Higher Education Bridge Certificate Authority (HEBCA) Project Progress Fed/Ed June 2005.

Slides:



Advertisements
Similar presentations
NIH-EDUCAUSE PKI Interoperability Project Electronic Grant Application With Multiple Digital Signatures Peter Alterman, Ph.D. Director of Operations Office.
Advertisements

Experiences with Massive PKI Deployment and Usage Daniel Kouřil, Michal Procházka Masaryk University & CESNET Security and Protection of Information 2009.
Copyright Judith Spencer This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial,
David L. Wasley Office of the President University of California A PKI Certificate Policy for Higher Education A Work in Progress Draft David L.
Identity Standards (Federal Bridge Certification Authority – Certificate Lifecycle) Oct,
1 HEPKI-TAG Update EDUCAUSE/Dartmouth PKI Summit July 26, 2005 Jim Jokl University of Virginia.
Higher Education Bridge CA (HEBCA) – What’s Relevant, What’s Next? (Scott Rea) Fed/Ed December 2006.
NIH – EDUCAUSE PKI Interoperability Pilot Update Peter Alterman, Ph.D. Director of Operations, Office of Extramural Research, NIH and Senior Advisor to.
Higher Education PKIs (Scott Rea) Boulder CO November 15, 2007.
Update on federations, PKI, and federated PKI for US feds and higher eds Tom Barton University of Chicago.
PKI in US Higher Education TAGPMA Meeting, March 2006 Rio De Janeiro, Brazil.
PKI Activities at Virginia January 2004 CSG Meeting Jim Jokl.
US Higher Ed PKI Activities Internet2/EDUCAUSE ++ TF-EMC2 November, 2004 Amsterdam Michael R Gettes, Duke University TF-EMC2 November, 2004 Amsterdam Michael.
Dartmouth PKI Deployment Robert Brentrup PKI Summit July 14, 2004.
The U.S. Federal PKI and the Federal Bridge Certification Authority
The 4BF The Four Bridges Forum Higher Education Bridge Certificate Authority.
PKI Update. Topics Background: Why/Why Not, The Four Planes of PKI, Activities in Other Communities Technical activities update S/MIME Pilot prospects.
Higher Education Bridge Certificate Authority (HEBCA) Project Progress Fed/Ed December 2004.
NIH-EDUCAUSE Interoperability Project, Phase 3: Fulfilling the Promise Dartmouth PKI Implementation Workshop Peter Alterman, Ph.D. Assistant CIO for E-Authentication.
Higher Education Bridge Certificate Authority (HEBCA) Project Progress July 2004 Dartmouth PKI Summit.
HEBCA – Higher Education Bridge Certification Authority Presented by Scott Rea and Mark Franklin, Fed/Ed Meeting, 12/14/2005.
CAMP - June 4-6, Copyright Statement Copyright Robert J. Brentrup and Mark J. Franklin This work is the intellectual property of the authors.
Information Assurance and Higher Education Clifton Poole National Defense University Carl Landwehr National Science Foundation Tiffany Olson Jones Symantec.
1 USHER Update Fed/ED December 2007 Jim Jokl University of Virginia.
1 11 th Fed/Ed PKI Meeting Some quick updates from recent HEPKI-TAG and SURA work Jim Jokl
9/20/2000www.cren.net1 Root Key Cutting and Ceremony at MIT 11/17/99.
The U.S. Federal PKI, 2004: Report to EDUCAUSE Peter Alterman, Ph.D. Assistant CIO for E-Authentication National Institutes of Health.
1 Digital Credential for Higher Education John Gardiner August 11, 2004.
Bridge-to-Bridge Working Group (BBWG) Debb Blanchard, Cybertrust EDUCAUSE Federal and Higher Education PKI Coordination Meeting June 16, 2005 The Fairmont.
Best Practices in Deploying a PKI Solution BIEN Nguyen Thanh Product Consultant – M.Tech Vietnam
PKI: Glue of Middleware Michael R Gettes, Duke University CAMP Enterprise Authentication Michael R Gettes, Duke University CAMP Enterprise Authentication.
Electronic Submission of Medical Documentation (esMD) Author of Record Workgroup Wednesday June 20,
Transforming Education Through Information Technologies Common Solutions Group, January, 2002 (Sanibel Island) HEBCA: Higher Education.
Bridging Higher Education PKIs PKI Summit, August 2006 Snowmass, Colorado.
Introduction to Secure Messaging The Open Group Messaging Forum April 30, 2003.
HEPKI-TAG UPDATE Jim Jokl University of Virginia
1 PKI & USHER/HEBCA Fall 2005 Internet2 Member Meeting Jim Jokl September 21, 2005.
16 June ‘04Fed/ED1 Filling the FPKI Void Tice F. DeYoung Fed/ED 16 June ‘04.
X.509/PKI There is progress.... Topics Why PKI? Why not PKI? The Four Stages of X.509/PKI Other sectors Federal Activities - fBCA, NIH Pilot, ACES, other.
The NIH PKI Pilots Peter Alterman, Ph.D. … again.
HEPKI-PAG Policy Activities Group David L. Wasley University of California.
NSF Middleware Initiative Renee Woodten Frost Assistant Director, Middleware Initiatives Internet2 NSF Middleware Initiative.
PKI and the U.S. Federal E- Authentication Architecture Peter Alterman, Ph.D. Assistant CIO for e-Authentication National Institutes of Health Internet2.
Internet2 Middleware PKI: Oy-vey! Michael R. Gettes Principal Technologist Georgetown University
I-CIDM Bridge to Bridge Working Group (BBWG) Purpose and Activities Fed-Ed Meeting The Fairmont Hotel Washington, DC December 14, 2004 Debb Blanchard Enspier.
PKI for Higher Education (Scott Rea) Boulder CO November 15, 2007.
PKI Summit August 2004 Technical Issues to Deploying PKI on Campuses.
Leveraging Campus Authentication for Grid Scalability Jim Jokl Marty Humphrey University of Virginia Internet2 Meeting April 2004.
“Trust me …” Policy and Practices in PKI David L. Wasley Fall 2006 PKI Workshop.
1 Federal Identity Management Initiatives Federal Identity Management Initatives David Temoshok Director, Identity Policy and Management GSA Office of.
Southeastern Universities Research Association (SURA) - Intro for Fed/Ed 18 Mary Fran Yafchak Senior Program Manager, IT
Higher Ed Bridge CA Extending Trust Across Higher Education - And Beyond David L. Wasley University of California.
HEBCA – The Operating Authority July 2005 Dartmouth PKI Summit.
Day 3 Roadmap and PKI Update. When do we get to go home? Report from the BoFs CAMP assessment, next steps PKI technical update Break Research Issues in.
Copyright Statement Copyright Robert J. Brentrup This work is the intellectual property of the author. Permission is granted for this material to.
Higher Education Bridge CA (HEBCA) – Planting is required before the harvest (Scott Rea) Fed/Ed June 2007.
Trusted Electronic Communications for Federal Student Aid Mark Luker Vice President EDUCAUSE Copyright Mark Luker, This work is the intellectual.
Higher Education Bridge Certification Authority Scaleable Linking of PKI trust domains Scaleable Linking of PKI trust domains David L. Wasley Fall 2006.
1 US Higher Education Root CA (USHER) Update Fed/Ed Meeting December 14, 2005 Jim Jokl University of Virginia.
Higher Education Bridge Certification Authority Scaleable Linking of PKI trust domains Scaleable Linking of PKI trust domains David L. Wasley Fall 2006.
Dartmouth PKI: Plans & Challenges (Scott Rea – Dartmouth College) Internet2 Member Meeting, Dec 2006 PKI Implementers Workshop - Chicago, IL.
Higher Education Bridge Certification Authority
U.S. Federal e-Authentication Initiative
USHER U.S. Higher Education Root Certificate Authority
Higher Education Bridge CA (HEBCA) – Planting is required before the harvest (Scott Rea) Fed/Ed June 2007.
Internet2 Member Meeting
Inter-institutional Trust Fabric Overview and Synergies
Fed/ED December 2007 Jim Jokl University of Virginia
Higher Education Bridge Certificate Authority (HEBCA) Project Progress Sixth Annual PKI Summit at Snowmass, Colorado August 2004.
Presentation transcript:

Higher Education Bridge Certificate Authority (HEBCA) Project Progress Fed/Ed June 2005

2 HEBCA Project What is it? –The HEBCA Project being undertaken by Dartmouth College includes all activities related to the instantiation and operation of a production-level Public Key Infrastructure (PKI) Bridge Certificate Authority for the Higher Education community.

3 HEBCA Project What’s been done in last 6 months? –Policy Authority formed –A slew of documents (required for Audit sign-off prior to production roll out) have been drafted Certificate Practices Statement Certificate Profiles Interoperability Guidelines Criteria and Methods Business Continuity and Disaster Recovery Plan Base Memorandum of Agreement (MOA) –HEBCA Test infrastructure instantiated at Dartmouth –HEBCA Test cross-certified with the Prototype FBCA

4 HEBCA Project What’s been done in last 6 months? –Establishment of the HEBCA.ORG domain –Auditors for pre-operational compliance engaged –Technical Interoperability completed with FBCA –HEBCA Production infrastructure completed (imminent deployment) AirGap solution constructed & operational –HEBCA/USHER Synergies project proposed, accepted and under way –Presentations on HEBCA concepts, progress, and related projects or participation in panel discussions at 5 different industry conferences / workshops –Participation in industry workgroups ( Path-Val, I-CIDM, FBCA CPWG, HEBCA PAWG, OSG TG-Sec, TAGPMA, HEPKI-TAG, IIWG)

5 HEBCA Project Issues Encountered and Solutions Implemented –Discovery of a vulnerability in the protocol for indirect CRLs Will now use Issuing CA to sign CRLs –How to construct a high availability online service based on an offline infrastructure (to mitigate risk) all on a shoestring budget Our AirGap Solution was constructed for under $100 in parts –FBCA requirement for US citizenship of “trusted roles” personnel prior to cross-certification Participation in industry collaborative process which appears to have generated a workable solution

6 HEBCA Project What’s on the Radar? –Production HEBCA infrastructure deployment –Creation of the HEBCA keys –CPS to CP Audit –Operational Processes and Procedures Audit –HEBCA is live –Cross-certification with UVA –Cross-certification with Dartmouth College –Cross-certification with FBCA –USHER deployment –USHER cross-certification

7 HEBCA Project Other Projects in the mix –USHER infrastructure instantiation –Dartmouth PKI token roll-out –NIH-EDUCAUSE PKI Interoperability Pilot Digitally Signed XML Forms –PESC Standard based Transcripts –SF-424 Grant Applications –ED1049 Eligible Institutions –HHS grappling with PKI on the Apple platform –GRID Computing –Lionshare –SHIB/eAUTH –Security in Mobile Wireless Networks

8 For More Information Dartmouth PKI Summit –July on Dartmouth College Campus, Hanover, NH –Website:

9 For More Information HEBCA Website: Scott Rea - Steve Worona -

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.