Feeds

One US.gov smartcard ID to fit all

Credentials pitch

  • alert
  • submit to reddit

SANS - Survey on application security programs

The United States government is moving towards issuing single smart card identity credentials for all federal employees.

To ensure these smart IDs work across all of the government, the Office of Management and Budget (OMB) has established a new committee, the Federal Identity and Credential Committee (FICC), to co-ordinate smart card technology roll out programs across government departments.

Policy makers see smart cards as a key element in a more secure and more efficient government. The departments of Defense, Interior, State and Treasury have between them issued approximately 3.5 million smart ID cards to date to strengthen security and add new capabilities including identity verification and secure network access. It's hoped that new policies and maturing standards would broaden the use of smart cards in government.

FICC will build on the existing implementations as well as the newly released version 2.1 of the Government Smart Card Interoperability Specification developed by the National Institute of Standards and Technology (NIST).

"In the future we hope to have a full implementation of an interoperable smart card for all employees of the federal government," said Lolie Kull, senior security specialist for the US Department of State and chair of the Interagency Interoperability Task Force.

"The OMB defines policy, and there is now a clear path to establish workable interoperability. FICC is the new kid on the block, but it is the kid with the most power," she added.

Speakers at the Smart Card Alliance's Government Conference and Expo conference last week reinforced the need for interoperability and were enthusiastic about the role of the new FICC organisation.

"We need to eliminate the need to carry around multiple cards," said Mary Dixon, director of the Access Card Office of the Department of Defense. ®

Related Stories

UK ID scheme complex, costly, won't work, says expert
Citywide 'citizen cards' to hit London
UK.gov blows £1.5bn on botched IT projects

High performance access to file storage

More from The Register

next story
Obama allows NSA to exploit 0-days: report
If the spooks say they need it, they get it
Putin tells Snowden: Russia conducts no US-style mass surveillance
Gov't is too broke for that, Russian prez says
Snowden-inspired crypto-email service Lavaboom launches
German service pays tribute to Lavabit
Mounties always get their man: Heartbleed 'hacker', 19, CUFFED
Canadian teen accused of raiding tax computers using OpenSSL bug
Heartbleed exploit, inoculation, both released
File under 'this is going to hurt you more than it hurts me'
Arts and crafts store Michaels says 3 million credit cards exposed in breach
Meanwhile, Target investigators prepare for long process in nabbing hackers
Canadian taxman says hundreds pierced by Heartbleed SSL skewer
900 social insurance numbers nicked, says revenue watchman
prev story

Whitepapers

SANS - Survey on application security programs
In this whitepaper learn about the state of application security programs and practices of 488 surveyed respondents, and discover how mature and effective these programs are.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Top three mobile application threats
Learn about three of the top mobile application security threats facing businesses today and recommendations on how to mitigate the risk.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.