hhsbrief

Information about hhsbrief

Published on December 30, 2007

Author: Naples

Source: authorstream.com

Content

The Federal PKI - Looking Forward:  The Federal PKI - Looking Forward A Perspective on the Federal Government Secure Infrastructure Judith Spencer Chair, Federal PKI Steering Committee www.cio.gov/fpkisc Goals:  Goals A cross-governmental, ubiquitous, interoperable Public Key Infrastructure. The development and use of applications which employ that PKI in support of Agency business processes. Mandates :  Mandates Long-term Cost Savings Trading Partner Practices Public Expectations International Competition Government Paperwork Elimination Act Organization:  Organization Security, Privacy, Critical Infrastructure Committee Business WG Technical WG Legal/Policy WG Federal PKI Steering Committee Federal PKI Policy Authority Enterprise Interoperability Committee Federal Chief Information Officer Council Health Care WG FPKISC Overview:  FPKISC Overview Sponsored by CIO Council, Enterprise Interoperability and Emerging Information Technologies Committee Provides guidance regarding all aspects of the Federal PKI Identifies and resolves Federal PKI technical and business issues Recommends solutions to policy and interoperability issues. Establishes and maintains liaison with other organizations interested in PKI activities. Federal Approach:  Federal Approach Develop agency PKIs from the bottom up Establish the Federal PKI Policy Authority Implement the Federal Bridge CA using COTS products Ensure directory compatibility Use ACES for transactions with the public Federal PKI Policy Authority:  Federal PKI Policy Authority Voluntary interagency group - NOT “agency” Governing body for FBCA interoperability Oversees operation of FBCA, authorizes issuance of FBCA certificates Under Federal CIO Council Six Charter Members: GSA, Justice, NIST, NSA, OMB, Treasury FBCA Overview:  FBCA Overview Designed for the purpose of creating trust paths between disparate PKI domains Employs a distributed NOT a hierarchical model Commercial products participate within the membrane of the Bridge Develops cross certificates within the membrane to bridge the gap between dissimilar products FBCA Operation:  FBCA Operation FPKISC oversees FBCA development and operations Bridge Documentation Enhancements FPKI Policy Authority determines participants and levels of cross- certification Administers Certificate Policy Enforces compliance by member organizations GSA named Operational Authority Operates in accordance with Policy Authority and FPKISC direction Current Bridge Status:  Current Bridge Status April 2000 - Successfully demonstrated Trust Path Creation during EMA Challenge, Boston, MA Two CA Products operational within the Membrane Baltimore Technologies Unicert Entrust/Authority Production bridge operational April 30, 2001 FBCA Organizational Lessons Learned:  FBCA Organizational Lessons Learned Creation of Concept of Operations, Certificate Policy, Certificate Practices Statement is critical before deployment of PKI Documents are time-consuming to create, but not impossible Who’s responsible for what? Policy Mapping for cross-certification can be technically challenging (an apparent oxymoron) Requires independent Audit – the bridge must be above suspicion The Policy Authority and the Steering Committee must be like Chang and Eng Never underestimate the significance of politics in Agencies and in the business sector Slide12:  Federal Bridge Certification Authority Cross Certified CAs Directory System Agent Cross certificates CRL FIP 140-1 L3 Crypto FIP 140-1 L3 Crypto Cross certificates CRL Cross certificates ARL Trust Domain 1 Trust Domain 2 S/MIME EMAIL Technical Lessons Learned:  Technical Lessons Learned Bridge CAs can unite PKIs with Different architectures Different cryptographic algorithms Different DITs Heterogeneous commercial products can be used inside the bridge Client software is the limiting factor X.500 chaining simplifies certificate retrieval Offline bridge architecture is secure but difficult to manage Access Certificates for Electronic Services:  Access Certificates for Electronic Services Provides the American Public secure electronic access to privacy related Federal Government information and services through the use of public key technology. Fosters cross-agency cooperation Uses the Certificate Arbitrator Module for processing PKI Certificates Looking Forward:  Looking Forward Federal Bridge Certification Authority (FBCA) Policy Framework For Agency PKI Interoperability Key Industry Relationships And Technical Issues Federal And State Cooperation On PKI Initiatives International Liaison And Then . . .:  And Then . . . A cross-governmental, interoperable, ubiquitous, Federal Public Key Infrastructure Federal Bridge interoperability with other Bridges International Cooperation and Interoperability

Related presentations


Other presentations created by Naples

Frauen
19. 06. 2007
0 views

Frauen

golden lion monkey
14. 09. 2007
0 views

golden lion monkey

Shawn Tovey Security Roadmap ppt
14. 09. 2007
0 views

Shawn Tovey Security Roadmap ppt

John Corbett
14. 09. 2007
0 views

John Corbett

spamassassin
07. 10. 2007
0 views

spamassassin

WillanS April2005
03. 09. 2007
0 views

WillanS April2005

ANG SouthAfrica
03. 09. 2007
0 views

ANG SouthAfrica

HIS102Lsn5AtlanticSl aveTrade
07. 12. 2007
0 views

HIS102Lsn5AtlanticSl aveTrade

311 General Overview
29. 10. 2007
0 views

311 General Overview

Team Bittersweet
02. 11. 2007
0 views

Team Bittersweet

uddi gils
24. 11. 2007
0 views

uddi gils

rolandmicheltremblay tulsa
03. 09. 2007
0 views

rolandmicheltremblay tulsa

sjingji6
04. 01. 2008
0 views

sjingji6

LION PROBES
14. 09. 2007
0 views

LION PROBES

OleWikborg
07. 11. 2007
0 views

OleWikborg

bnfo602 lec2
14. 09. 2007
0 views

bnfo602 lec2

558
14. 09. 2007
0 views

558

T Yaqoob
14. 09. 2007
0 views

T Yaqoob

hhp kla presentation 2
26. 02. 2008
0 views

hhp kla presentation 2

DirectMarketing
04. 03. 2008
0 views

DirectMarketing

CustomerCollaboration
06. 03. 2008
0 views

CustomerCollaboration

Mark Watson Canadian Fellowship
10. 03. 2008
0 views

Mark Watson Canadian Fellowship

oxford
14. 03. 2008
0 views

oxford

301352637310
26. 03. 2008
0 views

301352637310

LRC Keynote111903Joseph Tsu
27. 03. 2008
0 views

LRC Keynote111903Joseph Tsu

Mundial 2006 para ellas 1780
21. 06. 2007
0 views

Mundial 2006 para ellas 1780

Leccion de perseverancia 1927
21. 06. 2007
0 views

Leccion de perseverancia 1927

La Realidad En Cuba 2144
21. 06. 2007
0 views

La Realidad En Cuba 2144

Las flores hablaran 1991
21. 06. 2007
0 views

Las flores hablaran 1991

p2pli
11. 10. 2007
0 views

p2pli

What is CIVITAS about english
01. 11. 2007
0 views

What is CIVITAS about english

cekn3xenk7cce8v
28. 03. 2008
0 views

cekn3xenk7cce8v

Visa
30. 03. 2008
0 views

Visa

2001 3Q Exec Ipa
09. 04. 2008
0 views

2001 3Q Exec Ipa

Leeb Oil Presentation
10. 04. 2008
0 views

Leeb Oil Presentation

revised success websites ch01
13. 04. 2008
0 views

revised success websites ch01

osb1990 2000
02. 11. 2007
0 views

osb1990 2000

iea bp w60 hellsten
14. 09. 2007
0 views

iea bp w60 hellsten

BF464 Lecture3
17. 04. 2008
0 views

BF464 Lecture3

Commodity Session IV
22. 04. 2008
0 views

Commodity Session IV

Scholes
03. 09. 2007
0 views

Scholes

Rockwell Mtg 26Aug03
14. 09. 2007
0 views

Rockwell Mtg 26Aug03

La Ultima Foto II 1846
21. 06. 2007
0 views

La Ultima Foto II 1846

How to Survive the GED
19. 06. 2007
0 views

How to Survive the GED

Hetultiemezomergevoel
19. 06. 2007
0 views

Hetultiemezomergevoel

Lesson7 Overhead Transparencies
19. 06. 2007
0 views

Lesson7 Overhead Transparencies

Command Philosophy
19. 06. 2007
0 views

Command Philosophy

madeline
14. 09. 2007
0 views

madeline

INCO GRID CHINA SO 2 6 5 1 1720
11. 10. 2007
0 views

INCO GRID CHINA SO 2 6 5 1 1720

Commuter Choice PPT
19. 06. 2007
0 views

Commuter Choice PPT

Hellerstein Joe
21. 11. 2007
0 views

Hellerstein Joe

lion content presentation
14. 09. 2007
0 views

lion content presentation

Hecho con 2072
21. 06. 2007
0 views

Hecho con 2072

Good Karma 112
19. 06. 2007
0 views

Good Karma 112

1 Uvod
05. 01. 2008
0 views

1 Uvod

Mi mejor amigo 2006
21. 06. 2007
0 views

Mi mejor amigo 2006

No todo es facil 1946
21. 06. 2007
0 views

No todo es facil 1946

MurraySimpsonPresent ation
03. 09. 2007
0 views

MurraySimpsonPresent ation

040527 sisevic
11. 12. 2007
0 views

040527 sisevic

La honestidad de los hombre 1990
21. 06. 2007
0 views

La honestidad de los hombre 1990

Fotomontajes espectaculares 2130
21. 06. 2007
0 views

Fotomontajes espectaculares 2130

VIR 0004
14. 09. 2007
0 views

VIR 0004

decorator
22. 11. 2007
0 views

decorator

gewichts probleme
19. 06. 2007
0 views

gewichts probleme

s Brings May flowers
14. 12. 2007
0 views

s Brings May flowers

ncpneuro0559 pt1
03. 09. 2007
0 views

ncpneuro0559 pt1

ConvectiveWarningFun damentals
05. 10. 2007
0 views

ConvectiveWarningFun damentals

Wikimedia Conference Tokyo
18. 12. 2009
0 views

Wikimedia Conference Tokyo

tokentv
24. 02. 2008
0 views

tokentv

Comp Simul Nucl Edu
19. 06. 2007
0 views

Comp Simul Nucl Edu

La Botella de agua 1994
21. 06. 2007
0 views

La Botella de agua 1994