Presentation is loading. Please wait.

Presentation is loading. Please wait.

U.S. Environmental Protection Agency Central Data Exchange EPA E-Authentication Pilot NOLA Network Node Workshop February 28, 2005.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "U.S. Environmental Protection Agency Central Data Exchange EPA E-Authentication Pilot NOLA Network Node Workshop February 28, 2005."— Presentation transcript:

1 U.S. Environmental Protection Agency Central Data Exchange EPA E-Authentication Pilot NOLA Network Node Workshop February 28, 2005

2 January 19, 2005 2 E-Authentication Background - 1 What is E-Authentication? –E-Authentication is the process of confirming the identity of individuals who: want to access a computer system or network, or Create an electronic signature. –E-Authentication involves issuing/managing credentials (PIN, password, digital certificate, etc.) and validating them when they are presented by an individual for sign-on or signature

3 January 19, 2005 3 E-Authentication Background - 2 What is the Federal E-Authentication Initiative? –Vision: credential re-use across computer systems –Goal: minimize need for multiple credentials, reducing burden on anyone who uses government systems – federal employees businesses ordinary citizens state and local government officials –Other Benefits: Private/public sector interoperability Single sign-on Economies of scale – shared infrastructure for issuing, managing and validating credentials

4 January 19, 2005 4 E-Authentication Background - 3 What is the Federal E-Authentication Architecture? –Design to allow computer systems to accept credentials that they did not issue –General Services Administration (GSA) lead –Key components include: E-Authentication Portal GSA Step-Down Translator Federal Bridge Accredited Certificate Authorities –Two approaches PKI – Federal Bridge for Certificate Authority (CA) interoperability PINs/Passwords – Security Assertion Mark-up Language (SAML) architecture to protect secrecy of PIN or password

5 January 19, 2005 5 E-Authentication Background - 4 GSA’s Federal Bridge –An “authority” that establishes that a CA’s certificates can be “trusted” –A hardware / software system that helps users access CA information needed to validate a certificate GSA’s SAML Approach –Establishes “trust circles” between CA’s that issue PINs/Passwords (e.g. financial institutions) and government agencies that can rely on them –Provides architecture for E-Authentication based on SAML assertion from CA to relying government agency –Architecture includes E-Authentication Portal and Step-Down Translator

6 January 19, 2005 6 Network E-Authentication Pilot Overview An EPA/GSA partnership to show how States can use the Network to participate in E-Authentication architecture. Approach involves: –Integrating the Network with the GSA architecture; –Leveraging the Network’s E-Authentication interface to provide credential validation services to any State partner that can access the network; –States using the Network services to accept either PKI certificates or SAML assertions – for either system access or signature. The Pilot is currently in the planning and design phase. Completion is scheduled for October, 2005

7 January 19, 2005 7 Goals Show that the Network can: –Bring credential inter-operability to our State partners –Provide credential validation services to States that don’t want to invest in their own PKI or SAML functionality –Offer enormous economies of scale for E-Authentication Help States meet Cross-Media Electronic Reporting and Record-keeping Rule (CROMERRR) standards, by –Providing access to credentials that satisfy identity-proofing requirements, that States don’t have to issue/manage –Allowing use of digital signatures without States having to acquire their own PKI capabilities.

8 January 19, 2005 8 Requirements of States to Participate Ideally, participating States would have: – A Web browser-based application that requires user authentication, and would benefit by upgrading to SAML- or interoperable PKI-based authentication – 2 hours/week (Mar 05 – Oct 05) to invest in weekly work sessions – Up to 40-80 hours to upgrade their systems to interface with E- Authentication components Participants start by filling in a questionnaire to determine how well their application would fit into the Pilot EPA’s Office of Environmental Information (OEI) will provide participating States with all the software, credentials, and technical support they need for the Pilot

9 January 19, 2005 9 Benefits to Pilot Participants 1.Experience using CDX/E-Authentication services, with GSA-subsidized technical support, including access to designers of the E-Authentication infrastructure. 2.The chance to help shape how EPA/GSA offer E-Authentication services to States -- so that they take account of any special participant needs. 3.Information to help make better long-term system investment decisions, with a better understanding of the available E-Authentication options.

10 January 19, 2005 10 For more information, contact: David Schwarz 202-566-1704 Schwarz.david@epa.gov

Download ppt "U.S. Environmental Protection Agency Central Data Exchange EPA E-Authentication Pilot NOLA Network Node Workshop February 28, 2005."

Similar presentations

Using PHINMS and Web-Services for Interoperability The findings and conclusions in this presentation are those of the author and do not necessarily represent.

Using PHINMS and Web-Services for Interoperability The findings and conclusions in this presentation are those of the author and do not necessarily represent.
Experiences with Massive PKI Deployment and Usage Daniel Kouřil, Michal Procházka Masaryk University & CESNET Security and Protection of Information 2009.

Experiences with Massive PKI Deployment and Usage Daniel Kouřil, Michal Procházka Masaryk University & CESNET Security and Protection of Information 2009.
Levels of Assurance: An Overview Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority.

Levels of Assurance: An Overview Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority.
EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.

EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.
15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.

15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.
Public Key Infrastructure (PKI) Hosting Services.

Public Key Infrastructure (PKI) Hosting Services.
FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.

FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.
HIMSS/GSA E-Authentication Initiative A Pilot Project of the HIMSS RHIO Federation HIMSS Public Policy Forum September 28, 2006 Mary Grizkewicz, HIMSS.

HIMSS/GSA E-Authentication Initiative A Pilot Project of the HIMSS RHIO Federation HIMSS Public Policy Forum September 28, 2006 Mary Grizkewicz, HIMSS.
“Personal Identity Verification (PIV) of Federal Employees and Contractors” October 27, 2005 Homeland Security Presidential Directive 12 (HSPD-12)

“Personal Identity Verification (PIV) of Federal Employees and Contractors” October 27, 2005 Homeland Security Presidential Directive 12 (HSPD-12)
Helena Sims NACHA – The Electronic Payments Association Overview of The Electronic Authentication Partnership Tenth Federal & Higher Education PKI Coordination.

Helena Sims NACHA – The Electronic Payments Association Overview of The Electronic Authentication Partnership Tenth Federal & Higher Education PKI Coordination.
Lecture 23 Internet Authentication Applications

Lecture 23 Internet Authentication Applications
Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.

Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.
2006 © SWITCH Authentication and Authorization Infrastructures in e-Science (and the role of NRENs) Christoph Witzig SWITCH e-IRG, Helsinki, Oct 4, 2006.

2006 © SWITCH Authentication and Authorization Infrastructures in e-Science (and the role of NRENs) Christoph Witzig SWITCH e-IRG, Helsinki, Oct 4, 2006.
1 ARPA A regional infrastructure for secure role-based access to RTRT services Ing. Laura Castellani Tuscany Region.

1 ARPA A regional infrastructure for secure role-based access to RTRT services Ing. Laura Castellani Tuscany Region.
David L. Wasley Information Resources & Communications Office of the President University of California Directories and PKI Basic Components of Middleware.

David L. Wasley Information Resources & Communications Office of the President University of California Directories and PKI Basic Components of Middleware.
Dorian Grid Identity Management and Federation Dialogue Workshop II Edinburgh, Scotland February 9-10, 2006 Stephen Langella Department.

Dorian Grid Identity Management and Federation Dialogue Workshop II Edinburgh, Scotland February 9-10, 2006 Stephen Langella Department.
EDUCAUSE Fed/Higher ED PKI Coordination Meeting

EDUCAUSE Fed/Higher ED PKI Coordination Meeting
Office of the Chief Information Officer EFCOG Annual Meeting Fred Catoe (IM-32) U.S. Department of Energy.

Office of the Chief Information Officer EFCOG Annual Meeting Fred Catoe (IM-32) U.S. Department of Energy.
1 eAuthentication in Higher Education Tim Bornholtz Session #47.

1 eAuthentication in Higher Education Tim Bornholtz Session #47.
Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.

Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.

Similar presentations

Ads by Google