Presentation is loading. Please wait.

Presentation is loading. Please wait.

1/13/05NCASSR PNNL Visit1 Security Tools Area Overview, Credential Management Services, and the PKI Testbed Jim Basney Senior Research Scientist

Published bySherman Montgomery Modified over 9 years ago

Similar presentations

Presentation on theme: "1/13/05NCASSR PNNL Visit1 Security Tools Area Overview, Credential Management Services, and the PKI Testbed Jim Basney Senior Research Scientist"— Presentation transcript:

1 1/13/05NCASSR PNNL Visit1 Security Tools Area Overview, Credential Management Services, and the PKI Testbed Jim Basney Senior Research Scientist jbasney@ncsa.uiuc.edu jbasney@ncsa.uiuc.edu

2 1/13/05NCASSR PNNL Visit2 Security Tools Area

3 1/13/05NCASSR PNNL Visit3 Credential Management Services Project Goal: Provide secure, convenient access to security credentials for authentication, digital signatures, and encryption Approach: Develop open source software providing credential management services Results: SACRED credential repository implementation at http://sacred.sf.net/http://sacred.sf.net/ –Developed in collaboration with BYU

4 1/13/05NCASSR PNNL Visit4 SACRED Credential Repository Securely Available Credentials (SACRED) Protocol (RFC 3767) –Published June 2004 Enables user to acquire cryptographic credentials from a credential server –Authenticate with a password Authentication protocols now supported: –SASL DIGEST-MD5 (RFC 2831) over TLS –SASL SRP (RFC 2945) New !

5 1/13/05NCASSR PNNL Visit5 SACRED: Next 6 months Community outreach: encourage adoption –Target grid computing community –Improve web site and documentation Develop graphical user interface Integrate with Mozilla web browser and email client Improve server configuration and management

6 1/13/05NCASSR PNNL Visit6 PKI Testbed Project Started January 2005 Equipment to be acquired: –Contact and contactless smartcards and readers –Fingerprint readers –iButtons, SecureID tokens, CRYPTOCard tokens –Secure co-processors for credential servers –Servers, laptops, workstations, and PDAs To support: –Credential Management Services Project –ITTF Credentialing Project (external collaboration) –Other NCASSR projects? (Please contact me.)

7 1/13/05NCASSR PNNL Visit7 Illinois Terrorism Task Force Misson –Created May 2000 to implement a comprehensive coordinated strategy for domestic preparedness in the state of Illinois, bringing together agencies, organizations, and associations representing all disciplines in the war against terrorism. Members include: –American Red Cross –Associated Fire Fighters of Illinois –FBI –Illinois Governor’s Office –Illinois State Police –U.S. Attorney’s Office –FEMA (Region V)

8 1/13/05NCASSR PNNL Visit8 ITTF Credentialing Project Goal: Pre-issue credentials to incident responders for identification and tracking at the incident perimeter –Smartcards printed with photo ID –Electronic authentication includes: Fingerprint biometric Identity certificate issued by State of Illinois PKI Signed certifications (team, weapons, hazmat)

9 1/13/05NCASSR PNNL Visit9 ITTF System Components Secure Web Portal –Enroll team members and manage certifications –Activate credentials and update credential data Card Management System –Print and issue cards Field Application –Laptop with smartcard/fingerprint reader –Verify identity with photo and fingerprint scan –Confirm certifications –Track incident check-in/check-out

10 1/13/05NCASSR PNNL Visit10 ITTF Project Scope 5,000 initial credentials for pilot project Plan to grow to 100,000 credentials –Every Illinois firefighter, police officer, EMT –Pre-certified volunteers (Red Cross, etc.) Design for general-purpose statewide use –Secure building and computer system access –Interoperability with Federal standards

11 1/13/05NCASSR PNNL Visit11 ITTF Project Roles ITTF: project management Entrust: main project contractor University of Illinois at Chicago: smartcard requirements development NCSA: acceptance testing and consulting on system design

Download ppt "1/13/05NCASSR PNNL Visit1 Security Tools Area Overview, Credential Management Services, and the PKI Testbed Jim Basney Senior Research Scientist"

Similar presentations

Cerner Presentation to S&I esMD Workgroup – Industry Scan

Cerner Presentation to S&I esMD Workgroup – Industry Scan
Single Sign-On with GRID Certificates Ernest Artiaga (CERN – IT) GridPP 7 th Collaboration Meeting July 2003 July 2003.

Single Sign-On with GRID Certificates Ernest Artiaga (CERN – IT) GridPP 7 th Collaboration Meeting July 2003 July 2003.
Mobile Devices in the DoD

Mobile Devices in the DoD
Overview of US Federal Identity Management Initiatives Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority and Asst. CIO E-Authentication, NIH.

Overview of US Federal Identity Management Initiatives Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority and Asst. CIO E-Authentication, NIH.
MyProxy: A Multi-Purpose Grid Authentication Service

MyProxy: A Multi-Purpose Grid Authentication Service
1 GPO PKI – Getting Started U.S. Government Printing Office May 20, 2011.

1 GPO PKI – Getting Started U.S. Government Printing Office May 20, 2011.
© Southampton City Council Sean Dawtry – Southampton City Council The Southampton Pathfinder for Smart Cards in public services.

© Southampton City Council Sean Dawtry – Southampton City Council The Southampton Pathfinder for Smart Cards in public services.
15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.

15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.
FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.

FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.
SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.

SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.
Certification Authority. Overview  Identifying CA Hierarchy Design Requirements  Common CA Hierarchy Designs  Documenting Legal Requirements  Analyzing.

Certification Authority. Overview  Identifying CA Hierarchy Design Requirements  Common CA Hierarchy Designs  Documenting Legal Requirements  Analyzing.
“Personal Identity Verification (PIV) of Federal Employees and Contractors” October 27, 2005 Homeland Security Presidential Directive 12 (HSPD-12)

“Personal Identity Verification (PIV) of Federal Employees and Contractors” October 27, 2005 Homeland Security Presidential Directive 12 (HSPD-12)
Department of Labor HSPD-12

Department of Labor HSPD-12
Cross Platform Single Sign On using client certificates Emmanuel Ormancey, Alberto Pace Internet Services group CERN, Information Technology department.

Cross Platform Single Sign On using client certificates Emmanuel Ormancey, Alberto Pace Internet Services group CERN, Information Technology department.
Lecture 23 Internet Authentication Applications

Lecture 23 Internet Authentication Applications
FICAM Testing Program For more information, please contact GSA-FICAM- The FIPS 201 Evaluation Program is now the FICAM Testing.

FICAM Testing Program For more information, please contact GSA-FICAM- The FIPS 201 Evaluation Program is now the FICAM Testing.
U.S. Environmental Protection Agency Central Data Exchange EPA E-Authentication Pilot NOLA Network Node Workshop February 28, 2005.

U.S. Environmental Protection Agency Central Data Exchange EPA E-Authentication Pilot NOLA Network Node Workshop February 28, 2005.
National Center for Supercomputing Applications Integrating MyProxy with Site Authentication Jim Basney Senior Research Scientist National Center for Supercomputing.

National Center for Supercomputing Applications Integrating MyProxy with Site Authentication Jim Basney Senior Research Scientist National Center for Supercomputing.
National Center for Supercomputing Applications PKI and CKM ® Scaling Study NCASSR Kick-off Meeting June 11-12, 2003 Jim Basney

National Center for Supercomputing Applications PKI and CKM ® Scaling Study NCASSR Kick-off Meeting June 11-12, 2003 Jim Basney
© Southampton City Council Sean Dawtry – Southampton City Council Implementing a PKI The Southampton Pathfinder for Smart Cards in public services.

© Southampton City Council Sean Dawtry – Southampton City Council Implementing a PKI The Southampton Pathfinder for Smart Cards in public services.

Similar presentations

Ads by Google