From 3aec80541829e0e85e213a5ba3ed03598159cf16 Mon Sep 17 00:00:00 2001 From: suseela s Date: Thu, 25 Jan 2024 00:58:42 +0000 Subject: [PATCH] GITBOOK-147: Suseela's Jan 24 changes --- README.md | 8 +++--- SUMMARY.md | 2 +- .../documentation-guidelines.md | 6 +---- platform/architecture.md | 4 +++ .../README.md | 4 +-- platform/privacy-and-security/README.md | 27 +++++++++++++++++++ 6 files changed, 39 insertions(+), 12 deletions(-) diff --git a/README.md b/README.md index 81b7cbe1..053d7d28 100644 --- a/README.md +++ b/README.md @@ -19,13 +19,13 @@ layout: # 🏠 Home -[OpenG2P](https://openg2p.org) is an open-source platform that enables governments and humanitarian organizations to deliver critical social benefits directly to those who need them. It facilitates the building of secure, inclusive and efficient registries and digital cash transfer delivery systems. +[OpenG2P](https://openg2p.org) is an open-source platform that enables governments and humanitarian organisations to deliver critical social benefits directly to those who need them. It facilitates the building of secure, inclusive and efficient registries and digital cash transfer delivery systems. -OpenG2P is a Digital Public Good (DPG) recognized by the[ DPGA](https://digitalpublicgoods.net/) and a significant building block of a country's Digital Public Infrastructure ([DPI](https://docs.cdpi.dev/dpi/readme)). OpenG2P contributes to the G2P transfers DPI layer in a digital economy, while leveraging DPGs in other categories. Its modular and interoperable technology augments existing systems in countries, without discarding what works or starting from scratch. +OpenG2P is a Digital Public Good (DPG) recognised by the[ DPGA](https://digitalpublicgoods.net/) and a significant building block of a country's Digital Public Infrastructure ([DPI](https://docs.cdpi.dev/dpi/readme)). OpenG2P contributes to the G2P transfers DPI layer in a digital economy, while leveraging DPGs in other categories. Its modular and interoperable technology augments existing systems in countries, without discarding what works or starting from scratch. -OpenG2P offers several modules to digitize processes of the social benefit delivery chain, including both beneficiary-facing and government-facing processes. The platform is modular, interoperable, scalable, and secure. It provides user-friendly interfaces for program managers, frontline workers, and beneficiaries to digitally interact with a country’s social protection programs. It also helps policymakers at higher levels of government get a bird’s eye view on program performance, beneficiary coverage, and public expenditure. +OpenG2P offers several modules to digitise processes of the social benefit delivery chain, including both beneficiary-facing and government-facing processes. The platform is modular, interoperable, scalable, and secure. It provides user-friendly interfaces for program managers, frontline workers, and beneficiaries to digitally interact with a country’s social protection programs. It also helps policymakers at higher levels of government get a bird’s eye view on program performance, beneficiary coverage, and public expenditure. -
+

End-to-End process of the Social Benefits delivery chain

OpenG2P is built on a bedrock of good practices and principles that drive our work towards empowering populations around the world through technology. diff --git a/SUMMARY.md b/SUMMARY.md index 123f462c..eec4ba3b 100644 --- a/SUMMARY.md +++ b/SUMMARY.md @@ -8,7 +8,7 @@ * [Modules](platform/modules/README.md) * [Program & Beneficiary Management System](platform/modules/program-and-beneficiary-management-system/README.md) * [Program Management](platform/modules/program-and-beneficiary-management-system/program-management.md) - * [Beneficiary management](platform/modules/program-and-beneficiary-management-system/beneficiary-management.md) + * [Beneficiary Management](platform/modules/program-and-beneficiary-management-system/beneficiary-management.md) * [Beneficiary Registry](platform/modules/program-and-beneficiary-management-system/beneficiary-registry.md) * [ID Verification](platform/modules/program-and-beneficiary-management-system/id-verification.md) * [Eligibility](platform/modules/program-and-beneficiary-management-system/eligibility/README.md) diff --git a/guides/documentation-guides/documentation-guidelines.md b/guides/documentation-guides/documentation-guidelines.md index 9515a0fa..68963f0b 100644 --- a/guides/documentation-guides/documentation-guidelines.md +++ b/guides/documentation-guides/documentation-guidelines.md @@ -47,11 +47,7 @@ Follow the below specification while creating diagrams in Miro Diagram specification {% endembed %} -## SPAR - -{% embed url="https://miro.com/app/board/uXjVNDnhJUg=/" %} -SPAR -{% endembed %} +## ## diff --git a/platform/architecture.md b/platform/architecture.md index 9b1d663a..d6aa7e66 100644 --- a/platform/architecture.md +++ b/platform/architecture.md @@ -1,3 +1,7 @@ +--- +description: Work in progress +--- + # Architecture ## Introduction diff --git a/platform/modules/program-and-beneficiary-management-system/README.md b/platform/modules/program-and-beneficiary-management-system/README.md index eab5daeb..cbef8080 100644 --- a/platform/modules/program-and-beneficiary-management-system/README.md +++ b/platform/modules/program-and-beneficiary-management-system/README.md @@ -15,7 +15,7 @@ The Program and Beneficiary Management System (PBMS) is the core module of OpenG ## Functionality and features -
FeaturesFunctionality
Data sources
  • Pulling data from registries
Program management
  • Program definition
  • Program lifecycle management
  • Managing multiple programs
  • Programs targeting both individuals and groups
  • Program disbursement cycles
Beneficiary management

  • Identifying beneficiaries
  • Enrolling beneficiaries
  • Maintaining beneficiary registry
  • Deciding on entitlements
  • Disbursements
  • Beneficiary lifecycle -- exits
  • Notifications to beneficiaries
Beneficiary registry
  • Data sharing of beneficiaries via standard interfaces
Self service portal
  • Program application and discovery by beneficiaries
  • Program enrollment and disbursement status
On demand assistance
Document Management
ID Authentication
  • Login using national ID via OIDC
  • Multiple ID configuration
Deduplication
Eligibility
  • Automatic computation of eligibility
  • Proxy Means Test (PMT)
Entitlement
Disbursement
  • Disbursement cycles and batches
  • Digital cash transfer via bank or mobile
  • Voucher based disbursement
  • In-kind disbursement
  • Generation of disbursement list
  • Fund management
Voucher
  • Digital vouchers for goods or services
  • Voucher verification app
  • Voucher reimbursement
Accounting
  • Fund management Reconciliation
Administration
  • Role-based access control (RBAC)
  • Multilevel approval
  • Fund management
  • Multi lingual - internationalisation (i18n)
Notifications
  • Notifications to beneficiaries via SMS/Email
Interoperability
  • Compliance with G2P Connect Registry APIs
  • Compliance with G2P Connect Disbursement APIs
Multi-tenancy
  • Multiple departments using the same instance of OpenG2P
  • Separation of data, control and access.
Monitoring and Reporting
  • Monitor the status of the program and registries
  • User creates dashboard of their choice to visualize data
+
FeaturesFunctionality
Data sources
  • Pulling data from registries
Program management
  • Program definition
  • Program lifecycle management
  • Managing multiple programs
  • Programs targeting both individuals and groups
  • Program disbursement cycles
Beneficiary Management

  • Identifying beneficiaries
  • Enrolling beneficiaries
  • Maintaining Beneficiary Registry
  • Deciding on entitlements
  • Disbursements
  • Beneficiary lifecycle -- exits
  • Notifications to beneficiaries
Beneficiary Registry
  • Data sharing of beneficiaries via standard interfaces
Self service portal
  • Program application and discovery by beneficiaries
  • Program enrollment and disbursement status
On demand assistance
Document Management
ID Verification
  • Login using national ID via OIDC
  • Multiple ID configuration
Deduplication
Eligibility
  • Automatic computation of eligibility
  • Proxy Means Test (PMT)
Entitlement
Disbursement
  • Disbursement cycles and batches
  • Digital cash transfer via bank or mobile
  • Voucher based disbursement
  • In-kind disbursement
  • Generation of disbursement list
  • Fund management
Voucher
  • Digital vouchers for goods or services
  • Voucher verification app
  • Voucher reimbursement
Accounting
  • Fund management Reconciliation
Administration
  • Role-based access control (RBAC)
  • Multilevel approval
  • Fund management
  • Multi lingual - internationalisation (i18n)
Notifications
  • Notifications to beneficiaries via SMS/Email
Interoperability
  • Compliance with G2P Connect Registry APIs
  • Compliance with G2P Connect Disbursement APIs
Multi-tenancy
  • Multiple departments using the same instance of OpenG2P
  • Separation of data, control and access.
Monitoring and Reporting
  • Monitor the status of the program and registries
  • User creates dashboard of their choice to visualize data
## Architecture @@ -58,4 +58,4 @@ PBMS is highly configurable and several functionality and parameters can be enab ## Use cases -## Use guides +## Related user guides diff --git a/platform/privacy-and-security/README.md b/platform/privacy-and-security/README.md index 0d154440..34e754ca 100644 --- a/platform/privacy-and-security/README.md +++ b/platform/privacy-and-security/README.md @@ -23,3 +23,30 @@ Encryption of data is achieved with production-grade Key Manager module. Learn m ## Secure deployment OpenG2P offers support for Kubernetes-based production grade deployment with security features like [Wireguard](https://www.wireguard.com/), [Istio](https://istio.io/), access control, traffic control etc. [ Learn more >>](../deployment/) + +## FAQ + +
+ +OpenG2P is an open source software. How secure is it? + +In general, for any product, security is handled at multiple levels. + +* Product security features + +We have privacy and security features embedded in our product and we are constantly striving to add more such features. Please refer to above note. + +OpenG2P is built over Oodo ERP which is elected as the best secure open source ERP by OWASP in 2021. This is because of the extensive work by the community on the underlying platform. OWASP is the largest security reporting system in the world. + +OpenG2P has adopted all the best practices of Oodo. OpenG2P has also adopted the GitHub security validation and have been regularly scanned by GitHub for dependency security. + +* Deployment of secure infrastructure + +While deployment infrastructure is a choice of the implementer/System Integrator we offer secure [production-grade deployment reference architecture](https://github.com/mosip/k8s-infra/blob/main/docs/\_images/architecture.png) for implementors. This secure infra comprising of Kubernetes, Wireguard, Istio etc offers high level of data and access security. + +* Security policies and processes + +OpenG2P team can help review security policies defined by the Governement/System Integrator. \ + + +