Presentation is loading. Please wait.

Presentation is loading. Please wait.

Uncle Sam, Meet The PKI! Richard Guida Chair, Federal PKI Steering Committee Michèle Rubenstein Department of the Treasury,

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Uncle Sam, Meet The PKI! Richard Guida Chair, Federal PKI Steering Committee Michèle Rubenstein Department of the Treasury,"— Presentation transcript:

1 Uncle Sam, Meet The PKI! Richard Guida Chair, Federal PKI Steering Committee richard.guida@cio.treas.gov Michèle Rubenstein Department of the Treasury, Chair, EMA Board of Directors michele.rubenstein @cio.treas.gov

2 Federal PKI Interoperability b Overview b Organizational Framework b Bridge Certification Authority Concept b Design Requirements b Meaning of Interoperability b Current Status b Challenges b Path Ahead

3 Organizational Framework b Well over two dozen agency PKIs b No single Federal hierarchical root b Full spectrum of COTS products b Widely divergent agency requirements b Strong desire to interoperate (communicate accepting certificates from other sources)

4 Bridge Certification Authority b Non-hierarchical “hub” b Designed under Federal PKI Steering Committee auspices b CP/CPS under development - will support four levels of assurance (rudimentary, basic, medium, high) b Operated by, and will exist at, the National Technical Information Service

5 Bridge Certification Authority (2) b Will operate under auspices of Federal Policy Management Authority (FPKI Steering Committee) b Agencies can apply to have their CA’s cross-certify - FPMA decides level of assurance

6 Bridge Certification Authority (3) b Once cross-certified, Bridge allows construction of trusted path between CA domains b Initial focus is interagency interoperability, but also plan to do so with external parties

7 Design Requirements b High assurance for Bridge itself b Must honor four levels of assurance for cross-certified CAs b Must be hosted at Federal agency (NTIS) b Must meet MISPC and FIPS 140-1 b Must allow trusted path creation

8 Meaning of Interoperability b Policy b Technical AlgorithmsAlgorithms ProtocolsProtocols Encryption key recovery schema consistencyEncryption key recovery schema consistency

9 Current Status (as of Oct 98) b Funding committed (pending budget passage) b In design stage b Once notional design developed, will be vetted through FPKI Steering Committee Technical Working Group (vendors) b Developing EMA Challenge participation

10 WEMA Challenge ‘99 b b Demonstrate standards-based, secure, global EC environment featuring interoperable PKI b b Goals Demonstrate scalable, standards-based PKI using COTS products that is transparent to users Identify key issues, raise awareness, and determine solutions for a multi-domain PKI Demonstrate the capabilities of COTS products and their ability to interoperate

11 WEMA Challenge ‘99 b b Foundation applications are web-based EC and secure messaging b b Some of the participants: BT NTIS Entrust Xcert European Commission b b Documentation and information www.ema.org/challenge99 Baltimore Boeing GTE Cybertrust GSA Treasury

12 Challenges b Dealing with OCSP vs. CRL domains for revocation checking b Ensuring Bridge supports all COTS products agencies may select b Ensuring Bridge’s full potential is used b Making client software use the Bridge b Mapping applicant CA’s assurance levels to those of Bridge

13 Path Ahead b Complete design and vet through Technical Working Group b Get Bridge pilot operating (early 1999) b Participate in EMA Challenge 99 b Attract appropriate applications b Since fully funded through Sept 2000, expect no charge to cross-certify until afterwards (but depends on actual usage)

Download ppt "Uncle Sam, Meet The PKI! Richard Guida Chair, Federal PKI Steering Committee Michèle Rubenstein Department of the Treasury,"

Similar presentations

NIH-EDUCAUSE PKI Interoperability Project Electronic Grant Application With Multiple Digital Signatures Peter Alterman, Ph.D. Director of Operations Office.

NIH-EDUCAUSE PKI Interoperability Project Electronic Grant Application With Multiple Digital Signatures Peter Alterman, Ph.D. Director of Operations Office.
PKI Solutions: Buy vs. Build David Wasley, U. California (ret.) Jim Jokl, U. Virginia Nick Davis, U. Wisconsin.

PKI Solutions: Buy vs. Build David Wasley, U. California (ret.) Jim Jokl, U. Virginia Nick Davis, U. Wisconsin.
Levels of Assurance: An Overview Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority.

Levels of Assurance: An Overview Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority.
EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.

EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.
Federal PKI Architecture Update

Federal PKI Architecture Update
PKE PP Mike Henry Jean Petty Entrust CygnaCom Santosh Chokhani.

PKE PP Mike Henry Jean Petty Entrust CygnaCom Santosh Chokhani.
1 GPO PKI – Getting Started U.S. Government Printing Office May 20, 2011.

1 GPO PKI – Getting Started U.S. Government Printing Office May 20, 2011.
The U.S. Federal PKI Richard Guida, P.E. Chair, Federal PKI Steering Committee Chief Information Officers Council 202-622-1552.

The U.S. Federal PKI Richard Guida, P.E. Chair, Federal PKI Steering Committee Chief Information Officers Council
Ongoing Efforts to Build The US Federal PKI Bridge

Ongoing Efforts to Build The US Federal PKI Bridge
Stanley J. Choffrey (202) 708-7943 The Federal Bridge Certification Authority Evolving Issues in Electronic Data Collection January.

Stanley J. Choffrey (202) The Federal Bridge Certification Authority Evolving Issues in Electronic Data Collection January.
Federal PKI Evolution Substantial bottom-up growth in agency use of PKI (report to be published shortly)Substantial bottom-up growth in agency use of PKI.

Federal PKI Evolution Substantial bottom-up growth in agency use of PKI (report to be published shortly)Substantial bottom-up growth in agency use of PKI.
15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.

15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.
Copyright Judith Spencer 2002. This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial,

Copyright Judith Spencer This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial,
MPKI Interoperability I-D ChangeLog from -01 to -02 Jan 16, 2004 Masaki SHIMAOKA SECOM Trust.net.

MPKI Interoperability I-D ChangeLog from -01 to -02 Jan 16, 2004 Masaki SHIMAOKA SECOM Trust.net.
MPKI Interoperability I-D ChangeLog from -00 to -01 Oct 27, 2003 Masaki SHIMAOKA SECOM Trust.net.

MPKI Interoperability I-D ChangeLog from -00 to -01 Oct 27, 2003 Masaki SHIMAOKA SECOM Trust.net.
PKI in US Higher Education TAGPMA Meeting, March 2006 Rio De Janeiro, Brazil.

PKI in US Higher Education TAGPMA Meeting, March 2006 Rio De Janeiro, Brazil.
DESIGNING A PUBLIC KEY INFRASTRUCTURE

DESIGNING A PUBLIC KEY INFRASTRUCTURE
The U.S. Federal PKI and the Federal Bridge Certification Authority

The U.S. Federal PKI and the Federal Bridge Certification Authority
EDUCAUSE Fed/Higher ED PKI Coordination Meeting

EDUCAUSE Fed/Higher ED PKI Coordination Meeting
Interoperation Between a Conventional PKI and an ID-Based Infrastructure Geraint Price Royal Holloway University of London joint work with Chris Mitchell.

Interoperation Between a Conventional PKI and an ID-Based Infrastructure Geraint Price Royal Holloway University of London joint work with Chris Mitchell.

Similar presentations

Ads by Google