Privacy, Security, and Identity Management Update

Slides:



Advertisements
Similar presentations
Single Sign-On and Federated Authentication at NIH and Beyond
Advertisements

Appropriate Access InCommon Identity Assurance Profiles David L. Wasley Campus Architecture and Middleware Planning workshop February 2008.
Overview of US Federal Identity Management Initiatives Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority and Asst. CIO E-Authentication, NIH.
Levels of Assurance: An Overview Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority.
TFTM Interim Trust Mark/Listing Approach Paper Discussion Deck TFTM Committee IDESG Plenary Meeting January 14, IDESG TFTM Committee1.
Going for the Silver Winter 2010 CSG January 13, 2010.
15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.
Federal Risk and Authorization Management Program (FedRAMP) Lisa Carnahan, Computer Scientist National Institute of Standards & Technology Standards Coordination.
FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.
IDESG Goals & Work-plans for 2013 and beyond Brett McDowell IDESG Management Council Chair
“Personal Identity Verification (PIV) of Federal Employees and Contractors” October 27, 2005 Homeland Security Presidential Directive 12 (HSPD-12)
Helena Sims NACHA – The Electronic Payments Association Overview of The Electronic Authentication Partnership Tenth Federal & Higher Education PKI Coordination.
The SAFE-BioPharma Identity Proofing Process Author of Record SWG (Digital Credentials) October 3, 2012 Peter Alterman, Ph.D. Chief Operating Officer,
DNSSEC & Validation Tiger Team DHS Federal Network Security (FNS) & Information Security and Identity Management Committee (ISIMC) Earl Crane Department.
Update on federations, PKI, and federated PKI for US feds and higher eds Tom Barton University of Chicago.
1 Trust Framework Portable Identity Schemes Trust Framework Portable Identity Schemes NIH iTrust Forum December 10, 2009 Chris Louden.
The U.S. Federal PKI and the Federal Bridge Certification Authority
EDUCAUSE Fed/Higher ED PKI Coordination Meeting
1 eAuthentication in Higher Education Tim Bornholtz Session #47.
Emergence of Identity Management: A Federal Perspective Dr. Peter Alterman Chair, Federal PKI Policy Authority.
Federated Identity, Levels of Assurance, and the InCommon Silver Certification Jim Green Identity Management Academic Technology Services © Michigan State.
NIH iTrust Peter Alterman/Debbie Bucci National Institutes of Health October 2010.
Single Sign-On, Federated Authentication and Beyond at NIH Dr. Peter Alterman National Institutes of Health.
The E-Authentication Initiative An Overview Peter Alterman, Ph.D. Assistant CIO for e-Authentication, NIH and Chair, Federal PKI Policy Authority The E-Authentication.
©2005 KPMG LLP, the U.S. member firm of KPMG International, a Swiss cooperative. All rights reserved. July 27, 2005 PKI Audits and Assessments “Another.
Introduction to OIX: A Market Solution to Online Identity Trust Don Thibeau.
Identity Management 2.0 George O. Strawn NSF CIO.
National Science Foundation Chief Information Officer CIO Fall Update for the Advisory Committee for Business and Operations: Identity Management 2.0 George.
The InCommon Federation The U.S. Access and Identity Management Federation
Federations 101: The U.T. System Identity Management Federation Internet2 Member Meeting Fall 2006 Paul Caskey.
1 EAP and EAI Alignment: FiXs Pilot Project December 14, 2005 David Temoshok Director, Identity Policy and Management GSA Office of Governmentwide Policy.
ITU-T X.1254 | ISO/IEC An Overview of the Entity Authentication Assurance Framework.
E-Authentication: Enabling E-Government Presented to PESC May 2, 2005 The E  Authentication Initiative.
E-Authentication: Simplifying Access to E-Government Presented at the PESC 3 rd Annual Conference on Technology and Standards May 1, 2006.
Ning Zhang, the University of Manchester, UK David Groep, National Institute for Nuclear and High Energy Physics, NL Blair Dillaway, OGF Security Area.
Identity Assurance: When it Matters David L. Wasley Internet2 / InCommon.
HSPD-12 Identity Management Initiative Carol Bales Senior Policy Analyst United States Office of Management and Budget North American Day 2006.
PKI and the U.S. Federal E- Authentication Architecture Peter Alterman, Ph.D. Assistant CIO for e-Authentication National Institutes of Health Internet2.
The Federal Bridge A Brief Overview 1. 4BF Industry Forum April Fed PKI: View from 20,000 km FBCA C4 Common Policy CA (HSPD-12) CertiPath SSPs.
The privacy risks and rewards of distributed identity Conference Presentation (8 September 2003) Surveillance and Privacy 2003, University of New South.
The InCommon Federation The U.S. Access and Identity Management Federation
Federated Authentication at NIH: Trusting External Credentials at Known Levels of Assurance Debbie Bucci and Peter Alterman November, 2009.
“Trust me …” Policy and Practices in PKI David L. Wasley Fall 2006 PKI Workshop.
The Feds and Shibboleth Peter Alterman, Ph.D. Asst. CIO, E-Authentication National Institutes of Health.
Identity Federations and the U.S. E-Authentication Architecture Peter Alterman, Ph.D. Assistant CIO, E-Authentication National Institutes of Health.
1 Federal Identity Management Initiatives Federal Identity Management Initatives David Temoshok Director, Identity Policy and Management GSA Office of.
Identity Federations: Here and Now David L. Wasley Thomas Lenggenhager Peter Alterman John Krienke.
Electronic Security and PKI Richard Guida Chair, Federal PKI Steering Committee Chief Information Officers Council
National Institutes of Health Interfederation Initiatives Peter Alterman, Ph.D. Assistant CIO for e-Authentication.
E-Authentication briefing for 11th Fed/Ed PKI Meeting Thursday June 16th, 2005.
Federal Preparedness Credentialing & Typing. H.R. 1 - Requirement Title IV of the “Implementing Recommendations of the 9/11 Commission Act of 2007” directs.
Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority Meet FedFed.
Federal Identity Management Overview and Current Status Dr. Peter Alterman, Chair Federal PKI Policy Authority.
10/08/20041 © 2004 Pete Palmer Federated Identity Management and Regional Health Information Organizations Pete Palmer, Principal Security Analyst, Guidant.
Federal Initiatives in IdM Dr. Peter Alterman Chair, Federal PKI Policy Authority.
The Federal E-Authentication Initiative David Temoshok Director, Identity Policy GSA Office of Governmentwide Policy February 12, 2004 The E-Authentication.
E-Authentication Guidance Jeanette Thornton, Office of Management and Budget “Getting to Green with E-Authentication” February 3, 2004 Executive Session.
LoA In Electronic Identity Jasig Dallas Levels of Assurance In Electronic Identity Considerations for Implementation Benjamin Oshrin Rutgers University.
EAuthentication – Update on Federal Initiative Jacqueline Craig IR&C September 27, 2005.
Higher Education’s Role in the Identity Ecosystem
Gunnar Vaht Head of the Estonian ENIC/NARI Baku, 2017
U.S. Federal e-Authentication Initiative
EDUCAUSE Fed/Higher ED PKI Coordination Meeting
Technical Approach Chris Louden Enspier
The E-Authentication Initiative
The E-Authentication Initiative
Appropriate Access InCommon Identity Assurance Profiles
A Quick Tour of the FIPS 201 Revision
4th Annual Conference on Technology and Standards Washington
Baseline Expectations for Trust in Federation
Presentation transcript:

Privacy, Security, and Identity Management Update Peter Alterman, Ph.D. Deputy Associate Administrator for Technology Strategy General Services Administration

Plus ca change, plus ca le meme chose Carrying On: U.S. Federal Government restated its commitment to OMB M 04-04, et. Seq. Four Assurance Levels Linking risk levels to trust levels Relying on NIST SP 800-63 for technology implementation guidance Existing Policies Privacy Act FISMA Section 508 (accessibility) Federal Procurement Regulations

And yet, all existence is change Consolidation of all USG Information Security and Identity Management initiatives under the Information Security and Identity Management Committee (iSIMC) of the Federal CIO Council E-Authentication policy and oversight, Federal PKI and HSPD-12 credentialing consolidated into a single program under the Identity Credentialing and Access Management (ICAM) Subcommittee Other subcommittees addressing various Infosec issues, including national security issues (say no more… some things never change)

What does this all mean? IdM architecture refresh – all levels and all technologies Credential assessment framework refresh with Liberty Alliance Identity Assurance Expert Group for AL 1 & 2 and non-PKI AL 3 Revitalized interfederation initiatives FISMA – ISO harmonization for security management Expansion of available online Federal applications HSPD-12 “compatible” policy for private sector CSPs serving First Responders (FRAC), Transportation Workers (TWIC), Airport Workers (ACIS) and general interoperability with high assurance Federal sector

Private Sector Uptake Liberty Alliance Identity Assurance Framework HSPD-12-interoperable high assurance credentials from trusted third parties: VeriSign and Verizon Business Services

Of Particular Interest to Researchers NIH now accepts identity credentials from InCommon university members for access to a variety of online apps; electronic grants (eRA) slated for link-up in calendar 2009 NSF building linkages to accept identity credentials from InCommon university members for access to FastLane Academic researchers under contract to Federal Agencies may be subject to the requirements of HSPD-12, that is, the requirement for a background check and use of a high assurance identity credential

For Further Information Peter.alterman@gsa.gov www.estrategy.gov

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.