u.s. general services administration federal technology service november 9, 1999 judith spencer...
TRANSCRIPT
![Page 1: U.S. General Services Administration Federal Technology Service November 9, 1999 Judith Spencer Director, Center for Governmentwide Security Office of](https://reader036.vdocuments.site/reader036/viewer/2022082711/56649eb25503460f94bb8c74/html5/thumbnails/1.jpg)
U.S. General Services Administration
Federal Technology ServiceNovember 9, 1999
Judith SpencerDirector, Center for Governmentwide SecurityOffice of Information Security
![Page 2: U.S. General Services Administration Federal Technology Service November 9, 1999 Judith Spencer Director, Center for Governmentwide Security Office of](https://reader036.vdocuments.site/reader036/viewer/2022082711/56649eb25503460f94bb8c74/html5/thumbnails/2.jpg)
• Paperwork Reduction Act
• National Performance Review’s Access America
• FPKISC Access With Trust
• Government Paperwork Elimination Act
Mandates for On-Line Access
![Page 3: U.S. General Services Administration Federal Technology Service November 9, 1999 Judith Spencer Director, Center for Governmentwide Security Office of](https://reader036.vdocuments.site/reader036/viewer/2022082711/56649eb25503460f94bb8c74/html5/thumbnails/3.jpg)
Facilitates secure on-line access to
Government information and services by
the Public through the use of public key
technology.
The ACES Concept
![Page 4: U.S. General Services Administration Federal Technology Service November 9, 1999 Judith Spencer Director, Center for Governmentwide Security Office of](https://reader036.vdocuments.site/reader036/viewer/2022082711/56649eb25503460f94bb8c74/html5/thumbnails/4.jpg)
• Provides a Government-wide Public Key Infrastructure.
• Provides auxiliary services that participating agencies may need to make use of the Infrastructure.
• Reduces overall costs by aggregating Government requirements.
ACES Features
![Page 5: U.S. General Services Administration Federal Technology Service November 9, 1999 Judith Spencer Director, Center for Governmentwide Security Office of](https://reader036.vdocuments.site/reader036/viewer/2022082711/56649eb25503460f94bb8c74/html5/thumbnails/5.jpg)
• Identity Proofing
• Certificate Issuance
• On-line Validation
• Access to Information
• Compliance with Federal Requirements
• Validation Pricing Options
The ACES PKI
![Page 6: U.S. General Services Administration Federal Technology Service November 9, 1999 Judith Spencer Director, Center for Governmentwide Security Office of](https://reader036.vdocuments.site/reader036/viewer/2022082711/56649eb25503460f94bb8c74/html5/thumbnails/6.jpg)
Any Web-basedGovernmentApplication
Access FederalSystem with ACES
Return PersonalizedGovernment Benefits/Information
Validate ElectronicID (ACES)
Secure Web
Citizen
Getting Services
![Page 7: U.S. General Services Administration Federal Technology Service November 9, 1999 Judith Spencer Director, Center for Governmentwide Security Office of](https://reader036.vdocuments.site/reader036/viewer/2022082711/56649eb25503460f94bb8c74/html5/thumbnails/7.jpg)
• Controlled by the application
• Application binds certificate identity to specific record data through second level proofing
• Application determines access based on certificate status and identity
• Application retains the right to deny access at any time
Access to Information
![Page 8: U.S. General Services Administration Federal Technology Service November 9, 1999 Judith Spencer Director, Center for Governmentwide Security Office of](https://reader036.vdocuments.site/reader036/viewer/2022082711/56649eb25503460f94bb8c74/html5/thumbnails/8.jpg)
• Procurement Integrity Act
• OMB Circular A-130– Paperwork Reduction Act
– Computer Security Act
– Privacy Act
• OMB Circular A-123– Federal Managers Financial Integrity Act
• Cryptographic and Digital Signature Standards (FIPS 140-1 and 186)
Compliance with Federal Requirements
![Page 9: U.S. General Services Administration Federal Technology Service November 9, 1999 Judith Spencer Director, Center for Governmentwide Security Office of](https://reader036.vdocuments.site/reader036/viewer/2022082711/56649eb25503460f94bb8c74/html5/thumbnails/9.jpg)
• Task Order Based Competition– Certificate Issuance for users
• Industry Partner provided Identity Proofing• Government provided Identity Proofing
– Certificate Issuance for agency applications
• Transaction-based validation pricing– Set by Contract. Common across all awardees.
– Transaction Costs are Volume Banded. • Higher use, lower rates• $1.20 to $0.40 per transaction
ACES Pricing Scheme
![Page 10: U.S. General Services Administration Federal Technology Service November 9, 1999 Judith Spencer Director, Center for Governmentwide Security Office of](https://reader036.vdocuments.site/reader036/viewer/2022082711/56649eb25503460f94bb8c74/html5/thumbnails/10.jpg)
Agency Application CertificateCertificates issued to and renewed by Agencies for applications participatingin ACES.
Supplemental PKI ServicesSupport for other system integrationand PKI requirements such as:products, services, programming, andother systems integration support asmay be required to enable Agencyapplications to implement PKI solutionsthat meet unique requirements(e.g. encryption
Technology UpdatesIncorporation of newalgorithms, formats, technologies,mechanisms, and media
Ad Hoc DataAd hoc data collection,analysis, and/or dissemination services related to ACES infrastructure services.
Hardware TokensOptional hardware tokenfor generation of key pairsand storage of private key.
Auxiliary Services
Task Order Based
![Page 11: U.S. General Services Administration Federal Technology Service November 9, 1999 Judith Spencer Director, Center for Governmentwide Security Office of](https://reader036.vdocuments.site/reader036/viewer/2022082711/56649eb25503460f94bb8c74/html5/thumbnails/11.jpg)
ABAecom, America Online, Baltimore Technologies, Booz-Allen Hamilton, Computer Sciences Corp. (CSC), Cygnacom Solutions, Entrust, Microsoft, NetscapeNational Computer Systems, Price Waterhouse Coopers, Valicert Inc., Xcert International Inc.
Cygnacom Solutions, DataKey, Litronics, nCipher, Netscape Verisign, Inc
Industry Partners
![Page 12: U.S. General Services Administration Federal Technology Service November 9, 1999 Judith Spencer Director, Center for Governmentwide Security Office of](https://reader036.vdocuments.site/reader036/viewer/2022082711/56649eb25503460f94bb8c74/html5/thumbnails/12.jpg)
• ACES provides strong authentication using identity-based digital signature certificates.
• Agencies should consider the need for such strong authentication when deciding which on line applications need ACES protection.
• Five categories of Government to Public communications have been identified by OMB that could require this strong authentication.
Defining Need
![Page 13: U.S. General Services Administration Federal Technology Service November 9, 1999 Judith Spencer Director, Center for Governmentwide Security Office of](https://reader036.vdocuments.site/reader036/viewer/2022082711/56649eb25503460f94bb8c74/html5/thumbnails/13.jpg)
• Benefits
• Grants
• Filings
• Personal/Private/Proprietary Information
• Procurement
Five Communication Categories
![Page 14: U.S. General Services Administration Federal Technology Service November 9, 1999 Judith Spencer Director, Center for Governmentwide Security Office of](https://reader036.vdocuments.site/reader036/viewer/2022082711/56649eb25503460f94bb8c74/html5/thumbnails/14.jpg)
Agency Recognizes a
Need
ACES PKI Services Auxiliary PKI
Services
PKI Needs Analysis
Sign Relying Party Agreement
Contacts OIS
Sign MOU w/OIS
OIS Contacts
Partners to Activate
Notifies FEDCAC
Partners Provide Billing to
FTS
FTS aggregates
charges, Bills Agency, and
pays Partners
Finalize SOWDevelop Task OrderConduct EvaluationAward Task Order
Getting ACES Services
![Page 15: U.S. General Services Administration Federal Technology Service November 9, 1999 Judith Spencer Director, Center for Governmentwide Security Office of](https://reader036.vdocuments.site/reader036/viewer/2022082711/56649eb25503460f94bb8c74/html5/thumbnails/15.jpg)
Initial ACES Award 9/10/99
Source Selection Ends 10/27/99
Certification & Accreditation 9/20/99 - 1/27/00
Certificate Issuance begins 12/20/99
Task Order CLINS Available NOW
Program Timeframes
![Page 16: U.S. General Services Administration Federal Technology Service November 9, 1999 Judith Spencer Director, Center for Governmentwide Security Office of](https://reader036.vdocuments.site/reader036/viewer/2022082711/56649eb25503460f94bb8c74/html5/thumbnails/16.jpg)
ACES Program Manager
Stanley Choffrey 202-708-7943 [email protected]
ACES Contracting OfficerJeanne Davis 781-860-7138 [email protected]
Center for Governmentwide SecurityJudith Spencer 202-708-5600 [email protected]
Contact Information