Presentation is loading. Please wait.

Presentation is loading. Please wait.

Tech Day VI SECURITY POLICIES AND PROCEDURES PANEL DISCUSSION Joint DSIC, TBPT, CTMS Meeting Natcher Building, National Institutes of Health (NIH) 45 Center.

Published byErica Woods Modified over 8 years ago

Similar presentations

Presentation on theme: "Tech Day VI SECURITY POLICIES AND PROCEDURES PANEL DISCUSSION Joint DSIC, TBPT, CTMS Meeting Natcher Building, National Institutes of Health (NIH) 45 Center."— Presentation transcript:

1 Tech Day VI SECURITY POLICIES AND PROCEDURES PANEL DISCUSSION Joint DSIC, TBPT, CTMS Meeting Natcher Building, National Institutes of Health (NIH) 45 Center Drive, Bethesda, Maryland November 29, 2006

2 Tech Day VI Session Goals  Examine current security management, policy, procedure assumptions  Clarify where outstanding issues are in major workspaces  Discuss how current architecture and security project data from IRB interviews supports  One to two actionable items if possible

3 Tech Day VI Agenda  Key drivers –Frank Manion, FCCC  Tissue Banks –Jack London, TJU  Clinical Trials –Warren Kibbe, Northwestern –Susan Pannoni, CoH  Patient Advocates –Diane Paul  Technology Policy and Trust Management –Bill Weems, UTHSC –Chris Loudon, Federal e-Authentication project/Enspire Technologies  Q&A – 20 minutes  Recap – capture and validate the notes derived from the audience

4 Tech Day VI Policy Models  Effective collaboration in a federation requires –Data standards for authentication –Data standards for authorization –Standardization of policy models  All current grids/federations have policy models for –Identity/Certificate issuance (trust fabric maintenance) –Attribute release policies (required for authorization, implication for privacy) –Authorization/Entitlement issuance (conditions and mechanisms for authorization) –Security Incident handling (trust fabric maintenance)  These are being standardized according to policy frameworks for both secure operation and to allow federations to inter-operate –Most built on RFC 2527 –Newer, more robust framework is RFC 3647 reviewed by American Bar Association

5 Tech Day VI Policy Decisions  Do we have an appropriate model of authentication –Strong identity vetting across all workspaces?  Same for authorization –Static versus dynamic roles  Are current processes sufficient for binding authorization to data objects  Are current development processes sufficient –Should there be a security/policy review group  Operating models for trust maintenance –Risk assessment –Accountability

6 Tech Day VI TBPT Jack London, TJU

7 Tech Day VI General caBIG Security Framework  Authentication will be an institutional responsibility.  Authorization will be application and institution specific.  Overall governance will be on a grid level, with institutional participation.

8 Tech Day VI TBPT-Specific Security Issues  Currently, mandated security for biorepositories relates to the protection of privacy of the data characterizing the biospecimens, not the biospecimens themselves.  Conceivably the identifying potential of the biospecimen genetic material may lead to future security issues relating to the material itself, as well as the annotation.

9 Tech Day VI TBPT-Specific Security Issues  Within an institution, authorization may be a function of the “instance” of an application. –Separate tumor banks often exist within one institution (created and maintained by different departments or investigators). –Different instances of the same application may be necessitated by a need for different authorizations, e.g., An investigator may be an “honest broker” for his breast tissue bank, but a “researcher” for someone else’s prostate bank.

10 Tech Day VI CTMS Susan Pannoni City of Hope National Medical Center spannoni@coh.org Warren Kibbe Robert H. Lurie Comprehensive Cancer Center Northwestern University wakibbe@northwestern.edu

11 Tech Day VI Purpose of CTMS WS The Clinical Trial Management Systems Workspace is developing a comprehensive set of modular, interoperable and standards based tools designed to meet the diverse clinical trials management needs of the Cancer Center community. The tools developed will be configurable to meet the needs of Cancer Centers with little or no clinical data management systems in place as well as those with robust systems, and will take into account the diversity of clinical research activities and local practices that exist among these Cancer Centers. Purpose of CTMS WS The Clinical Trial Management Systems Workspace is developing a comprehensive set of modular, interoperable and standards based tools designed to meet the diverse clinical trials management needs of the Cancer Center community. The tools developed will be configurable to meet the needs of Cancer Centers with little or no clinical data management systems in place as well as those with robust systems, and will take into account the diversity of clinical research activities and local practices that exist among these Cancer Centers.

12 Tech Day VI CTMS Data Considerations Secure Information Held Locally − Protect Patient Health Information − Protect Scientific Findings until Publication − Traceable provenance and access Information Distributed on an As-Needed Basis − Protocol Specific Sharing/Export of Data to Cooperative Group, Coordinating Center or Pharmaceutical Sponsor − Regulatory Reporting − Patients are now Active Consumers of Health Care and Research rather than Passive Recipients

13 Tech Day VI General caBIG Security Framework  Authentication will be an institutional responsibility.  Authorization will be application and institution specific.  Authorization needs to be data-driven: Roles are dependent on the protocol and the organizational source of the data. Needs to accommodate Pharma, NCI, and cooperative group studies. Protocol Based Security (restrict access to clinicians and research staff involved with the study) Role Based Security (DSMB, IRB, Quality Assurance) Institutional Security (for Multi-Center/Consortium trials)  Overall governance will be on a grid level, with institutional participation. Centralized Management of Standard Code Lists “Pushed Out” to Adopters of caBIG Modules Sponsors able to “Push Out” Protocol Information to Eliminate Duplicate Entry and Errors

14 Tech Day VI Administration of Identity  Probably will vary from Institution to Institution  Most Larger Institutions have a Division/Department Responsible for Clinical Trials Management  Security for Financial Billing or Protocol Authoring may be Managed by a Different Group  May leverage Shibboleth or LDAP for institutional authentication and authorization

15 Tech Day VI Patient Advocates Diane Paul

16 Tech Day VI Vulnerabilities  Loose Lips Sink Ships  OR HOW COMMON IS COMMON SENSE?

17 Tech Day VI  WHO HOLDS THE KEYS TO THE KINGDOM? Vulnerabilities

18 Tech Day VI  WHOSE DATA IS IT ANYWAY? Vulnerabilities

19 Tech Day VI Technology Policy & Trust Management William Weems, UT Health Science Ctr Chris Louden, Enspier Technologies representing Federal Govt. e-Authentication

20 Tech Day VI Identity Management for caBIG Identity management (IdM) is critical to the operation of the Cancer Biomedical Information Grid (caBIG) if it is to enable seamless, secure collaborative research among individuals using restricted resources operated by numerous organizations. caBIG member institutions must agree upon a shared trust fabric for identity management. Individuals affiliated with member institutions must have certified identities that permit relying caBIG applications and personnel to  authenticate the certified physical identity of a credentialed claimant  to determine from trusted attribute authorities (AA) if an authenticated claimant has the appropriate identity attributes to –access restricted resources at a defined level of authorization, and/or –provision approved restricted resources with certain identity information.

21 Tech Day VI Key Concepts  Two types of identity 1.Physical identity is unique to only one person (Responsibility of the credentialing authority) 2.Personal attributes. Each attribute is usually not unique to a single individual. (Generally the validity of these attributes are managed by many sources of authority (SOAs) and systems of records (SORs). They are often referred to as authorization attributes.) Examples a.entitlements, b.memberof, c.roles, d.potentially an infinite number of attributes managed by multiple SOAs within and external to an organization..

22 Tech Day VI Authentication Credential  Certifies at a known level of assurance (LOA) that the claimant presenting the credential is the certified entity. The certified credential must minimally –Positively identify the certifying authority (CA). –Positively identify a person whose physical identity was vetted –Provide a persistent unique identifier for the vetted person. –Provide a level of assurance that the credential is presentable only by the person it authenticates.

23 Tech Day VI Levels of Assurance (LOA)  The extent to which an electronic identity credential may be trusted to actually represent that the individual explicitly identified by the credential is the same person engaging in the electronic transaction with application, service or relying party. LOA is dependent of 1.trustworthiness of the identity proofing process, and 2.trustworthiness of the credential management function

24 Tech Day VI Authentication Policies & Procedures  Determine if IdM policies and procedures for identity vetting, registration, issuance of authentication credentials, and credential management will be based on an accepted body of standards. Adherence to the U.S. E- Authentication Standards, for example, will permit the use of authentication credentials provided by a number of trusted partners and will greatly facilitate a broad range of research, clinical and administrative collaborative efforts and requirements.  Decide if authentication credentials are to be used solely for access or also for digital signatures (It is recommended that credentials be capable of producing digital signatures.)  Decide if username/password credentials (e.g. E-authentication LOA 2) as well as cryptographic based credentials (e-authentication LOA 3 and 4) will be required.  Define what organization(s) will be the authentication credentialing/certifying authority or authorities.

25 Tech Day VI Federal Government Programs  Federal Public Key Infrastructure (FPKI) –High Assurance / Certificate Based Credentials –Federal Bridge Certificate Authority (FBCA) –Common Policy –Criteria Methodology (for Cross Certification) –Substantial Traction  E-Authentication –Federal Identity Federation –19 agencies, 6 IdPs, 32 enabled applications –Inter-federation pilot with inCommon Planned demo 12/4 in Chicago Internet2 fall member meeting –SAML product testing, member Acceptance Testing –67 New Applications planned for FY2007 –Trust Model  Homeland Security Presidential Directive 12 (HSPD-12) –Merges Logical and Physical Access into a single smart card –Required for federal employees and contractors See http://www.idmanagement.gov

26 Tech Day VI Federal PKI See http://www.cio.gov/fpkipa TAG PMA HEBCA?

27 Tech Day VI E-Authentication Trust Model 3. Establish technical assurance standards for e-credentials and credential providers (NIST Special Pub 800-63 Authentication Technical Guidance) 1. Establish e-Authentication risk and assurance levels for Governmentwide use (OMB M-04-04 Federal Policy Notice 12/16/03) 4. Establish methodology for evaluating credentials/providers on assurance criteria (Credential Assessment Framework) 2. Establish standard methodology for e-Authentication risk assessment (ERA) 5. Establish trust list of trusted credential providers for govt-wide (and private sector) use 6. Establish common business rules for use of trusted 3rd-party credentials See http://www.cio.gov/eauthentication

28 Tech Day VI HSPD-12  Policies / Standards –FIPS 201: Personal Identity Verification of Federal Employees and Contractors –SP 800-79: Guidelines for Certification and Accreditation –Many many more on card interfaces, cryptography, middleware http://csrc.nist.gov/piv-program/index.html See http://www.whitehouse.gov/news/releases/2004/08/20040827-8.html

29 Tech Day VI Q & A

30 Tech Day VI

31 Recommendations  Will need alternate/interim policy frameworks for first drafts –Suggestions for using Teragrid policies Uses ISO 17799:2005 and RFC 3647 Will point to general policy statements –Will not provide “trust” –What matters will be what is in, what is not  Will need to grapple with the issues of identity management project wide  Will need to grapple with assignment of authorization attributes on data objects in the data model  Risk assessment methodologies should be used for policy development  Policy frameworks and development methods such as ISO/IEC 17799 and COBIT v4 should be used to help define security and policy work  Still need broader, cross-domain consensus on a security model or models –Convene a cross project working group

32 Tech Day VI

33 General caBIG Security Framework  Authentication will be an institutional responsibility.  Authorization will be application and institution specific.  Overall governance will be on a grid level, with institutional participation. Note: Within an enterprise, authentication, authorization, and overall governance are often operated in a coordinated manner, by the same administrative unit, with no effort to distinguish among them or to establish clear boundaries between them. On the grid these will certainly be administered separately, often by different organizations that are not accountable to each other, or to a common authority. Decomposing security functions into logically separable activities, then designing security operations and policies in a way that allows sensible interoperation among the different components is substantially more complex than simply extending an enterprise model to a multi-site environment.

34 Tech Day VI TBPT-Specific Security Issues  Currently, mandated security for biorepositories relates to the protection of privacy of the data characterizing the biospecimens, not the biospecimens themselves.  Conceivably the identifying potential of the biospecimen genetic material may lead to future security issues relating to the material itself, as well as the annotation.  For example, in forensics, biological evidence (fingerprints or DNA samples) is considered a more reliable identifier than written records. In principle, DNA from a biospecimen could be used to identify the donor as effectively as DNA evidence can be used in forensic analysis. As DNA analysis continues to drop in cost and complexity, it is very likely that concern will begin to mount about the inherent, irremediable identifiability within any biospecimen.

35 Tech Day VI

Download ppt "Tech Day VI SECURITY POLICIES AND PROCEDURES PANEL DISCUSSION Joint DSIC, TBPT, CTMS Meeting Natcher Building, National Institutes of Health (NIH) 45 Center."

Similar presentations

Open Grid Forum 19 January 31, 2007 Chapel Hill, NC Stephen Langella Ohio State University Grid Authentication and Authorization with.

Open Grid Forum 19 January 31, 2007 Chapel Hill, NC Stephen Langella Ohio State University Grid Authentication and Authorization with.
Implementing Federated Identity Management across a Multi-campus Statewide System: The Texas Experience William A. Weems Assistant Vice President Academic.

Implementing Federated Identity Management across a Multi-campus Statewide System: The Texas Experience William A. Weems Assistant Vice President Academic.
TISSUE BANKING Challenging to Say the Least

TISSUE BANKING Challenging to Say the Least
Overview of US Federal Identity Management Initiatives Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority and Asst. CIO E-Authentication, NIH.

Overview of US Federal Identity Management Initiatives Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority and Asst. CIO E-Authentication, NIH.
The Need for Trusted Credentials Information Assurance in Cyberspace Mary Mitchell Deputy Associate Administrator Office of Electronic Government & Technology.

The Need for Trusted Credentials Information Assurance in Cyberspace Mary Mitchell Deputy Associate Administrator Office of Electronic Government & Technology.
EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.

EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.
The Federation for Identity and Cross-Credentialing Systems (FiXs) www.FiXs.org FiXs ® - Federated and Secure Identity Management in Operation Implementing.

The Federation for Identity and Cross-Credentialing Systems (FiXs) FiXs ® - Federated and Secure Identity Management in Operation Implementing.
15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.

15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.
1 1 A Synopsis of Federal Information Processing Standard (FIPS) 201 for Personal Identity Verification (PIV) of Federal Employees and Contractors Presentation.

1 1 A Synopsis of Federal Information Processing Standard (FIPS) 201 for Personal Identity Verification (PIV) of Federal Employees and Contractors Presentation.
FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.

FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.
“Personal Identity Verification (PIV) of Federal Employees and Contractors” October 27, 2005 Homeland Security Presidential Directive 12 (HSPD-12)

“Personal Identity Verification (PIV) of Federal Employees and Contractors” October 27, 2005 Homeland Security Presidential Directive 12 (HSPD-12)
NCI Enterprise Security Program

NCI Enterprise Security Program
Update on federations, PKI, and federated PKI for US feds and higher eds Tom Barton University of Chicago.

Update on federations, PKI, and federated PKI for US feds and higher eds Tom Barton University of Chicago.
Security Controls – What Works

Security Controls – What Works
Dorian Grid Identity Management and Federation Dialogue Workshop II Edinburgh, Scotland February 9-10, 2006 Stephen Langella Department.

Dorian Grid Identity Management and Federation Dialogue Workshop II Edinburgh, Scotland February 9-10, 2006 Stephen Langella Department.
1 Trust Framework Portable Identity Schemes Trust Framework Portable Identity Schemes NIH iTrust Forum December 10, 2009 Chris Louden.

1 Trust Framework Portable Identity Schemes Trust Framework Portable Identity Schemes NIH iTrust Forum December 10, 2009 Chris Louden.
Federal Information Processing Standard (FIPS) 201, Personal Identity Verification for Federal Employees and Contractors Tim Polk May.

Federal Information Processing Standard (FIPS) 201, Personal Identity Verification for Federal Employees and Contractors Tim Polk May.
EDUCAUSE Fed/Higher ED PKI Coordination Meeting

EDUCAUSE Fed/Higher ED PKI Coordination Meeting
Office of the Chief Information Officer EFCOG Annual Meeting Fred Catoe (IM-32) U.S. Department of Energy.

Office of the Chief Information Officer EFCOG Annual Meeting Fred Catoe (IM-32) U.S. Department of Energy.
Emergence of Identity Management: A Federal Perspective Dr. Peter Alterman Chair, Federal PKI Policy Authority.

Emergence of Identity Management: A Federal Perspective Dr. Peter Alterman Chair, Federal PKI Policy Authority.

Similar presentations

Ads by Google