rently being developed to establish dinator of classification develop-
a system with extended functional- ment and collector of statistical
ity that would better respond to the data;
needs of users.
8) Data Protection Inspectorate as
RIHA’s functionality will be ex- the supervisory authority for the
tended so that the system would protection of personal data;
be regularly mapping the Estonian
9) National Archives as the agency
information systems to give an up-
responsible for the preservation
to-date overview of the state’s IT re-
and use of information about the
sources and their use options. Only
Estonian society;
this way we could get a clear picture
of the existing components of the 10) service desk of the state infor-
state information system in various mation system as a tool for the
state institutions, the components employees of state agencies and
still needed, and possibilities to the service desk staff of the Esto-
make the optimal use of such com- nian Informatics Centre.
ponents. It is important to ensure
Every user group of the RIHA may
that all RIHA’s stakeholders (target
perform several different roles in
groups) would have a view and func-
the state information system. For
tionality responding to their roles/
instance, the agency that adminis-
responsibilities and guarantee an
trates a classification may simulta-
integral treatment of the system’s
neously be an information system
key objects.
administrator and service provid-
er; the agency that has the role of
a service user may also act as the
RIHA’s target groups and information system administrator,
service provider or classification
necessary functionality administrator.
RIHA will be a tool for the following The functionality of RIHA must
target groups: guarantee the information needed
1) administrators and maintainers by the target groups to perform all
of state agencies’ information their roles.
systems;
27
For example, a service provider tute an important component of

needs RIHA as a tool that would their general descriptions. The
enable to: creation of semantic descriptions
requires the development of ontolo-
• find out about the existing serv-
gies; that is, dictionaries that define
ices and those being developed,
the terms of a specific domain and
the service descriptions and the
show the taxonomy between them.
principles of service provision;
The description of terms should be
• see the data related to services,
both in human-readable (HTML
information systems and classi-
and UML schemas) and machine-
fications;
readable (OWL and UML schemas
• see the monitoring data and the in XMI) format.
statistics of the use of the X-
In order to develop semantic de-
Road;
scriptions of information systems
• monitor the compliance of serv- and operations performed by them,
ice level parameters to concrete the Instructions for the Semantic
needs; Description of Databases and Op-
erations Performed by Databases7
• apply for the right to use a data
were elaborated for drawing de-
service;
scriptions and administering do-
• make proposals for the develop- main glossaries.
ment of new services;
• identify contact persons of agen-
cies, etc. Developments of RIHA
For legal persons in private law
and citizens, RIHA must give an The development of RIHA started
overview of the state information off in 2005 with the creation of the
system and enable to: concept of RIHA. In 2006, a pro-
curement for the analysis and de-
• obtain information about serv- sign of RIHA was carried out and
ices, information systems and completed in April 2007.
classifications;
RIHA will be implemented in two
• make proposals to information stages. First, the so-called cata-
system administrators for the logue system (the “small RIHA”)
development of new services. will be created by July 2008. Next,
the whole RIHA along with all the
necessary administration support
processes (the “big RIHA”) will be
Key objects of RIHA and completed by 2010.
links between them The main purpose of creating a cen-
The key objects of RIHA include the tral metadata catalogue is to give a
following: complete overview of the Estonian
state information system both for
• organisations as information database administrators and state
system administrators, service information system co-ordinators.
providers, service users or clas- Besides the catalogue service, RIHA
sification administrators; also includes other components of
• information systems; an integral management system
(incident management, service
• services; level management, management
• classifications. of changes, problem management,
service desk and configuration
Semantic descriptions of informa- management) that contribute to
tion systems and services consti-
28 See Version 1.1 at http://www.riso.ee/en/files/EstonianGov_Semantic_Description-Instructions_v1.1c.pdf.

7
the management and design of the More precisely, the regulation sets
state information system. out the co-ordination process for the
establishment of databases by stip-
One of the development principles
ulating the exact terms and condi-
of RIHA is to build an open system
tions and the procedure related
that would at all times take into
to the establishment and mainte-
account the needs and proposals of
nance of databases, which is based
users and implement these needs
on the technical solution of the ad-
stage by stage.
ministration system for the state
Pursuant to the new version of the information system. Thus, RIHA
Public Information Act, which en- should be perceived as the collec-
tered into force on 1 January 2008, tion of principles and basic rules
RIHA will be established as a sup- for the management of the state
port system for the state informa- information system and the related
tion system. Like all other support information system through which
systems of the state information these principles and management
system, RIHA will be established functions are implemented.
by a government regulation.
2.8. Developments in the field of eID
Estonian ID card lent to handwritten one not only

in transactions between the citizen
Preparatory work for the use of and the state, but also on a wider
electronic identify (eID) in Estonia scale in all activities between pri-
was started in the second half of vate companies and in proceedings
the 1990ies, evolving into a nation- taking place between citizens. Any-
al programme aimed at the imple- one with a valid ID card can give
mentation of the Estonian ID card digital signature.
and the respective public key infra-
structure (PKI). As an outcome of
this Est-eID programme, issuing
of ID cards began on 28 January Mobiil-ID – what is this?
2002. Though more than one million ID
The ID card is a mandatory identity cards have been issued in Estonia,
document for all Estonian citizens eID related developments are far
over 15 years of age and for aliens from being finished. Rather on the
residing in Estonia on the basis of a contrary – only now that people
residence permit irrespective of their already possess the ID card, main
age. The cards are issued by the Citi- attention is paid to their extensive
zenship and Migration Board. use. One of the basic objectives of
Computer Protection 2009 – a co-
The ID card is not just a plastic operation initiative between the
document for the visual verification state and private companies (see
of its owner, but it also contains a Chapter 3.2) – is to increase the
chip with a personal data file and take-up of the ID card and oth-
two certificates – one for the secure er similar “strong” identification
electronic authentication of users mechanisms.
and the second for giving digital
signature. Wider implementation of electronic
ID presumes the existence of alter-
Pursuant to the Digital Signatures natives beside the ID card. If only in
29
Act, digital signature is equiva- case one would forget his or her ID
card at home or lose it. Similarly, remains slightly inferior to the ID

it would be unfortunate if eSchool8 card.
could be accessed solely with the ID
In order to identify yourself se-
card, while replacing the lost card
curely with Mobiil-ID, you have to
takes several days.
click on a respective button in the
Such an alternative exists in the web (usually saying Enter with
form of the Mobiil-ID service, Mobiil-ID), after which you mobile
launched by the joint effort of AS prompts you to enter your PIN. You
Sertifitseerimiskeskus (Certifica- will be identified after entering the
tion Centre) and the Estonian mo- code. The same routine is followed
bile operator EMT in April, 2007. also when signing documents digit-
Mobiil-ID is a solution for electronic ally.
personal identification and giving
Mobiil-ID is supported by practi-
digital signature, which is based on
cally all major Internet services in
the public key infrastructure (PKI)
Estonia that require authentica-
and in case of which the private
tion. In the DigiDoc portal and with
keys of the user are maintained on
the help of DigiDoc Client, Mobiil-
the SIM card of the mobile phone.
ID also allows giving digital signa-
In case of Mobiil-ID, the SIM card of
tures. The providers of e-services
your mobile acts like your personal
should ensure that if using their
identification document in the elec-
service requires the ID card, it
tronic environment, just like the
should also be made possible with
ID card: i.e. in addition to the func-
Mobiil-ID.
tionality of an ordinary SIM, Mo-
biil-ID SIM also holds your mobile Providers of e-services willing to
identity, allowing Internet service offer Mobiil-ID personal identifica-
providers to identify you and lets tion and digital signing functionali-
you give digital signature. ty in their system need to subscribe
to the DigiDocService, provided by
Mobiil-ID can be used with all mod-
the Certification Centre for digital
ern mobile phones. The phone must
signing, verification of signatures
have a GSM Phase 2+ support,
and personal identification. This
which is a standard for almost all
service provides the functionality
mobiles produced since 2000.
for creating digitally signed files
Prior to use, the Mobiil-ID SIM (DigiDoc) and verifying digital sig-
needs to be activated. natures, enabling third parties to
securely authenticate persons in
Personal identification and digital
their systems by Mobiil-ID.
signing functionalities are secured
by up-to-date security technology Work is underway with other Esto-
and corresponding Personal Iden- nian mobile operators (Elisa, Tele2)
tification Numbers (PIN). What so that they, too, could launch their
makes the solution more conven- Mobiil-ID solutions. For more infor-
ient is the fact that you no longer mation see: http://www.id.ee/10995.
need the ID card reader in your
computer: instead, you can access
your Internet bank from any avail-
able computer. The mobile phone The Baltic dimension of
acts as the ID card and the ID card Mobiil-ID
reader at the same time. Neverthe-
less, the use of Mobiil-ID is not en- As the main providers of e-services
tirely free of charge and, in terms – Internet banks – operate in all
of reliability, the service probably Baltic states, it is only natural that
they are interested in using the
8
eSchool is a database and web-based school-home communication interface to make
school activities and information available to parents and students on current basis
30
and to communicate with the teacher (see Chapter 4.6)
same authentication and signing Cross-border recognition

method also in Latvia and Lithua- of eID
nia. However, putting this to prac-
tice requires considerable effort Cross-border recognition of eID is
– all major mobile operators (8) and becoming increasingly topical both
certification service provides (3) in Estonia and elsewhere in Europe.
have to be convinced to launch re- More and more European countries
spective services. Even more – the implement ID cards and, thus, ac-
respective services and technolo- cepting digital signature generated
gies need to be interoperable, if not by a foreigner or ensuring access
entirely similar! in one’s information system with a
As an outcome of lengthy prepara- foreign ID card no longer constitute
tory work, eleven key organisa- a solely “theoretically challenging”
tions established, in spring 2007, problem.
a round table called Baltic WPKI The Ministerial Declaration ap-
Forum (WPKI – Wireless Public proved at the eGovernment con-
Key Infrastructure). The forum has ference in Manchester in 2005 has
its own Steering Committee and a set both the European Commission
technical working group consist- and the member states in motion.
ing of representatives of all par- Namely, the document claims that
ticipating organisations. The goal by 2010 all European citizens must
of the forum is to exchange WPKI be able to use electronic identity.
related information and elaborate In addition, exchange of digitally
standards and recommendations signed documents – also between
(for more information see Baltic member states – has to be ensured
IT&T view http://www.ebaltics.com/ by that time.
00304609?PHPSESSID=de6b83ef21
c46f771cd5535a4c55d461). Whether those dreams will come
true by 2010 remains to be seen,
For the time being, agreement has but the declaration has kick-start-
been reached on principles regarded the implementation of ID cards
ing the mobile side of Mobiil-ID in Europe. Considering its long ex-
application and work is underway perience in the implementation of
on unifying digital signature stand- the ID card, Estonia could assist
ards. The forum’s workstation in others in this. In addition, Estonia
the Internet is at: http://www.wpki.eu. actively participates in various ini-
In October 2007, the Lithuanian tiatives and projects in the field of
operator Omnitel also launched cross-border recognition of eID and
Mobiil-ID. The company uses cer- digital signing.
tificates issued by the Certification The “invasion” of foreign ID cards
Centre and the DigiDocService. and digital signatures to Estonia is
inevitable in the coming years and,
thus, tackling this issue has become
a common concern for our officials.
31
3.1. The use of IT solutions calls for knowledge
Computers and the Internet came creasing the awareness of opinion

along with general changes in the leaders and media representatives
society, escaping any special atten- so as to evoke public interest and
tion. However, besides financial shape a more positive attitude to-
reasons also scarcity and lack of wards new technologies and solu-
skills, know-how and motivation tions. Moreover, it is planned to
started to hinder the wider spread introduce the e-services developed
of computers and the Internet in and used in Estonia and opportuni-
the society. ties provided by the Estonian state
information system to the public
In order to cope in the information
sectors of other countries.
society, new skills and know-how
as well as active participation in The Implementation Plan 2007–
the use of e-services is necessary. 2008 of the Estonian Information
To ensure equal opportunities for Society Strategy focuses on four ma-
information society stakeholders jor action lines: raising awareness
and apply available ICT solutions of the use options of the electronic
to the fullest extent, it is necessary ID card, the State Portal http://www.
to systematically share information eesti.ee and the state information
society related knowledge. system as well as security issues.
A programme for raising informa- In order to promote the ID card, a
tion society awareness, funded national marketing campaign will
from the EU structural funds, aims be carried out aimed at the current
to increase the use of available elec- and potential users of e-services. It
tronic solutions, promote the elab- is planned to increase the number
oration of e-services and ensure of e-users of the ID card and pro-
sustainable development of the mote the card. The campaign will
information society through rais- comprise TV and Internet commer-
ing awareness of security issues. cials and also outdoor media solu-
The total cost of this programme is tions and it will be conducted in
50 million kroons (ca 3.2 billion eu- Estonian and Russian. In addition,
ros) and the programme is planned information days will be organised
to be implemented during 2007– for residents as well as public sec-
2015. tor and media representatives, and
information booklets and training
The related activities are oriented
materials on the use of the ID card
to present and future users of e-
will be made.
services. These include Estonian
residents, entrepreneurs, officials The purpose of introducing the ees-
as well as the stakeholders engaged ti.ee portal is to raise users’ aware-
in the development of e-services, ness of the existence and possibili-
such as policy-makers and the pub- ties of this portal through a market-
lic sector. Raising the awareness of ing and communication campaign.
information society of this target The target group of this portal in-
group enables to achieve high mo- cludes the stakeholders engaged
tivation for the introduction of new in the development of e-services as
and available IT solutions. In addi- well as consumers, opinion leaders
tion to the above, the programme and media representatives. The
33
includes activities oriented to in- campaign will involve different ad-
vertising channels, TV and radio the e-services developed and used

programmes. in Estonia.
The opportunities provided by the Communication about security
state information system will be issues should improve Estonian
introduced, above all, to policy- residents’ knowledge of the pos-
makers, officials, entrepreneurs sible dangers and cyber risks as
and opinion leaders to increase well as related protective meas-
their awareness of public e-serv- ures. The marketing campaign
ices provided by the state and the will teach the public that secure
entire information system. This, computers contribute to a safer
in turn, will result in better serv- society and involve people in pre-
ice provision for people. To this vention activities.
end, an autumn school will be
The implementation of the pro-
organised to strengthen co-opera-
gramme for raising information
tion between public sector deci-
society awareness will result in
sion-makers and IT specialists.
better awareness of society mem-
Furthermore, a partnership day
bers of the fact that e-solutions
will be held for public sector IT
make life easier and it is safe to
managers and private sector IT
use them.
developers, as well as an informa-
tion day for database developers In order to cope in the information
and administrators. The planned society, new skills and know-how
activities include creating a public is necessary as this society is al-
photo bank to visually illustrate ready a reality.
3.2. „Computer Protection 2009“ helps us to increase

security in the information society
In 2001, ten leading Estonian com- with 99% of them having Internet
panies decided to co-operate and connection.
established a foundation called
Thus, the more active part of the so-
Look@World with an objective to
ciety already uses the Internet and
guide Estonians to the Internet. In
the implementation of e-services is
three years, the foundation fulfilled
no longer hampered by limited In-
its ambitious goal to give basic
ternet usage. However, concerns ex-
computer and Internet training for
pressed about security risks had be-
100,000 Estonians. In addition, 500
come louder. Indeed, the more serv-
public Internet access points (PI-
ices had moved to the Internet, the
APs) were opened and an eSchool
higher had become the risks. Risks
system (see Ch. 4.6.) that has
against which the society could not
gained both domestic and interna-
yet secure itself; risks that had not
tional reputation was developed.
yet been fully perceived.
By 2004, a critical mass of Estoni-
The security of Internet banking
ans had been brought to the Inter-
is often associated solely with the
net and continuing the campaign
application and efficiency of secu-
would no longer have increased its
rity measures taken by the bank.
efficiency. According to the statis-
Internet banking, however, serves
tics of the Estonian statistical office
its purpose only in case there is a
(Statistics Estonia), 53% of home
user at the other end of the bank
PCs in Estonian households were
line, who can access his money and
connected to the Internet in 2007.
other resources from his personal
34
94% of enterprises used computers
computer. It is also clear that usu-
ally people do not keep their com- For instance, a project targeted
puters under lock and key, guarded at the provision of ID card related
by gunmen or IT specialists. In training to the employees of or-
fact, computers are an extremely ganisations participating in the
easy prey for any mischievous per- Computer Protection 2009 was one
son, who bothers to subordinate of the first ones. The materials
the computers of other users for his and methodology developed by the
malicious intentions. Look@World Foundation have al-
ready been used for the training of
Thus, as long as each computer
thousands of bank employees and
user does not secure his working
the ultimate goal is to give basic in-
environment himself, we cannot
formation security skills to all civil
talk about secure e-services. This
servants and anyone working with
is exactly the message that IT spe-
the computer.
cialists and opinion leaders began
to spread among decision-makers. In addition, activities were launched
to tackle the problem of risk-sensi-
At the same time, Estonia has good
tive e-services being accessible with
preconditions and possibilities to
the code card. The code card has un-
achieve success in the field of in-
doubtedly justified itself well in the
formation security. Estonia has im-
past, but has, in terms of security,
plemented an ID card that enables
become slightly outdated by now. At
electronic identity and strong cryp-
the same time, no bank would want
tography and is possessed by one
to alienate its customers from their
million residents.
habitual log-in methods by force –
In 2006, the CEOs of two of the Es- especially when the competitor still
tonia’s leading commercial banks accepts the old-fashioned and famil-
and two of the most important com- iar code card.
munications companies came to-
Thus, the participating banks in the
gether with an objective to launch a
Computer Protection 2009 initiative
new framework programme for in-
co-operated to take their message
creasing security of the information
– to use the ID card for logging in
society in Estonia. By May 2006, a
– to the Estonia Banking Associa-
co-operation agreement Computer
tion. Banks now unanimously move
Protection 2009 was elaborated and
towards establishing the ID card as
signed, in addition to the leaders of
the primary personal identification
Elion, SEB Eesti Ühispank, Hansa-
tool in Internet banking.
pank and EMT, by the Secretary -
General of the Ministry of Economic Another important development was
Affairs and Communications1. the launch of the ID card’s younger
brother – Mobiil-ID – by EMT in
The agreement sets out a general
spring 2007. In case of Mobiil-ID cer-
direction – to jointly contribute
tificates are not maintained on the
to Internet security and to render
ID card’s chip, but on the SIM card
support both in terms of financing
of the mobile phone instead. Thus,
and counselling. It was agreed that
in order to access a website one has
this would be done, among other
to enter the PIN from the keyboard
things, by increasing the use of the
of his or her mobile. In addition, a
ID card as the simplest and most
joint procurement of ID card read-
secure self-protection tool and car-
ers, organised at the initiative of
rying out general awareness rais-
banks, has to be mentioned here.
ing on Internet security.
As an outcome of the procurement,
The agreement provides an excel- Estonian computer users can buy
lent basis for the launching of vari- extremely inexpensive ID card read-
ous projects. ers, costing less than 5.75 euros.
1
For more information about the objectives and essence of the co-operation agreement Com-
puter Protection 2009 see chapter 3.1 of “Information Technology in Public Administration of
Estonia 2006” http://www.riso.ee/en/pub/2006it/index.php
35
In 2007, the initiative received a Deed of the Year prize awarded by the Estonian As-
sociation of Information and Telecommunications (ITL). On the picture (from left):
Margus Püüa (Head of the State Information Systems Department; Ministry of Eco-
nomic Affairs and Communications); Andres Käärik (Chairman of the Board of the
Look@World Foundation); Tõnu Grünberg (Member of the Board, EMT) and Allan
Martinson (investment banker).
The number of activities launched Within the Computer Protection

by the foundation has been on con- 2009 initiative, a website has been
stant increase and by autumn 2007, developed for providing basic ID
the Look@World Foundation had card training at http://koolitus.id.ee (as
six major project areas: widening a conspectus currently only in Esto-
the partner network, raising aware- nian with brief information in Eng-
ness, organising surveys, develop- lish and Russian). The website con-
ing the ID card’s service network, tains information on the purpose of
providing training, and developing the ID card, how to obtain it, how to
ID card related technical readiness find a suitable card reader, where
and infrastructure. The number to find relevant software and how
of smaller sub-projects, however, to install it, how to authenticate
amounts to nearly one hundred. oneself with the ID card, and how
Several organisations have ex- to give digital signature. Moreover,
pressed willingness to join the the portal provides information
Computer Protection 2009 partner- about the ID card’s security and
ship and the initial budgetary limit how to use it in the electronic en-
of 60 million kroons set out in the vironment. Practical examples are
initiative’s co-operation agreement given about numerous operations
is likely to be surpassed several related to the use of the ID card,
times. We can expect Estonia to such as changing its PIN codes,
become the most secure informa- renewal and unblocking of certifi-
tion society in the world by 2009, cates etc.
primarily due to the fast growth There are also blog-type websites at
in security-related awareness and http://www.arvutikaitse.ee (in Estonian)
36
widespread take-up of the ID card’s and http://www.infosecurity.ee (in Rus-
electronic functions.
sian), where computer users can First and foremost, awareness will
obtain information about threats be raised about threats related to
related to the Internet and find the use of chat rooms and other
specific instructions on how to pro- social networks popular among
tect themselves. These blogs con- young people. In addition, the aim
tain many links, articles and news, of Veebivend is to teach the youth
having involved thus into genuine to recognise the mentioned threats
signposts for finding one’s way in and manage them. Furthermore,
the world of information security. awareness raising activities are
planned on the use of personal data
In October 2007, an Internet se-
and intellectual property.
curity initiative called Veebivend
(The Web Brother) was launched Within the Veebivend initia-
in co-operation between Microsoft tive, a project competition will be
Estonia, Tiger Leap Foundation launched, calling upon the youth
and the team leading the work of to submit ideas on how to raise In-
the information security portal at ternet security related awareness
http://www.arvutikaitse.ee. The objective among their contemporaries. The
of the portal is to raise awareness objective of the competition is to
among students, teachers and par- involve the young and make them
ents about Internet security and reflect on the subject.
include it in the curriculum of gen-
eral education schools.
3.3. Participatory democracy over the web
During a conference called Democ- decision-making process, improve

racy in the Information Society, the quality and social legitimacy
held in Estonia in summer 2006, of decisions, policies and legisla-
inconsistency in the level of ePar- tion. From the standpoint of state
ticipation in the public sector was agencies, the engagement portal
brought out as one of the prob- will contribute to the formulation
lems. At the leadership of the State of more uniform engagement prac-
Chancellery, an eParticipation and tices. Though the use of the engage-
eDemocracy tool in the form of an ment portal as a central discussion
engagement portal called Teeme platform is still in its infancy, it is
Koos (Let’s Do It Together) (https:// expected to consolidate draft poli-
www.osale.ee, only in Estonian) was cies and legislation from all gov-
launched. ernment agencies. Thus, users of
the portal will have comprehensive
The purpose of the engagement
information as well as the opportu-
portal is to enable stakeholders -
nity to interactively communicate
including enterprises and business
with government agencies. Civil
organisations, Estonian residents,
servants will be obliged to publicly
and citizen associations - to keep
respond to all suggestions and give
up with and have their say in pub-
justifications for the acceptance or
lic affairs.
rejection of proposals.
Stakeholders can use the engage-
Prior to its public launch, the por-
ment portal for submitting their
tal was tested both by civil servants
opinions on draft legislation elabo-
and representatives of different as-
rated by government agencies.
sociations and their proposals were
Having different parties express- taken into account when improv-
ing their opinions will enhance the ing the user-friendliness of the site.
transparency and openness of the The Government, ministries as
37
well as several associations have ing strategic documents, the portal

the engagement portal’s banner on serves as a significant contribution
their websites. In addition, there to balanced policy formulation.
is a link to the portal in the eState
As the engagement portal has been
Portal http://www.riik.ee.
launched recently, attention needs
In autumn 2007, a forum called En- to be paid to ensuring its systematic
gagement Academy was organised use. Awareness about the portal has
for 160 participants, among them to be raised both among different
representatives of civil servants and organisations and citizens. In 2008,
different associations. At the end of the development of the engagement
2007 and at the beginning of 2008, portal will continue, also within the
seminars were organised for non- eParticipation initiative2 funded by
governmental organisations and the European Commission. In the
ministries to introduce the engage- framework of the project, the en-
ment portal. During the seminars gagement portal will be linked to
training was given to those civil the participatory democracy portal
servants, who will be using the en- TOM (Today I Decide)3, which so far
gagement portal in the ministries. has functioned separately. As an
outcome of the project, there will be
From August to November 2007,
a communication environment for
six consultations were held through
government agencies and interest
the engagement portal with 25
groups, where the latter can pro-
opinions received. Thus, interest
pose ideas, which would need the
in participating in consultations
elaboration of new legislation or the
has been noteworthy. There are
amendment of the existing one. Sec-
approximately 1,700 visits per con-
ondly, the environment will enable
sultation. The portal has about 150
to submit opinions on draft legisla-
registered users, of whom most rep-
tion initiated by the state. Thirdly,
resent an organisation, e.g. a busi-
there will be a search function for
ness or citizen association.
finding existing legislation.
As the engagement portal was
However, as the use of the engage-
launched only in late summer of
ment portal is advisable, not ob-
2007, it is too early to evaluate its
ligatory for the ministries, it will
results. However, the feedback re-
not replace the information system
ceived so far allows to claim that it
for co-ordinating draft legislation
facilitates the dialogue between the
eÕigus (eJustice)4. eJustice does
state and the stakeholders. Public
not enable giving feedback and con-
dialogue helps to impede corruption
tains information only about draft
and increase public awareness about
legislation currently being co-ordi-
the work of government agencies on
nated. As the engagement portal
one hand and about the expectations
allows acquainting with plans still
of stakeholders on the other.
under elaboration as well as rais-
The objectives for 2008 include the ing problems, those two tools can
take-up of the engagement portal be combined.
by all ministries for public consul-
In the development of the engage-
tations on vital draft legislation
ment portal, Estonia followed the
and by at least 100 associations or
example of the British govern-
organisations as regular users.
ment’s ePetitions portal (http://peti-
No such engagement environments tions.pm.gov.uk) and the Finnish par-
have been developed before in Esto- ticipatory democracy portals at
nia and there are only a few similar http://www.kansanvalta.fi and http://www.
examples in the world. By involving otakantaa.fi.
different stakeholders and contain-
2
http://ec.europa.eu/information_society/activities/egovernment_research/eparticipation/index_en.htm
3
TOM – see https://www.eesti.ee/tom/ideas.py/avaleht (only in Estonian; requires user authentication)
38 eÕigus – see http://eoigus.just.ee/ (in Estonian)

4
3.4. Estonia’s second iVoting experience
Already for the second time in the guaranteed, i.e. though a vote trav-
history of voting in Estonia, the cit- els between electoral committees ei-
izens with the right to vote could, in ther over the Internet or on paper,
the elections of the Riigikogu (Par- it is not possible to ascertain for
liament) in 2007, cast their vote whom a certain person has voted.
over the Internet.
When proceeding amendments to
Though it is already two years since the Election Act in the Riigikogu a
iVoting became possible for the first couple of years ago, the provision ac-
time, Estonia is still the only coun- cording to which the Internet voter
try, where voters can cast their can change his vote caused the most
vote at political elections over the opposition. At first glance this right
Internet and the results of iVoting may seem to be in contradiction with
are equal to votes given on paper one of the key principles of elections,
ballots. In terms of iVoting, Esto- according to which every voter has
nia can be considered a pioneer and only one vote. This principle, howev-
there are several countries, which er, is not violated in iVoting, since it
have already taken or are planning is guaranteed that only one vote – ei-
to take the same path. ther that given over the Internet or
the one submitted on the paper bal-
There are different reasons why
lot – will be valid. The principle of re-
countries have not yet arrived at
voting was introduced because of the
an implementation decision on
unique nature of iVoting – by casting
iVoting: respect for deeply rooted
his or her vote over the Internet the
election traditions, difficulties in
voter makes his choice in an environ-
making the political decision and
ment, where his or her freedom of
amending the elections act, but
choice cannot be ensured. Giving the
also the lack of a secure nationwide
possibility to re-vote is an efficient
Internet-based personal identifica-
and, in fact, the only way to avoid in-
tion system.
fluencing the voter or buying votes.
Election principles are com- ID card – the voter’s key

plied with also in iVoting
There was another important deci-
A decision to take elections to the sion made alongside the legalisation
Internet was made by the Riigikogu of iVoting five years ago. Namely,
already in 2002. The objective was the voter must authenticate himself
to give voters the opportunity to with nothing else than the ID card.
choose a suitable environment for In 2002, when the principles of iV-
making their election decision – ei- oting were established, the issuing
ther the traditional polling station of ID cards had only begun and the
or the Internet that has become a number of card users was extremely
part and parcel of the modern in- limited. Nevertheless, it was decided
formation society. For the sake of that for the sake of security and au-
clarity and simplicity, existing vot- tonomy, other widely used personal
ing methods especially the advance identification methods would be out
polls taking place outside the poll- of the question. As the ID card is a
ing station of one’s residence, were compulsory personal identification
taken into consideration in the document for Estonian inhabitants
elaboration of the Internet-based and the number of card owners was
voting system. So, in both systems, expected to increase fast, the devel-
iVoting and the traditional one it opment of new electronic services
is checked that a person can have has boosted. It can be said that iVot-
only one vote and its anonymity is ing is another way of implementing
39
the ID card, brought about by will- lems to many people. This statement
ingness to make more efficient use of is supported by the conclusions of an
the developed infrastructure. international report, elaborated in
co-operation with the Council of
At the same time, the requirement
Europe and the Estonian National
to use the ID card for authentication
Electoral Committee in summer
has limited the number of i-voters.
20075, which stated that a person’s
The flood of questions to helplines
computer skills and frequency of In-
during both the 2007 and 2005 elec-
ternet use were among other impor-
tions showed that it was not so much
tant factors making people choose
the iVoting procedure, but first-time
either iVoting or the traditional
use of the ID card that caused prob-
method.
100%
11 894
80%
5774
60%
40% 18 381
3543
20%
0% for the first time

Local elections of Riigikogu elections of others
2005 2007
Figure 3.4.1. Share of i-voters having used the ID card for the first time
By March 2007, 80% of eligible vot- Register for the compilation and re-
ers had been issued the ID card and newal of the list of voters, and with
3.4% of them used it for voting. The the information system of the Esto-
figure is not particularly high, but nian National Electoral Committee
as the use of the ID card in other for the collection and publication of
daily proceedings over the Internet data on running for candidate and
will increase, the share of i-voters voting results. As iVoting is only
can also be expected to rise during possible with the ID card, the na-
the next elections. tionwide public key infrastructure
and respective certification services
for personal identification and dig-
ital signing play a significant role.
Co-operation between the The latter are provided by AS Ser-
public and the private sector tifitseerimiskeskus (Certification
The iVoting system serves as a good Centre). In addition, the following
example of how different informa- state agencies are involved in iVot-
tion systems, maintained both by ing: the Chancellery of the Riigikogu
the public and the private sector, as the administrator of the iVoting
complement each other and enable, central system, Estonian Informat-
for moderate costs, to create new ics Centre (RIA) as the provider of
values. The iVoting information sys- the hosting service; Cybernetica AS
tem is linked with the Population as the software developer, and AS
KPMG Baltics as an auditor.
5
Report for the Council of Europe, Internet voting in the March 2007 Parliamentary Elec-
tions in Estonia, A.H. Trechsel etc, http://www.eudo.eu/download/Report_Evoting_Estonia_for_the_CoE_
40
2007.pdf
The number of i-voters in- however, that the transition to new

creased voting methods must be smooth
and gradual.
In 2007, iVoting was used by 5.4%
of all people having participated The organisational side of iVoting
in elections, i.e. by 30,275 voters. functioned efficiently at both elec-
Compared to the local government tions. Neither have voters had any
elections in 2005, the number of i- doubt in the trustworthiness of the
voters increased more than three novel voting method. Differently
times. While in 2005, iVoting was from the traditional paper-bal-
chosen for its novelty, in 2007 elec- lot based election system, no elec-
tions the main argument in favour tion complaints have been received
of iVoting was the latter’s conven- about iVoting. Creation of trust is
ience and speed. Increase in the use of utmost importance for iVoting
of the ID card’s electronic functions and in order to maintain that, not
during the recent years as well as only the organisers of elections,
wider availability of ID card read- but also observers, for whom all
ers also played a role. election procedures are public, can
contribute to that. As the Estonian
iVoting was unique in the world,
2005 2007 there were a number of foreign ob-
servers, including those from the
Total of i-votes 9,681 31,064 OSCE, at the parliamentary elec-
tions of 2007, acquainting them-
Repeated i-votes 364 789 selves, first and foremost, with the
(more than one structure and organisation of work
i-vote per voter) of the iVoting system.
Number of 9,317 30,275
i-voters
Number of i-votes 9,287 30,243 Next steps
counted Pursuant to the Estonian electoral
I-votes cancelled 30 32 acts, iVoting is mandatory at all
by paper ballot elections and referenda. There will
be both local government and Euro-
Percentage of 0,9% 3,4% pean Parliament elections in 2009,
i-votes among all providing thus another opportunity
votes given to make use of iVoting.
Percentage of 1,9% 5,4% Internet has turned out to be a
i-voters among all suitable channel for increasing
voters citizens’ involvement in public de-
cision-making processes. The appli-
Table 3.4.1. Number of i-voters in 2005 cation area of the iVoting system,
and 2007 elections too, could extend far beyond elec-
If the share of iVoting will increase tions, as the system can be used
also in future elections, the option of for organising referenda of various
replacing some of the existing vot- scale, i.e. by parishes or towns. So
ing methods by iVoting might come far, iVoting has been used, outside
into question, reducing thus elec- elections, only in the framework of
tion costs. As long as the organisa- a poll in the city of Tallinn in 2005.
tion of paper-based elections will be Organisation of i-polls presumes,
maintained to the current extent, however, easy availability of the In-
iVoting will not yield any economic ternet and ID card readers all over
benefits, but bring additional costs Estonia and interest of voters in the
instead. It has to be kept in mind, take-up of the new voting method.
41
4.1. Improvements to central state portals and

related application services
Year 2007 brought along a major Renewed content of the

change in the development of cen- State Portal
tral state portals and related appli-
cation services. Namely, the State The State Portal eesti.ee has been
Portal http://www.eesti.ee (in English renewed so as to make it more user-
only the main menu is available), friendly. The information content
which connects central state por- and services have been grouped
tals, was launched in October. into the views of the Citizen, the
Entrepreneur and the Official,
Actually, the State Portal is not en- which all include personalised in-
tirely new, as it draws together the formation and services depending
existing portals. It is developed and on the role chosen by the user. Cur-
managed by the Estonian Informat- rently, the possibility of bringing
ics Centre. The portal offers practi- the Official’s view under the eGov-
cal information about the rights and ernment portal http://www.riik.ee is
obligations of permanent and tempo- under discussion. In addition, the
rary Estonian residents and public State Portal features news about
sector services. The interactive part the Parliament, the President’s Of-
of the portal provides for the use of e- fice and the Government as well as
services over a secure data exchange general public information, struc-
environment, the X-Road. The aim of tured by institutions and topics.
the eesti.ee portal is to serve as a sin-
gle access point for citizens to public The portal has advanced consider-
sector e-services. For state and local ably both technologically and visu-
government agencies, it offers the ally. The visual design supports the
necessary infrastructure for provid- principles underlying the concept
ing various e-services to citizens and of the portal. In November 2007,
entrepreneurs. the availability of the sub-sites of
the eGovernment portal was as-
The infrastructure services avail- sessed according to the methodolo-
able (both as web-based services gy of the Web Content Accessibility
and online services of the X-Road) Guidelines (WCAG). The shortcom-
include the official e-mail address ings identified are currently being
@eesti.ee, messaging calendar, lo- eliminated to achieve the conform-
cation-based notification service ance level Triple-A with respect to
and publication of online forms. In most of the content and services of
2007, the infrastructure for mobile the portal.
notification services was added.
The development of the portal has
been funded form the EU structural
funds under Measure 4.5: Informa-
Development framework
tion Society Development. The objec- The technical realisation of the
tive of this project is to increase the State Portal is based on the tech-
quality of public services through a nology designed for the project of
uniform provision of such services eGovernment portal, meaning that
and the effectiveness of the public the development framework of the
sector through a central implemen- portal involves simultaneously dif-
tation of other similar functions. ferent developers. This framework
43
4. Developments related to ICT applications
and user-friendly online services in the public sector
has been used also for the develop- The notice of residence service en-
ment of other information systems ables to change and enter data on
that are indirectly related to the residence in the Population Regis-
State Portal’s project. For years, ter. A person can submit a notice of
it has been deployed as the techni- residence concerning the residence
cal platform of the Citizen’s Portal. of him or herself, his or her chil-
The more important latest supple- dren or wards as well as other peo-
ments to the framework include ple living there. It is also possible
the introduction of mobile ID based to submit data on changes in the
identification in May 2007, content postal address. When ordering for
management tools and an interface the entry of vital record in the reg-
with the Document Exchange Cen- ister, the vital record stored in the
tre. Further information about the archive of a vital statistics office is
technological solution and develop- entered in the Population Register.
ment framework of the State Portal In the case of child birth it is possi-
is available on the web site of the ble to check the use statistics of the
Estonian Informatics Centre (http:// desired name from the Population
www.ria.ee/26993 – in Estonian only). Register or enquire about the suit-
ability of the name from an official.
Apart from the Estonian Infor-
Married parents can use the child
matics Centre, the portal’s devel-
birth registration service to regis-
opment framework is used by the
ter the birth and give a name to the
Road Administration (for the in-
child online. All applications must
formation systems on transport
be signed digitally with an ID card
permits, job descriptions and road
or a mobile ID.
management), AS Andmevara (for
the information system on provid- In addition, citizens can make que-
ing childcare services) and various ries about their own blood relations
other institutions. and personal data.
Service of transport permits

Application services within
the State Portal’s develop- The State Portal allows to see and
apply for transport permits for
ment framework large-scale and/or heavy motor
E-services of the Population transport and co-ordinate the ap-
Register plication with the Estonian Road
Administration, the Road Adminis-
In 2007, new e-services of the Pop- tration of Northern Region and lo-
ulation Register were completed in cal road authorities.1 Applications
co-operation with the Ministry of are processed and permits issued
Internal Affairs and IT companies by authorised officials through the
AS Andmevara and AS Datel: no- portal.
tice of residence; justified claim of
the owner of the dwelling; order for
the entry of vital record in the reg- E-services of the police
ister; registration of child’s birth;
name query for the registration of The Police Board and AS Mebius
birth; order for a duplicate certifi- are preparing a package of police
cate; query of blood relations; que- e-services for citizens to speed up
ry of one’s own personal data, and communication with the police and
query of name statistics. These e- make it more convenient. This, how-
services function as X-Road queries ever, does not rule out the possibility
to the Population Register. that, if necessary, the citizen must
still go to a police station to ascer-
tain the circumstances. The police
44
1
The service of transport permits is available at http://www.eesti.ee/portaal/velub.index (in Esto-
nian only).
will be providing the following serv- mentation plan for the development
ices through the State Portal: of economic environment. Applica-
tions may be submitted by consti-
 reporting criminal offences;
tutional institutions, government
 checking data on misdemean- agencies and agencies under their
ours; administration, local governments,
non-profit associations and foun-
 filing objections in misdemean-
dations as well as legal persons in
our proceedings;
public law.
 submitting applications for ad-
ministrative proceedings;
A tool for the application of
 submitting requests for informa-
ISKE
tion;
ISKE is a three-level baseline pro-
 submitting applications for per-
tection system for safeguarding the
mits for weapon acquisition and
data processed in information sys-
for changing weapons permits;
tems (see also Chapter 2.3). The
 submitting applications for en- system was created primarily for
try into police service; the information systems of state
and local governments and for se-
 submitting tips;
curing related information assets.
 managing documents submitted Moreover, also business companies
to the police; can use ISKE for ensuring the se-
curity of their IT assets.
 ordering for notification services.
The tool for the application of ISKE
These e-services are available as of
is an interactive application guide
February 2008.
for information system managers
to help them choose necessary secu-
rity measures for their information
Project management service2
system depending on the nature of
The existing project management and non-functional requirements to
information system of the Esto- the system.
nian Informatics Centre was sup-
plemented with the module of EU
structural funds in 2007. The struc- Use statistics
tural funds module of the project
Since September 2007, when the
management information system
State Portal eesti.ee was renewed,
is an electronic environment for
the portal had around 108,000 visi-
the submission and proceeding of
tors within two months. The major-
project applications for structural
ity of them (100,000) are from Es-
funds and related reporting in ac-
tonia and the rest from altogether
cordance with one of the priority
96 countries – mainly from Finland,
action lines “Information society
Sweden and the United States (see
development” set out in the imple-
Figure 4.1.1).
45
2
The service is available at https://www.eesti.ee/projektijuhtimine (in Estonian only).
Figure 4.1.1. Top 10 countries of location of eesti.ee visitors
An average of 1,800 people visit the to draw any conclusions but the use
portal every day. The number of statistics shows an upward trend
visitors is higher on working days in terms of users. In the very first
from Monday to Thursday, reach- week after the launch, there were
ing ca 2,000 people; at weekends 2,095 visitors on the peak day. At
there are 900 visitors on average. the time of compiling this overview
As the portal has been in use for a (November), there were 2,560 visits
few months only, it is still too early on the peak day (see Figure 4.1.2).
Figure 4.1.2. Number of visits to eesti.ee
As regards the official e-mail sys- advancing the designed functional-

tem,3 which provides free e-mail ity. The plans for 2008 include rais-
addresses that can be also redi- ing awareness of the services avail-
rected, around 19,000 citizens and able and increasing the number of
17,000 enterprises had used it by users as well as user-friendliness.
mid-November. The State Portal project is expected
to be completed in August 2008. By
that time, the services of the por-
tal will be enhanced to the level set
Current and future develop- out in the initial project analysis
ments and the presentation layer of the
So far, the development of the State X-Road queries will be established.
Portal project has been focused on In the course of implementing the
presentation layer of the X-Road
3
The service is available at https://www.eesti.ee/portaal/postisysteem.abi (in Estonian only).
4
The presentation layer is a component of the state information system architecture. It is
46
the user interface for public sector e-services for entrepreneurs, officials, residents and other
physical persons.
queries,4 the X-Road’s query portals infrastructure of mobile notification

for citizens, entrepreneurs and lo- services with the existing as well as
cal governments will be integrated future information systems.
into the State Portal eesti.ee.
Moreover, also the eGovernment
Another important line of work will portal http://www.riik.ee, opera-ting
be the creation of added value to since 1998, will be renewed in
other eGovernment projects with 2008. The eGovernment portal was
the help of the infrastructure serv- established as a single access point
ices of the State Portal. To provide for Estonian state agencies to the
high-quality services to the citi- public information of constitution-
zens, state agencies are expected al institutions and state and local
to offer their services in the eesti. government agencies. The Russian
ee portal and integrate the services and English versions of the portal
of official e-mail, messaging calen- give a comprehensive picture of Es-
dar, location-based notification and tonia’s public structures also to the
publication of online forms and the rest of the world.
4.2. Development of Estonian information systems to

join the Schengen area
Estonia became a full member of tion. The SIS consists of a technical

the Schengen area on December support centre in Strasbourg, the
21, 2007. This concluded the long- central database (C.SIS) and na-
standing preparatory work to ex- tional networks (N.SIS), which con-
tend the Schengen Convention and tain a copy of the database. Besides
its advantages also to Estonia. providing the national component
of the SIS, every member country
The Schengen Convention is prima-
also sets up a so-called SIRENE
rily designed for the free movement
(Supplementary Information Re-
of people within the Schengen area.
quest at the National Entry) office.
In so doing, it is important to main-
The aim of a SIRENE office is to
tain security, which is ensured by
provide missing or additional data
the so-called compensatory meas-
about the country, if necessary, and
ures. The abolishment of internal
co-ordinate cross-border co-opera-
border controls and setting a com-
tion (data exchange, cross-border
mon visa regime on the one hand,
monitoring and surveillance).
and international co-operation be-
tween the police, the border guard, In Estonia, such office was set up
the migration board and customs at the Central Criminal Police. All
on the other, provide a balanced the necessary information is trans-
and secure environment for travel- mitted to the SIS through the data
ling and help to combat cross-bor- processing system of the SIRENE
der terrorism and organised crime. office. The Estonian Police Board
appointed the administration and
The lack of checks at internal bor-
development teams for E.SIS to
ders, as set out in the Schengen
ensure 24-hour monitoring and im-
border rules, calls for fast and reli-
mediate recovery of the system in
able exchange of data between the
case of possible failures. The re-
Schengen countries. To this end,
quired system availability is set
the Schengen Information System
to 99.99%, which means that only
(SIS) was set up. The structure and
4 minutes of failures is allowed per
operations of the SIS have been
a 30-day period.
47
specified in the Schengen Conven-
Port of Tallinn, December 21, 2007 at 0:00.
In order to help new EU Member As regards ICT developments, the

States to prepare for joining the Ministry of Internal Affairs es-
Schengen area, the Schengen Fa- tablished a new operational radio
cility Programme was launched communications network (ORC).
for 2004–2006 and later extended The ORC network provides for op-
to 20075. erational co-operation between the
police, the Border Guard, the Secu-
The funds of this programme were
rity Police, the Rescue Board and
allocated to the EU external border
the Tax and Customs Board. Other
regions to help them comply with
authorities related to crisis man-
the Schengen requirements.
agement can be connected to that
Estonia received 77 million euros network too. The network com-
from the European Commission plies with the requirements of the
and used it for financing altogether Schengen area. It covers the entire
78 projects. The majority of these country and operates independ-
projects comprised ICT infrastruc- ently of other communication net-
ture and information system devel- works. Operational radio commu-
opments necessary to strengthen nications provides secure access to
the EU external border and border information servers and facilitates
crossing procedures in accordance cross-border co-operation with the
with the Schengen rules. respective authorities in neighbour
countries.
The preparations for joining the
Schengen area involved various The Central Criminal Police
government agencies, such as the conducted several ICT projects in
Ministry of Internal Affairs, the 2007, including the development
Border Guard Administration, the and introduction of the national
Police Board, the Central Criminal central system for the Schengen in-
Police, the Citizenship and Migra- formation system and the establish-
tion Board, the Ministry of Internal ment of an application that consists
Affairs, the Data Protection Inspec- of high-availability software and
torate, the Tax and Customs Board, hardware components and enables
the Ministry of Justice, etc. authorised Estonian institutions to
48
5
The article draws from the information available on the web site of the Ministry of Internal Af-
fairs concerning the results of the implementation of the Schengen Facility programme in Estonia.
make queries to the Schengen In- The SIS contains data categories
formation System. that have been in use in the Estoni-
an police for several years: data on
The Estonian SIS (E.SIS) contains
fugitives (Article 95 of the Schengen
various information systems, each
Convention); stolen and lost motor
of which performs its own specific
vehicles, documents, firearms etc.
task in the process of compiling Es-
(Article 100); persons reported for
tonian SIS-messages and sending
being refused entry (Article 96),
queries to the SIS. One of the impor-
and persons who need to be located
tant criteria in the use of the SIS is
(Articles 97–99). The SIS extends
data protection. At the national lev-
access only to similar data of other
el, the exchange of data between au-
member countries.
thorised institutions and the E.SIS
is carried out through the X-Road The compensatory measures of the
– the secure data exchange layer. Schengen agreement needed to be
integrated in the daily activities of
The initial action plans were aimed
the police. To this end, it was nec-
at joining the second-generation
essary to identify and supplement
Schengen Information System
the daily work processes of the po-
(SIS II) and will be completed in
lice and build additional interfaces
2009. However, in 2006 Portugal
to the Police Information Systems
suggested that the new EU mem-
POLIS6, KAIRI7, ePolice8, etc. The
bers could join the first-generation
development of police information
SIS and use a Portuguese software
systems was facilitated by other
solution called SISone4All for that
aid programmes, such as EU struc-
purpose. This allowed to extend the
tural funds.
Schengen area already by the end
of 2007. In December 2006, the in- The Border Guard Adminis-tra-
terior ministers of nine countries tion implemented various projects
(incl. Estonia) decided to join the in 2007. For instance, the ICT in-
Schengen area as soon as possible. frastructure of the eastern border
The decision was followed by an of Estonia and the data communica-
intense period of work, which en- tion systems used for the protection
tailed a change of plan in the devel- of the eastern and sea border were
opments of the Estonian SIS and significantly improved. In terms of
the Police Information System. At the Schengen border rules, the Esto-
the same time, preparations are be- nian-Russian border is an external
ing made to join the SIS II. border of the Schengen area. Other
external borders of Estonia besides
The Police Board enhanced the
the territorial waters bordering the
infrastructure of the Police Infor-
international sea area include the
mation System; conducted a pro-
numerous ports and seven airports.
curement for software licences and
a hundred kits of ePolice equipment The accession to the Schengen area
for the police vehicles; trained the brought relatively few changes for
technical staff and users; updated the existing structure of the Bor-
550 computer workplaces, and de- der Guard Information System.
veloped a software solution for po- Only the modules for making que-
lice officers for making queries to ries to the Schengen Information
the Schengen information system System had to be added. All third
directly via the Police Information country (non-Schengen) citizens,
System. and randomly also Schengen citi-
zens, crossing the external border
6
POLIS – information system of the Estonian police for the registration and proceeding of
reports and offences.
7
KAIRI – information system of the criminal and security police for the collection and
processing of information, including queries to the information systems of other authorities.
49
8
ePolice – mobile workplace for making queries from the police patrol car about individuals
and vehicles, including from the Schengen Information System.
points of the Schengen area must Since the late spring of 2007, trains
go through checkpoints where their arriving from Russia undergo on-
passports and vehicles are checked line border control. The border
against Estonian databases as well guard enters the train with a laptop
as the SIS. This enables the border and a passport scanner. The check
guards to immediately identify per- is performed in real time via a WiFi
sons who have been reported as not network. Currently, even more
to be permitted entry or as fugitives compact (in the size of a notepad
within the Schengen territory. computer) mobile check equipment
are being procured. The process of
In accordance with the Schengen
providing border guards’ workplac-
rules, it is now also possible to make
es with automatic passport readers
queries to the visa register by the
is also under way. The readers are
number of visa to check people who
tailored to read electronic biometric
enter the country with a visa. The
data from biometric passports.
earlier checking procedure involved
the verification and registration of The joining of the Schengen area
the visa, similar to the checking of set new requirements to the avail-
passports, whereas now also the ability of the Border Guard Infor-
validity of visas is verified in real mation System. In case the Border
time via the central database of the Guard is unable to make queries to
Estonian visas. Upon checking, the the Schengen Information System,
border guard instantly receives ver- citizens of the third countries are
ification of the (non)validity of the not permitted to cross the Schen-
visa checked. If necessary, the bor- gen border. In connection with
der guard can also use the Schen- that, in 2008 the central servers of
gen visa consultation system. the Border Guard Information Sys-
tem will be replaced, the software
The new query-making procedures
of the servers will be upgraded and
were integrated in the existing
the X-Road servers of the Border
work environment so that it would
Guard as well as part of its network
be as user-friendly as possible and
equipment and connections will be
would not delay the operation of
duplicated.
checkpoints.
50 Checking of travel documents in a Moscow-Tallinn train at the Narva checkpoint

For the Citizenship and Migra- When Estonia acceded to the Schen-
tion Board, in terms of ICT, 2007 gen area in December 2007, the
was the year of implementing Citizenship and Migration Board
changes in the Board’s registers ensured readiness to submit data
and infrastructures. to the SIS on foreigners to whom
Estonia has prohibited entry to the
In autumn 2007, the new visa reg-
Schengen territory. The Board’s in-
ister was launched, which enables
formation system transfers data to
to acquire and compare biometric
the SIS also on travel documents
data (facial and fingerprint imag-
invalidated due to loss or theft as
es) with the biometric information
well as travel document forms.
available. This provides for more
definite identification of foreigners At the beginning of 2008, the Board
applying for a visa and thus reduc- launched a single personal identi-
es the possibility of issuing an Esto- fication procedure, including the
nian visa to persona non grata. comparison of the biometric data
of facial images. This was done to
With the implementation of the
bring the quality of personal iden-
new visa register, a national elec-
tification to a whole new level and
tronic system for co-ordinating the
introduce the systematic manage-
issuance of visas was introduced.
ment of the identities of individuals
This is used by the internal security
in possession of identity documents
authorities to perform preliminary
and identified by the state.
control of Estonian visa applicants.
The Ministry of Foreign Affairs
One of the underlying principles
allocated funds received from the
of the Schengen Convention is the
Schengen Facility Programme to
single visa policy. Thus, the Schen-
the updating of several foreign rep-
gen area is often referred to as the
resentations and consular posts.
Schengen visa area. The single visa
In addition, the Ministry enhanced
policy means that citizens of third
data communication with foreign
countries need only one visa for all
representations; provided them with
the Schengen member countries,
security systems; obtained control
whereas these visas are issued
equipment for documents and cash,
according to common rules. The
as well as devices for recording fin-
Schengen countries are also using a
gerprints.
consultation system called VISION
for issuing visas. According to a press release of the
Ministry of Internal Affairs, over
At the end of 2007, VISION was put
two million queries to the SIS were
to use in Estonia and is now used
made within four months, and 28
by internal security authorities to
individuals with no permission for
perform preliminary control of in-
entry, 8 fugitives, 1 missing per-
dividuals who apply for a Schen-
son and 19 requested vehicles were
gen visa from another EU Member
identified.
State.
Other Schengen countries have lo-
In addition, the new visa register
cated 6 persons requested in Esto-
ensures Estonia’s readiness for
nia, 2 persons with no permission for
joining the common visa informa-
entry to Estonia and 1 vehicle stolen
tion system (VIS) of the EU.
here with the help of the Schengen
Information System.
51
4.3. Company registration portal
The Company Registration Portal (CReP) of

the Commercial Register is run by the Centre
of Registers and Information Systems (RIK).
Its main purpose is to make the life of the ex-
isting and future entrepreneurs easier and
save them time spent on communicating with the Commercial Register. The
portal provides for fast, convenient and easy registration of a company while
retaining legal certainty. The key target group is the entrepreneurs, who wish
to register a new company, submit company’s annual report or change their
information in the Commercial Register. Another major target group is the
citizens, who wish to engage in entrepreneurship.
The European Commission’s efforts which serves as an electronic com-

to make the legal environment munication channel between entre-
more competitive prompted vari- preneurs and courts’ registration
ous new initiatives in the Member departments. Entrepreneurs can
States in 2006. As Member State’s submit applications for entry and
company law is largely confined to necessary additional documents,
EU legislation, the simplification annual reports and changes in their
of the latter also eased the nation- contact data, supervisory board, list
al company laws. Consequently, of auditors and area of activity.
the Estonian Commercial Code
It is also possible to apply for expe-
was adapted so that instead of the
dited procedure. In that case, the
former fifteen days, the entry of a
application for entry and related
company in the Commercial Regis-
documents are reviewed within two
ter now takes maximum five days
hours. Expedited procedure may be
in the case of ordinary procedure.
requested to register private limited
It is also possible to apply for ex-
companies, general or limited part-
pedited procedure, if the necessary
nerships or sole proprietorships as
business forms are completed and
well as update the register data on
terms and conditions met.
sole proprietors, general or limited
The acceleration of the procedure partnerships, public limited compa-
largely owes to the systematic in- nies, commercial associations and
troduction of IT and electronic iden- subsidiaries. Expedited procedure
tification. This was done to set up a does not extend to the registration
portal for entrepreneurs that would of a public limited company.
allow electronic use of data from
Apart from registering a company,
the Commercial Register and other
it is possible to submit annual re-
legal registers (which are public ac-
ports through the portal. This may
cording to the law) while ensuring
be done by members of the execu-
legal certainty of these data.
tive board, general partners, limit-
The amendments to the Com- ed partners with the right of repre-
mercial Code (incl. the possibility sentation, heads of subsidiary, liq-
to register a company in an expe- uidators or trustees in bankruptcy.
dited procedure) entered into force Annual reports can be submitted
on January 1, 2007. In parallel along with a confirmation of one of
with the draft Act, the Company the above listed persons who can
52
Registration Portal was launched, log in with an ID card or a mobile
ID or through an Internet bank. wait for a visit to the notary and

Once the report has been audited, later complete numerous forms
the auditor can electronically con- and take them to a court registra-
firm the report in the portal. tion department where only paper
documents were accepted. Then,
CReP entails security measures
all the information on the papers
that provide the portal users with
was manually entered into a com-
maximum safety. These measures
puter, whereas a lot of time was
include ID card or mobile ID based
spent on transferring the papers
logging and digital signing. Appli-
between different officials. All pa-
cations for entry drawn up in the
per documents had to be stored in
portal must be digitally signed and
the document archives, which is
are legally equivalent to the earlier
why the archiving space in courts’
notarised applications for entry.
registration departments had to be
The changing of contact data, list
constantly enlarged. It should also
of board members or auditors and
be noted that CReP contributes to
submission of annual reports re-
environmental sustainability, as it
quires authentication only.
is no longer necessary to print and
With the creation of CReP, there is store all documents on paper. Be-
no more need to spend time on go- fore 2007, the registration process
ing to a notary to register a compa- used to take up to fifteen days and
ny. Notarised memorandums of as- involved a lot of paperwork, where-
sociation and articles of association as now it takes maximum two hours
have been replaced by standard and is fully electronic.
articles of association in the portal.
However, if necessary, changes can
be made to the articles of associa-
tion offered by the portal. Further-
more, it is no longer necessary to
go to a bank office to pay the share
capital and state fee. This can be
done right in the portal via an Inter-
net bank. Estonia is the first coun-
try where a company can be regis-
tered within such short time while
retaining legal certainty. This has
been achieved through the integra-
tion of legislative amendments, IT
CReP has been designed so as to
developments and changes in bu-
apply various automatic control
reaucratic work arrangements.
mechanisms in the registration
The Company Registration Portal procedure to guarantee full compli-
has been well received by users. In ance of the applications for entry
2007, the first year of the portal, or change of entry with all require-
29% of private limited companies ments. The portal does not enable
were registered electronically. The to submit the application for entry
record time of registration is nine if some important field is incom-
minutes. plete. The receipt of state fee and
share capital is checked automati-
The first and foremost benefit of
cally. Just to give another example,
CReP is that it has helped entre-
if the founder of a company has in-
preneurs to considerably save on
dicated in the standard articles of
resources, as they can conduct
association that the private limited
most of the communication with
company will have a supervisory
the Commercial Register without
board, then the portal will require
having to leave their desk. Before
that the board members be entered
the launch of the portal, company
in the application for entry. The
registration took quite a lot of time
portal includes various other con-
53
and paperwork. First, one had to
trol mechanisms, which has sig-
nificantly reduced the workload of istration Portal was acknowledged

registering officials. That, in turn, by the jury as one of the two best
helps to considerably spare time European projects aimed at reduc-
and effort, and money. ing red tape.
The Company Registration Portal Moreover, the portal was nomi-
is a sustainable and constantly de- nated from among the nineteen
veloping application. In the future, projects submitted to the prelimi-
CReP will serve as a single contact nary line-up to represent Estonia
point for communication with the as the eGovernment finalist in the
state. Another future perspective is World Summit Award 2007.
to make the portal’s content avail-
CReP was granted the Good Prac-
able also for non-residents. This
tice Label by the ePractice.eu portal
will be possible once there will be
and the right to use that label. CReP
appropriate solutions for the cross-
was highly appreciated both by the
border recognition of the digital sig-
consortium of the competition and
nature. Estonia has every incentive
the visitors of ePractice.eu.
to achieve that.
The portal is also available in Eng-
At the European Enterprise Awards
lish. Further information is avail-
2007, a pan-European competition
able at www.rik.ee/e-ariregister/ettevot-
held in Portugal, the Company Reg-
japortaal.
4.4. Transforming the archival information system

into a virtual research hall
The recent years have been revo- Better searchability
lutionary for the customer service through the Archival In-
of the National Archives of Esto-
nia9 (http://www.ra.ee/?topic=25). On formation System (AIS)
one hand, services provided by the
The first crucial step in the develop-
National Archives have undergone
ment of e-services provided by the
rapid development, but on the other
National Archives was the creation
hand, customer expectations have
and publication of the AIS web inter-
also been on constant rise. Ever-in-
face (http://ais.ra.ee; for the description
creasing possibilities for describing
in English see http://ais.ra.ee/static/mis-
the archival material and making
onais_en.html) at the end of 2004. AIS
it easy to find and use have paved
is the most important search tool for
the way for relocating the archives’
archive users, containing informa-
customer service from research
tion about documents preserved in
hall to the web. The following is an
archives that form part of the Na-
overview of the three main stages
tional Archives. Although nowadays
of this development path.
the possibility to make web-based
enquiries is self-evident rather than
ground-breaking, AIS stands out
in the light of the existing practice.
Earlier, users of AIS had to:
9
The National Archives of Estonia (Rahvusarhiiv) is a government agency, which was
founded on the basis of the Archives Act in 1999 by reorganizing the public archives services.
The National Archives is a system of state owned public archives, including 13 archives in
different locations of Estonia, and acts under the administration of director general, who
54
resides in Tartu. The National Archives is a subordinate agency to the State Chancellery.
1) find an archival agency, which Better Access through

might hold materials for their Saaga (Digitised Family
research area;
History Sources)
2) go to that agency;
The possibility to search and find
3) figure out, based on a printed
data on the web is an important,
reference book of archives funds
yet clearly only the first step to-
or a card index, which archive
wards more convenient customer
creator may have the required
service, as it enables to obtain in-
information;
formation solely on the availability
4) begin to work, line by line, on of data, not to search the informa-
(often extremely voluminous) tion itself. In order to enable the
the paper-based registers of the latter, the Estonian Historical Ar-
respective archive creator try- chives launched, in May 2005, a
ing to find archival records that digitalised family history collection
could contain the sought-for in- Saaga (http://www.eha.ee/saaga), creat-
formation. ing thus access to digital copies of
its most widely used archival docu-
Now, everybody can find required
ments. Having quickly received a
documents fast and conveniently at
warm and enthusiastic reception
home by entering search phrases in
from researchers, the importance
their home PC. Therefore, it is only
of the solution for the customer
natural that record keepers and ex-
service became notable in only one
perienced researchers understand
and a half year: while the number
the revolutionary nature of the AIS
of users of the Historical Archives
system better than general Inter-
increased several times, the attend-
net users with little or no experi-
ance of its research hall decreased
ence with archives. At the same
by nearly one fourth. In addition to
time, these are namely the latter,
the ever increasing number of users
from among whom archives have
and growing level of virtualisation
attracted many new grateful users
of the customer service, improved
as a result of the AIS information.
preservation of original records is
Furthermore, it has to be noted another important benefit of the
that as a central system AIS con- implementation of Saaga.
stitutes an important precondition
By today, Saaga allows to scan
for the creation and development
through nearly 2.2 million digital
of various additional e-services, i.e.
pictures (2619 GB) with new data
for describing digitised materials,
constantly being added. While the
enabling specific web-based sub-
initial objective of Saaga was to
scriptions, etc. Those developments
consolidate all user copies of most
will be elaborated upon later in the
important sources for genealogical
article.
research, researchers now can use
By today, AIS contains informa- Saaga for scanning parish registers
tion on nearly 5.2 million deposi- of Lutheran and Orthodox church-
tory units or, in other words, the es, soul revision lists, wacka-books
archival information system holds (Wackenbücher) and lists of draft-
approximately 65% of all archival ees. Currently lacking yet most
records. Day-to-day entering of in- widely used family history sources
formation naturally continues, the will be entered in Saaga in 2008.
next task being the improvement
There are presently 27,000 regis-
and unification of the already en-
tered users in Saaga, of whom ap-
tered descriptions.
proximately 70 are usually logged
on simultaneously.
Since spring 2007, researchers have
been able to use the technically im-
55
proved test version of Saaga 2,
where users can, for instance, book- priority in 2007 to develop a univer-
mark references, open and save dig- sal customer service environment,
ital images in pdf-format, cut out which would develop further the
and save details of images, change already existing services and en-
contrast, etc. The year 2008, too, will able smooth communication, co-op-
bring along significant innovations eration and information exchange
in terms of creating web-based ac- in three directions: from archive to
cess to digital user copies of records. customer, from customer to archive
Namely, beginning from 2008, re- and from customer to customer.
searchers will be able to use a cross- The planned customer environment
archive digital content portal was called, pursuant to its objec-
(DGP), which contains, in addition tives, Virtual Research Hall or
to Saaga, digitised sources meant for VRH. VRH’s detailed specification
other target groups of the archive. was completed in autumn 2007 and
once the executor of the project will
The main components of the DGP
be chosen, the system will gradually
portal are the following:
be opened for its users within 2008.
1. the renewed Saaga;
In simple terms, VRH will serve as
2. a sample of most interesting and a gate through which users can en-
most widely used records from ter the virtual archive. The struc-
the collections of the National ture of VRH will be three-dimen-
Archives; sional, containing an archival view,
a personal view, and a social view.
3. the so-called Estica collection
or a sample of most important The following is a short overview
sources about Estonia from for- of all planned components of these
eign archives (initially from views:
Latvia, Denmark and Russia);
1. Archival view
4. images of: a) Baltic- German
a) Institutional view: general in-
coats of arms and b) construc-
formation on what is VRH, for
tion projects of buildings in Tar-
whom is it, what kind of infor-
tu city that already exist in the
mation does it contain etc.;
databases of the Estonian His-
torical Archives. The purpose is b) Service view: paid services (no-
to provide information on visual- tifications, copies, online store)
ly eye-catching sources without and free services (FAQ, glossary,
knowing their description data; feedback);
5. digital images of maps preserved c) Target group view: help texts
in the Historical Archives. aiming to guess visitors’ objec-
tives and offer solutions for
them, typical problems and solu-
A glance into the future tions thereof;
through Virtual Research d) Content view: references to ar-
Hall (VRH) chive applications – information
systems, databases, digitised
Although AIS and Saaga have cre- materials, etc.;
ated new possibilities for the use of
archives, it is still not always easy e) Topical information view: news,
for users to find their way in the press information, innovations
multitude of information and serv- in the VRH environment etc.
ices provided by different archives. 2. Personal view
Therefore, in terms of customer
service, there is still room for devel- a) User account: each user will be
opment. able to change the personal data
he or she has submitted upon
Considering the above-mentioned, registration, change password
the National Archives set itself a
56
and certain settings, view the
history of his or her subscrip- submitted through feedback,

tions etc.; the archive will not assume ob-
ligation to respond to questions
b) Links: each user will be able to
posed in the forum;
save links to specific VRH pages
he or she considers important. A b) User databases: databases that
respective note will appear next have been created and published
to the link if the information on by users. The archive will not as-
those pages has been updated; sume any responsibility for the
accuracy of data in them.
c) Databases: each user will be able
to make, based on a pre-deter- As mentioned before, the program-
mined standard and size limit, ming of the VRH is a gradual proc-
databases and share them with ess and not all above-mentioned
other users. functions will be implemented at
once. Nevertheless, 2008 will be
3. Social view
rather innovative year for the Na-
a) Forum: a communication envi- tional Archives, representing a
ronment, where VRH users can climax for several recent develop-
assist each other. Differently ments.
from questions that have been
4.5. eNotary – an information system for notaries
Legal certainty – one of the funda- multaneously serving the basis for
mental principles of a modern dem- a digital archive, enabling com-
ocratic state – is ensured, among munication with other registers,
others, by notaries’ offices. Nota- that guides and assists the notary
ries’ offices came into being and upon obtaining and entering data
were established so that govern- necessary for the elaboration of a
ments could assign several of their contract. For instance, by entering
functions, primarily maintaining personal identification code (or the
legal peace by application of pre- name of a person) into the box for
ventive methods, to an appropriate the details of the party, eNotary
organisation in public law and its finds the individual and completes,
members. Therefore, the notary’s based on the data of the Popula-
work and its development go hand tion Register, the rest of the blank
in hand with the development of boxes – name, place of residence,
a country. Centuries ago, govern- data of the identification document,
ments were satisfied, when a notary marital status. Upon the entry of
was literate, while further develop- a registered immovable number,
ment required legal knowledge and eNotary finds and displays, based
advisory skills and notaries were on the data of the electronic Land
also trusted with the role of an ar- Register, other data related to the
bitrator. Today when the modern registered immovable – address,
state has reached electronic dimen- area, owner, encumbrances and re-
sion, the notaries’ offices perform- strictions, applications under pro-
ing the tasks assigned by the state cedure; finds and enables to add the
also have to move in the same direc- plan of the registered immovable
tion. The eNotary project described from the Land Cadastre’s website
below is a step towards this goal. (the page also contains information
on potential restrictions related to
The information system eNotary
the heritage conservation, nature
is computer software for the com-
57
conservation or other restrictions)
pilation of notarial deeds and si-
and the land use type data of the clicks. Once the contract has been
intended purpose of the cadastral signed, the notary makes a digital
unit; checks prohibitions on busi- copy of the digitally signed contract
ness and rights of representations and saves it in the digital archive.
from the Commercial Register etc. But the digital copy of the con-
tract is not for the preservation in
The use of certain functions of the
the archive only. The contracts in
eNotary system is compulsory for
the digital archive or certain data
notaries. At present, it is manda-
thereof are forwarded electroni-
tory to keep the register of notarial
cally by the eNotary information
acts and the register of deposits in
system to other relevant registers
eNotary as well as to use the system
– the land registry department, the
for forwarding applications, trans-
registry department, the register of
actions and information to regis-
wills. In addition, a digital copy of
ters. As a next step, archiving of all
the contract may be forwarded e.g.
documents subject to preservation
to state agencies having the right of
in the digital notarial archive will
pre-emption etc.
be made mandatory.
The work of the land registry de-
partment is considerably simpli-
fied, since information no longer
What does eNotary do? needs to be entered from paper – it
• Requires data about parties to is automatically in an appropriate
a transaction and the object of location in the land register infor-
a transaction from other regis- mation system and the paper reg-
ters; ister has ceased to exist. An elec-
tronic response is received from
• keeps the notary’s calendar; the land registry department or
• registers notarial acts; registration department regard-
ing the registration of the contract,
• helps the notary to compile no- ensuring a ranking. The cross-us-
tarial deeds; age of data increased the efficiency
• helps to calculate notary fees of working processes also in other
and state fees; state registers.
• draws up invoices for the pay- By today, 100% of registration ap-
ment of notary fees and pre-filled plications are circulated in the elec-
payment orders for the payment tronic form.
of state fees;
• helps the notary to keep account
of the amounts of money depos- Project
ited at the notary;
The eNotary project was initiated
• sends data about a transaction in 2004. It was commissioned by
to other national registers; the Chamber of Notaries and ex-
ecuted by the Centre of Registers
• saves the transaction together
and Information Systems (RIK).
with the related data in the dig-
The project organisation was
ital notarial archive;
formed of three parties, with co-or-
• compiles notarial statistics; dinating and supervising tasks as-
signed to the Ministry of Justice. In
• assists the notary’s accountant.
addition to the steering group that
consists of three parties, a working
How does eNotary work? group was established. The latter
comprises, in addition to the rep-
The preparation of contracts is resentatives of the Ministry of Jus-
easy, as the information system tice and RIK, of notaries and other
offers contract templates and nec- staff from several notary offices.
essary data comes from different
58
The working group makes decisions
registers with just a few mouse
concerning the functionality of the tems as fast and simply as possible

system and solves problems that through a so-called single point of
have occurred in the course of the contact. The Ministry of Justice un-
development process. These were der the jurisdiction of which are the
namely the enthusiasm and sense land registry department, the reg-
of duty of the members of the work- istry department of the Commer-
ing group and development team cial Register and other institutions
that led the project to a successful in the field of state administration
completion. Constant feedback and and legal policy, wished to digitise
proposals together with their rapid paper applications and data ex-
realisation have been of critical im- change and increase the efficiency
portance for the development of the of business processes of registers.
project. RIK as the administrator and de-
veloper of IT matters in the juris-
eNotary was implemented as a pilot
diction of the Ministry of Justice
project in 2006 in two notary offices
wished to make the administration
and its first functionalities became
of registers more efficient, simple,
obligatory for all notaries as from
secure and innovative.
February 1, 2007. The goal of the
project was to increase the efficien- As a result of the co-operation, eNo-
cy of transactions for all parties, so tary system was completed and
everybody hoped to benefit from it. interfaces were developed to the
According to the estimations given Land Register, Commercial Regis-
by the representatives, this goal ter and other information systems
has been achieved. of the ministry. In addition to the
jurisdiction of the Ministry of Jus-
tice, eNotary was interfaced with
databases of the Ministry of Envi-
Benefits of eNotary ronment and other ministries.
The participants of the project made The benefits of eNotary for citizens
a joint effort to reach common goals: and notaries are best described in
simplicity, speed and efficiency in a letter from Ivi, an employee of a
performing their tasks. Notaries notary office and a member of the
wished to obtain information from working group:
state registers and information sys-
eNotary has improved the quality, speed and security of the customer serv-
ice. The user – a notary or an employee of a notary office – has the possibility
to quickly and conveniently obtain information about a particular person
or object. In order to obtain the same kind of information earlier, the no-
tary hade to surf on different websites and necessary data (name, address
etc.) had to be entered on every single one of them individually. Besides,
since most of the necessary websites were password-protected, one had to
memorise quite a number of passwords. But you know those pencil pushers
– who could learn all those hundreds and thousands passwords by heart
and, thus, passwords were kept, neatly written on an A4 sheet in the upper
drawer or stuck with a yellow post-it on the rim of the monitor or under
the keyboard. In eNotary, however, authentication is ID card based and
for search, one-off entry of personal identification code coupled with 6-7
clicks are sufficient to have all the necessary information for preparing a
contract.
Is the person making a transaction at the notary really the one he or she
claims to be; is the passport presented to the notary real or forged; is the
passport still valid or stolen – there is nothing easier than to check it through
eNotary. The validity of the client’s passport, passport picture and sample of
signature all come directly from the Citizenship and Migration Board and
the Population Register and comparing them with the physiognomy of the
customer and the document he or she has presented makes the life of forged
59
passport users and other rascals a hell. You are buying immovable, but how
can you be sure that the seller is not ill-intentioned and has not just stepped
out from another notary office, having already sold the immovable? Fortu-
nately, the notary has eNotary, where he can check, practically in real-time,
immediately before the conclusion of the contract for the purchase or sale of
the immovable from the Land Register, whether any transactions have been
performed with the given immovable or not.
In order to not to get down to technical details, it can be said that as fast as
one can obtain information from relevant registers through eNotary, these
registers also receive information on certified transactions from the eNotary
system. All kinds of cover letters, envelopes and postage stamps have also
fallen into oblivion. Thus, eNotary does the job of many postmen as well.
The citizen comes to the notary to register a succession. Instead of keeping
him or her running between different state agencies and fetching neces-
sary documents from the Vital Statistics Department, the notary receives
the required information from the Population Register through eNotary.
Within 30 seconds eNotary also enables to check whether a succession file
has already been opened at some other notary and whether the bequeather
has made a will or the succession will take place by law. There are no delays
of several days in order to make enquiries to the register of wills. Neither
is there any waste of notary’s or citizen’s time, but the customer can obtain
operative information for his or her further steps.
Any member of the customer service staff can probably affirm that nothing
human is alien to the customer – it sometimes happens that a child does
not know his mother’s or father’s date of birth; that a man cannot recall
the date of his wedding; that a person cannot recall the date on which he or
she bought an immovable, and sometimes people do not even know in how
many trading companies they hold shares. Earlier, obtaining data required
for a transaction was a real headache for employees of notary offices and
a rather brain-racking task for the customer. The customer often had to
run between several agencies in order to reproduce his or her documents
on paper. eNotary provides a solution to all those matters. As all the data
contained in eNotary are secure and information received from the system
corresponds to the data maintained in the registers, using eNotary often
covers the information needs related to a transaction. Both the citizen and
the notary win.
What does the future hold Entrepreneurs will be able to

for eNotary? manage, in addition to notarial
deeds, all other affairs with the
• Parties to a transaction will be state, for instance submission of
able to have a copy of the con- annual reports to the Commer-
tract with legal effect also in the cial Register, through eNotary.
digital form (the legislation cur-
rently allows to issue first tran-
scripts only on paper); Summary
• each individual will be able to eNotary provides notaries support
access, through the State Portal, in acquiring information from da-
contracts in the certification of tabases serving as the basis for a
which he or she has participated contract, wording of the contract,
(for reading and copying only, forwarding the contract to vari-
not for changing); ous registers, and monitoring the
• notary will become a single point implementation process of the
contract. The information system
60
of contact for entrepreneurs.
is compatible with and supports The implementation of eNotary is

other registers while observing the compulsory, but its take-up is made
information of the registers direct- gradual. Thanks to an in-depth
ed towards the electronic state for- preparatory work and testing, eNo-
mat, processing of information and tary has been implemented rather
amending the information in reg- smoothly. It is only natural that
isters. As a technological solution, faults are found in the development
eNotary also helps to ensure legal of any information system, but as
certainty. strength of the eNotary project,
constructive co-operation between
The system’s good functionality
the following partners has to be
and user-friendliness were brought
mentioned: the Centre of Registers
out in a recently organised survey
and Information Systems, eNotary
also by the users of eNotary.
working group, Chamber of Nota-
In October 2007, RIK organised a ries, notaries, Ministry of Justice,
user satisfaction survey, according and the land registry and registra-
to which 70% of respondents work tion department of the court.
with eNotary 5-8 hours per day.
The Estonian eNotary system is
Last experience with eNotary was
entirely unique in the world and
perceived as positive by 84% of re-
has attracted considerable interest
spondents.
from several European countries as
well as from the USA.
4.6. Internet-based information systems in education
In the academic year of 2006-2007, the Tiger Leap programme (1997-

there were 601 general education 2000)10 for the development and
schools, 48 vocational schools and implementation of ICT infrastruc-
35 higher education institutions, ture and native language electronic
including 11 universities, with alto- learning materials in general and
gether more than 260,000 students vocational education schools has
in Estonia. probably become the most well-
known. Also known are its follow-
The rapid development of IT affects
up programmes and development
the essence and quality of educa-
plans, such as Tiger Leap Plus
tion, considerably changes expec-
(2001-2005) and Learning Tiger
tations on the role of teachers at
(2006-2009), as well as an ICT pro-
school, presumes the use of appro-
gramme for higher education called
priate teaching methods and recon-
Tiger University (2002-2004) with
sideration of educational literature,
its follow-up programme Tiger Uni-
especially the roles of the textbook
versity+ (2005-2008).
and the workbook, in the light of
this development. As a result of those programmes,
the ICT infrastructure in Estonian
Implementation of IT in the learn-
schools has improved considerably:
ing process and the organisation of
there are, on average, 17 students
that has been promoted, via several
per computer intended for studying
national and private initiatives and
purposes, two teachers per teacher
programmes, ever since the first
computer, and a computer for eve-
years of the regained independ-
ry principal. 99% of schools have
ence 1992-1993. Outside Estonia,
61
10
See a collection “Tiger Leap 1997-2007“, Tallinn, 2007, published on the 10th anniversary
of the Tiger Leap Foundation: http://www.tiigrihype.ee/static/files/6.tiigrihype2007ENG_standard.pdf
broadband Internet and 98% of all ing web-based learning process and
computers in schools have Inter- development of study materials.
net connection. Majority of schools
The use of VIKO is organised un-
maintain a website and many of
der the GNU GPL licence through
them have their own information
the Estonian Educational and Re-
system or they are clients of some
search Network EENet. Since 2007,
virtual learning environment or
EENet offers the possibility to use
Learning Management System.
VIKO on its server for free for all
75% of Estonia’s teachers have un- general education schools as well
dergone a 40-hour ICT training Ar- as for other qualified agencies and
vuti Koolis (Computer at School). organisations. Expenses are cov-
ered by the Tiger Leap Foundation,
Schools have received more than
which also supported the elabora-
100 items of educational software,
tion and development of VIKO.
multimedia based handbooks and
textbooks (of which 70 are native VIKO will be developed further as a
language originals). There is an ed- community-based freeware project
ucational portal Koolielu (School by a team comprising the students
Life; for a short overview in English of the Tallinn University and other
see: http://www.koolielu.pages.php/0702), voluntary developers.
several projects have been carried
EENet offers educational, cultural
out to modernise manual training
and science institutions the oppor-
and technology lessons, etc.
tunity to use a web-based learn-
This article focuses only on some ing management system IVA,
of the most significant web-based which allows to create, administer
Learning Management Systems and use e-courses11, and a content
and educational information sys- management system for schools
tems in Estonia that have been KooliPlone, which allows to con-
implemented by many schools, veniently create, change and man-
teachers, students, parents and in- age one’s website. For example, the
stitutions operating in the field of system has tools for drawing up
education. and publishing a timetable, a virtu-
al school newspaper, a warehouse
One of the most popular virtual
for e-learning materials etc.
learning environments used by
over 50 general education schools Since February 2008, EENet also
is a web-based learning envi- provides a service called HAVIKE
ronment called VIKO (acronym (acronym for Hariduse Virtu-
for Virtuaalne Kool, i.e. Virtual aalKeskkond, i.e. Virtual Environ-
School). VIKO, developed in view ment for Education), which was
of the needs of general education developed in co-operation with the
schools, was created by the cen- Tiger Leap Foundation. HAVIKE
tre of education technology in the (http://havike.eenet.ee – only in Estoni-
Tallinn University. an) is a virtual server environment,
which offers diverse selection of
The learning environment allows
pre-installed software.
teachers to make learning materi-
als, study information and timetable The main objectives of HAVIKE are
accessible on the web for students. the following:
In addition, the environment of-
• to offer a diverse selection of
fers communication possibilities in
software in support of learning
the form of forums. VIKO contains
process;
the following modules: Courses,
Students, Lessons, Materials, and • to offer and promote software
Forum. In addition, there is a sup- that has been developed in Esto-
port system for teachers introduc- nia or localised;
62
E-course – a course carried out either partly or wholly in a web-based learning environ-
11
ment (usually in a Learning Management System)

• to offer an easy-to-use control agement Systems the use of which

panel with menus in order to is free for schools, users of eSchool
ensure that non-specialists, too, have to pay for the system. Since
would be able to install software; all schools share the same servers,
their purchase and administra-
• to make choosing the software a
tion costs are also divided between
flexible process, i.e. EENet will
them, making the price of the serv-
add new software packages ac-
ice acceptable for every school. To
cording to the needs of users and
use eSchool, each school signs a
co-operation partners.
service-level agreement, which sets
HAVIKE is free of charge for users out all requirements on the quality
in the field of education. Commer- and availability of the service.
cial use on HAVIKE is ruled out.
The main functions of eSchool are
the following:
• class register, where the teacher
eSchool enters grades, missed classes,
eSchool is a simple and convenient late arrivals, reprimands to stu-
Internet-based education informa- dents, accounts of lessons, home-
tion system that connects all parties work and tests;
involved in the learning process: • study book, which contains term,
principals, teachers, class teachers, course, year, exam, and prelimi-
students and parents. nary exam grades as well as grades
Using eSchool, teachers can enter for diligence and behaviour;
grades, reprimands to students, • missed classes register is a tool
missed classes and homework in the for the class teacher, who can
class register and make them avail- enter reasons for missed classes
able both for students and parents. and excuses. Missed classes are
Class teachers can add reasons for entered by the subject teacher in
missed classes and enter grades for the class register and generated
diligence and behaviour. in the missed classes register
Parents can have a quick overview automatically;
of their child’s grades, reprimands, • student grade sheet (student
missed classes and homework, diary) is a student-based ex-
while students can see their grades, cerpt of the class register, which
missed classes and homework. contains the student’s grades,
eSchool is currently used by more missed classes, reprimands to
than 220 general education and vo- the student, homework, and fi-
cational education schools all over nal grades;
Estonia. As the learning process • timetable;
differs by schools, the system is
made to respond to each school’s in- • forums;
dividual needs. Beginning from the • contact data of students and par-
system of symbols expressing the ents (contact database);
solidarity of a school till defining a
school’s system for grading and en- • reports to the class teacher and
tering missed classes – each school principal that have been drawn
can adjust eSchool to its own learn- up considering the daily report-
ing process and requirements. ing needs of a school.
The use of eSchool is managed by To increase the efficiency and con-
Koolitööde AS, which also has cre- venience of the service for students
ated and developed the system. and parents, the developers have
The development of the system made it possible to use the service
was supported by the Look@World also via the mobile phone.
Foundation. Differently from the Through the mobile it is possible to
63
afore-mentioned Learning Man- obtain a quick overview of the time-
table, homework, current and term Having logged in either with the ID
grades, reprimands to the student, card or a password, authorised rep-
missed classes and messages from resentatives of educational institu-
the teacher. Just like in the com- tions enter data within five days
puter. But parents and students al- after they have been generated or
ways carry their mobile with them altered. Non-sensitive data is vis-
and it is always at hand. ible for all citizens. Every citizen
can see, through the X-Road, data
Differently from the home PC,
about himself or herself in the in-
students can share their progress
formation system and authorised
through the mobile with friends,
representatives and information
parents or grandparents. All opera-
systems of schools, school adminis-
tive messages from the teacher or
trators, institutions and enterpris-
the school (i.e. cancellation of a les-
es can use data within the limits of
son) can be accessed via the mobile.
their rights.
The use of eSchool is person-based.
Most of the data that has been con-
Users are identified either with the
solidated in EHIS can be accessed
ID card or identification codes of In-
with a personal user ID. One user
ternet banks. To activate the mobile
in each educational institution has
service, a user who has logged into
the administrator’s rights and can
the eSchool environment enters his or
add and remove user rights within
her mobile number, which opens him
his or her institution according to
a person-based view to eSchool data.
the decision of the leader of the in-
The first 30 days of using eSchool stitution. Each institution may have
through the mobile are free of several EHIS users. Every user
charge. Thereupon, the user has to may have different rights in differ-
buy either a monthly ticket in the ent subsystems. For instance, if the
value of 9 kroons (0.58 euros) or a administrator gives access rights to
day ticket for 1.5 kroons (0.1 euros). an employee, who does not need to
enter data, but only use them, it is
recommended to render him or her
solely the view-only right.
Estonian Information Sys-
tem for Education (EHIS) EHIS consists of five sub-registers:
The development and use of EHIS • Sub-register of documents cer-

have been covered in earlier publi- tifying education consolidates
cations of yearbooks (2004, 2005)12. data about all final acts of gen-
eral education. Educational in-
EHIS is a web-based information stitutions can use the register’s
system, which contains registers data for printing out basic and
with data on students, teachers, in- upper secondary school gradua-
frastructure of educational institution certificates and results re-
tions, curricula and final acts of all ports. In addition, the register
levels of educational institutions. enables the issuing of duplicates
In the development of the system of graduation certificates.
the following principles were tak-
en into account: data must be en- • Sub-register of teachers contains
tered as effectively as possible ex- data about teachers. The regis-
actly where they are generated; the ter also holds information about
whole system must be integrated vacancies that need to be filled.
with other state information sys- The data entered in the register
tems; it is not the collection of data helps to keep account of teach-
that constitutes the ultimate goal, ers’ qualifications and forecast
but genesis of new knowledge and training needs.
statistical information as a result • Sub-register of pupils, students
of their analysis instead. and resident physicians con-
64 See http://www.riso.ee/en/publications/natpublications
12
solidates data about pupils, stu- • to provide automatic access to

dents, external students and personal data for all stakehold-
resident physicians. The data ers needing it for the perform-
of the register is used, first and ance of their duties (Health In-
foremost, for forecasting state surance Fund, Social Insurance
commissioned education and Board etc).
making education policy deci-
sions.
• Sub-register of educational in-
stitutions consolidates data Admissions Information
about educational institutions. System (SAIS)
The register reflects changes in
the Estonian school network, SAIS (https://www.sais.ee/index_en.html)
i.e. about joining or closing of is a complex e-service, which en-
schools. This data serves as a ba- ables electronic submission of ap-
sis for the analysis of the educa- plications over the Internet. After
tion system and organisation of the submission of the application,
educational life. SAIS also helps to organise the rest
of the process up to the admission
• Sub-register of curricula and edu- to a higher education institution,
cation licences consolidates data including the exchange of messages
about the curricula, programmes between the applicant and the high-
and education licences of educa- er education school, the acceptance
tional institutions. Processing of or rejection of a study place etc.
new curricula and education li-
cences in the register allows to There are currently 16 higher ed-
revise applications faster and ucation institutions joined with
gives a good opportunity to in- SAIS.
form the applicant of the state of As users can log onto the SAIS sys-
affairs. The data of the register tem through the State Portal http://
gives a good overview of learning www.eesti.ee either with the ID card
opportunities throughout Esto- or via Internet banks, the system
nia and are, thus, useful for all does not require separate regis-
willing to continue their studies tration. Everybody, who logs in is
or upgrade their skills. therefore unambiguously identified
EHIS is in constant development. and all the data and applications
For instance, it is planned to be submitted via SAIS are equal to
linked with the state examina- those presented on paper or by any
tions’ information system, which is other means.
currently still a separate register. SAIS is linked to other national da-
The Ministry of Education and Re- tabases (EHIS, state examinations’
search initiated the EHIS project in information system REIS, the
2002, the system was launched as Population Register) and in case
a functioning information system the required data already exists in
in autumn 2004 and has since been them, there is no need to prove past
considerably improved. education, grades of state exams,
EHIS was developed with two ob- previous higher education grades,
jectives: etc. Even if the data does not exist
in other registers a pre-filled ap-
• to provide reality-reflecting in- plication form can be submitted
formation for all decision-mak- in SAIS, with which evidence is
ing levels in the education sys- presented to one higher education
tem (Ministry of Education and school regarding the correctness of
Research, county governments, missing data (i.e. a previous higher
local governments and others in education diploma). It is enough
need of information) in order to to present evidence to one higher
make sound management deci- education school, since once it is
65
sions;
entered in SAIS, and the data is SAIS belongs to the Ministry of

confirmed by one higher education Education and Research and is ad-
school, it is possible to submit the ministered by the National Exami-
information with admissions ap- nation and Qualification Centre.
plications to other higher education The development of the system was
schools interchangeably with data funded within the framework of
received from state registers. the Tiger University higher educa-
tion support programme financed
The fact that the applicant receives
by the European Regional Devel-
data on the offers of a study place
opment Fund (ERDF) measures
electronically facilitates and ac-
for the “Development of the Infor-
celerates the admissions process,
mation Society”. Now, universities
as this allows the applicant also to
that have joined SAIS cover the
accept or reject the study place
system’s development and admin-
offer through SAIS. If the appli-
istration costs itself proportionate-
cant rejects the study place, it can
ly to the number of applicants. The
be offered almost momentarily to
system was completed in 2005.
the next applicant on the list.
In the 16 universities that have
SAIS is secure. After logging in, the
joined SAIS, nearly 16,300 new
entire information exchange be-
students were accepted in 2007,
tween the applicant and the infor-
amounting to 88% of all university
mation system takes place in a se-
entrants in Estonia. Approximate-
cure encrypted X-Road data chan-
ly 10,000 or 62% of all entrants to
nel. It should also be emphasised
schools having joined SAIS sub-
that though SAIS allows to apply to
mitted their application through
several universities simultaneously,
SAIS.
no university can see applications
submitted to other universities.
4.7. Development of e-services in Tallinn
The co-operation of central and local where the provision of services, in-
governments is centred on the resi- cluding public services, constitutes
dent of Estonia for whom we must only a part of the output of the given
ensure high-quality, readily avail- process. Thus, in most cases, an e-
able and flexible public services; or service is not just a simple “super-
in the modern world – e-services. structure“ for the existing services,
but has to be regarded, in terms of
The term e-service is often used in
availability or delivery channels,
extremely different meanings and
as an entirely new form of service
contexts, which may create a mis-
that needs a critical analysis of the
leading impression as if this was
whole service chain, introduction of
something of a simple complement
logical changes as necessary, and,
to already existing services. How-
to a greater or lesser extent, chang-
ever, an e-service cannot be gen-
ing the whole working process.
erated out of nowhere, i.e., on one
Hence, as a rule, the development
hand, its generation is usually de-
of e-services is neither simple nor
pendent either on the development
inexpensive.
of a new information system or the
execution of development work for Most local governments in Estonia
an already existing one. On the oth- lack resources for the development
er hand, an e-service is based on the and administration of information
business process or the main activ- systems providing e-services. The
66 ity process of a specific institution, solution can only lie in close co-op-
eration between state institutions All public documents can be ac-

and local government agencies (see cessed through the Tallinn Legis-
also Chapter 1.2). In many cases, lation Register; materials of City
public services are provided for Council and City Government ses-
citizens through local governments, sions, committee meetings, etc. are
while at the same time, local govern- also available.
ments can offer high-quality servic-
Registration of one’s place of
es only on the assumption that for
residence was the first fully elec-
the acquisition of source data, they
tronic service, allowing to register
use state registers or information
one’s place of residence in Tallinn
systems (e.g. Population Register,
by sending a digitally signed appli-
Register of Construction Works
cation together with accompanying
etc.), which in turn are formed of
documents to a relevant city official.
data collected in the administrative
areas of local governments. Of social benefits, applying for
the one-off childbirth allow-
As a positive example, one could
ance and birthday allowance
mention the development of an in-
were realised as e-services in 2007.
formation system called STAR (reg-
Respective e-applications can be
ister of social services), launched
submitted through the State Portal
in co-operation between the Minis-
http://www.eesti.ee. The following is a
try of Social Affairs and the city of
short overview of the one-off child-
Tallinn, that is expected to replace,
birth allowance.
in the nearest future, the outdated
Social Register, and provide all local
governments with the opportunity to
organise and process data related to
social welfare in the modern way. Applying for the one-off
childbirth allowance in
Tallinn
Steps taken by the city of Pursuant to a regulation of the
Tallinn for speeding up Tallinn City Council, the City Gov-
ernment pays, since 2003, to young
the development of the in- parents the one-off childbirth al-
formation society lowance in the amount of five thou-
sand kroons (approx. 320 euros).
The city of Tallinn provides more This benefit is considered to be one
than 400 public services, including of the factors having positively in-
many e-services, for its residents. fluenced the birth rate in the city
Information services are accessible of Tallinn.
on the website of Tallinn at: http://
www.tallinn.ee/eng as well as through Up to the beginning of 2006, there
the State Portal at http://www.eesti.ee. were separate procedures for the
registration of birth and applying
The first system providing e-serv- for the childbirth allowance. The
ices and simultaneously serving as parent had to, after the registra-
a base system for many other serv- tion of birth in the Vital Statistics
ices provided by the city was the Office, turn to the social welfare
electronic document manage- department of the city district gov-
ment system for administrative ernment of his or her residence to
agencies of the city of Tallinn, apply for the childbirth allowance.
launched in 2001. Today, all docu-
ments circulated in the city’s ad- In order to make receiving the al-
ministrative agencies and all the lowance as simple as possible, a
city’s legislation are processed only procurement was organised for the
through this system. Naturally, pa- development of a respective service.
per documents have not yet ceased As an outcome, an information sys-
to exist, but new modern working tem was developed, enabling web-
67
methods are gaining ground. based automation of the procedure
of applying for, determining and – through a web map (http://www.

paying the one-off childbirth allow- tallinn.ee/eng/g3455s31096).
ance. By August 2007, a possibility
There has been an official web map
to submit respective e-applications
on Tallinn’s website since 2002. In
through the State Portal http://www.
the course of the time, the function-
eesti.ee was completed in the frame-
ality of the map has been improved
work of the same project.
and additional data and thematic
Once the applicant has been au- information layers have been added
thenticated, it will be checked to it. Since autumn 2005, there is
against the data of the Population a trip planner on the map both for
Register, whether he or she meets public transport and cars. In addi-
the requirements set out in the tion, there is a module for regional
regulation – the relation between news, based on a database contain-
the child and the parent, the child ing operative information concern-
cannot be older than six months, ing Tallinn, updated daily by man-
one of the parents must have lived agers of communication channels
in Tallinn for at least a year before and officials issuing permissions for
the child was born, the child must mining and street closures. All this
be registered on the same address information is displayed on the web
with the parent. map in the form of operative events.
Based on the database, each citizen
In case the applicant is eligible for
can subscribe (by e-mail) to opera-
the childbirth allowance, most data
tive information about events con-
fields will be filled automatically
cerning the location he or she has
with data from registers. The parent
defined on his/her map interface.
only needs to add his or her phone
number and bank requisites. In ad- Getting the above-described data
dition, the applicant must enclose a on a local government’s web map
medical certificate as set out in the is logical and necessary. Namely,
regulation. Hopefully, in the future the map makes it much more con-
it will be possible to obtain the latter venient to find an administrative
through an automatic enquiry from agency providing a required serv-
the eHealth information system. ice, nearest catering establishment
or sports facility; to obtain infor-
Then, all the parent has to do is to
mation on services provided by the
wait for the receipt of the benefit.
city; to learn, what company is re-
The parent can follow, through the
sponsible for cleaning one’s home
State Portal, changes in the status
street and for refuse collection;
of the application (registered, being
what are the opening hours of the
processed, being paid).
closest waste management centre,
During the first three months after etc. Respective layers on the map
the launch of the service, over 40 open with just a few clicks in a cou-
young parents in Tallinn applied for ple of seconds, excluding thus the
and received the allowance through need to surf in the jungle of infor-
the State Portal http://www.eesti.ee. mation provided on the websites of
administrative agencies.
Web map – local govern- The public transport trip planner
ment’s tool for communi- is one of the most popular infor-
cating with residents and mation services on Tallinn’s web-
site, used by over 1000 people per
visitors day. In addition to public transport
Since most of Estonia’s citizens timetables, the trip planner ena-
live in Tallinn and its neighbour- bles to outline one’s journey in the
hood and as most of them use the city from point A to point B. Modes
Internet, it is vital to convey infor- of public transport together with
mation to them in the modern way relevant timetables are suggested
and an optimal route to be covered
68 is drawn on the city’s digital map.

In addition to the city of Tallinn, of use and other similar qualities

the trip planner also covers the bus have made the ID ticket extreme-
routes of the Harju county. ly popular among the residents of
Tallinn. Each day, the ID card is
Public transport timetables can
used by more than 100,000 public
also be used without the web map,
transport passengers in Tallinn.
by choosing the following path on
In 2006, more than 72% of public
the website of Tallinn (http://www.
transport users in Tallinn had the
tallinn.ee/eng): I need Transport 
ID ticket. More information about
Timetables.
the ID ticket can be found at: https://
In the development of web map appli- www.pilet.// (partly in English).
cations, open source software (OSS)
In 2006, approximately 62% of
was decided to be used as much as
the ticket income of the budget of
possible. Thus, the applications are
Tallinn was received through the
based on architecture meeting the
ID ticket system.
requirements of OpenGIS WMS
(web map service), the map server The above-given examples of the
runs on OSS MapServer/phpMac- city’s willingness to give its resi-
Script and the database server uses dents the best possibilities to com-
OSS PostgreSQL database. For the municate with the town and spend
synchronisation of data from other less time on this than years ago,
data resources OSS MySQL data- constitute only a tiny part of the
base is used. number of services to be trans-
formed into electronic form in the
Below is a short overview of oth-
coming years.
er most well-known e-services in
Tallinn: Information society related devel-
opment projects in Tallinn have
Mobile parking (mParking) gained reputation both in the EU
and elsewhere.
The mParking project, based on In 2007, a US-based think tank In-
the use of the mobile phone, was telligent Community Forum (ICF)
launched in Tallinn on May 1, 2000 recognised the development work
and constitutes one of the best in- of Tallinn in the implementation
novative solutions in the manage- of information society projects by
ment of life in the capital. mPark- including Estonia in its 2007 Top
ing has sustained the test of time Seven Intelligent Community list.
and by today, the solution is used, It is noteworthy that ICF did not
in addition to Tallinn, by five other refer to Tallinn as to a local govern-
Estonian towns. Furthermore, the ment, but evaluated it as a com-
service is to be launched in Antwer- munity (state, local governments,
pen, Belgium. enterprises).
In 2006, 54.1% of the total of parking In addition, in 2007 Tallinn re-
revenues in Tallinn were received ceived the mWatch prize, awarded
through the mParking solution. by LivingLabs, for being the most
innovative mobile region.
ID ticket for public trans-
In conclusion, it is good to admit
port that in 2011 Tallinn will be one of
The ID ticket is based on the pos- the EU cultural capitals – a fact
sibility to use the Estonian ID card that serves both as recognition and
for electronic personal identifica- responsibility at the same time.
tion. The simplicity, convenience
69
5.1. Cyber attacks against Estonia – overview and

conclusions1
Background information few cases of targeted web deface-

ment attacks, e.g. the website of
The cyber attacks against Estonia the party of the Estonian Prime
should be viewed in the general po- Minister http://www.reform.ee was
litical context in April-May 2007. defaced during the first hours of
After the decision of the Estonian the attacks.
Government to relocate the World
War II monument Bronze Soldier
to a military cemetery, riots started
on streets. A day later attacks be- Phase II – Main Attack (30
gan in the cyber room.
April – 18 May 2007)
During the second phase, much
more sophisticated, massive (use
Overview of the cyber at- of larger botnets) and co-ordinated
tacks attacks began. The most danger-
ous ones were Distributed Denial
From 27th April to 18th May 2007 of Service (DDoS) attacks against
Estonia fell under a large-scale cy- some of the components of the
ber attack. The cyber attacks were critical information infrastructure
targeted at the websites of several – against the backbone routers of
government agencies and private data communications network and
companies, mail servers, DNS serv- DNS servers. Some of these DDoS
ers, and backbone routers. At peak attacks were successful for a very
moments, the amount of cyber traf- short time period – there were few
fic from outside Estonia targeting less than 5 minutes’ interruptions
governmental institutions was 400 in the data communications back-
times higher of its normal rate. The bone network.
period of the cyber attacks had two
distinctly different phases. Cyber attacks (mostly DDoS) also
continued against government or-
ganisations’ web servers. On 10th
May 2007, DDoS attacks against
Phase I – Emotional Re- two Estonian largest banks start-
sponse (27 – 29 April 2007) ed. One of them was attacked for
almost two days and Internet bank-
During the first phase, most of the ing services were unavailable for
attacks were relatively simple De- 1.5 hours. For several days, restric-
nial of Service (DoS) attacks against tions were applied for accessing In-
government organisations’ web ternet banking services from other
servers and Estonian news portals. countries.
At the beginning of the conflict dif-
ferent news portals went offline for Several attacks were also made
a period of time. There were also a against the websites of media
1 The article was published in CIIP MERIDIAN Newsletter Vol. 2 No.1, January 2008. The
author of the article is Toomas Viira, information security manager in the Estonian Infor-
matics Centre
71
5. Cyber war – a new phenomenon of the information society?
companies, e.g. DDoS against web managed by Command and Control

servers and comment spam against Centre servers. From logs one can
media portals. There were periods, see only the IP addresses of home
when media companies limited user computers from all over the
commenting in their portals and world. In general, the distribution
when it was not possible to access was very similar to the statistics of
websites from other countries. botnets distribution issued by sev-
eral organisations (e.g. Symantec
Internet Security Threat Report). It
is very complicated to discover the
General assessment of the real attacker – a person or a group,
attacks who initiates the attack, or a person,
who would order such an attack.
In general, there were two sepa-
rate phases that were tied together
by the same political event. The
attacks came in waves, with the Safeguards
strongest ones co-ordinated near
the politically significant dates. During the cyber attacks we ap-
The more massive attack waves plied several safeguards and per-
were made after 9th of May, when formed, among others, the follow-
the Day of Victory in World War II ing activities:
is celebrated. • We restricted access to govern-
According to the information avail- mental web servers from other
able, other objects of the critical in- countries. There are two types of
formation infrastructure were not websites – the first group com-
attacked and their operations were prises homepages that do not
not disturbed. The functioning of necessarily need to be accessible
most important state registers, da- from other countries, while the
tabases and information systems other group consists of websites
was not interrupted. The main ob- that have to be accessible from
jective of the politically motivated all over the world. We made huge
attacks was to bring down govern- efforts in order to guarantee the
mental websites by overloading smooth running of most impor-
these and at least try to damage tant websites. Access to less im-
the data communications network portant websites was restricted
infrastructure. from abroad. We did not have
problems with providing web con-
In general, it is possible to conclude tent to Estonian Internet users.
that while the first phase of the at-
tacks was mainly an emotional and • We installed more specific filter-
spontaneous response of simple ing capabilities to be able to bet-
hackers to the political events, more ter fight against attacks.
highly skilled cyber attack special- • We increased the resources of
ists were involved in the second web servers and the capability
phase. Many attacks were well co- to serve more Internet users si-
ordinated, which usually requires multaneously.
better skills and more resources.
• We increased several times the
data transfer rate of the data
communications network of gov-
Who were the attackers? ernment agencies, especially for
foreign connections.
In case of DDoS attacks, it is very
difficult to discover the initiator of • Efforts made by Estonian ISPs
the attack and persons behind it. and CERT-EE to fight against
During the DDoS attacks mainly the attacks were noteworthy
compromised home user comput- and CERT-EE worked in part-
72
ers (zombies) are used, which are nership with other CERT teams
worldwide.
Conclusions Countering cyber threats re-

quires a significant increase of
1. The cyber attacks against Esto- assets in terms of improving
nia should be viewed in the gen- awareness, training, invest-
eral political context in April- ments in technology, as well as
May 2007. advancing conceptual and doc-
2. Despite the enormously in- trinal approaches.
creased traffic in the data com- 8. Increased dependence on e-serv-
munications network, no signifi- ices, IT and the critical informa-
cant damage was caused to the tion infrastructure in general
critical information infrastruc- makes modern societies increas-
ture of Estonia. ingly vulnerable.
3. The cyber attacks against Esto- 9. It is quite simple and possible,
nia posed a limited risk to the with a small amount of resources
security of different IT systems. (renting of a botnet is relatively
However, without applying cru- cheap), to attack somebody in the
cial security safeguards the Internet. More effective counter-
situation could have turned out measures against botnets and
more critical. Had the downtime their usage during the attacks
of several services been longer, should be taken.
the consequences could have
been very serious. 10. Politically motivated cyber at-
tacks pose a challenge to gov-
4. The cyber attacks did affect, on a ernments, as cyber attackers at-
limited scale, some of the opera- tempt to destabilize the society.
tions of governmental institutions
through the unavailability of web 11. As a result of effective politi-
pages and disturbances in the cal propaganda, a significant
functioning of some mail servers. number of people could be moti-
vated to launch a massive cyber
5. The effect of the cyber attacks on attack almost instantly. Hence, it
the everyday life of people was is possible to inflict serious dam-
limited. For the general public, age to the critical information
attacks against the banks were infrastructure even in case of ad
the most perceivable (over 95% hoc and amateur level attacks.
of all bank transactions in Esto-
nia are done online). The attacks 12. The usability of the existing
also caused temporary problems political, diplomatic and legal
for people abroad, when they framework is limited as it is dif-
were not able to access Estonian ficult, if not impossible, to track
media portals. down the origins of an attack.
Dealing with cyber attacks is
6. The Estonian Government’s even more complicated as there
strong political statements and is no common definition for the
actions on the cyber attacks phenomenon.
brought the issue to the wider po-
litical arena and made the inter- 13. Efficient response to cyber at-
national community to pay more tacks requires pre-existing in-
attention to issues related to net- ternational arrangements be-
work security and threats posed tween states and between states
by cyber attacks in general. and its private entities, as well
as rapid reaction.
14. It is vital to establish a com-
monly agreed legal definition of
General conclusions and cyber warfare and other related
suggestions items.
7. The Internet will be a perfect
73
battlefield of the 21st century.
5. Cyber war – a new phenomenon of the information society?
5.2. “Cyber war” and Estonia: legal aspects

Year 2007 was an extraordinary and and computer crimes. Neither was
exciting year for the Estonian ICT there any such global legal frame-
sector because of the cyber attacks work in place, as far as interna-
targeted against Estonia in spring. tional and humanitarian law is
At the first glance, the events in the concerned. The underlying reasons
cyber environment appeared to be may well include differences in
much more peaceful compared to countries’ development levels, lack
the street riots in Tallinn. Looking of political will or the fact that the
back now, we may say that the inci- history has not seen anything like
dents in the Internet outpaced the that before. Thus, the existence of
unrest in the streets both in terms a relevant regulatory framework
of volume and insecurity. would have belonged to the field of
science fiction.
These attacks should, by no means,
Background and terms be considered merely as random
and occasional computer crimes
No other country in the world has but clearly as co-ordinated activi-
experienced such large-scale cyber ties. At the same time, there is no
attacks as Estonia did in spring legal ground in the Estonian or
2007. This was the first time in his- international law to treat them as
tory when such attacks were aimed anything else but computer crimes,
at an entire country and involved a owing to the lack of necessary ele-
variety of instruments, techniques ments of criminal offence to qualify
and strategies in the service of a po- these activities as such by their na-
litical battle. The attacks were es- ture, extent and purpose.
pecially harmful in the sense that
they addressed a country famous
for its dependence on information
and communication technology. Legal effects of cyber
crimes
This experience is difficult to define
in legal terms, since it is not clear The cyber attacks witnessed in
whether it should be treated un- 2007 caused several problems. On
der national or international law. the one hand, it was difficult to
The picture gets even more com- identify the exact persons behind
plex owing to the abundant use of these attacks. On the other hand, it
such terms as “cyber war”, “cyber was difficult to qualify the offences
terrorism” and “cyber blockade” because until March 2008 compu-
by the Estonian media and politi- ter crimes used to be treated in Es-
cians to describe the events back tonia as criminal offences against
then. In that context, these terms property, not against the state.
rather have an emotional value,
The possible solution was to amend
which however does not contribute
the Penal Code and add the quali-
to the legal analysis of the prob-
fied elements of attacks against
lem. Drawing parallels to the use
computers or computer systems,
of terms like “war” or “terrorism”
so as to be able to differentiate the
in the law of national defence and
cyber attacks targeting critical in-
international humanitarian law, it
frastructures from ordinary com-
should be borne in mind that treat-
puter crimes. Here, it is important
ing a situation as a military action
to understand that attacks against
calls for taking various national
the state may significantly disturb
and international legal actions.
the exercise of official authority or
The main problem related to the provision of public services. It is as
2007 attacks was the lack of suf- harmful as terrorism (“act of terror-
74 ficient regulation on cyber attacks ism” pursuant to Section 237 of the

Estonian Penal Code) and therefore Establishing requirements to the

calls for additional protection. services of ISPs and ensuring com-
pliance thereof; monitoring within
The existing gap in law and the
the ISP’s own network; analysis of
need for a new regulation has been
attacks and underlying reasons,
also on the international agenda.2
and other such issues to be ad-
However, the current position is
dressed through special regulations
that such a need does not really ex-
for ISPs still call for supplementary
ist and that it would undermine the
situation and impact analysis.
available cyber crime convention
and its new potential members.
Conclusion
Available protective meas- Although the amendment and im-
ures plementation of laws might seem
easy at the national level, from the
As most cyber attacks take place via
standpoint of international organi-
the Internet, the analysis of their
sations the different regulations
implications must proceed from In-
adopted in the Member States need
ternet service providers (ISP) and
not provide sufficient and co-ordi-
the responsibility they have to take
nated protection in the case of cy-
with regard to their activities.
ber attacks. Moreover, it should be
An analysis carried out by the Esto- taken into account that legal solu-
nian Informatics Centre and CERT tions are first and foremost aimed
(Computer Emergency Response at contemplating different inter-
Team) revealed that factual co-op- ests and making fair decisions.
eration between ISPs and service Estonia’s advantage here might be
users worked very well in crisis the conservative approach in delib-
situations. However, ISPs pointed erating the alternatives, on the one
out that there are actually no le- hand, and flexibility in finding solu-
gal grounds for the transfer of data tions, on the other. Based on these
or closing of Internet points. Then two approaches, it has been decided
again, it is not really a matter of to regulate as little as possible and
implementing regulations but rath- as much as necessary.
er concluding private law contracts
By the end of March 2008, the Gov-
between ISPs, the state and other
ernment should adopt a strategy
service users.
for cyber security and the detailed
One possible solution to amend the implementation plan for the strat-
legal framework is to regulate co-op- egy, which includes proposals from
eration between ISPs and the state legal experts on cyber protection
in crisis situations. For instance, for the elaboration of necessary leg-
ISPs would be obliged to give priority islation and changing IT policies.
service to the critical infrastructure This involves a closer analysis of
and take that into account in con- the attitudes of EU members to-
cluding contracts with ordinary cus- wards adding a context of terrorism
tomers. The issues to be addressed to certain crimes and towards other
at the level of law-making include exceptions to the law in force that
making the acquisition of equipment may affect fundamental rights yet
for analysing external channels and/ safeguard the public security. Es-
or the availability of a national du- tonia will also continue to monitor
plicate connection obligatory, as well legal developments related to cyber
as the preservation of data logs (in safety in other countries and at the
terms of volume and time). EU level to take them into consid-
eration, if possible, in Estonia’s own
law-making process.
2
On November 11, 2001, the Council of Europe adopted the Convention on Cyber-crime. The
Convention was opened for signing on November 23, 2001, in Budapest. On the very same
75
day it was signed also by the Republic of Estonia among others. The Estonian Parliament
ratified the Convention on February 12, 2003.
In 2007, various surveys of devel- 66% of people aged 15 to 74 have

opments related to the information used the Internet over the past six
society, ICT market and applica- months, which marks a 7% growth
tions were conducted in Estonia. year-on-year. Internet usage at
The following gives a summary of home keeps growing, as the number
the more important ones. of households with an Internet con-
nection is also constantly rising (51%
The Department of State Informa-
of Estonian households, i.e. every
tion Systems of the Ministry of Eco-
second family, has an Internet con-
nomic Affairs and Communications
nection at home). 91% of households
commissioned various analytical
who have a PC also have an Internet
surveys: an eTrack survey on the
connection. In autumn 2006, 80% of
computer and Internet use of Es-
Internet users used it at home, and
tonian households; a survey of the
in autumn 2007 – as much as 86%.
use of ICT in Estonian enterprises;
a survey of the use of and satisfac- The majority of computer and In-
tion with public sector e-services ternet users are regular users: 90%
among residents, and an analysis use the computer and 89% use the
of the digital divide in the society, Internet at least once a week. Com-
focusing on information stratifica- pared to other groups of residents,
tion and people who never or sel- computer and Internet usage has
dom use the Internet. increased more among people aged
35 to 49 and residents of South
and Northeast Estonia and rural
regions. The Internet is used more
Computer and Internet frequently by employees and stu-
usage in 2007 dents aged 15 to 34, residents of
Tallinn, and people whose monthly
According to the eTrack survey con- income exceeds 6,000 kroons (over
ducted by TNS Emor, 55% of Esto- 380 euros) per household member.
nian households had a PC at home
in November 2007 (year-on-year 48% of residents aged 15 to 74 are
growth of 7%). The trend is that frequent users who use the Internet
the number of PC owners increases at least five days a week. Year-on-
primarily among larger households year, the number of frequent users
with children and among families has grown by nearly 62,000 people
with lower income. (standing at 43% in 2006). Frequent
users account for 72% of all Internet
users. It is noteworthy that 40% of
people aged 15 to 74 use the Inter-
net every day.










    
 
 
 
Figure 6.1. Segments of Internet users

77
6. Surveys on the information society and ICT developments in Estonia
There are a number of reasons for of information and communication

using the Internet frequently. The technology in Estonian enterprises.
most popular activities are e-mail This was a regular customer survey
communication, Internet banking, for the Ministry of Economic Af-
information search and visiting In- fairs and Communications to find
ternet portals. Compared to autumn out about the use of and satisfac-
2006, the use of search engines and tion with public sector e-services
reading Estonian Internet publica- provided to the corporate sector
tions has gained popularity. In ad- as well as related security issues.
dition, Estonian people have gradu- Comparable data is also available
ally started to use the Internet for from 2005. The target group includ-
shopping and the number of those ed Estonian enterprises that have
interested in e-commerce has risen at least one computer. Altogether
over the year. 501 interviews were conducted.
In connection with Internet usage, 71% of all companies surveyed had
it is vital to acknowledge the related used e-services for communication
security risks. In relation to that, with the state. The most popular
the Ministry of Economic Affairs and e-services included search of infor-
Communications asked TNS Emor to mation from public sector web sites
study – already for the third consec- (63%) and submission of documents
utive year – Estonians’ awareness of (63%). Various registration opera-
security. Compared to autumn 2006, tions related to business activities
the share of residents with a fire- were somewhat less popular (39%).
wall in their PC has risen, but the It should also be noted that the use
number of antivirus software users of e-services has not grown substan-
has remained unchanged (although tially within the past two years.
the number of computers connected
Companies’ satisfaction with the
to the Internet has increased). Simi-
existing e-services is still high. In
lar to 2006, in 2007 every fourth
2005, 22% of all companies who had
resident with an Internet connec-
used e-services were very satisfied
tion experienced problems caused by
and 71% were satisfied; in 2007,
computer viruses. The share of spam
25% were very satisfied and 65%
receivers has grown.
were rather satisfied with the serv-
ices. The number of companies who
were uncertain of their judgment
Use of ICT in Estonian en- has slightly increased too.
terprises
In spring 2007, TNS Emor conduct-
ed a phone survey to map the use








78
Figure 6.2. Satisfaction of businesses with public e-services (% of companies having
used e-services in communication with the state)
The use of ID cards in enterprises an input for the Implementation

has become much more popular. In Plan for the Estonian Information
2005, only 2% of companies used Society Strategy. The information
the ID card for user identification society development is facilitated
and 1% for digital signing. The by regular monitoring of various
2007 figures, however, were as high indicators, which helps to propose
as 22% and 18%. Service providers new action lines and revise the ex-
and large companies tend to use isting ones.
the ID card more often.
The survey of the use of and satis-
In addition, the survey aimed to es- faction with public sector e-services
tablish whether enterprises that are conducted by TNS Emor focused on
connected to the Internet had expe- two key issues. First, the general
rienced any computer security prob- awareness, use and usefulness of
lems within the prior three months. public sector e-services. Second,
87% of them claimed to not have had citizens’ awareness of and satisfac-
any security problems. Compared to tion with national portals and their
2005, the share of such companies functions.
has increased 29%. Some of the more
In short, the survey revealed low
common problems have been related
awareness of public sector e-servic-
to computer viruses and spyware.
es and state portals, whereas the us-
However, the share of companies
ability, simplicity and user-friend-
that have an Internet connection
liness of e-services received high
and have experienced such problems
evaluations. 49% of Estonian resi-
has gone down from 36% to 9% in
dents aged 15 to 74 have used the
the case of viruses and from 13% to
Internet for communication with
3% in the case of spyware.
state or local government agencies
16% of companies connected to the – mostly to search information on
Internet have done nothing to make web sites but also to download and
the connection safer. 77% of them submit electronic forms.
are using an antivirus software and
It was the first time when people’s
66% have installed a firewall.
awareness of public sector e-serv-
The amount of spam, that is un- ices was examined. The aware-
wanted commercial mails, has not ness rate for all respondents was
grown over the past two years. 78% 43% and somewhat higher, 58%,
of companies connected to the In- for Internet users. The best known
ternet are still receiving spam but e-service appeared to be the eTax-
they have started to fight it. 68% of Board. Finance and taxation relat-
companies who have received spam ed e-services are also in general the
have taken adequate measures. most popular e-services – nearly
two thirds (470,000) of Internet us-
ers have used them. Compared to
2006, the use of nearly all services
Use of and satisfaction with has grown considerably, except for
public sector e-services expression of opinion and participa-
among residents tion in public debates with the state
or government agencies: 24.6% of
The Ministry of Economic Affairs respondents had done that in 2006,
and Communications also com- and 20% in 2007.
missioned a survey to monitor the The following table ranks more
use of and satisfaction with public popular public sector online serv-
sector e-services among residents. ices in 2007.
The results of the survey serve as
79
Table 6.1. Use of e-services (% of users)

Service 2006 2007
Submitting tax return 75.5 95
Communicating with the school and teachers (see also Article 4.6) 40 89
Paying for public services or state fees through an Internet bank 70.9 79
Searching for medical information 54.2 72
Searching for geodetic and topographic information 46.8 55
Applying for identity documents (passport, ID card) 24.5 52
Enrolling in a school, university or course 36.1 51
Making a doctor’s appointment 15.7 40
Communicating with the motor vehicle registration centre 21.7 40
eVoting / eElections 9.8 39
Applying for a European health insurance card 20.2 37
Participating in electronic courses or trainings 13.5 30
Communicating and consulting with doctors by e-mail 10.7 23
Ordering final examination results via SMS or to an e-mail
address 9.7 21
Expressing opinion or participating in a public debate with
the state or government agencies 24.6 20
Registering to state examinations 4.4 14
Applying for a supplementary benefits for medicinal products
from the health insurance fund 3.1 13
Applying for family allowances or parental benefits 6.3 13
Applying for medical prescriptions 1.9 5
The fields were people expect more of service users are satisfied or very
e-services from the state are simi- satisfied with the findability of on-
lar to those pointed out in 2006. line services. It is pleasing to report
These include health care, taxa- that 80% of those who have used one
tion, communication with the po- or another e-service cannot name
lice and search for work. However, any unsatisfactory service.
as many as 56% of all respondents
Nearly the same trends apply to
could not or did not point out any
state portals: people are not that
such fields.
well aware of them but the existing
People’s satisfaction with available users value their content and user-
e-services is relatively high. 67% of friendliness very highly. The most
those who had used one or another well known portals are http://www.
e-service, rated it with 4 or 5 points riigiteataja.ee (State Gazette) and
on a 5-point scale. At the same time, http://www.riik.ee (eGovernment
there are no differences across e-serv- portal) – 36% of residents aged 15
ices in that respect. In general, the to 75 have heard about them. Every
e-services available are considered fourth of this age group also knows
useful, as they save time and mon- the State Portal http://www.eesti.
ey as well as provide quick answers ee. Awareness of different portals
80
and information. Furthermore, 53% is considerably higher among In-
ternet users – 51% in the case of World Foundation held a competi-

the two more popular portals mention for conducting a survey of the
tioned above. social aspects of ICT. The survey
focused on the non-users of the In-
86% of users regard the use of e-serv-
ternet and was carried out by TNS
ices in the State Portal http://www.
Emor and the PRAXIS Centre of
eesti.ee or via the data exchange
Policy Studies. The survey of the
layer X-Road as easy or very easy.
digital divide in Estonia and pos-
Similar to 2006, checking one’s own
sible solutions to bridge it revealed
personal data in state registers and
lack of motivation (respondents
state examination results as well as
could not name any fields where
applying for a European health in-
they would personally benefit from
surance card were the most popular
Internet use) and insufficient skills
services also in 2007. People still
and access (mostly because of limit-
prefer to access personal e-services
ed financial resources) as the main
in the State Portal or via the X-Road
reasons for not using the Internet.
through Internet banks (74%); only
25% use ID cards for that matter. A similar survey conducted five
years later shows a significant
To conclude, the main problem cur-
change in attitudes: people who do
rently is people’s low awareness of
not use the Internet or use it very
available e-services, even though
seldom, do not believe the lack of
there are plenty of them and users
necessary information to be the un-
are generally very satisfied with
derlying reason. Quite the contrary
them.
– the Internet is regarded as an im-
portant source of information and
vital for being “in the core of life”.
Survey of digital divide Awareness of the use options of the
Internet has grown substantially
The indicators used to measure compared with five years ago. In
information society developments 2002, many used to believe that com-
(e.g. number of PC users or Inter- puters and the Internet were only
net connections at home) largely useful for children for doing school-
focus on technological aspects. An- work or for adults at work. Now, this
other important aspect is to bring understanding is rather exceptional
the benefits of information society and the non-users of the Internet
to everyone. Lack of access to com- realise that the Internet can poten-
puters and the Internet and the re- tially make their lives better.
sulting digital illiteracy may lead
to a society of the information rich The preliminary results of the 2007
and the information poor. This kind survey highlight insufficient skills
of digital divide arises from the un- as the main reason for not using the
even distribution of phones, PCs, Internet.
Internet access and relevant skills
among the population.
The Ministry of Economic Affairs Survey of Estonian com-
and Communications asked the
PRAXIS Centre of Policy Studies to puter users’ attitude to-
examine the digital divide and the wards software piracy
possible solutions to bridge the di-
vide. The survey was completed by Estonia has been fighting software
the end of 2007. piracy already for years. Never-
theless, the use of illegal software
The first time when the social as- has remained virtually at the same
pects related to the use of ICT were level over the past five years, con-
studied and relevant policy propos- stituting slightly more than half
als made was in 2002, when the of entire software usage. To find
Open Estonian Foundation, the out why this situation persists, the
State Chancellery and the Look@ Estonian Commercial Software
81
Society commissioned a survey1 The survey also indicated that

from the market research company people who use the computer at
Turu-uuringute AS in spring 2007, home, but not at work or school,
so as to get a clear picture of com- much more often mention comput-
puter and software use in Estonia. ers games in terms of software use
The survey sample included 1,008 (70%) and seldom any other type of
people. software. Those who use the com-
puter both at work and at home,
Results showed that the use of com-
on the other hand, brought games
puters as well as the frequency of
up more seldom (49%) and named
use decrease considerably with age.
considerably more other types of
Namely, the share of computer us-
software. This confirms the hypoth-
ers is close to maximum among the
esis that home PC users are more
young (92% of the young aged 15
oriented to entertainment.
to 19 use the computer, 75% being
daily users), whereas less than 50% However, it should also be noted
of respondents aged over 50 and that out of the different types of
only 18% of people aged over 60 use software, security programmes were
the computer. outlined most frequently by those
who use the computer only at home
For 94% of the young (aged 15 to 19)
(76% against the 70% for games).
surveyed, home is the primary place
Thus, the majority of home users
where they can use the computer.
are aware of security risks and pro-
The secondary place for computer
tect their PCs (see also Table 6.2).
use is the school (58%). Surprisingly
many use it when visiting acquaint-
ances or relatives (41%).
Table 6.2. Other software available in PCs besides the operation system
Age (years)
15 to 20 to 30 to 40 to 50 to
19 29 39 49 59 60+
Games 63 67 73 52 53 50
Office software (e.g. word processing
and spreadsheet programmes) 53 78 71 58 59 58
Special software (e.g. design, photo
editing and accounting programmes) 54 59 58 56 45 44
Security programmes (e.g. anti-spy-
ware and antivirus programmes) 72 91 84 80 77 73
Do not know 10 4 7 13 15 10
As regards the origin of software, old) this indicator exceeds the aver-
nearly half of respondents obtained age by a third (56% vs 42%).
programmes (or at least some of
Considering the cross-usage of soft-
them) along with the purchase of a
ware distribution channels, people
computer. Another common way of
who have obtained software from
receiving software is downloading
the Internet (mainly younger re-
from the Internet (42%). There is a
spondents) appear to be either the
clear tendency that the younger the
most active software acquirers
respondents, the more often they
or just the most aware of various
acquire software from the Internet.
options, as they exceed the aver-
For instance, among younger age
age level in terms of all channels.
groups (15 to 19 and 20 to 29 years
82 An English summary of the survey is available at http://www.tarkvaraliit.ee/study2007en.pdf.

1
However, respondents who have All in all, the survey results con-
received software from service or firmed that more attention should
maintenance points, have much be paid to shaping the attitudes of
more seldom obtained it also from the most active computer users – the
somewhere else (compared to aver- young – towards software piracy.
age).
Younger people install most of their
software themselves, instead of go- Survey of the Estonian
ing to a service or sales point (22% of
the young aged 15 to 19 and 29% of ICT sector in 2006
those aged 20 to 29, while the aver- The above described surveys were
age is 16%). Self-installers are also conducted in 2007, whereas the
more common among men (28% of following survey is based on the
men and only 5% of women). growth figures of the Estonian ICT
sector for 2006.
Attitude towards piracy
Year 2006 was good news for the
The results of the survey indicate Estonian ICT sector, as both turno-
a clear correlation between age and vers and profits increased. Never-
attitude towards piracy. Although theless, some old issues remain on
the general attitude towards the the agenda: the decreasing number
use of illegal software is disapprov- of qualified labour force, the accom-
ing, there are significant differences panying rise in wage costs and low
across age groups. Young computer profitability of IT companies.
users tolerate software piracy much Although there are approximately
more often than older respondents. 2,000 ICT companies in Estonia,
The survey results refer to 30 years the 2006 survey is based on the
of age as the borderline between the data of the annual reports of 600
attitudes. It should also be noted enterprises. So far, this has been
that the share of those who do not the largest reference base used. The
wish to express their opinion has total turnover of this sample stood
changed. The youngest age group at 22.2 billion kroons (1.42 bn eu-
(15 to 19 years) includes the most ros) and the number of employees
such respondents (22%). A fourth at 9,500 in 2006.
(26%) of the young accept software
piracy, a third (33%) disapprove of However, the turnover of this sam-
it, whereas only a fifth (19%) deem ple cannot fully be attributed to the
it worthy of punishment. field of ICT, since various of these
companies were engaged also in
Every fourth respondent (24%) does other fields of activity, such as the
not consider legality important in sales, logistics and transport of of-
the case of PCs; among younger re- fice equipment, domestic applianc-
spondents (20 to 29 years) as much es, medical equipment and so on.
as every third (34%) is of that opin- Additional corrections arise because
ion. Neither is it surprising that of the need to add the estimated
only a third of younger respondents turnover of those companies who
regard the use of legal programmes have not submitted data and sole
important (22% of 15 to 19 year-olds proprietors as well as deduct the
and 21% of 20 to 29 year-olds vs the double turnover of national distrib-
average of 32%). In terms of work- utors. Thus, the actual profit of the
place computers, the differences ICT sector in 2006 is approximately
are not that big. What is more, is 20 billion kroons (1.28 bn euros).
that respondents themselves also
think that illegal software is most In Estonia, only 6 major ICT com-
common among the two youngest panies out of the 2,000 get a piece
age groups. of the pie, accounting for 52% of the
total turnover and making 79% of
the sector’s total profit. The next
83
25 companies hold half of the rest on the demographic projections for

of the turnover, i.e. 25%, whereas the next ten years. The first indica-
their share in profit is only about tion of the ongoing market changes
8%. Considering 90% as the border- is the steep rise in labour costs,
line for market shares, another 67 which is already undermining the
companies fit in with a 15% share competitiveness of Estonian com-
in the turnover and 8% share in panies.
profit. The remaining 10% market
The cost of labour has gone up at a
share and 6% profit divides be-
similar rate in the whole ICT sec-
tween 1,500 ICT companies.
tor, but telecoms outdo IT compa-
Earlier, the turnover of telecoms nies also in that respect, as their
used to form about 60% of the total turnovers and profits have been
turnover of the ICT sector. In 2006, outpacing labour costs. At the same
that figure had declined to 50%. time, the year-on-year growth in
It is unfortunate to note that over labour costs of IT companies has
80% of the turnover still goes to the reached as much as 33%, which is
telecom sector. Although the turno- over two times higher than consid-
vers of the IT and ICT sectors have ered reasonable.
levelled off, the profitability of IT
From a global perspective, the
is still too low to guarantee invest-
growing lack of labour might actu-
ments, product development and a
ally be useful, forcing companies to
breakthrough to external markets
enhance effectiveness and engage
without having to include foreign
in co-operation. Furthermore, ICT
capital.
solutions can significantly support
Turning to the figures, IT compa- the implementation of structural
nies earned 4.9% profit (less the in- changes needed in other sectors of
come tax and divided by the turno- the economy and the production of
ver) and telecoms 22.0% in 2006 higher value added.
(in 2005, 5.3% and 19.8%, respec-
tively). In absolute terms, the total
profit of IT companies increased
14% year-on-year, but the growth International information
is following a downward trend giv- society surveys and Esto-
en the 21% increase in turnover. nia’s rankings
Moreover, also the profit margin of
IT companies declines along with Information society developments
the growing turnover. are also examined in a number of
Software developers are relatively annual international studies. One
better off compared to other IT en- such study is the Global Infor-
trepreneurs, as they have managed mation Technology Report of the
to maintain around 10% profitabili- World Economic Forum2, which
ty on average. The same can be said ranks countries by various IT re-
about various IT service providers. lated indices. Estonia ranked 20th
The margins of hardware sellers in the Networked Readiness Index
are going down all over the world. in 20073 (23d in 2006 and 25th in
Only those who can provide some 2005). However, a highly question-
added value service are successful able survey has been published by
in their field. the Brown University in the US,
placing Estonia at the same level
The shortage of qualified labour has with, for instance, Kyrgyzstan,
been on the agenda for a while now, Mongolia and Samoa in terms of
whereas less and less new labour is IT.4
expected to enter the market based
2
http://www.weforum.org/en/initiatives/gcp/Global%20Information%20Technology%20Report/index.htm
3
http://www.weforum.org/pdf/gitr/rankings2007.pdf
84 http://www.brown.edu/Administration/News_Bureau/2007-08/07-011.html
4
As for more serious surveys, The 76%, meaning that the majority
User Challenge, Benchmarking the of e-services available stand some-
Supply of Online Public Services5 where between forms completed
ordered by the European Commis- online and web services. Austria is
sion and conducted by Gapgemini the most successful in that respect,
should be mentioned. followed by Malta and Slovenia.
Estonia ranks eighth. The number
According to the European Inter-
of fully electronic services has gone
operability Framework, there are
up, year-on-year. In 2006, 50% of
four stages of services: informa-
the 20 services assessed were fully
tion, forms available online, forms
electronic; in 2007, this figure stood
completed online and web services.
at 58%. Again, Austria, Malta and
Earlier studies used four levels to
Slovenia take the lead in that re-
assess public sector online services;
spect; Estonia ranks ninth. Appar-
in 2007, a fifth level – that of per-
ently, the level of online sophisti-
sonalisation – was added. This was
cation of services is closely related
done primarily because of new tech-
to the number of services provided
nological advancements that enable
fully in an electronic environment.
to personalise e-services and make
them more proactive. As regards Estonia’s position in the
Capgemini’s benchmark survey,
The abovementioned survey, com-
70% of our public sector services
prising the 27 EU countries as well
are fully electronic and their level
as Iceland, Norway, Switzerland
of online sophistication reaches
and Turkey, benchmarked the on-
87%. The level of services offered to
line sophistication of twenty public
citizens and entrepreneurs in Esto-
sector e-services at national level.
nia exceeds Europe’s average. The
Other indicators measured includ-
indicator of user-centricity and the
ed the number of fully electronic
assessment to the national portal
services6, user-centricity and as-
http://www.eesti.ee are also above
sessment to national portals.
the average. This portal serves as
The average level of public sec- the gateway for the majority of Es-
tor online services in Europe is tonian public sector services.
5
http://ec.europa.eu/information_society/eeurope/i2010/docs/benchmarking/egov_benchmark_2007.pdf
Services are considered fully electronic starting from stage four; that is, online services
85
6
provided fully in an electronic environment.

7.1 IT contacts in public administration agencies

Contact
Agency Phone/mobile E-mail
person
Office of the
Ivo Vellend (+372) 631 6238 Ivo.Vellend@vpk.ee
President
Chancellery of
Raul Volter (+372) 631 6400 raul.volter@riigikogu.ee
the Riigikogu
Chancellery of
Kertti kertti.paeva@
the Legal (+372) 693 8434
Päeva oiguskantsler.ee
Chancellor
Public Prosecu- Raul raul.meriloo@
(+372) 613 9413
tor’s Office Meriloo prokuratuur.ee
Supreme Court Jaak Sitska (+372) 730 9047 jaak.sitska@nc.ee
State Audit Markko- markko-raul.esop@
(+372) 640 0794
Office Raul Esop riigikontroll.ee
State ulle.laur@
Ülle Laur (+372) 693 5803
Chancellery riigikantselei.ee
Ministries
Ministry of
Jaanus
Education and (+372) 735 0172 jaanus.christoffel@hm.ee
Christoffel
Research
Ministry of Kaili
(+372) 620 8179 kaili.katmann@just.ee
Justice Katmann
Ministry of Mihkel
(+372) 717 0189 mihkel.tammet@kmin.ee
Defence Tammet
Ministry of the Vahur
(+372) 626 2830 vahur.eenmaa@envir.ee
Environment Eenmaa
Ministry of Indrek
(+372) 628 2280 indrek.eensaar@kul.ee
Culture Eensaar
Ministry of
Economic Affairs Kalev
(+372) 625 6363 kalev.truusalu@mkm.ee
and Communica- Truusalu
tions
Ministry of Jaanus
(+372) 625 6111 jaanus.kuusler@agri.ee
Agriculture Kuusler
Ministry of
Sven Rea (+372) 611 3070 sven.rea@fin.ee
Finance
Ministry of the Hannes hannes.martin@
(+372) 612 5047
Interior Märtin siseministeerium.ee
Ministry of
Allan Poola (+372) 626 9299 allan.poola@sm.ee
Social Affairs
Ministry of
Malle Ling (+372) 637 7330 malle.ling@mfa.ee
Foreign Affairs
87
7. Annex
National boards
Contact
person
Security Police Edgar
(+372) 612 1422 edgar@kapo.ee
Board Reindla
Defence Resourc- Alari
(+372) 717 0708 alari.alviste@kra.ee
es Agency Alviste
Citizenship and Agu
(+372) 612 6980 agu.leinfeld@mig.ee
Migration Board Leinfeld
Estonian
ivo.jaama@
Competition Ivo Jaama (+372) 680 3963
konkurentsiamet.ee
Authority
Civil Aviation Anne-Ly
(+372) 610 3582 anne-ly.kai@ecaa.ee
Administration Käi
Viljo
Land Board (+372) 665 0650 viljo.roolaht@maaamet.ee
Roolaht
Road Andrus
(+372) 611 9314 andrus.kross@mnt.ee
Administration Kross
Tax and Erkki
(+372) 630 3910 erkki.erend@emta.ee
Customs Board Erend
National Urve
(+372) 640 3012 urve.russow@muinas.ee
Heritage Board Russow
Jaanus
Patent Office (+372) 627 7915 jaanus.kasper@epa.ee
Kasper
Border Guard Martti
(+372) 614 9089 marti.allingu@pv.ee
Administration Allingu
Virgo
Police Board (+372) 612 3301 virgo.riispapp@pol.ee
Riisipapp
Agricultural
Registers and Olaf
(+372) 737 1230 olaf.laurisson@pria.ee
Information Laurisson
Board
Andres
Rescue Board (+372) 628 2016 andres.selli@rescue.ee
Selli
Public Procure- Toomas
(+372) 620 1845 toomas.laigna@rha.gov.ee
ment Office Laigna
State Agency of Ly
(+372) 737 4140 ly.rootslane@sam.ee
Medicines Rootslane
Social Insurance
Board
Allan Ran-
Statistical Office (+372) 625 9339 allan.randlepp@stat.ee
dlepp
Consumer Kristiina kristiina.vaksmaa@
(+372) 620 1708
Protection Board Vaksmaa consumer.ee
88
Contact
person
Estonian Techni-
Sander
cal Surveillance (+372) 667 2026 sander.leivo@tja.ee
Leivo
Authority
Health Care
Board
Labour Market
Board
Veterinary and Reimo
(+372) 605 1747 reimo.roosileht@vet.agri.ee
Food Board Roosileht
Maritime
Alar Siht (+372) 620 5580 alar.siht@vta.ee
Administration
Inspectorates/centres
Data Protection Henri-Paul
(+372) 627 4135 henri@dp.gov.ee
Inspectorate Ariste
Estonian Motor
Vehicle Registra- Aldo Tatter (+372) 620 1324 aldo.tatter@ark.ee
tion Centre
National Exami-
nation and Qual- Aivar Ilves (+372) 735 0599 aivar.ilves@ekk.edu.ee
ification Centre
Estonian Infor- Margus
(+372) 663 0220 margus.kreinin@ria.ee
matics Centre Kreinin
Estonian Envi-
ronmental Infor- Raivo Vadi (+372) 696 2232 raivo.vadi@kki.ee
mation Centre
Centre of Forest
Heiki
Protection and (+372) 733 9377 heiki.kivits@metsad.ee
Kivits
Silviculture
Centre of Regis-
Marko
ters and Informa- (+372) 620 8170 marko.lehes@just.ee
Lehes
tion Systems
Plant Production
Alar Kess (+372) 671 2696 alar.kess@plant.agri.ee
Inspectorate
Health
Maie maie.otsmann@
Protection (+372) 694 3540
Otsmann tervisekaitse.ee
Inspectorate
Labour
Inspectorate
89
7. Annex
County Governments
Contact
person
Harju County (+372) 611 8562;
Tarmo Lõo tarmo.loo@mv.harju.ee
Government (+372) 516 7640
Hiiu County Monika (+372) 463 6048; monika.paljasma@
Government Paljasma (+372) 506 8398 mv.hiiumaa.ee
Ida-Viru County (+372) 332 1255;
Enno Leem enno.leem@ivmv.ee
Government (+372) 503 1974
Jõgeva County (+372) 776 6311;
Nevel Paju nevel.paju@jogevamv.ee
Government (+372) 5348 3576
Järva County Vambola (+372) 385 9655; vambola.annilo@
Government Annilo (+372) 557 3713 jarvamv.ee
Lääne County Kaido (+372) 472 5625;
kaido.kivioja@lmv.ee
Government Kivioja (+372) 5559 7670
Lääne-Viru
(+372) 325 8019;
County Uuno Eiber uuno.eiber@l-virumv.ee
(+372) 501 0384
Government
Pärnu County Valdor (+372) 447 9723;
valdor.telve@mv.parnu.ee
Government Telve (+372) 524 0491
Põlva County Siret siret.rammul@
(+372) 799 8942
Government Rammul polvamaa.ee
Rapla County Jaanus (+372) 484 1140; jaanus.milistver@
Government Milistver (+372) 529 8694 raplamv.ee
Saare County Raivo (+372) 452 0517;
rvanem@saare.ee
Government Vanem (+372) 506 5650
Tartu County Indrek (+372) 730 5238; indrek.sarapuu@
Government Sarapuu (+372) 521 9414 tartumaa.ee
Valga County (+372) 766 6150;
Kalev Härk kalev.hark@valgamv.ee
Government (+372) 502 7768
Viljandi County Kaupo (+372) 433 0413; kaupo.kase@
Government Kase (+372) 515 2723 viljandimaa.ee
Võru County Kalle
(+372) 786 8331 it@mv.werro.ee
Government Jõgeva
90
7.2. Information society contacts in the public

administration
Ministry of Economic Affairs and Communications, De-

partment of State Information Systems (RISO)
Margus Püüa – Head of Department of State Information Systems

Estonia’s representative in the i2010 Phone: (+372) 639 7640
eGovernment expert group and the re-
E-mail: margus.pyya@riso.ee
lated sub-group on eGovernment eco-
nomics.
Mait Heidelberg – Ministry’s Adviser on IT matters

Estonia’s representative in the i2010 Phone: (+372) 625 6410
High Level Group and the Management
E-mail: mait.heidelberg@mkm.ee
Board of the EU information security
agency ENISA; development of broad-
band; information society priority in the
Structural Funds
Uuno Vallner – Head of IT Infrastructure Division

Estonia’s representative in the IDABC Phone: (+372) 639 7635
Management Committee; development
E-mail: uuno.vallner@riso.ee
of IT Architecture and Interoperability
Framework; chairman of the Estonian
eIdentity working group
Rein Kauber – Head of Analysis and Planning Division

Elaboration of information society strat- Phone: (+372) 639 7645
egy implementation plans; budgetary
E-mail: rein.kauber@riso.ee
matters in the field of IT; information
society priority in the Structural Funds
Katrin Edasi – Executive Officer of the Analysis and Planning Division

Budgetary matters in the field of IT; IT Phone: (+372) 639 7643
potential of public sector institutions;
E-mail: katrin.edasi@riso.ee
contracts
Taavi Valdlo – Executive Officer of the Analysis and Planning Division

IT standardisation; eBusiness; organi- Phone: (+372) 639 7644
sation of work of the Estonian eIdentity
E-mail: taavi.valdlo@riso.ee
91
working group
7. Annex
Katrin Hänni – Executive Officer of the Information Society Division

Web and e-services; participation in Phone: (+372) 639 7604
OECD; Estonia’s representative in
E-mail: katrin.hanni@riso.ee
Safer Internet Action Plan Steering
Committee and eGovernet working
group; analysis and surveys in the field
of information society
Monika Saarmann – Executive Officer of the Information Society

Division
Estonia’s representative in the CIP Phone: (+372) 639 7647
ICT Management Committee, i2010
E-mail: monika.saarmann@riso.ee
sherpa group and PSI expert commit-
tee; general EU co-ordination in the
field of information society; analysis
and surveys in the field of information
society; paperless document manage-
ment
Estonian Informatics Centre
Epp Joab – Director

General matters Phone: (+372) 693 8200
E-mail: epp.joab@ria.ee
Kalle Arula – Deputy Director

Planning and realisation of IT devel- Phone: (+372) 663 0232
opment projects related to components
E-mail: kalle.arula@ria.ee
in support of the state information sys-
tem
Riho Oks – Adviser

Co-ordination of co-operation between Phone: (+372) 663 0290
state agencies in the field of informa-
E-mail: riho.oks@ria.ee
tion society
Reet Oorn – Adviser

Issues related to the regulation of da- Phone: (+372) 663 0266
tabases, protection of personal data
E-mail: reet.oorn@ria.ee
and cyber protection
92
Katrin Pärgmäe – Communication Manager

Press contact, co-ordination and or- Phone: (+372) 663 0233
ganisation of EIC’s awareness raising
E-mail: katrin.pargmae@ria.ee
activities
Agne Kivisaar– Programme Manager

Organisation and implementation of the Phone: (+372) 663 0293
programme “Raising awareness about
E-mail: agne.kivisaar@ria.ee
the information society”, elaboration of
related action plans
Toomas Viira – Information Security Manager

Development of ISKE (three-level base- Phone: (+372) 663 0243
line system for information systems) and
E-mail: toomas.viira@ria.ee
counselling work on its implementation;
Estonian National Liaison Officer for the
EU information security agency ENISA
Hillar Aarelaid – Head of the Department for Handling Information

Security Incidents (CERT Estonia)
Management of CERT Estonia Phone: (+372) 663 0251
E-mail: hillar.aarelaid@ria.ee
Margus Kreinin – Head of the Department of Infrastructure

Development and administration of infra- Phone: (+372) 663 0220
structure services for the state data com-
E-mail: margus.kreinin@ria.ee
munications network
Anneli Touart – Head of the Administration Department

Ensuring the functioning of the data ex- Phone: (+372) 663 0280
change layer X-Road, state portals www.
E-mail: anneli.touart@ria.ee
eesti.ee and www.riik.ee, and administra-
tion system of state information systems
Aili Ilves – Product Manager

Issues related to the administration Phone: (+372) 663 0284
system of the state information system
E-mail: aili.ilves@ria.ee
(RIHA)
Jaak Liivik – Head of Department of Structural Funds

Organisation of activities related to the Phone: (+372) 663 0230
EU Structural Funds in the field of infor-
E-mail: jaak.liivik@ria.ee
mation society
93
7. Annex
Rauno Temmer – Area Manager

Issues related to the development of the Phone: (+372) 663 0231
portal www.eesti.ee
E-mail: rauno.temmer@ria.ee
Ahto Kalja – Project Manager

Issues related to the data exchange Phone: (+372) 564 67205
layer X-Road
E-mail: ahto.kalja@ria.ee
Other
Arvo Ott – Director of eGovernance Academy

Development and analysis of the Phone: (+372) 641 1313
information society
E-mail: arvo.ott@ega.ee
Tarvi Martens – AS Sertifitseerimiskeskus, PKI Business Manager

Estonia’s representative in the Phone: (+372) 610 1896
i2010 eIdentity sub-group and ID-
E-mail: tarvi.martens@sk.ee
ABC information security expert
group
Kaja Kuivjõgi – Ministry of Social Affairs, Head of eHealth Department

Issues related to eHealth Phone: (+372) 626 9160
E-mail: kaja.kuivjogi@sm.ee
Jaak Anton – Ministry of Education and Research, Adviser on IT matters

Issues related to eLearning Phone: (+372) 735 0135
E-mail: jaak.anton@hm.ee
Vahur Eenmaa – Ministry of the Environment, Head of Information Sys-

tems Department
Issues related to eEnvironment Phone: (+372) 626 2830
E-mail: vahur.eenmaa@ekm.envir.ee
Indrek Eensaar – Ministry of Culture, Head of IT Department

Issues related to digital cultural Phone: (+372) 628 2280
heritage
E-mail: indrek.eensaar@kul.ee
94
Kädi Riismaa – State Chancellery, Head of Document Management De-

partment
Issues related to digital document Phone: (+372) 693 5593
management and archiving
E-mail: kadi.riismaa@riigikantselei.ee
Jaak Tepandi – Tallinn Technical University, Professor of knowledge-

based systems
Issues related to the Estonian Phone: (+372) 502 9028
Information Security Interoper-
E-mail: jt@tepinfo.ee
ability Framework. Estonia’s rep-
resentative in the Nordic eDimen-
sion working group on IT security;
alternative member of the ENISA
Management Board
Tarmo Pihl – Invent Baltics OÜ

National contact point for CIP-ICT Phone: (+372) 501 9568
and eContent
E-mail: tarmo.pihl@invent.ee
95
7. Annex
7.3. Useful links
Portals
eState portal: http://www.riik.ee/en/
State Portal eesti.ee: http://www.eesti.ee/eng/?style=2
Directories, Search
Electronic “Riigi Teataja” (State Gazette) – eRT (legal acts): https://www.riigit-
eataja.ee/ert/intr/en.htm
Estonian Legal Language Centre (legislation in English): http://www.legaltext.
ee/indexen.htm
Public Administration Agencies

Ministry of Economic Affairs and Communications: http://www.mkm.ee/index.
php?keel=en
Department of State Information Systems: http://www.riso.ee/en/
State Chancellery: http://www.riigikantselei.ee/?lang=en
Estonian Tax and Customs Board: http://www.emta.ee/?lang=en
Estonian Land Board: http://www.maaamet.ee/
Estonian Data Protection Inspectorate: http://www.dp.gov.ee/index.php?id=14
Division of Electronic Communications of the Estonian Technical Surveil-
lance Authority: http://www.tja.ee/?id=12386
State Agencies and Foundations

Estonian Informatics Centre: http://www.ria.ee/index.php?lang=en
Centre of Registers and Information Systems: http://www.rik.ee/index.aw/set_lang_
id=2
Estonian Educational and Research Network: http://www.eenet.ee/EENet/EENet_en
Estonian Environment Information Centre: http://www.keskkonnainfo.ee/english
Estonian Information Technology Foundation: http://www.eitsa.ee/?url=eitf
Archimedes Foundation: http://www.archimedes.ee/index.php?language=2
Tiger Leap Foundation: http://www.tiigrihype.ee/?setlang=eng
ICT Organisations
Certification Centre (AS Sertifitseerimiskeskus): http://www.sk.ee/pages.
php/020302
Passport and ID card: http://www.pass.ee/index.php/pass/eng/id_card
Use of ID cards: http://www.id.ee/?lang=en
eGovernance Academy: http://www.ega.ee /
Estonian Information Technology Society: http://www.eits.ee/index.php?section=ws_
eits_eng
Association of Estonian Information Technology and Telecommunication
Companies: http://www.itl.ee/english/general/index.asp
IT College: http://www.itcollege.ee/?url=overview
96 Estonian eUniversity: http://www.e-uni.ee/index.php?main=120

IT Yearbook 2007

Transféré par

Informations du document

Titre original

Copyright

Formats disponibles

Partager ce document

Partager ou intégrer le document

Options de partage

Avez-vous trouvé ce document utile ?

Ce contenu est-il inapproprié ?

Droits d'auteur :

Formats disponibles

IT Yearbook 2007

Transféré par

Droits d'auteur :

Formats disponibles

Department of State Information Systems

Translated by Karin Rits and Kadri Põdra

Design by Katrin Põdra

Translation into English © 2008 Ministry of Economic Affairs and

2. Integration of state information systems into a single

3. Increasing skills and participation

5. Cyber war – a new phenomenon of the information

6. Surveys on the information society and ICT

1.1. Climbing the e-mountain

Estonia has no real mountains. card. Although not everybody uses

Fortunately, trust towards e-servi­ Mobiil-ID offers security and proof

to get back down. In case of the in- essence of those improvements as

1.2. Information Society Strategy for Local

Pursuant to the Estonian legisla- number of small municipalities for

Summary of Information Society Strategy for Local

So far, no information society local governments and enterprises.

thereby, as well as related enter- ensure that by 2009, 95% of small

2.1. Estonian Semantic Interoperability Framework

The Estonian Interoperability ganisational, social and educational

achieved by creating repositories needed, as it will be easier to re-

2.2. Web Interoperability Framework

Every public sector institution The Web Interoperability Frame-

14 tion and implementation processes

of web content. The framework to- Key principles of web interoper-

• standard-based interoperabil- esses and increase the interac-

2.3. Co-operation in the field of information security

The Estonian economy is largely ple’s awareness of security issues.

co-operation on information secu- both public and private sector agen-

Field Examples of activities Co-ordinating

The framework is aimed at better clude the Department of State Infor-

learning centre of communication • Information security policy-

2.4. The X-Road: a key interoperability component

New application areas of Family doctors, notaries, pharma-

groups, such as family doctors, spe- other state information system

The use statistics of the X-Road of family doctors was established.

The X-Road is scalable (it is possi- in Estonia, whereas web-based so-

2.5. Transition to paperless administration in

At the beginning of October 2007, under the same obligation. Transi-

records management system by DEC transfers documents to that

agement procedures set out the make the transition as smooth as

2.6. Developments in digital archiving

The development of the Estonian in Estonian National Archives”.5

The main functions and processes User interfaces – components

digital archive, including setting up itself. In 2007, the implementation

2.7. Developments of the administration system of the

Background and objective of RIHA is to ensure transparent

For example, a service provider tute an important component of

28 See Version 1.1 at http://www.riso.ee/en/files/EstonianGov_Semantic_Description-Instructions_v1.1c.pdf.

2.8. Developments in the field of eID

Estonian ID card lent to handwritten one not only

card at home or lose it. Similarly, remains slightly inferior to the ID

same authentication and signing Cross-border recognition

3.1. The use of IT solutions calls for knowledge

Computers and the Internet came creasing the awareness of opinion

vertising channels, TV and radio the e-services developed and used

3.2. „Computer Protection 2009“ helps us to increase

The number of activities launched Within the Computer Protection

3.3. Participatory democracy over the web

During a conference called Democ- decision-making process, improve

well as several associations have ing strategic documents, the portal

38 eÕigus – see http://eoigus.just.ee/ (in Estonian)

3.4. Estonia’s second iVoting experience

Election principles are com- ID card – the voter’s key

Fortunately, trust towards e-servi Mobiil-ID offers security and proof