Phillip Soloweszyk, director of Identity and Windows Consulting Services for Quest Software, will discuss identity management. APril 16, 2013
The Postal Service issued a draft solicitation for the Federal Cloud Credential Exchange. The goal is to create a cloud-based service to perform identity authentication and verification. Agencies could plug into the service, integrating it with any application that adheres to the standards.
The two agencies met this week to figure out how best to implement the recommendations in a white paper from ACT-IAC. The approach detailed in the document follows closely the methodology used to develop the NIEM and FICAM standards.
From digitization of mail to GPS tracking, the Postal Service is investing in new technologies to help it grow revenue. Ellis Burgoyne, the agency's chief information officer, says his department is concentrating on five main projects in 2013 that will help the Postal Service cut costs while improving efficiency and customer service. USPS ended fiscal 2012 with $15.9 billion of debt.
Agency CIO Tony Trenkle said CMS is building the foundation for four enterprisewide applications, including identity management and an enterprise portal. October 18, 2012
The Defense Department and the intelligence community are working on joint data standards as they migrate toward enterprise IT environments. Both organizations also are implementing roles-based, access control to ensure secure information sharing.
More than eight years after the White House issued Homeland Security Presidential Directive-12 requiring the issuance of secure identity cards, governmentwide and agency-specific initiatives provide hope the smart cards can be more than "glorified ID cards." NIST and GSA are developing an identity exchange in the cloud. DHS and IRS are putting their cards to use at a local level for both building and computer access.
The Information Sharing Environment is supporting a set of technology priories to promote the safe disclosure of data. In the ISE's annual report to Congress, it highlights the steps agencies have taken over the past year to move toward a culture of responsible and secure information sharing.
The department is trying to figure out the best way to manage the cards of contract employees after they leave the department. Every agency using a managed service provider for secure identity card issuance faces a similar challenge. Commerce also is working on integrating physical and logical access systems.
The goal is for federal websites to accept third- party ID management credentials. The Federal Cloud Credential Exchange (FCCX) Tiger Team wants to know more about existing commercial products and services that can help.
The General Services Administration will hold a vendor day Aug. 7 in Washington, D.C. The concept of identity management in the cloud builds on the efforts included in the National Strategy for Trusted Identities in Cyberspace (NSTIC).
The Pentagon will begin testing cloud-based joint networking environment in Europe this summer. Effort aims to eliminate seams between service-and-mission-specific networks.
A working group is developing common requirements for a federated cloud identity management shared service. NIH already showed how this could be done with its iTrust tools. The tiger team is expected to issue the common standards in the next few months.
The Mark Center soon will require employees to provide a fingerprint or iris scan along with the CAC card to enter the facility. The Pentagon is next to implement biometric factors for physical access control. The Army also is looking at where biometrics could impact mission and business functions.
The Insider Threat Task Force expects to submit its national plan to the White House in the next few months. The Defense Department will use its secure identity cards to stop unauthorized access to data and systems.