SlideShare a Scribd company logo

CIS14: Physical and Logical Access Control Convergence

CloudIDSummit, profile picture
CloudIDSummit

The document discusses the convergence of physical and logical access control systems, highlighting the need for centralized access management using PIV and PIV-I credentials. It outlines research and development efforts by the Cyber Security Division, focusing on improving interoperability and efficiency in identity and access management. The presentation emphasizes collaboration and communication among various stakeholders to innovate and transition these technologies into operational use.

Technology
1 of 22
Downloaded 171 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
Cloud Identity Summit 2014 Getting Physical: Holistic Identity Management 22 July 2014 Karyn Higa-Smith Program Manager Cyber Security Division Homeland Security Advanced Research Projects Agency Science and Technology Directorate Physical and Logical Access Control Convergence
• Presenter’s Name June 17, 2003 CSD Mission & Strategy 2 REQUIREMENTS CSD MISSION §  Develop and deliver new technologies, tools and techniques to defend and secure current and future systems and networks §  Conduct and support technology transition efforts §  Provide R&D leadership and coordination within the government, academia, private sector and international cybersecurity community CSD STRATEGY Trustworthy Cyber Infrastructure Cybersecurity Research Infrastructure Network & System Security and Investigations Cyber Physical Systems Transition and Outreach Government Venture Capital IT Security Companies Open Source International
Background
• Presenter’s Name June 17, 2003 S&T Identity Management Testbed Attribute RepositoryWS-Security Policy Decision Point Attribute Aggregator
• Presenter’s Name June 17, 2003 • 5 Identity & Access Management Research & Development
• Presenter’s Name June 17, 2003 § PIV-I/FRAC Technology Transition Working Group (TTWG) § Public Safety/Emergency Response § Security § Federated Identity for First Responders § National standard, Interoperable, and trusted ID credential § One voice from the TTWG to policy makers § Sharing lessons learned § Provide innovative, Cost-efficient solutions 6 Technology Transition Working Group
• Presenter’s Name June 17, 2003 PIN Authorization Information: Certifications, Clearance, Job Function, Citizenship… 7 Enrollment Elements
• Presenter’s Name June 17, 2003 Bio: Something you are •  Something you have •  Something you know**** •  Something you are 8 Authentication
• Presenter’s Name June 17, 2003 Federated Attribute Exchange
• Presenter’s Name June 17, 2003 • 10 End-to-End Standard-Based Attribute Exchange Authoritative Sources F/ERO Repository (Attributes) SPML Service SPML Gateway Handheld Local Workstation SAML Service SPML Profile Create, Read, Update, Delete SPML Read- Only Profile ERO Entitlements Authoritative Source SPML Read-Only Request/Response Smartphone OASIS: Organization for the Advancement of Structured Information Standards F/ERO: Federal/Emergency Response Official SPML: Service Provisioning Markup Language SAML: Security Assertion Markup Language Lightweight Protocol JSON over REST SAML Request/ Response BAE SAML Profile Tablet
Logical and Physical Access Control Systems Convergence *show video*
• Presenter’s Name June 17, 2003 Capability Need: Centralized access control management; utilize PIV/PIV-I credentials Technology: Develop standard interface between Physical and logical access control system Impact: Security, Remote and Central Access Management, Granular Access Control, Less Footprint, Usability, and Reduce Cost Transition: proof-of-concept pilot, transition to industry Customer: Fusion Center, FEMA, CSO/CIO Execution Model 12
• Presenter’s Name June 17, 2003 13 §  Requirement for access control management using PIV and PIV-I §  Interoperability testing at the S&T IdM Testbed §  Test Physical Access Control System against the “Logical” Policy Decision Point §  PACS vendors to integrate software code based on the standard interfaces §  XACML (Extensible Access Control Markup Language) - open standard access control policy language 1 2 4 5 3 Policy   Enforcement   Point   Policy   Decision   Point   Requestor   Cyber-Physical Access Control System Convergence
• Presenter’s Name June 17, 2003 14
• Presenter’s Name June 17, 2003 15 Pilot at DC Government
• Presenter’s Name June 17, 2003 Visit Authorization Process
• Presenter’s Name June 17, 2003 Visitor Enrollment Kiosk
• Presenter’s Name June 17, 2003 Take Away •  Security, Interoperability, Efficiency, Enhances Access Control Benefits •  Team dynamics, dedication, education •  Convergence required constant communication and coordination with many different groups that normally operate independently Innovation – to - Operations •  Kiosk interface •  Speed Usability Lessons Learned
• Presenter’s Name June 17, 2003 Future
• Presenter’s Name June 17, 2003 Resources Websites http://www.ahcusa.org/PIV-I%20TTWG.htm http://www.dhs.gov/csd-idm http://www.dhs.gov/cyber-research Follow us on Twitter at @dhsscitech
• Presenter’s Name June 17, 2003 • 21 Karyn Higa-Smith DHS Science and Technology Directorate Homeland Security Advanced Research Projects Agency Cyber Security Division Identity, Access, Privacy Research Program Karyn.Higa-Smith@st.dhs.gov Questions §  Additional Resources Location-based Access Control §  https://www.youtube.com/watch?v=j3LXxqW160k Data Privacy Research: http://go.usa.gov/8JZ9
CIS14: Physical and Logical Access Control Convergence

More Related Content

PDF
Modern vs. Traditional SIEM
Alert Logic
 
PPT
information security management
Gurpreetkaur838
 
PDF
Industrial_Cyber_Security
WillianMachadoFonsec
 
PPTX
ISO 27001 - information security user awareness training presentation -part 2
Tanmay Shinde
 
PDF
ISO 27005:2022 Overview 221028.pdf
Andrey Prozorov, CISM, CIPP/E, CDPSE. LA 27001
 
PPTX
Integrating Security Across SDLC Phases
Ishrath Sultana
 
PPTX
Cybersecurity Assessment Framework - Slideshare.pptx
Azra'ee Mamat
 
PPTX
Data Security - English
Data Security
 
Modern vs. Traditional SIEM
Alert Logic
 
information security management
Gurpreetkaur838
 
Industrial_Cyber_Security
WillianMachadoFonsec
 
ISO 27001 - information security user awareness training presentation -part 2
Tanmay Shinde
 
ISO 27005:2022 Overview 221028.pdf
Andrey Prozorov, CISM, CIPP/E, CDPSE. LA 27001
 
Integrating Security Across SDLC Phases
Ishrath Sultana
 
Cybersecurity Assessment Framework - Slideshare.pptx
Azra'ee Mamat
 
Data Security - English
Data Security
 

What's hot (20)

PDF
Understanding The Security Vendor Landscape Using the Cyber Defense Matrix (R...
Sounil Yu
 
PPTX
ISO 27001 - information security user awareness training presentation - Part 1
Tanmay Shinde
 
PPTX
Introduction to security
Mostafa Elgamala
 
PPTX
Sensitive Data Exposure
abodiford
 
PDF
ISO 27001:2022 Introduction
Andrey Prozorov, CISM, CIPP/E, CDPSE. LA 27001
 
PDF
Cyber security and demonstration of security tools
Vicky Fernandes
 
PPTX
Cyber Defense Matrix: Reloaded
Sounil Yu
 
PPT
18.05.2017 ISMS - Iryna Ivchenko
Anastasiia Konoplova
 
PDF
Enterprise Security Architecture for Cyber Security
The Open Group SA
 
PDF
ISO 27001_2022 What has changed 2.0 for ISACA.pdf
Andrey Prozorov, CISM, CIPP/E, CDPSE. LA 27001
 
PPT
IT Security management and risk assessment
CAS
 
PPTX
Iso 27001 isms presentation
Midhun Nirmal
 
PDF
Cybersecurity Fundamentals | Understanding Cybersecurity Basics | Cybersecuri...
Edureka!
 
PDF
Data Privacy & Security
Eryk Budi Pratama
 
PPTX
ISO 27701
UtkarshDhiman4
 
PPTX
Information security
Lusungu Mkandawire CISA,CISM,CGEIT,CPF,PRINCE2
 
PPT
ISO 27001 - Information Security Management System
Muhammad Faisal Naqvi, CISSP, CISA, AMBCI, ITIL, ISMS LA n Master
 
PPTX
WHY SOC Services needed?
manoharparakh
 
PPTX
Build an Information Security Strategy
Andrew Byers
 
PPTX
Introduction to Cybersecurity Fundamentals
Toño Herrera
 
Understanding The Security Vendor Landscape Using the Cyber Defense Matrix (R...
Sounil Yu
 
ISO 27001 - information security user awareness training presentation - Part 1
Tanmay Shinde
 
Introduction to security
Mostafa Elgamala
 
Sensitive Data Exposure
abodiford
 
ISO 27001:2022 Introduction
Andrey Prozorov, CISM, CIPP/E, CDPSE. LA 27001
 
Cyber security and demonstration of security tools
Vicky Fernandes
 
Cyber Defense Matrix: Reloaded
Sounil Yu
 
18.05.2017 ISMS - Iryna Ivchenko
Anastasiia Konoplova
 
Enterprise Security Architecture for Cyber Security
The Open Group SA
 
ISO 27001_2022 What has changed 2.0 for ISACA.pdf
Andrey Prozorov, CISM, CIPP/E, CDPSE. LA 27001
 
IT Security management and risk assessment
CAS
 
Iso 27001 isms presentation
Midhun Nirmal
 
Cybersecurity Fundamentals | Understanding Cybersecurity Basics | Cybersecuri...
Edureka!
 
Data Privacy & Security
Eryk Budi Pratama
 
ISO 27701
UtkarshDhiman4
 
Information security
Lusungu Mkandawire CISA,CISM,CGEIT,CPF,PRINCE2
 
ISO 27001 - Information Security Management System
Muhammad Faisal Naqvi, CISSP, CISA, AMBCI, ITIL, ISMS LA n Master
 
WHY SOC Services needed?
manoharparakh
 
Build an Information Security Strategy
Andrew Byers
 
Introduction to Cybersecurity Fundamentals
Toño Herrera
 
Ad

Viewers also liked (8)

PDF
Access Control Presentation
Wajahat Rajab
 
PDF
Securing SCADA
Jeffrey Wang , P.Eng
 
PPTX
Physical and logical access controls - A pre-requsite for Internal Controls
Bharath Rao
 
PPT
Intro To Access Controls
Hari Pudipeddi
 
PDF
Physical/Network Access Control
jwpiccininni
 
PDF
Guide scada and_industrial_control_systems_security
Deepakraj Sahu
 
PPT
Ch07 Access Control Fundamentals
Information Technology
 
PPT
Integrating Physical And Logical Security
Jorge Sebastiao
 
Access Control Presentation
Wajahat Rajab
 
Securing SCADA
Jeffrey Wang , P.Eng
 
Physical and logical access controls - A pre-requsite for Internal Controls
Bharath Rao
 
Intro To Access Controls
Hari Pudipeddi
 
Physical/Network Access Control
jwpiccininni
 
Guide scada and_industrial_control_systems_security
Deepakraj Sahu
 
Ch07 Access Control Fundamentals
Information Technology
 
Integrating Physical And Logical Security
Jorge Sebastiao
 
Ad

Similar to CIS14: Physical and Logical Access Control Convergence (20)

DOC
08252016 John D Resume ITIL PMP CISSP CSM CISA1
jjdoylecomcast
 
PPTX
Virtual Gov Day - Security Breakout - Deloitte
Splunk
 
PDF
Latest Developments in Cloud Security Standards and Privacy
Cloud Standards Customer Council
 
PPTX
GDPR Part 2: Quest Relevance
Adrian Dumitrescu
 
PDF
Security in Cyber-Physical Systems
Bob Marcus
 
PDF
Democratizing security
Sanjeev Sharma
 
PPTX
PCI presentation
Mahmoud Salaheldin
 
PPTX
Open Source and Cyber Security: Open Source Software's Role in Government Cyb...
Great Wide Open
 
PDF
Science of Security: Cyber Ecosystem Attack Analysis Methodology
Shawn Riley
 
DOC
Jason Allred Resume
Jason Allred, MBA, CISA, CRISC, ITIL v3
 
PPTX
Mobile Application Single Sign-On for Public Safety First Responders
Ads Manager
 
PDF
Cloud Security Standards: What to Expect and What to Negotiate V2.0
Cloud Standards Customer Council
 
PDF
Information assurance /Information security
jorgenajarro3
 
PDF
Privacy By Design Manual | An Introduction to Shifting Privacy Left
Regina Grogan
 
PDF
Privacy By Design Manual, an introduction to steps for privacy by design
Regina Grogan
 
PPTX
Embedding Security in IT Projects
Kaali Dass PMP, PhD.
 
PDF
IoT—Let’s Code Like It’s 1999!
TechWell
 
DOCX
Linder,William H IT Auditor 0216
William Linder
 
PDF
H2020 project WITDOM overview
Elsa Prieto
 
PPTX
Flanagan - RA21 Improving Access to Scholarly Resources
National Information Standards Organization (NISO)
 
08252016 John D Resume ITIL PMP CISSP CSM CISA1
jjdoylecomcast
 
Virtual Gov Day - Security Breakout - Deloitte
Splunk
 
Latest Developments in Cloud Security Standards and Privacy
Cloud Standards Customer Council
 
GDPR Part 2: Quest Relevance
Adrian Dumitrescu
 
Security in Cyber-Physical Systems
Bob Marcus
 
Democratizing security
Sanjeev Sharma
 
PCI presentation
Mahmoud Salaheldin
 
Open Source and Cyber Security: Open Source Software's Role in Government Cyb...
Great Wide Open
 
Science of Security: Cyber Ecosystem Attack Analysis Methodology
Shawn Riley
 
Jason Allred Resume
Jason Allred, MBA, CISA, CRISC, ITIL v3
 
Mobile Application Single Sign-On for Public Safety First Responders
Ads Manager
 
Cloud Security Standards: What to Expect and What to Negotiate V2.0
Cloud Standards Customer Council
 
Information assurance /Information security
jorgenajarro3
 
Privacy By Design Manual | An Introduction to Shifting Privacy Left
Regina Grogan
 
Privacy By Design Manual, an introduction to steps for privacy by design
Regina Grogan
 
Embedding Security in IT Projects
Kaali Dass PMP, PhD.
 
IoT—Let’s Code Like It’s 1999!
TechWell
 
Linder,William H IT Auditor 0216
William Linder
 
H2020 project WITDOM overview
Elsa Prieto
 
Flanagan - RA21 Improving Access to Scholarly Resources
National Information Standards Organization (NISO)
 

More from CloudIDSummit (20)

PPTX
CIS 2016 Content Highlights
CloudIDSummit
 
PPTX
Top 6 Reasons You Should Attend Cloud Identity Summit 2016
CloudIDSummit
 
PDF
CIS 2015 Security Without Borders: Taming the Cloud and Mobile Frontier - And...
CloudIDSummit
 
PDF
Mobile security, identity & authentication reasons for optimism 20150607 v2
CloudIDSummit
 
PDF
CIS 2015 Mobile Security, Identity & Authentication: Reasons for Optimism - R...
CloudIDSummit
 
PDF
CIS 2015 Virtual Identity: The Vision, Challenges and Experiences in Driving ...
CloudIDSummit
 
PDF
CIS 2015 Deploying Strong Authentication to a Global Enterprise: A Comedy in ...
CloudIDSummit
 
PDF
CIS 2015 Without Great Security, Digital Identity is Not Worth the Electrons ...
CloudIDSummit
 
PDF
CIS 2015 Mergers & Acquisitions in a Cloud Enabled World - Brian Puhl
CloudIDSummit
 
PDF
CIS 2015 IoT and IDM in your Mobile Enterprise - Brian Katz
CloudIDSummit
 
PDF
CIS 2015 Practical Deployments Enterprise Cloud Access Management Platform - ...
CloudIDSummit
 
PDF
CIS 2015 What I Learned From Pitching IAM To My CIO - Steve Tout
CloudIDSummit
 
PDF
CIS 2015 How to secure the Internet of Things? Hannes Tschofenig
CloudIDSummit
 
PDF
CIS 2015 The IDaaS Dating Game - Sean Deuby
CloudIDSummit
 
PDF
CIS 2015 SSO for Mobile and Web Apps Ashish Jain
CloudIDSummit
 
PDF
The Industrial Internet, the Identity of Everything and the Industrial Enterp...
CloudIDSummit
 
PDF
CIS 2015 SAML-IN / SAML-OUT - Scott Tomilson & John Dasilva
CloudIDSummit
 
PDF
CIS 2015 Session Management at Scale - Scott Tomilson & Jamshid Khosravian
CloudIDSummit
 
PDF
CIS 2015 So you want to SSO … Scott Tomilson & John Dasilva
CloudIDSummit
 
PDF
CIS 2015 Identity Relationship Management in the Internet of Things
CloudIDSummit
 
CIS 2016 Content Highlights
CloudIDSummit
 
Top 6 Reasons You Should Attend Cloud Identity Summit 2016
CloudIDSummit
 
CIS 2015 Security Without Borders: Taming the Cloud and Mobile Frontier - And...
CloudIDSummit
 
Mobile security, identity & authentication reasons for optimism 20150607 v2
CloudIDSummit
 
CIS 2015 Mobile Security, Identity & Authentication: Reasons for Optimism - R...
CloudIDSummit
 
CIS 2015 Virtual Identity: The Vision, Challenges and Experiences in Driving ...
CloudIDSummit
 
CIS 2015 Deploying Strong Authentication to a Global Enterprise: A Comedy in ...
CloudIDSummit
 
CIS 2015 Without Great Security, Digital Identity is Not Worth the Electrons ...
CloudIDSummit
 
CIS 2015 Mergers & Acquisitions in a Cloud Enabled World - Brian Puhl
CloudIDSummit
 
CIS 2015 IoT and IDM in your Mobile Enterprise - Brian Katz
CloudIDSummit
 
CIS 2015 Practical Deployments Enterprise Cloud Access Management Platform - ...
CloudIDSummit
 
CIS 2015 What I Learned From Pitching IAM To My CIO - Steve Tout
CloudIDSummit
 
CIS 2015 How to secure the Internet of Things? Hannes Tschofenig
CloudIDSummit
 
CIS 2015 The IDaaS Dating Game - Sean Deuby
CloudIDSummit
 
CIS 2015 SSO for Mobile and Web Apps Ashish Jain
CloudIDSummit
 
The Industrial Internet, the Identity of Everything and the Industrial Enterp...
CloudIDSummit
 
CIS 2015 SAML-IN / SAML-OUT - Scott Tomilson & John Dasilva
CloudIDSummit
 
CIS 2015 Session Management at Scale - Scott Tomilson & Jamshid Khosravian
CloudIDSummit
 
CIS 2015 So you want to SSO … Scott Tomilson & John Dasilva
CloudIDSummit
 
CIS 2015 Identity Relationship Management in the Internet of Things
CloudIDSummit
 

Recently uploaded (20)

PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
PDF
Encapsulation theory and applications.pdf
gurumoop
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PDF
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
PPTX
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
PDF
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
DOCX
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PDF
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
Encapsulation theory and applications.pdf
gurumoop
 
Teaching material agriculture food technology
LiaRayya
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
MYSQL Presentation for SQL database connectivity
Swati270511
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 

CIS14: Physical and Logical Access Control Convergence

  • 1. Cloud Identity Summit 2014 Getting Physical: Holistic Identity Management 22 July 2014 Karyn Higa-Smith Program Manager Cyber Security Division Homeland Security Advanced Research Projects Agency Science and Technology Directorate Physical and Logical Access Control Convergence
  • 2. • Presenter’s Name June 17, 2003 CSD Mission & Strategy 2 REQUIREMENTS CSD MISSION §  Develop and deliver new technologies, tools and techniques to defend and secure current and future systems and networks §  Conduct and support technology transition efforts §  Provide R&D leadership and coordination within the government, academia, private sector and international cybersecurity community CSD STRATEGY Trustworthy Cyber Infrastructure Cybersecurity Research Infrastructure Network & System Security and Investigations Cyber Physical Systems Transition and Outreach Government Venture Capital IT Security Companies Open Source International
  • 4. • Presenter’s Name June 17, 2003 S&T Identity Management Testbed Attribute RepositoryWS-Security Policy Decision Point Attribute Aggregator
  • 5. • Presenter’s Name June 17, 2003 • 5 Identity & Access Management Research & Development
  • 6. • Presenter’s Name June 17, 2003 § PIV-I/FRAC Technology Transition Working Group (TTWG) § Public Safety/Emergency Response § Security § Federated Identity for First Responders § National standard, Interoperable, and trusted ID credential § One voice from the TTWG to policy makers § Sharing lessons learned § Provide innovative, Cost-efficient solutions 6 Technology Transition Working Group
  • 7. • Presenter’s Name June 17, 2003 PIN Authorization Information: Certifications, Clearance, Job Function, Citizenship… 7 Enrollment Elements
  • 8. • Presenter’s Name June 17, 2003 Bio: Something you are •  Something you have •  Something you know**** •  Something you are 8 Authentication
  • 9. • Presenter’s Name June 17, 2003 Federated Attribute Exchange
  • 10. • Presenter’s Name June 17, 2003 • 10 End-to-End Standard-Based Attribute Exchange Authoritative Sources F/ERO Repository (Attributes) SPML Service SPML Gateway Handheld Local Workstation SAML Service SPML Profile Create, Read, Update, Delete SPML Read- Only Profile ERO Entitlements Authoritative Source SPML Read-Only Request/Response Smartphone OASIS: Organization for the Advancement of Structured Information Standards F/ERO: Federal/Emergency Response Official SPML: Service Provisioning Markup Language SAML: Security Assertion Markup Language Lightweight Protocol JSON over REST SAML Request/ Response BAE SAML Profile Tablet
  • 11. Logical and Physical Access Control Systems Convergence *show video*
  • 12. • Presenter’s Name June 17, 2003 Capability Need: Centralized access control management; utilize PIV/PIV-I credentials Technology: Develop standard interface between Physical and logical access control system Impact: Security, Remote and Central Access Management, Granular Access Control, Less Footprint, Usability, and Reduce Cost Transition: proof-of-concept pilot, transition to industry Customer: Fusion Center, FEMA, CSO/CIO Execution Model 12
  • 13. • Presenter’s Name June 17, 2003 13 §  Requirement for access control management using PIV and PIV-I §  Interoperability testing at the S&T IdM Testbed §  Test Physical Access Control System against the “Logical” Policy Decision Point §  PACS vendors to integrate software code based on the standard interfaces §  XACML (Extensible Access Control Markup Language) - open standard access control policy language 1 2 4 5 3 Policy   Enforcement   Point   Policy   Decision   Point   Requestor   Cyber-Physical Access Control System Convergence
  • 15. • Presenter’s Name June 17, 2003 15 Pilot at DC Government
  • 16. • Presenter’s Name June 17, 2003 Visit Authorization Process
  • 17. • Presenter’s Name June 17, 2003 Visitor Enrollment Kiosk
  • 18. • Presenter’s Name June 17, 2003 Take Away •  Security, Interoperability, Efficiency, Enhances Access Control Benefits •  Team dynamics, dedication, education •  Convergence required constant communication and coordination with many different groups that normally operate independently Innovation – to - Operations •  Kiosk interface •  Speed Usability Lessons Learned
  • 19. • Presenter’s Name June 17, 2003 Future
  • 20. • Presenter’s Name June 17, 2003 Resources Websites http://www.ahcusa.org/PIV-I%20TTWG.htm http://www.dhs.gov/csd-idm http://www.dhs.gov/cyber-research Follow us on Twitter at @dhsscitech
  • 21. • Presenter’s Name June 17, 2003 • 21 Karyn Higa-Smith DHS Science and Technology Directorate Homeland Security Advanced Research Projects Agency Cyber Security Division Identity, Access, Privacy Research Program Karyn.Higa-Smith@st.dhs.gov Questions §  Additional Resources Location-based Access Control §  https://www.youtube.com/watch?v=j3LXxqW160k Data Privacy Research: http://go.usa.gov/8JZ9