1 / 10

Update on Federal PKI Initiatives and Policy Development by Peter Alterman, Ph.D.

Join Dr. Peter Alterman as he presents an update on the Federal PKI Policy Authority's agenda and ongoing efforts as of December 14, 2005. This session covers key initiatives including the status of HSPD-12, updates on path discovery and validation, policy revisions, and cross-certification developments with various agencies and entities such as USPS and Wells Fargo. Discover insights into current and future work aimed at harmonizing federal PKI with national and international standards.

charla
Download Presentation

Update on Federal PKI Initiatives and Policy Development by Peter Alterman, Ph.D.

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Federal PKI Update Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority

  2. Agenda • 2005 Initiatives • Current Status • Ongoing Efforts/New Work • Discussion Fed-Ed Dec. 14, 2005

  3. US FPKI Initiatives • HSPD-12 • Path Discovery/Path Validation • Policy Updates • Cross-Certifications • Harmonizations Fed-Ed Dec. 14, 2005

  4. HSPD-12 Status • Agency Plans Submitted 10/6/2005 – many extensions issued; • SmartCard Standards Complete for Contact and Contact-less cards – vendors busy creating middleware and readers; • FIPS 201 modifications published Fed-Ed Dec. 14, 2005

  5. Path Discovery/Path Validation Work • NIST created test suite • Four vendors demonstrated products/services that passed tests • Gemini TrustEnabler • Corestreet • Tumbleweed • Orion GOTS product Fed-Ed Dec. 14, 2005

  6. Policy Updates • Creation of new LOA – Medium Hardware • Creation of two new policies – Commercial Best Practice – to resolve citizenship issue • Create new Common Policy High Assurance Level • FBCA CP rewritten to RFC 3647 format • Created Bylaws and revised Charter Fed-Ed Dec. 14, 2005

  7. Cross-Certifications in 2005 • USPS (almost..) • GPO • DEA CSOS • DOJ • Wells Fargo Bank • ACES/ORC • SSP – ORC Fed-Ed Dec. 14, 2005

  8. Harmonizations • Working with E-Authentication PMO to harmonize Federal PKI with Operating, Business Rules • Working with ETSI (EU PKI) to harmonize policies • Move Shared Service Provider Work Group from FICC to FPKI PA Fed-Ed Dec. 14, 2005

  9. Ongoing Efforts/New Work • Bridge-to-Bridge Criteria and Methodology • Bridge-2-Bridge Cross-Certifications (3) • SSP – Treasury Dep’t. and DST/Identrus in process • Rewrite Common Policy CP in RFC 3647 format • Harmonize FBCA CP and FIPS 201 • Compete Operational Authority Support Contract • Stand up Validation Service • Promulgate BPA for PKI services • Future commercial PKI cross-certifications: Boeing, Wells Fargo (medium hardware) • ISO accreditation • Canada cross-certification • Australia cross-certification Fed-Ed Dec. 14, 2005

  10. Discussion Fed-Ed Dec. 14, 2005

More Related