Presentation is loading. Please wait.

Presentation is loading. Please wait.

Federal Bridge Certification Authority n Background n Overview n EMA Challenge Test structure n Participants n Results n Conclusions and lessons learned.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Federal Bridge Certification Authority n Background n Overview n EMA Challenge Test structure n Participants n Results n Conclusions and lessons learned."— Presentation transcript:

1 Federal Bridge Certification Authority n Background n Overview n EMA Challenge Test structure n Participants n Results n Conclusions and lessons learned

2 Background n FBCA is non-hierarchical, peer-to-peer “hub” n Supports interagency PKI technical interoperability n Policy interoperability framework established by FPKI Policy Authority n Goal: accommodate Federal agency use of any PKI COTS product

3 Overview n Prototype FBCA operational 2/8/00 –DOD funded and technically supported –GSA auspices; hosted by Mitretek Systems –Entrust and Cybertrust CAs –PeerLogic i500 directory –Supports EMA Challenge and testing n Production FBCA operational late 2000 –Additional CA products within membrane –Mesh arrangement within membrane

4 Test Structure n Six disparate PKI domains cross-certified with FBCA (DOD largest) –Five different CA products –Five different X.500 directory products n Interoperability demonstrated via exchange of signed S/MIME messages n X.500 directory framework - chaining between directories, client access via LDAP

5 Cybertrust CA Entrust CA SFL Client Entrust Client Entrust Client SFL Client DoD Bridge CA Entrust Client Entrust Client Entrust Client PCA CA PCA CA PCA CA PCA CA PCA Entrust Client SFL Client PCA

6 Client Details n Eudora engineered with: –Entrust toolkit (“out of the box”) –CygnaCom libraries –JGVanDyke libraries n Outlook engineered with Entrust toolkit n Spyrus LYNKS cryptocards for CygnaCom/JGVanDyke enabled client n Private key on hard disk for Entrust enabled client

7 Participants n Government of Canada n NSA/DOD n NIST n NASA n GSA n Georgia Tech Research Institute n CA products: Entrust; Cybertrust; CygnaCom; Spyrus; Motorola n Directories: PeerLogic; ICL; Nexor; CDS; Chromatix n Integrators: Mitretek; JGVanDyke; GNS; Booz Allen; CygnaCom; A&N Associates

8 Results Results

9 Conclusions and Lessons Learned n FBCA concept works n Client ability to develop and process trust path straightforward to implement n Directory interoperability is critical to PKI interoperability n Directory entries must line up with CAs n Need for native code in clients n Lots of details, lots of devils

Download ppt "Federal Bridge Certification Authority n Background n Overview n EMA Challenge Test structure n Participants n Results n Conclusions and lessons learned."

Similar presentations

NIH-EDUCAUSE PKI Interoperability Project Electronic Grant Application With Multiple Digital Signatures Peter Alterman, Ph.D. Director of Operations Office.

NIH-EDUCAUSE PKI Interoperability Project Electronic Grant Application With Multiple Digital Signatures Peter Alterman, Ph.D. Director of Operations Office.
© 1998-2003 ITU Telecommunication Development Bureau (BDT) – E-Strategy Unit.. Page - 1 Seminar on Standardization and ICT Development for the Information.

© ITU Telecommunication Development Bureau (BDT) – E-Strategy Unit.. Page - 1 Seminar on Standardization and ICT Development for the Information.
EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.

EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.
Federal PKI Architecture Update

Federal PKI Architecture Update
PKE PP Mike Henry Jean Petty Entrust CygnaCom Santosh Chokhani.

PKE PP Mike Henry Jean Petty Entrust CygnaCom Santosh Chokhani.
1 GPO PKI – Getting Started U.S. Government Printing Office May 20, 2011.

1 GPO PKI – Getting Started U.S. Government Printing Office May 20, 2011.
The U.S. Federal PKI Richard Guida, P.E. Chair, Federal PKI Steering Committee Chief Information Officers Council 202-622-1552.

The U.S. Federal PKI Richard Guida, P.E. Chair, Federal PKI Steering Committee Chief Information Officers Council
Ongoing Efforts to Build The US Federal PKI Bridge

Ongoing Efforts to Build The US Federal PKI Bridge
Stanley J. Choffrey (202) 708-7943 The Federal Bridge Certification Authority Evolving Issues in Electronic Data Collection January.

Stanley J. Choffrey (202) The Federal Bridge Certification Authority Evolving Issues in Electronic Data Collection January.
Federal PKI Evolution Substantial bottom-up growth in agency use of PKI (report to be published shortly)Substantial bottom-up growth in agency use of PKI.

Federal PKI Evolution Substantial bottom-up growth in agency use of PKI (report to be published shortly)Substantial bottom-up growth in agency use of PKI.
Certificate Interoperability S&I Framework Initiative Final Report August 17, 2011.

Certificate Interoperability S&I Framework Initiative Final Report August 17, 2011.
15June’061 NASA’s PKI Migration to Treasury 13th Fed-Ed Meeting 15 June ‘06 Presenter: Tice DeYoung.

15June’061 NASA’s PKI Migration to Treasury 13th Fed-Ed Meeting 15 June ‘06 Presenter: Tice DeYoung.
15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.

15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.
Copyright Judith Spencer 2002. This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial,

Copyright Judith Spencer This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial,
Certification Authority. Overview  Identifying CA Hierarchy Design Requirements  Common CA Hierarchy Designs  Documenting Legal Requirements  Analyzing.

Certification Authority. Overview  Identifying CA Hierarchy Design Requirements  Common CA Hierarchy Designs  Documenting Legal Requirements  Analyzing.
PKI in US Higher Education TAGPMA Meeting, March 2006 Rio De Janeiro, Brazil.

PKI in US Higher Education TAGPMA Meeting, March 2006 Rio De Janeiro, Brazil.
Uncle Sam, Meet The PKI! Richard Guida Chair, Federal PKI Steering Committee Michèle Rubenstein Department of the Treasury,

Uncle Sam, Meet The PKI! Richard Guida Chair, Federal PKI Steering Committee Michèle Rubenstein Department of the Treasury,
The U.S. Federal PKI and the Federal Bridge Certification Authority

The U.S. Federal PKI and the Federal Bridge Certification Authority
1 Memorandum for multi-domain PKI interoperability multidomain-pki-00.txt

1 Memorandum for multi-domain PKI interoperability multidomain-pki-00.txt
EDUCAUSE Fed/Higher ED PKI Coordination Meeting

EDUCAUSE Fed/Higher ED PKI Coordination Meeting

Similar presentations

Ads by Google