Presentation is loading. Please wait.

Presentation is loading. Please wait.

Paul D. Grant Special Assistant, Federated Identity Management and External Partnering Office of the DoD CIO Co-Chair, Identity, Credential.

Published byJase Loker Modified over 9 years ago

Similar presentations

Presentation on theme: "Paul D. Grant Special Assistant, Federated Identity Management and External Partnering Office of the DoD CIO Co-Chair, Identity, Credential."— Presentation transcript:

1 Paul D. Grant Paul.Grant@OSD.Mil Special Assistant, Federated Identity Management and External Partnering Office of the DoD CIO Co-Chair, Identity, Credential and Access Management Sub-Committee, Federal CIO Council www.IdManagement.Gov https://www.us.army.mil/suite/page/647425 ICAM is Executive Branch Implementation of the National Strategy for Trusted Identities in Cyberspace DoD ICAM Update For DoDAF Plenary Day 5 January 2012

2 UNCLASSIFIED 2 FICAM Key Components ICAM represents the intersection of digital identities, credentials, and access control into one comprehensive approach FICAM Service Areas  Digital Identity  Credentialing  Privilege Management  Authentication  Authorization & Access  Cryptography  Auditing and Reporting

3 Logical Access Physical Access UNCLASSIFIED 3 ICAM Scope PersonsNon-Persons Foundation for Trust and Interoperability in Conducting Electronic Transactions both within the Federal Government and with External Partners

4 4 Evolving FICAM Governance Structure UNCLASSIFIED

5 DoD is accepting approved IAL- 4 (Including PIV-I ) and approved PIV-I providers can be found at: http://iase.disa.mil/pki-pke/index.html http://iase.disa.mil/pki-pke/index.html DoD is drafting an approval process and implementation guidance for credentials approved through the Federal Trust Framework Process at IAL 1,2, and 3 (non-PKI) Federally approved providers and information about the TFPAP can be found at: http://idmanagement.gov/pages.cfm/ page/IDManagement-open-identity- solutions-for-open-government http://idmanagement.gov/pages.cfm/ page/IDManagement-open-identity- solutions-for-open-government 5 Non-Federally Issued Credentials and the DoD Trust Framework Provider UNCLASSIFIED

6 6 Reference Architectures in the DoD-CIO Campaign Plan The DoD CIO Campaign Plan calls for the creation of reference architectures: Task 3.1.1.4 Publish the DoD ICAM Reference Architecture. Task 1.2.6.2 Develop and publish the Identity Management Reference Architecture. These two tasks will be combined into one ICAM/IdAM reference architecture within the DoD Enterprise Architecture All systems and applications will need to align with this reference architecture UNCLASSIFIED

7 DoD ICAM Target State: Dynamic Access Control UNCLASSIFIED 7 Resource Management Policy Decision Point (PDP) Policy Decision Point (PDP) Resource Policy Enforcement Point (PEP) Policy Enforcement Point (PEP) Environmental Factors (e.g., DEFCON, INFOCON, Etc.) Policy-Based Authorization Services Policy Store Policy Store Resource Attribute Management Audit Management Authenticate Identity Management Identity & Credential Management Policy Management Digital Policy Management Credential Management User/Device Attribute Management User/Device

8 8 Summary and Next Steps The DoD Has provided leadership in creating the Federal ICAM Is making progress on alignment with ICAM Is Producing the DoD ICAM Transition Plan Will Produce the ICAM/IdAM Reference Architecture ICAM/IdAM Message Must Be Clear, Consistent, Credible ICAM seeks increased DoD participation and leadership DoD applications Must Use Appropriate Level of Assurance Credentials ICAM Expects IAL-4 within the Executive Branch (i.e., PIV Cards) IAL- 2 – 4 from Non-Federal Issuers will be used based upon risk and mission The On-Going Work on Attribute Based and Policy Based Access Control is Increasingly Gaining Momentum UNCLASSIFIED

9 9 BACK UP FOLLOWS UNCLASSIFIED

10 Fed Bridge Status: http://www.idmanagement.gov/fpkia/crosscert.cfmhttp://www.idmanagement.gov/fpkia/crosscert.cfm Certipath Status: http://www.certipath.com/certipath-bridge/piv-i-issuers Interoperable @ test level; HE Bridge dormant Participants: AstraZeneca Bristol-Myers-Squibb Genzyme GlaxoSmithKline Johnson & Johnson Merck Nektar Organon Pfizer Procter & Gamble Roche Sanofi-Aventis Federal Bridge Certipath (Aero/Def) SAFE (Bio/Pharma) Higher Education Cross Certified: D of Defense D of Justice Gov Printing Office D of State D of Treasury USPS Patent & Trademark Ofc DHS State of Illinois DEA CSOS Credential Svc Providers: VeriSign Verizon Business Entrust ORC DoD ECAs (ORC, IdenTrust, VeriSign) ACES (IdenTrust & ORC) Participants Cross Certified: Boeing Lockheed Martin Northrop Grumman Raytheon EADS/Airbus MOD NL Credential Svc Providers: Exostar, SITA, ARINC, CitiBank, HID (ActivIdentity) BAE Systems (Exostar) Cross Certified at “Commercial Best Practices” Level Shared Service Providers VeriSign, Inc. Symantec Operational Research Consultants, Inc. The Department of the Treasury Entrust Managed Services U.S. Government Printing Office PKI Bridges Red: IAL-4 DoDI 8520.03 Federal Common Policy Root UNCLASSIFIED 10 Identity Federations (PKI Based)

Download ppt "Paul D. Grant Special Assistant, Federated Identity Management and External Partnering Office of the DoD CIO Co-Chair, Identity, Credential."

Similar presentations

PKI deployment in the Aerospace Industry

PKI deployment in the Aerospace Industry
Impact of Federal Health IT Priorities on FHA Strategic Plan

Impact of Federal Health IT Priorities on FHA Strategic Plan
Overview of US Federal Identity Management Initiatives Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority and Asst. CIO E-Authentication, NIH.

Overview of US Federal Identity Management Initiatives Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority and Asst. CIO E-Authentication, NIH.
EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.

EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.
Program Managers Forum

Program Managers Forum
2009 IT Summit Federal CIO Council Breakout Session #5 Identity and Access Management Federal IT Summit October 28, 2009 Moderator: Paul Christy, SBA Paul.

2009 IT Summit Federal CIO Council Breakout Session #5 Identity and Access Management Federal IT Summit October 28, 2009 Moderator: Paul Christy, SBA Paul.
TFTM 01-06 Interim Trust Mark/Listing Approach Paper Discussion Deck TFTM Committee IDESG Plenary Meeting January 14, 2014 1-14-2014IDESG TFTM Committee1.

TFTM Interim Trust Mark/Listing Approach Paper Discussion Deck TFTM Committee IDESG Plenary Meeting January 14, IDESG TFTM Committee1.
Federal PKI Architecture Update

Federal PKI Architecture Update
The Federation for Identity and Cross-Credentialing Systems (FiXs) www.FiXs.org FiXs ® - Federated and Secure Identity Management in Operation Implementing.

The Federation for Identity and Cross-Credentialing Systems (FiXs) FiXs ® - Federated and Secure Identity Management in Operation Implementing.
BENEFITS OF SUCCESSFUL IT MODERNIZATION

BENEFITS OF SUCCESSFUL IT MODERNIZATION
Federal ICAM Goals Fostering effective government-wide identity and access management Enabling trust in online transactions through common identity and.

Federal ICAM Goals Fostering effective government-wide identity and access management Enabling trust in online transactions through common identity and.
Certificate Interoperability S&I Framework Initiative Final Report August 17, 2011.

Certificate Interoperability S&I Framework Initiative Final Report August 17, 2011.
The 4BF The Four Bridges Forum Federated PACS A Physical Access Use Case for Bridges FIPS 201/PIV-I PACS Interoperability April 28 th, 2009.

The 4BF The Four Bridges Forum Federated PACS A Physical Access Use Case for Bridges FIPS 201/PIV-I PACS Interoperability April 28 th, 2009.
SAFE-BioPharma Association NSTIC Day How does industry drive forward.

SAFE-BioPharma Association NSTIC Day How does industry drive forward.
15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.

15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.
Federal Identity Management

Federal Identity Management
HIMSS/GSA E-Authentication Initiative A Pilot Project of the HIMSS RHIO Federation HIMSS Public Policy Forum September 28, 2006 Mary Grizkewicz, HIMSS.

HIMSS/GSA E-Authentication Initiative A Pilot Project of the HIMSS RHIO Federation HIMSS Public Policy Forum September 28, 2006 Mary Grizkewicz, HIMSS.
IDESG Goals & Work-plans for 2013 and beyond Brett McDowell IDESG Management Council Chair

IDESG Goals & Work-plans for 2013 and beyond Brett McDowell IDESG Management Council Chair
Spring 2013 ICAM Day Value of ICAM Breakout Session Paul D. Grant Director of Cybersecurity Policy, DoD CIO Co-Chair, Federal Identity, Credential &

Spring 2013 ICAM Day Value of ICAM Breakout Session Paul D. Grant Director of Cybersecurity Policy, DoD CIO Co-Chair, Federal Identity, Credential &
Federal Electronic Identity Initiatives – Current Status Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority and Asst. CIO for E-Authentication,

Federal Electronic Identity Initiatives – Current Status Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority and Asst. CIO for E-Authentication,

Similar presentations

Ads by Google