Presentation is loading. Please wait.

Presentation is loading. Please wait.

NIH-EDUCAUSE PKI Interoperability Project Electronic Grant Application With Multiple Digital Signatures Peter Alterman, Ph.D. Director of Operations Office.

Published byMadeline Adair Modified over 11 years ago

Similar presentations

Presentation on theme: "NIH-EDUCAUSE PKI Interoperability Project Electronic Grant Application With Multiple Digital Signatures Peter Alterman, Ph.D. Director of Operations Office."— Presentation transcript:

1 NIH-EDUCAUSE PKI Interoperability Project Electronic Grant Application With Multiple Digital Signatures Peter Alterman, Ph.D. Director of Operations Office of Extramural Research

2 The Problem NIH receives roughly 40,000 applications for new grants annually. Each application averages 125 pages and five copies are required to be submitted. Multiply that times 40,000: we receive an average of 25 million pages a year!NIH receives roughly 40,000 applications for new grants annually. Each application averages 125 pages and five copies are required to be submitted. Multiply that times 40,000: we receive an average of 25 million pages a year! While NIH has been developing strategies to convert paper to electronic processes, good solutions to the problem of electronic signature implementation have been lacking.While NIH has been developing strategies to convert paper to electronic processes, good solutions to the problem of electronic signature implementation have been lacking. Institutions are busy deploying PKIs and issuing digital certificates to their faculties and staffs and they want to use those credentials to do business with the government and with each other.Institutions are busy deploying PKIs and issuing digital certificates to their faculties and staffs and they want to use those credentials to do business with the government and with each other.

3 Project Goals Receive grant applications in electronic form signed with two different, validated, digital certificates each Use digital certificates issued by Institutions Demonstrate interoperability among four different CA vendors products, including two different PKI service providers

4 Project Concept of Operations (CONOPS) NIH OER Recipient E-Lock Assured Office Digital Signed Grant App. E-Lock Assured Office CAM-enabled NIH CAM Server with DAVE FBCA HEBCA Cert Status Cert Status Certificate Validation University B Certificate Validation University A Certificate Validation University C

5 Project Accomplishments to Date Successful demonstration of bridge-to-bridge interoperability Receipt of digitally-signed electronic submissions from UAB, UWM and Dartmouth with.. Successful validation of digital signatures from 3 CA vendors - RSA, iPlanet and Entrust, respectively, using.. Software developed for the task (DAVE). In other words, it works! Project received the Management and Leadership Best Practices Award from the Potomac Forum and an E-Gov Pioneer Award.

6 Reusable Infrastructure Developed By The NIH-EDUCAUSE PKI Project Bridge-to-Bridge Interoperability Infrastructure Certificate Path Discovery Software Support for LDAP directory chaining protocols and LDAP – X.500 directory interoperability Interoperability among multiple CA products (RSA, Entrust, iPlanet)

7 Implications for PKI-enabling Other Agency and Institution Applications Robust infrastructure supports secure inter-domain information exchange Focus on PKI-enabling local applications rather than on building cross-PKI communications Allows organizations to choose from among many vendors Relying parties do not have to issue, and manage, digital credentials

8 Next Steps Planned Automate receipt; verification and validation of digital signatures; archiving of signature data with signed validity assertion Automate return receipt notification Complete interoperability demonstration with VeriSign Encrypt email carrying signed attachments to ensure privacy Add new universities/colleges to pilot Add State CAs and Federal Agency CAs

9 Lessons Learned Solving directory issues is the key to interoperability No vendors X.509v3 certificates are like any others Protocols for everything are in flux There are NO show-stoppersThere are NO show-stoppers

10 Participating Institutions University of Texas - Houston

11 Participating Companies and Organizations

12 For More Information Project Report in the Workshop Proceedings Peter Alterman: peter.alterman@nih.govpeter.alterman@nih.gov Steve Worona: sworona@educause.edusworona@educause.edu Deb Blanchard: dblanchard@trustdst.comdblanchard@trustdst.com Monette Respress: mrespres@mitretek.orgmrespres@mitretek.org

Download ppt "NIH-EDUCAUSE PKI Interoperability Project Electronic Grant Application With Multiple Digital Signatures Peter Alterman, Ph.D. Director of Operations Office."

Similar presentations

PKI Solutions: Buy vs. Build David Wasley, U. California (ret.) Jim Jokl, U. Virginia Nick Davis, U. Wisconsin.

PKI Solutions: Buy vs. Build David Wasley, U. California (ret.) Jim Jokl, U. Virginia Nick Davis, U. Wisconsin.
Overview of US Federal Identity Management Initiatives Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority and Asst. CIO E-Authentication, NIH.

Overview of US Federal Identity Management Initiatives Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority and Asst. CIO E-Authentication, NIH.
Levels of Assurance: An Overview Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority.

Levels of Assurance: An Overview Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority.
EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.

EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.
Federal PKI Architecture Update

Federal PKI Architecture Update
The U.S. Federal PKI Richard Guida, P.E. Chair, Federal PKI Steering Committee Chief Information Officers Council 202-622-1552.

The U.S. Federal PKI Richard Guida, P.E. Chair, Federal PKI Steering Committee Chief Information Officers Council
15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.

15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.
Copyright Judith Spencer 2002. This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial,

Copyright Judith Spencer This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial,
Problems With Centralized Passwords Dartmouth College PKI Lab.

Problems With Centralized Passwords Dartmouth College PKI Lab.
NIH – EDUCAUSE PKI Interoperability Pilot Update Peter Alterman, Ph.D. Director of Operations, Office of Extramural Research, NIH and Senior Advisor to.

NIH – EDUCAUSE PKI Interoperability Pilot Update Peter Alterman, Ph.D. Director of Operations, Office of Extramural Research, NIH and Senior Advisor to.
PKI in US Higher Education TAGPMA Meeting, March 2006 Rio De Janeiro, Brazil.

PKI in US Higher Education TAGPMA Meeting, March 2006 Rio De Janeiro, Brazil.
David L. Wasley Information Resources & Communications Office of the President University of California Directories and PKI Basic Components of Middleware.

David L. Wasley Information Resources & Communications Office of the President University of California Directories and PKI Basic Components of Middleware.
Federal Approach to Electronic Credentials For services to citizens, businesses, other governments, and employees Mary J. Mitchell Office of Electronic.

Federal Approach to Electronic Credentials For services to citizens, businesses, other governments, and employees Mary J. Mitchell Office of Electronic.
The U.S. Federal PKI and the Federal Bridge Certification Authority

The U.S. Federal PKI and the Federal Bridge Certification Authority
The 4BF The Four Bridges Forum Higher Education Bridge Certificate Authority.

The 4BF The Four Bridges Forum Higher Education Bridge Certificate Authority.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 9: Planning and Managing Certificate Services.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 9: Planning and Managing Certificate Services.
Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.

Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.
Higher Education Bridge Certificate Authority (HEBCA) Project Progress Fed/Ed December 2004.

Higher Education Bridge Certificate Authority (HEBCA) Project Progress Fed/Ed December 2004.
NIH-EDUCAUSE Interoperability Project, Phase 3: Fulfilling the Promise Dartmouth PKI Implementation Workshop Peter Alterman, Ph.D. Assistant CIO for E-Authentication.

NIH-EDUCAUSE Interoperability Project, Phase 3: Fulfilling the Promise Dartmouth PKI Implementation Workshop Peter Alterman, Ph.D. Assistant CIO for E-Authentication.
Higher Education Bridge Certificate Authority (HEBCA) Project Progress July 2004 Dartmouth PKI Summit.

Higher Education Bridge Certificate Authority (HEBCA) Project Progress July 2004 Dartmouth PKI Summit.

Similar presentations

Ads by Google