U.S. Government e-Authentication Initiative .


37 views
Uploaded on:
Description
U.S. Federal e-Authentication Initiative. Peter Alterman, Ph.D. Senior Advisor to the Chair, US Federal PKI Steering Committee. TERENA 2003. U.S. e-Authentication Initiative Goals:.
Transcripts
Slide 1

U.S. Government e-Authentication Initiative Peter Alterman, Ph.D. Senior Advisor to the Chair, US Federal PKI Steering Committee TERENA 2003

Slide 2

U.S. e-Authentication Initiative Goals: To manufacture and empower shared trust expected to bolster boundless utilization of electronic collaborations between the general population and Government, and crosswise over Governments To minimize the weight on the general population when getting trusted electronic administrations from Government offices To convey normal interoperable validation arrangements , guaranteeing they are suitable matches for the levels of hazard and business needs of every e-Government activity TERENA 2003

Slide 3

The Challenge to Interoperability Authentication interoperability turns out to be considerably more perplexing as the quantity of qualification suppliers and depending parties increments. TERENA 2003

Slide 4

The Need for the Authentication Gateway Credential Providers Authentication Gateway Relying Parties The Authentication Gateway disentangles interoperability: Common approach to decide and approve "Trusted" credentials "Regular Rules" for Agreements among Gateway, Agencies and Credential Providers. TERENA 2003

Slide 5

Defining the Need Signature Required Identity Verification Required High Risk e-Gov Initiatives Low Risk Identity Verification Not Required Personal Information Change Request Benefits Application General Information Proprietary Information Privilege Management

Slide 6

A Vision for the Future Business Agent Citizen Direct Access Capability Preserved State or Federal Government Academia Health Care Credential Providers Identity Verification Not Required Identity Verification Required Credential Validation Process eAuthentication Gateway Federal Agency Relying Parties TERENA 2003

Slide 7

The U.S. e-Authentication Gateway Is not: A backer of ID accreditations A gatherer of individual data An archive of data The Federal Bridge Certification Authority e-Security Is: A supplier of approval administrations for numerous types of ID qualifications A wellspring of hazard/confirmation levels for different types of ID accreditations Available for all e-Gov activities TERENA 2003

Slide 8

Status of U.S. e-Authentication Program R&D has demonstrated that the E-Auth industry is presently: Enterprise-based as opposed to between big business Centrally oversaw instead of appropriated Proprietary arrangements as opposed to open Priced for the endeavor as opposed to multi-undertaking The RFI reactions and other research has demonstrated that the E-Auth industry is: Adopting combined arrangements Evolving to dispersed administration Utilizing open measures Adapting valuing to multi-venture arrangements Agency E-Gov frameworks are getting to be prepared to use a typical open, gauges based e-Auth base TERENA 2003

Slide 9

U.S. e-Authentication Message to Government: Prototype Gateway is operational in a test situation starting 9/30/02 It will experience a delta confirmation and accreditation (C&A) for live exchanges by 01/06/03 Gateway will give validation and check administrations to the 24 e-Gov activities Gateway will give verification benefits crosswise over Government lines of business TERENA 2003

Slide 10

U.S. e-Authentication and Higher Education: E-Grants venture will make standard XML articles to gather different concede application "shapes" Universities will round out structures locally and transfer them to the e-Grants site Extended NIH-EDUCAUSE PKI Interoperability Pilot Project will: Use e-Grants XML frames Incorporate the e-Authentication Gateway into the testament approval way Demonstrate substitute marking and authZ approaches TERENA 2003

Slide 11

U N V E R S T Y HEBCA CA - Research Institution E-Authentication Gateway Digitally Signed Grant App . FBCA I B M Audit Log (NARA) Simplified Concept of Operations Validate certs Receipt and Authorization Server Agency Back End Processing TERENA 2003

Slide 12

Contact Information Dr. Subside Alterman, Assistant Chief Information Officer for Electronic Authentication, NIH Peter.alterman@nih.gov Deborah Blanchard, Project Manager, Digital Signature Trust/Identrus dblanchard@trustdst.com TERENA 2003

Recommended
View more...