Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Washington Integrated Justice Information Board December 20, 2005 Scott Bream Department of Information Services Justice Information Network Data Exchange.

Published byCleopatra Manning Modified over 8 years ago

Similar presentations

Presentation on theme: "1 Washington Integrated Justice Information Board December 20, 2005 Scott Bream Department of Information Services Justice Information Network Data Exchange."— Presentation transcript:

1 1 Washington Integrated Justice Information Board December 20, 2005 Scott Bream Department of Information Services Justice Information Network Data Exchange (JINDEX) Security and Business Requirements

2 2  Decision to move PCH/CACH application to production warranted review of security and authentication requirements.  Production security requirements are more rigorous than pilot security requirements.  Need to provide additional identifiers will require modification to King and Yakima County applications.  Need to provide multiple authentication requirements over time will require need for constant re-coding and will prevent JINDEX from scaling. Issues

3 3  Assumed that consuming entities (King and Yakima Counties) would be responsible and liable for allowing only authorized users access.  King and Yakima Counties would be required to pass only their agency identifiers to back-end providers.  Trust from consuming entities would be preserved through encrypted messaging between trusted servers.  JINDEX will act primarily as a messaging switch, passing through the required credentials. Pilot Authentication Requirements

4 4 WSP AOC King County Yakima County Yakima Co. ORI Yakima Co. RAFC ID King Co. ORI King Co. RACF ID King Co. ID Burien Police King Co. ID Seattle Police Yakima Co. ID City of Othello Yakima Co. ID Yakima Police WSP ACCESS User Agreement AOC User Agreement AOC User Agreement TRUST King Co. RACF ID Yakima Co. RAFC ID IGN King Co. ORI Yakima Co. ORI Pilot Authentication Model

5 5  Based on production requirements established by WSP and AOC.  Requires input of end-user identifier in addition to consuming entity identifier.  Creates need for King and Yakima Counties to modify applications.  Becomes more complex as application grows.  Not consistent with scalable, highly secure, re-usable Web Services best practices. Provider-Driven Production Authentication Model

6 6 WSP AOC King County Yakima County + King Co. ID + Yakima Co. ID Burien Police Seattle Police City of Othello Yakima Police WSP ACCESS User Agreement AOC User Agreement AOC User Agreement Provider-Driven Production Authentication Model Burien Police ORI Seattle Police ORI Yakima Police ORI Othello PD ORI Yakima Police RACF Othello PD RACF Seattle Police RACF Burien Police RACF Yakima Co. ORI Yakima Co. RAFC ID Yakima Police ORI Yakima Police RACF IGN King Co. ORI Yakima Co. ORI Seattle Police RACF Yakima Police ORI King Co. ORI King Co. RACF Seattle Police ORI King Co. RACF Yakima Co. RACF Seattle PD RACF Yakima Police RACF WSP ACCESS User Agreement AOC User Agreement

7 7 Input and Discussion Washington State Patrol and Administrative Office of the Courts will provide input on authentication requirements and impacts on code and scalability.

8 8  Assumes that consuming entities would be responsible and liable for allowing only authorized users access.  Envisions creation of a centralized registration service for each consuming entity that identifies those data-providers to which they have been granted access.  Would change the role of the JINDEX from simple message broker to trusted agent.  Will require the creation of new JINDEX services outside the scope of the current contract with Online Business Systems. Possible JINDEX Authentication Model

9 9 WSP AOC King County Yakima County Yakima Co. Server ID King Co. Server ID King Co. ID Burien Police King Co. ID Seattle Police Yakima Co. ID City of Othello Yakima Co. ID Yakima Police WSP ACCESS User Agreement AOC User Agreement AOC User Agreement TRUST JINDEX ORI Possible Centralized Authentication Model WSP ACCESS Add-User Agreement AOC Add-User Agreement DOL Add-User Agreement DOL User Agreement JINDEX RACF ID DOL JINDEX DOL ID TRUST JINDEX Validation Service WSDOT - Yakima Co. - King Co. - DOL WSP AOC DOL WSP

10 10 Questions? Scott Bream, DIS scott@dis.wa.gov (360) 902-3460

Download ppt "1 Washington Integrated Justice Information Board December 20, 2005 Scott Bream Department of Information Services Justice Information Network Data Exchange."

Similar presentations

Using PHINMS and Web-Services for Interoperability The findings and conclusions in this presentation are those of the author and do not necessarily represent.

Using PHINMS and Web-Services for Interoperability The findings and conclusions in this presentation are those of the author and do not necessarily represent.
RBAC and HIPAA Security Uday O. Ali Pabrai, CHSS, SCNA Chief Executive, HIPAA Academy.

RBAC and HIPAA Security Uday O. Ali Pabrai, CHSS, SCNA Chief Executive, HIPAA Academy.
SAML CCOW Work Item: Task 2

SAML CCOW Work Item: Task 2
Illinois Justice Network Portal Implementation Board Meeting February 11, 2004.

Illinois Justice Network Portal Implementation Board Meeting February 11, 2004.
NRL Security Architecture: A Web Services-Based Solution

NRL Security Architecture: A Web Services-Based Solution
SECTOR SYSTEM OVERVIEW For Local Agency System Administrators (LASA) and Information Technology Specialists.

SECTOR SYSTEM OVERVIEW For Local Agency System Administrators (LASA) and Information Technology Specialists.
Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.

Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.
Defining the Security Domain Marilu Goodyear John H. Louis University of Kansas.

Defining the Security Domain Marilu Goodyear John H. Louis University of Kansas.
Secure Sockets Layer eXtended (SSLX) Next Generation Internet Security Overview Presentation April 2011.

Secure Sockets Layer eXtended (SSLX) Next Generation Internet Security Overview Presentation April 2011.
Jennifer Hlad, LEDS & OUCR Trainer LASO 101 – 2013 OREGON STATE POLICE LAW ENFORCEMENT DATA SYSTEMS CRIMINAL JUSTICE INFORMATION SERVICES DIVISION.

Jennifer Hlad, LEDS & OUCR Trainer LASO 101 – 2013 OREGON STATE POLICE LAW ENFORCEMENT DATA SYSTEMS CRIMINAL JUSTICE INFORMATION SERVICES DIVISION.
Electronic Submission of Medical Documentation (esMD) for Medicare FFS Presentation to HITSC Provenance Workgroup January 16, 2015.

Electronic Submission of Medical Documentation (esMD) for Medicare FFS Presentation to HITSC Provenance Workgroup January 16, 2015.
International City/County Management Association, 2001 September 23, 2001 Develop new models of how things work. Reinvent service delivery from the customer.

International City/County Management Association, 2001 September 23, 2001 Develop new models of how things work. Reinvent service delivery from the customer.
Lecture 23 Internet Authentication Applications

Lecture 23 Internet Authentication Applications
Authentication & Kerberos

Authentication & Kerberos
U.S. Department of Agriculture eGovernment Program February 2004 eAuthentication Integration Status eGovernment Program.

U.S. Department of Agriculture eGovernment Program February 2004 eAuthentication Integration Status eGovernment Program.
Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.

Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.
Exchange Network Key Management Services A Security Component February 28, 2005 The Exchange Network Node Mentoring Workshop.

Exchange Network Key Management Services A Security Component February 28, 2005 The Exchange Network Node Mentoring Workshop.
CSI 400/500 Operating Systems Spring 2009 Lecture #20 – Security Measures Wednesday, April 29 th.

CSI 400/500 Operating Systems Spring 2009 Lecture #20 – Security Measures Wednesday, April 29 th.
SACMAT02-1 Security Prototype Defining a Signature Constraint.

SACMAT02-1 Security Prototype Defining a Signature Constraint.
1 Procurement Reform Project January 14, 2009 Presented by: Christine Warnock, CPPO, CPPB State Purchasing Agent.

1 Procurement Reform Project January 14, 2009 Presented by: Christine Warnock, CPPO, CPPB State Purchasing Agent.

Similar presentations

Ads by Google