1 / 17

Global Security Working Group Update

Global Security Working Group Update . Global Advisory Committee November 2, 2006 Washington, D.C. Overview. Global Federated Identity and Privilege Management (GFIPM)

dirk
Download Presentation

Global Security Working Group Update

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Global Security Working GroupUpdate Global Advisory Committee November 2, 2006 Washington, D.C.

  2. Overview • Global Federated Identity and Privilege Management (GFIPM) • Outcome—adopt Global Federated Identity and Privilege Management(GFIPM): A Technical Concept Report as a recognized resource • New Wireless Security Resource • Outcome—adopt Applying Wireless Security Practices to Justice Information Sharing as a recognized resource for the field • GSWG Technical Privacy Task Team • Takeaway—Global standards and specifications are under development for privacy • GSWG Framework for Trusted Information Sharing • Takeaway—GSWG framework is evolving

  3. Global Federated Identity and Privilege Management (GFIPM) • Problem statement • How should local, state, tribal, and federal justice and public safety organizations exchange identity information across domains to support real-time sessions or transactions within a secure environment?

  4. Lessons From the GFIPM Demonstration Project • Sponsored by DOJ and DHS to demonstrate essential GFIPM concepts through test implementations • Participants • Criminal Information Sharing Alliance Network (CISA) • Regional Information Sharing Systems® (RISS) • Pennsylvania Justice Network (JNET)

  5. Success from the Field -- JNET

  6. Proposed GAC Resolution—GAC on Behalf of Global • Recognizes GFIPM as the recommended scalable approach for development of interoperable security functions for authentication and privilege management for information exchange among cross-domain justice information sharing systems • Adopts the Global Security Working Group’s “Global Federated Identity and Privilege Management (GFIPM): A Technical Concept Report” as a recommended resource for defining the next steps and activities to further the utility of GFIPM for the justice community • Urges the members of the justice community to consider GFIPM as a potential building block to a distributed security solution when authenticating users between organizations

  7. New Wireless Security Resource • Outcome—adopt “Applying Wireless Security Practices to Justice Information Sharing” as a recognized resource for the field. • Available in CD format • Available at http://it.ojp.gov/GSWG

  8. Goal—Enable Justice Information Sharing and Protect Privacy

  9. What Is the 500-lb Gorilla in the Information Sharing World? • Is it security? • Is it quality of data? • Is it privacy? • Is it disclosure? • OR is it—All of the above

  10. How Do We Go for the Goal? • You need privacy and information quality policies to guide information sharing efforts for your agency or organization

  11. Privacy Technology Focus Group— November 2005, Phoenix, Arizona

  12. The Challenge for Focus Group Members • Identify the most important issues in privacy policy and technology • Narrow the focus to areas that can be addressed within the given time frame • Outline tangible, targeted technology solutions • Develop specific recommendations for action

  13. The Focus Areas of the Group • Access and authentication • Data aggregation and dissemination • Identity theft • Personal safety and protection

  14. What Happens Next? Global Privacy and Information Quality Working Group (GPIQWG) Global Infrastructure/Standards Working Group (GISWG) Global Security Working Group (GSWG)

  15. Global Technical Privacy Task Team

  16. GSWG Framework • Security requirements drive framework • GSWG work evolves from framework • Available resources • Executive Summary • A Framework for Secure Justice Information Sharing

More Related