For Joe Broghamer Philip S. Lee May 5, 2005 Implementing PIV Specifications HSPD-12 Workshop.

Slides:

Advertisements

Similar presentations

HiPath SIcurity Card Manager Smartcard Management and Personalization System Sales Presentation.

Advertisements

June 27, 2005 Preparing your Implementation Plan.

© 2006 IBM Corporation Tivoli Identity Manager Express Tivoli Access Manager for Enterprise Single Sign-On (Product Demonstrations) Tivoli Live! – 15 June.

1 ABCs of PKI TAG Presentation 18 th May 2004 Paul Butler.

Card and Reader Overview Gerald Smith Sr. Consultant ID Technology Partners.

© Daon Confidential Strategies for Implementing National Identity Systems Nov 28 th 2007 Leo Ring Vice President, Daon.

FIPS 201 Framework: Special Pubs ,76,78 Jim Dray HSPD-12 Workshop May 4/5, 2005.

Agenda 2 factor authentication Smart cards Virtual smart cards FIM CM

Mobile Devices in the DoD

San Francisco International Airport

Appropriate Access InCommon Identity Assurance Profiles David L. Wasley Campus Architecture and Middleware Planning workshop February 2008.

Brian Epley, VA PIV Program Manager

EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.

The Federation for Identity and Cross-Credentialing Systems (FiXs) FiXs ® - Federated and Secure Identity Management in Operation Implementing.

15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.

1 1 A Synopsis of Federal Information Processing Standard (FIPS) 201 for Personal Identity Verification (PIV) of Federal Employees and Contractors Presentation.

FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.

U.S. Department of Agriculture HSPD 12 Program HSPD 12 Personal Identity Verification (PIV) I Core Training: Issuers.

1 Homeland Security Presidential Directive 12 (HSPD-12) Policies & Procedures Veronica McCann - Security Specialist Western Region Security Office March.

United States DoD Public Key Infrastructure: Deploying the PKI Token

“Personal Identity Verification (PIV) of Federal Employees and Contractors” October 27, 2005 Homeland Security Presidential Directive 12 (HSPD-12)

Department of Labor HSPD-12

Computer Security Biometric authentication Based on a talk by Dr J.J. Atick, Identix, “Biometrics in the Decade of Security”, CNSS 2003.

Biometrics in New Zealand Passport issuing Border crossing System and information access Building access.

Federal Information Processing Standard (FIPS) 201, Personal Identity Verification for Federal Employees and Contractors Tim Polk May.

EDUCAUSE Fed/Higher ED PKI Coordination Meeting

Office of the Chief Information Officer EFCOG Annual Meeting Fred Catoe (IM-32) U.S. Department of Energy.

PIV Data Model Testing Ketan Mehta March 3, 2006.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 9: Planning and Managing Certificate Services.

1 Implementation of Homeland Security Presidential Directive 12 David Temoshok Director, Identity Policy and Management GSA Office of Governmentwide FED/ED.

Athena Smartcard Solutions June 2009 Smart Card Technology and Security Leaders.

I DENTITY M ANAGEMENT Joe Braceland Mount Airey Group, Inc.

NASA Personal Identity Verification (PIV) NASA Personal Identity Verification (PIV) High Level System Overview Tice F. DeYoung, PhD 14th Fed/Ed Workshop.

May 30 th – 31 st, 2006 Sheraton Ottawa. Microsoft Certificate Lifecycle Manager Saleem Kanji Technology Solutions Professional - Windows Server Microsoft.

Federal CIO Council Information Security and Identity Management Committee IDManagement.gov FICAM Testing Program and Approved Products List (APL) Overview.

Homeland Security Presidential Directive-12 (HSPD-12)

Biometric Access Control in TWIC Read Hardware and Card Application Specification Roger Roehr.

Cartes America - Secure ID: Fraud and ID Management Part 1 Track Personal Identity Verification (PIV) Case Study within the TSCP Community Keith Ward TSCP.

Long Term Solutions Update Karan Marsh

Special Publication : Interfaces for Personal Identity Verification Jim Dray NIST NPIVP Workshop March 3, 2006.

1 The Government-wide Implementation of Homeland Security Presidential Directive 12 (HSPD-12) David Temoshok Director, Identity Policy and Management GSA.

Page 1 EmpowHR Adjudicator.

PIV 1 Ketan Mehta May 5, 2005.

Use of Identity Credentials in Public Transit Fare Payment Systems Professional Capacity Building Program T3 Webinar June 29, 2011 Washington Metropolitan.

Elements of Trust Framework for Cyber Identity & Access Services CYBER TRUST FRAMEWORK Service Agreement Trust Framework Provider Identity Providers Credential.

1 EAP and EAI Alignment: FiXs Pilot Project December 14, 2005 David Temoshok Director, Identity Policy and Management GSA Office of Governmentwide Policy.

Configuring Directory Certificate Services Lesson 13.

Business and Systems Aligned. Business Empowered. TM Federal Identity Management Handbook May 5, 2005.

Module 9: Fundamentals of Securing Network Communication.

Homeland Security Presidential

Non-Employee Identity System (NEIS) Adjudicator Training.

Non-Employee Identity System (NEIS) Adjudicator Training.

HSPD-12 Identity Management Initiative Carol Bales Senior Policy Analyst United States Office of Management and Budget North American Day 2006.

Non-Employee Identity System (NEIS) Adjudicator Training.

28 th International Traffic Records Forum Biometrics/SmartCard Workshop 28 th International Traffic Records Forum August 4, 2002 Orlando, Florida.

COAG AUSTRALIA The Prime Minister, Premiers and Chief Ministers signed the IGA at the COAG meeting on 13 April The key objectives of the Strategy,

1 Federal Identity Management Initiatives Federal Identity Management Initatives David Temoshok Director, Identity Policy and Management GSA Office of.

KIM: Kuali Abstraction Layer for Identities, Groups, Roles, and Permissions.

Transforming Government Federal e-Authentication Initiative David Temoshok Director, Identity Policy and Management GSA Office of Governmentwide Policy.

Presented by: Defense Manpower Data Center Access Card Office

Security Systems | ST/SRM3-NA | 4/6/2016 © 2016 Robert Bosch LLC and affiliates. All rights reserved. 1 Ensure data security in a hyper-connected world.

OFFICE OF VA ENTERPRISE ARCHITECTURE VA EA Cybersecurity Content Line of Sight Report April 29, 2016.

Cyber Security Means Locking the Front Door Too: Use High-Assurance Identity Management to Control Access to the Federal Bridge.

Module 8: Securing Network Traffic by Using IPSec and Certificates

EDUCAUSE Fed/Higher ED PKI Coordination Meeting

HIMSS National Conference New Orleans Convention Center

Module 8: Securing Network Traffic by Using IPSec and Certificates

NASA Personal Identity Verification (PIV) High Level System Overview Tice F. DeYoung, PhD 14th Fed/Ed Workshop December 14, 2006.

Appropriate Access InCommon Identity Assurance Profiles

Presentation transcript:

for Joe Broghamer Philip S. Lee May 5, 2005 Implementing PIV Specifications HSPD-12 Workshop

2 PIV Implementation Approach Adopt Industry Best Practices and Lessons Learned from other Government Smart Card Implementations DoD Common Access Card (CAC) Program –Card Profile –Card Management –Card Issuance DHS TSA Transportation Worker Identification Credential (TWIC) Program –Enrollment –Identity Management –CMS Integration

3 PIV Identity Verification and Issuance Employee Application 1:n biometric search Confirm employment ID Validation through standard government wide services Government DBs Threat risk 1:n biometric search Confirm employment ID Validation through standard government wide services Government DBs Threat risk Identity Verification Enrollment Identity Management System (IDMS) Card Production & Personalization Numbers Indicate Functional Areas of Responsibility Green functions manage Chain of Trust for Identity Verification Employer Sponsorship Issuer - Card Activation 6 PIV Activated for Operational Use 7 8 Approval Authority 3 Employee Enrolls PIV Identity Verification and Issuance

4 PIV Functional Process Flow Pre-Enrollment Enrollment Individual FP Images Segmentation Capture 10 Slaps Two I-9 Doc Processing Card Request Package Data Check and Generate Audit OPM Portal Generate EFTS Records Enrollment Database Duplicate Check IAFIS & Other Background Checks Template Generation ANSI 378 Minutiae Templates Other Templates (MOC) Generate CBEFF Records Card Management Card Production Employee Application Forms Card Printing and Contact & Contactless Chip Encoding Load FP Templates Facial Image Applets Encryption Certificate Card Activation 1:1 MOS Cardholder Verification Load PIN Load Certificates Facial Image Capture Physical Access Logical Access Desktop/Remote Logon FP Biometrics 1:1 Verification Sign & Encryption FASC-N Relying Party Authorization Operational Use Biographic Info Capture Two Best FP Characterization

5 Enrollment Workstation PIV Architecture SQL DB Staging DB Open IT Agent Identity Management System PACS Meta Directory CA Repository Active Directory HQ Active Directory Certificate Authority Life Cycle Mgmt API Notification API PACS Adaptor Interface Card Issuance Workstation Badging API Issuance Request Notifications Issuance Revocation HR Security Clearance User Provisioning Authorization HQ Network Admin Browser Hot List Subsystem Office of Security Revocation Browser Card Management & Production System PIV Card Physical Access Logical Access

6 PIV Implementation Plan Sharing Lessons Learned and Seeking Stakeholder Buy-in via Integrated Product Testing (IPT) Process Physical and IT/Cyber Access Infrastructure Survey via Stakeholders PIV Implementation Plan to OMB by 6/27/05 IDMS DB Integration with HR/Security Clearance DB Integration of PIV-1 Compliant IDMS, CMS and PACS Integration of the Enterprise PACS Network with the Agency IT Network PIV-1 Implementation Ready by 10/27/05 Agency-wide Migration Strategy for Legacy PACS Industry Participation toward Open API for Card Life Cycle Management and Open Badging API for Interoperable Card Issuance System Component Migration to PIV-2 Smart Card & Biometrics Solutions by and beyond October 2006

7 Thanks! Q & A Philip S. Lee (202) (M)