Slide 5 of 19
Notes:
- Identification and Authentication
Revenue need to be able to identify and confirm the identity of the customer accessing the secure ROS site or filing a return.
The content the customer sent is the same as what Revenue received
The customer cannot deny the communication took place with Revenue
Communication of personal information between Revenue and the customer cannot be interpreted by anyone else
The total system is protected against a successful unauthorised access or damaging attack e.g. denial of service, alteration of site
- Security of customer’s computer
Revenue does not cause damage to or invade the privacy of the customer’s computer
** The customer also needs to be certain of Revernue’s identity and be confident of the integrity, confidentiality and non-repudiation of the data provided by Revenue.
