Presentation is loading. Please wait.

Presentation is loading. Please wait.

“Personal Identity Verification (PIV) of Federal Employees and Contractors” October 27, 2005 Homeland Security Presidential Directive 12 (HSPD-12)

Published byLeslie Warren Modified over 9 years ago

Similar presentations

Presentation on theme: "“Personal Identity Verification (PIV) of Federal Employees and Contractors” October 27, 2005 Homeland Security Presidential Directive 12 (HSPD-12)"— Presentation transcript:

1 “Personal Identity Verification (PIV) of Federal Employees and Contractors” October 27, 2005 Homeland Security Presidential Directive 12 (HSPD-12)

2 2 HSPD-12 Briefing Outline Executive Summary Implementation Highlights Where We Are Now Issues

3 3 Executive Summary HSPD-12 Homeland Security Presidential Directive 12 was signed by President Bush Aug. 27, 2004 “…It is the policy of the United States to enhance security, increase government efficiency, reduce identity fraud, and protect personal privacy…” Improved personal identity verification (PIV) of all federal employees and contractors. Interoperable ID badges/ “ smart cards. ”

4 4 Executive Summary HSPD-12 Control Objectives “Secure and reliable forms of identification” must be: Issued based on sound criteria for verifying an individual employee ’ s identity. Strongly resistant to identity fraud, tampering, counterfeiting, and terrorist exploitation. Able to be rapidly authenticated electronically. Issued only by providers whose reliability has been established by an official accreditation process.

5 5 Executive Summary To implement, we must… Strengthen and standardize identity verification process. Operate a comprehensive PIV card authentication and personal identity verification system. Procure standard ID badges/ smartcards, readers, and PKI services per FIPS 201. Capture index fingerprints on PIV card, and store fingerprints in database.

6 6 Executive Summary Guidance and Standards Federal Information Processing Standards 201 (FIPS) for HSPD-12 developed by NIST. FIPS 201 breaks down requirements into “ PIV I ” and “ PIV II. ” Includes NIST Special Publications SP 800-73 – Smart card requirements. SP 800-76 – Biometric requirements (fingerprints). SP 800-78 – Cryptographic requirements (PKI). SP 800-79 – Certification and accreditation (C&A). SP 800-85 – Testing procedures for PIV products.

7 7 Executive Summary FIPS 201 (Part 1 & II) PIV I – the process Strengthens “identity-proofing” and background investigations. Defines credential issuance process. Mandates privacy protections. PIV II - components of the PIV system Interoperable PIV Card. Card Management Subsystem. Access Control Subsystem. Identity Management System (IDMS). PKI credential.

8 8 Implementation Highlights Due Dates By Oct. 27, 2005: PIV-I: Identity proofing and credential issuance process complies with FIPS 201, part 1. Completed. By Oct. 27, 2006: PIV-II: New employees/ contractors: Issue only PIV-II compliant cards and require use for both physical and logical access. Existing employees/ contractors: Begin replacing cards. FBI National Criminal History (fingerprint) Check portion of background investigation before PIV Card issuance. Full National Agency Check with Inquiries (NACI) must follow. By Oct. 27, 2007: Finish replacing cards for current employees/ contractors and require use for both physical and logical access. All federal employees with less than 15 years of service and all contractors must be identity proofed with a minimum of a NACI.

9 9 Where We Are Now Currently compliant with all FIPS 201 requirements for PIV I. PIV I Guidance issued. New PIV I form being utilized. New HR hiring practices are in place. Conducted training for all OSEP employees associated in PIV I process. CPO conducted Contracting Officers training. New HUDAR clause is written. OSEP has started Certification and Accreditation process. GSA currently working on hiring contractor support for future DSX upgrades and additional hardware.

10 10 Government Wide HUD Involvement Federal Identity Credentialing Committee (FICC) Interagency Partnership Working Group meetings Smart Card Interagency Advisory Board (IAB) Interagency Privacy Committee

11 11 Next Steps Future Issues: High project implementation costs. Integration of DSX to HUD infrastructure. HUD computer network access will require use of PIV card (including PKI credential). PKI credential has never been used in HUD environment. Procurement risks: Currently there are no products or services that are certified to be FIPS 201 compliant. GSA will require purchases of products using Schedule 70 (HITS?). GSA will not have new Schedule 70 in place until May 2006.

Download ppt "“Personal Identity Verification (PIV) of Federal Employees and Contractors” October 27, 2005 Homeland Security Presidential Directive 12 (HSPD-12)"

Similar presentations

For Joe Broghamer Philip S. Lee May 5, 2005 Implementing PIV Specifications HSPD-12 Workshop.

For Joe Broghamer Philip S. Lee May 5, 2005 Implementing PIV Specifications HSPD-12 Workshop.
June 27, 2005 Preparing your Implementation Plan.

June 27, 2005 Preparing your Implementation Plan.
Status of U.S. Smart Card Deployment Jim Dray Porvoo 7/ World eID Meeting May 2005.

Status of U.S. Smart Card Deployment Jim Dray Porvoo 7/ World eID Meeting May 2005.
Overview of US Federal Identity Management Initiatives Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority and Asst. CIO E-Authentication, NIH.

Overview of US Federal Identity Management Initiatives Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority and Asst. CIO E-Authentication, NIH.
Brian Epley, VA PIV Program Manager

Brian Epley, VA PIV Program Manager
1 HSPD-12 Compliance: The Role of Federal PKI Judith Spencer Chair, Federal Identity Credentialing Office of Governmentwide Policy General Services Administration.

1 HSPD-12 Compliance: The Role of Federal PKI Judith Spencer Chair, Federal Identity Credentialing Office of Governmentwide Policy General Services Administration.
NIH is a Valuable Place with Valuable People: We Need to Protect it! Cyber threat is one of the most serious economic and national security challenges.

NIH is a Valuable Place with Valuable People: We Need to Protect it! Cyber threat is one of the most serious economic and national security challenges.
The Federation for Identity and Cross-Credentialing Systems (FiXs) www.FiXs.org FiXs ® - Federated and Secure Identity Management in Operation Implementing.

The Federation for Identity and Cross-Credentialing Systems (FiXs) FiXs ® - Federated and Secure Identity Management in Operation Implementing.
15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.

15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.
1 1 A Synopsis of Federal Information Processing Standard (FIPS) 201 for Personal Identity Verification (PIV) of Federal Employees and Contractors Presentation.

1 1 A Synopsis of Federal Information Processing Standard (FIPS) 201 for Personal Identity Verification (PIV) of Federal Employees and Contractors Presentation.
Public Key Infrastructure (PKI) Hosting Services.

Public Key Infrastructure (PKI) Hosting Services.
Department of Health and Human Services Personal Identity Verification Training APPLICANT.

Department of Health and Human Services Personal Identity Verification Training APPLICANT.
1 Federal Identity Management and Homeland Security Presidential Directive 12 David Temoshok Director, Identity Policy and Management GSA Office of Governmentwide.

1 Federal Identity Management and Homeland Security Presidential Directive 12 David Temoshok Director, Identity Policy and Management GSA Office of Governmentwide.
Identity Assurance at Virginia Tech CSG January 13, 2010 Mary Dunker

Identity Assurance at Virginia Tech CSG January 13, 2010 Mary Dunker
FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.

FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.
Nairobi, Kenya 29-31October 2007 1 Fifth Special Meeting of the Counter- Terrorism Committee with International, Regional and Subregional Organizations.

Nairobi, Kenya 29-31October Fifth Special Meeting of the Counter- Terrorism Committee with International, Regional and Subregional Organizations.
U.S. Department of Agriculture HSPD 12 Program HSPD 12 Personal Identity Verification (PIV) I Core Training: Issuers.

U.S. Department of Agriculture HSPD 12 Program HSPD 12 Personal Identity Verification (PIV) I Core Training: Issuers.
1 Homeland Security Presidential Directive 12 (HSPD-12) Policies & Procedures Veronica McCann - Security Specialist Western Region Security Office March.

1 Homeland Security Presidential Directive 12 (HSPD-12) Policies & Procedures Veronica McCann - Security Specialist Western Region Security Office March.
Department of Labor HSPD-12

Department of Labor HSPD-12
PIV-I Issuing Procedures for Applicants (Current Contractors) v1.1.

PIV-I Issuing Procedures for Applicants (Current Contractors) v1.1.

Similar presentations

Ads by Google