For Official Use Only (FOUO)

Size: px
Start display at page:

Download "For Official Use Only (FOUO)"

Transcription

1 The FEMA Mission To support our citizens and first responders to ensure that as a nation we work together to build, sustain, and improve our capability to prepare for, protect against, respond to, and recover from, and mitigate all hazards Response / Recovery Officials Must Trust Each Other to Work Together 1

2 Historical Disaster / Emergency Access Controls Federal SLTT CIKR Prior to the release of the NIMS Guideline for the Credentialing of Personnel no uniform process exists for entry decisions Contingency Relocation or Response/Recovery Integration Volunteers 9/11 Commission and Post-Katrina Reports 2

3 HSPD-12 Requirement (Personal Identity Verification (PIV) Credential) Presidential Mandate: August 27, 2004 Applicable to employees of the Federal Executive Branch and associated employees contracted for more than 180 days "Secure and reliable forms of identification" for purposes of this directive means identification that: is issued based on sound criteria for verifying an individual employee's identity; is strongly resistant to identity fraud, tampering, counterfeiting, and terrorist exploitation; can be rapidly authenticated electronically; and is issued only by providers whose reliability has been established by an official accreditation process. The Standard will include graduated criteria, from least secure to most secure, to ensure flexibility in selecting the appropriate level of security for each application HSPD-12 Source: Mandated Very Highly Trusted Cyber-Secure Identities 3

4 Personal Identity Verification Interoperability (Approved by Federal CIO Council May 6, 2009) PIV I Credential: Can be interoperable with the Federal government PIV systems Can be trusted by Federal government relying parties Identity Proofing: Applicant is required to appear in person and Applicant is to provide two forms of identity source documents in original form List of acceptable documents included in Form I-9 At least one of the documents must be a valid State or Federal government-issued picture identification (ID) Non-Federal Issuers (NFI) Identity Authentication PKI Certificate NFI PIV Interoperable credentials must include an Identity Authentication PKI Certificate issued by a Certification Authority (CA) Chains to the Federal Bridge Certification Authority (FBCA) at the Medium Hardware assurance level via cross-certification Source: Personal Identity Verification Interoperability (PIV I) Established Very Highly Trusted Cyber-Secure Identities 44

5 NIMS Guideline for the Credentialing of Personnel Overview: 1. The Guideline provides guidance on GSA-approved PIV/PIV-I credentialing for: Federal, State, Local and Tribal Authorities Emergency Management Assistance Compact (EMAC) Private sector organizations Critical Infrastructure owners and operators Voluntary, not-for-profit, and nongovernmental organizations 2. Both PIV and PIV-I use the same Federal Information Processing Standards (FIPS) 201 open source technology 3. The PIV/PIV-I solution includes: Common terminology and issuance process Trusted identity, attributes, and privileges Interoperability in identification and access control systems 5

6 PIV / PIV-I Interoperable Features PIV F/ERO 6.Expiration Date 1. Color Photograph Contactless Wire PIV-I ERO 2. Security Clearance Designator (If applicable) 3. Integrated circuit chip (ICC) * Requires 6-8 Digit Personal Identification Number (PIN) to unlock * Cardholder unique identifiers *Digital certificates to authenticate the cardholder *Contains facial and fingerprint Biometrics: - Digital Facial Photo - Two encrypted fingerprint templates 5. Affiliation Designator: Contractor, Affiliate, or blank PIV / PIV-I Credentials Support Biometric-based Authentication 66

7 F/ERO Cyber Attributes F/ERO eattribute sponsorship and registered designations depending on NRF, NIPP, NCPIP and NDRF responsibilities Federal / Emergency Response Official: When checking the yes box during PIV issuance, the sponsoring Agency must determine and keep current what NRF, NIPP, NCPIP or NDRF category is being sponsored as depicted in the drop down boxes shown. x x x x YES NO National Continuity Policy Implementation Plan (NCPIP) Essential Government Function Emergency Support Function (ESF) 5 - Emergency Management Contingency Personnel ESF 1 ESF 2 ESF 3 ESF 4 ESF 5 ESF 6 ESF 7 ESF 8 ESF 9 ESF 10 ESF 11 ESF 12 ESF 13 ESF 14 ESF 15 Transportation Communications Public Works and Engineering Firefighting Emergency Management Mass Care, Emergency Assistance, Housing and Human Services Logistics Management and Resource Support Public Health and Medical Services Search and Rescue Oil and Hazardous Materials Response Agriculture and Natural Resources Energy Public Safety and Security Long-Term Recovery External Affairs Recommended Agency Requirements 1. All Agencies are to designate NRF, NIPP, NCPIP, and NDRF Attribute Administrators 2. Attribute Administrators are to actively sponsor or revoke F/ERO registrations in the F/ERO Repository once established National Doctrine F/ERO Population Sector 1 Agriculture and Food Sector 2 Banking and Finance Sector 3 Chemical Sector 4 Commercial Facilities Sector 5 Dams Sector 6 Defense Industrial Base Sector 7 Emergency Services Sector 8 Energy Sector 9 Government Facilities Sector 10 Information Technology Sector 11 National Monuments and Icons Nuclear Reactors, Materials and Sector 12 Waste Sector 13 Postal and Shipping Sector 14 Public Health and Healthcare Sector 15 Communications Sector 16 Transportation Systems Sector 17 Water Sector 18 Critical Manufacturing RSF 1 RSF 2 RSF 3 RSF 4 RSF 5 RSF 6 Planning and Capacity Building Economic Development Health and Social Services Housing Infrastructure Systems Natural and Cultural Resources 7 7

8 PIV-I/FRAC TTWG Targeted Audience Federal Medical Fire and Rescue Transportation / HAZMAT State PIV / PIV-I Identities and F/ERO Attributes Integration Infrastructure Local Military / National Guard / USCG Retail Force Protection Volunteer Resident 8

9 PIV/PIV-I Interoperability & FIPS 201 Technology Logical Access PIV / PIV-I Routine Access and Use- Case Applications Physical Access Disaster / Emergency Access and Use-Case Applications F/EROs Streamlining Routine and Emergency Use-Case Investment Strategies 99

10 F/ERO Electronic Validation Process Federal SLTT Leveraging CAC, PIV, or PIV-I credentials and FIPS 201 mobile validation devices for communication-in or-out risk management decisions JRSOI Contingency Relocation or Response / Recovery Disaster Access CIKR JRSOI = Joint Receiving Staging Operations Integration Volunteers Provides a real-time roster Access Data: accountability traceability liability EOC Geospatial Human Situational Awareness Display Achieving NIMS Credentialing Guideline Interoperability 10 10

11 End State: Mutual Aid Preparedness Incident Management: To get the right people with the right attributes to the right places at the right times thus reducing response/recovery times and promoting restoration to pre-incident quality of life conditions Intended benefit: F/EROs will possess FIPS 201 identity credentials that align with Federal standards and enable e-authentication of identity and disaster response/recovery attribute information for determining access privileges Additional benefit: FIPS 201 identity credentials issued by respective sponsoring agencies in a distributed environment can be integrated into standards-based physical and logical access systems thus eliminating proprietary solutions that can be costly to maintain/sustain over life-cycle investments All-of-Nation/Whole Credentialing and Validation Standardization 11 11

National Capital Region. Electronic Designation and Validation of Federal/Emergency Response Officials (F/EROs) in support of National Preparedness

National Capital Region. Electronic Designation and Validation of Federal/Emergency Response Officials (F/EROs) in support of National Preparedness National Capital Region Electronic Designation and Validation of Federal/Emergency Response Officials (F/EROs) in support of National Preparedness Presented to TechAmerica February 25, 2009 Topics for

More information

NATIONAL INCIDENT MANAGEMENT SYSTEM

NATIONAL INCIDENT MANAGEMENT SYSTEM Guideline for the Credentialing of Personnel NATIONAL INCIDENT MANAGEMENT SYSTEM Guideline for the Credentialing of Personnel i Guideline for the Credentialing of Personnel This page intentionally left

More information

Commonwealth of Virginia Personal Identity Verification-Interoperable (PIV-I) First Responder Authentication Credential (FRAC) Program

Commonwealth of Virginia Personal Identity Verification-Interoperable (PIV-I) First Responder Authentication Credential (FRAC) Program Commonwealth of Virginia Personal Identity Verification-Interoperable (PIV-I) First Responder Authentication Credential (FRAC) Program October 2012 W. Duane Stafford Statewide Credentialing Coordinator

More information

GOALS (2) The goal of this training module is to increase your awareness of HSPD-12 and the corresponding technical standard FIPS 201.

GOALS (2) The goal of this training module is to increase your awareness of HSPD-12 and the corresponding technical standard FIPS 201. PERSONAL IDENTITY VERIFICATION (PIV) OVERVIEW INTRODUCTION (1) Welcome to the Homeland Security Presidential Directive 12 (HSPD-12) Personal Identity Verification (PIV) Overview module, designed to familiarize

More information

NIMS GUIDELINE FOR THE CREDENTIALING OF PERSONNEL DRAFT NOVEMBER 21, 2008

NIMS GUIDELINE FOR THE CREDENTIALING OF PERSONNEL DRAFT NOVEMBER 21, 2008 NIMS GUIDELINE FOR THE CREDENTIALING OF PERSONNEL DRAFT NOVEMBER 21, 2008 TABLE OF CONTENTS OVERVIEW...1 Intended Audience...1 PURPOSE OF CREDENTIALING...2 NIMS Credentialing...2 GUIDELINE...3 SECTION

More information

NOAA HSPD-12 PIV-II Implementation October 23, 2007. Who is responsible for implementation of HSPD-12 PIV-II?

NOAA HSPD-12 PIV-II Implementation October 23, 2007. Who is responsible for implementation of HSPD-12 PIV-II? NOAA HSPD-12 PIV-II Implementation What is HSPD-12? Homeland Security Presidential Directive 12 (HSPD-12) is a Presidential requirement signed on August 27, 2004 requiring Federal agencies comply with

More information

STATE OF LOUISIANA STANDARD OPERATING PROCEDURE. Statewide Credentialing/Access Program. All Hazards Access

STATE OF LOUISIANA STANDARD OPERATING PROCEDURE. Statewide Credentialing/Access Program. All Hazards Access STATE OF LOUISIANA STANDARD OPERATING PROCEDURE Statewide Credentialing/Access Program All Hazards Access STATE OF LOUISIANA STANDARD OPERATING PROCEDURE Critical Infrastructure Owners/Operators Pilot

More information

NIST s FIPS 201: Personal Identity Verification (PIV) of Federal Employees and Contractors Masaryk University in Brno Faculty of Informatics

NIST s FIPS 201: Personal Identity Verification (PIV) of Federal Employees and Contractors Masaryk University in Brno Faculty of Informatics NIST s FIPS 201: Personal Identity Verification (PIV) of Federal Employees and Contractors Masaryk University in Brno Faculty of Informatics Jan Krhovják Outline Introduction and basics of PIV Minimum

More information

Understanding the differences in PIV, PIV-I, PIV-C August 23, 2010

Understanding the differences in PIV, PIV-I, PIV-C August 23, 2010 Federal CIO Council Information Security and Identity Management Committee Identity, Credential, and Access Management Understanding the differences in PIV, PIV-I, PIV-C August 23, 2010 Tim Baldridge AWG

More information

Audio: This overview module contains an introduction, five lessons, and a conclusion.

Audio: This overview module contains an introduction, five lessons, and a conclusion. Homeland Security Presidential Directive 12 (HSPD 12) Overview Audio: Welcome to the Homeland Security Presidential Directive 12 (HSPD 12) overview module, the first in a series of informational modules

More information

Smart Cards and Biometrics in Physical Access Control Systems

Smart Cards and Biometrics in Physical Access Control Systems Smart Cards and Biometrics in Physical Access Control Systems Robert J. Merkert, Sr. Vice President of Sales Americas Biometric Consortium 2005 Conference September 21, 2005 All Company and/or product

More information

An Operational Architecture for Federated Identity Management

An Operational Architecture for Federated Identity Management An Operational Architecture for Federated Identity Management March 2011 Implementing federated identity management and assurance in operational scenarios Federated Identity Solution The Federated identity

More information

HSPD-12 Implementation Architecture Working Group Concept Overview. Version 1.0 March 17, 2006

HSPD-12 Implementation Architecture Working Group Concept Overview. Version 1.0 March 17, 2006 HSPD-12 Implementation Architecture Working Group Concept Overview Version 1.0 March 17, 2006 Table of Contents 1 PIV Lifecycle... 3 2 High Level Component Interaction Diagram... 4 3 PIV Infrastructure

More information

E X E C U T I V E O F F I CE O F T H E P R E S I D EN T

E X E C U T I V E O F F I CE O F T H E P R E S I D EN T EXECUTIVE OFFICE OF THE PRESIDENT OFFICE OF MANAGEMENT AND BUDGET WASHINGTON, D.C. 20503 THE DIRECTOR M-05-24 August 5, 2005 MEMORANDUM FOR THE HEADS OF ALL DEPARTMENTS AND AGENCIES FROM: SUBJECT: Joshua

More information

Enabling Security, Compliance and Efficiency: Achieve Your Federal Identification Credentialing Goals

Enabling Security, Compliance and Efficiency: Achieve Your Federal Identification Credentialing Goals Enabling Security, Compliance and Efficiency: Achieve Your Federal Identification Credentialing Goals executive summary Identity management and verification depend on trusted credentialing technologies.

More information

Identity, Credential, and Access Management. An information exchange For Information Security and Privacy Advisory Board

Identity, Credential, and Access Management. An information exchange For Information Security and Privacy Advisory Board Federal CIO Council Information Security and Identity Management Committee Identity, Credential, and Access Management An information exchange For Information Security and Privacy Advisory Board Deb Gallagher

More information

GAO PERSONAL ID VERIFICATION. Agencies Should Set a Higher Priority on Using the Capabilities of Standardized Identification Cards

GAO PERSONAL ID VERIFICATION. Agencies Should Set a Higher Priority on Using the Capabilities of Standardized Identification Cards GAO United States Government Accountability Office Report to Congressional Requesters September 2011 PERSONAL ID VERIFICATION Agencies Should Set a Higher Priority on Using the Capabilities of Standardized

More information

What Does it Mean to be PIVish in PACS ICAM PIV in E-PACS Guidance v2.0.2 the short form. December 3, 2012

What Does it Mean to be PIVish in PACS ICAM PIV in E-PACS Guidance v2.0.2 the short form. December 3, 2012 Federal CIO Council Information Security and Identity Management Committee IDManagement.gov What Does it Mean to be PIVish in PACS ICAM PIV in E-PACS Guidance v2.0.2 the short form December 3, 2012 HSPD-12

More information

JEM Establishing identity during a disaster: The Emergency Management Assistance Compact and the First Responder Authentication Credential

JEM Establishing identity during a disaster: The Emergency Management Assistance Compact and the First Responder Authentication Credential JEM Establishing identity during a disaster: The Emergency Management Assistance Compact and the First Responder Authentication Credential Jillian A. Williams, JD Aileen B. Xenakis, JD ABSTRACT As emergencies

More information

Type 3 All-Hazard Incident Management System Credentialing Guide

Type 3 All-Hazard Incident Management System Credentialing Guide Florida Division of Emergency Management Type 3 All-Hazard Incident Management System Credentialing Guide DSOC Approved March 7, 2013 Florida Division of Emergency Management Type 3 All-Hazard Incident

More information

STATEMENT OF WORK. For

STATEMENT OF WORK. For STATEMENT OF WORK For Credentialing and Validation Support for DC Homeland Security & Emergency Management Agency (DC HSEMA) IN SUPPORT OF THE GOVERNMENT OF THE DISTRICT OF COLUMBIA November 15, 2012 1.

More information

Practical Challenges in Adopting PIV/PIV-I

Practical Challenges in Adopting PIV/PIV-I UNCLASSIFIED Practical Challenges in Adopting PIV/PIV-I Hank Morris UNCLASSIFIED 2 UNCLASSIFIED // FOUO Purpose and Agenda Purpose: Explore the policy, process, and mechanisms to securely leverage biometrics

More information

Emergency Response Official Credentials A Smart Card Alliance White Paper. Salvatore D Agostino CEO, IDmachines LLC sal@idmachines.

Emergency Response Official Credentials A Smart Card Alliance White Paper. Salvatore D Agostino CEO, IDmachines LLC sal@idmachines. Emergency Response Official Credentials A Smart Card Alliance White Paper Salvatore D Agostino CEO, IDmachines LLC sal@idmachines.com Smart Card Alliance Broad collection of professionals working with

More information

Framework for Emergency Response Officials (ERO) Authentication and Authorization Infrastructure

Framework for Emergency Response Officials (ERO) Authentication and Authorization Infrastructure NIST Interagency Report 7601 Framework for Emergency Response Officials (ERO) Authentication and Authorization Infrastructure Ramaswamy Chandramouli Teresa Schwarzhoff NIST Interagency Report 7601 Framework

More information

Department of Defense INSTRUCTION

Department of Defense INSTRUCTION Department of Defense INSTRUCTION NUMBER 1000.13 January 23, 2014 USD(P&R) SUBJECT: Identification (ID) Cards for Members of the Uniformed Services, Their Dependents, and Other Eligible Individuals References:

More information

Justice Management Division

Justice Management Division Justice Management Division Privacy Impact Assessment for the Personal Identity Verification (PIV) Card System Issued by: Stuart Frisch, Senior Component Official for Privacy Reviewed by: Vance E. Hitch,

More information

Department of Veterans Affairs VA DIRECTIVE 6510 VA IDENTITY AND ACCESS MANAGEMENT

Department of Veterans Affairs VA DIRECTIVE 6510 VA IDENTITY AND ACCESS MANAGEMENT Department of Veterans Affairs VA DIRECTIVE 6510 Washington, DC 20420 Transmittal Sheet VA IDENTITY AND ACCESS MANAGEMENT 1. REASON FOR ISSUE: This Directive defines the policy and responsibilities to

More information

INCIDENT SCENE AUTHORIZED ACCESS USING A MOBILE DEVICE

INCIDENT SCENE AUTHORIZED ACCESS USING A MOBILE DEVICE INCIDENT SCENE AUTHORIZED ACCESS USING A MOBILE DEVICE Karyn Higa-Smith DHS Science and Technology Directorate Homeland Security Advanced Research Projects Agency CyberSecurity Division Session ID: PNG-F42A

More information

HSPD-12 Homeland Security Presidential Directive #12 Overview

HSPD-12 Homeland Security Presidential Directive #12 Overview HSPD-12 Homeland Security Presidential Directive #12 Overview HSPD-12 Stands for Homeland Security Presidential Directive #12. HSPD-12 is the Policy for a Common Identification Standard for Federal Employees

More information

Privacy Impact Assessment of. Personal Identity Verification Program

Privacy Impact Assessment of. Personal Identity Verification Program Official of Federal Governors Reserve seal of of the System. Board Program or application name. Privacy Impact Assessment of Personal Identity Verification Program Personal Identity Verification (PIV)

More information

Federal Identity Management Handbook

Federal Identity Management Handbook September 2005 PUBLIC DRAFT Acknowledgements The Office of Management and Budget and the Federal Identity Credentialing Committee would like to acknowledge the significant contributions of the National

More information

Status: Final. Form Date: 30-SEP-13. Question 1: OPDIV Question 1 Answer: OS

Status: Final. Form Date: 30-SEP-13. Question 1: OPDIV Question 1 Answer: OS Status: Final Form Date: 30-SEP-13 Question 1: OPDIV Question 1 Answer: OS Question 2: PIA Unique Identifier (UID): Question 2 Answer: P-2277902-798208 Question 2A: Name: Question 2A Answer: Identity and

More information

IDaaS: Managed Credentials for Local & State Emergency Responders

IDaaS: Managed Credentials for Local & State Emergency Responders IDaaS: Managed Credentials for Local & State Emergency Responders NextgenID ID*TRUST Platform NextgenID - Headquarters USA 10226 San Pedro, Suite 100 San Antonio, TX 78216 +1 (210) 530-9991 www.nextgenid.com

More information

FOUR PILLARS FOR A SUCCESSFUL PIV ECOSYSTEM

FOUR PILLARS FOR A SUCCESSFUL PIV ECOSYSTEM FOUR PILLARS FOR A SUCCESSFUL PIV ECOSYSTEM Four Pillars that HSPD-12 Programs must consider for a secure, efficient, interoperable PIV enterprise deployment. Continued HSPD-12 Implementation under OMB

More information

DEPARTMENTAL REGULATION

DEPARTMENTAL REGULATION U.S. DEPARTMENT OF AGRICULTURE WASHINGTON, D.C. 20250 DEPARTMENTAL REGULATION SUBJECT: Identity, Credential, and Access Management Number: 3640-001 DATE: December 9, 2011 OPI: Office of the Chief Information

More information

Identity, Credential, and Access Management. Open Solutions for Open Government

Identity, Credential, and Access Management. Open Solutions for Open Government Federal CIO Council Information Security and Identity Management Committee Identity, Credential, and Access Management www.idmanagement.gov Open Solutions for Open Government Judith Spencer Co-Chair, ICAM

More information

Small Business Administration Privacy Impact Assessment

Small Business Administration Privacy Impact Assessment Small Business Administration Privacy Impact Assessment Name of Project: Personal Identity Verification (PIV)/ Homeland Security Presidential Directive 12 (HSPD-12) (Note: This PIA is intended to cover

More information

Federal PKI (FPKI) Community Transition to SHA-256 Frequently Asked Questions (FAQ)

Federal PKI (FPKI) Community Transition to SHA-256 Frequently Asked Questions (FAQ) Federal PKI (FPKI) Community Transition to SHA-256 Frequently Asked Questions (FAQ) Version 1.0 January 18, 2011 Table of Contents 1. INTRODUCTION... 3 1.1 BACKGROUND... 3 1.2 OBJECTIVE AND AUDIENCE...

More information

Interagency Advisory Board Meeting Agenda, September 27, 2010

Interagency Advisory Board Meeting Agenda, September 27, 2010 Interagency Advisory Board Meeting Agenda, September 27, 2010 1. Opening Remarks 2. Transportation Worker Identity Credential Program Status Update (John Schwartz, TWIC PM) 3. Virginia First Responder

More information

ITTF POLICY STATEMENT 2010 (6)

ITTF POLICY STATEMENT 2010 (6) Pat Quinn, Governor State of Illinois Joseph Klinger Homeland Security Advisor Mike Chamness - Chair Illinois Terrorism Task Force 2200 South Dirksen Parkway ~ Springfield, IL 62703-4528 ~ phone: (217)

More information

LARIMER COUNTY COMPREHENSIVE EMERGENCY MANAGEMENT PLAN. Larimer County Emergency Management 200 W. Oak Street Fort Collins, CO 80526. www.larimer.

LARIMER COUNTY COMPREHENSIVE EMERGENCY MANAGEMENT PLAN. Larimer County Emergency Management 200 W. Oak Street Fort Collins, CO 80526. www.larimer. LARIMER COUNTY COMPREHENSIVE EMERGENCY MANAGEMENT PLAN 2015 Larimer County Emergency Management 200 W. Oak Street Fort Collins, CO 80526 www.larimer.org 0 P a g e REVIEW AND CONCURRENCE The following

More information

Identity & Privacy Protection

Identity & Privacy Protection Identity & Privacy Protection An Essential Component for a Federated Access Ecosystem Dan Turissini - CTO, WidePoint Corporation turissd@orc.com 703 246 8550 CyberSecurity One of the most serious economic

More information

U.S. Department of Housing and Urban Development

U.S. Department of Housing and Urban Development U.S. Department of Housing and Urban Development PRIVACY IMPACT ASSESSMENT FOR: PERSONAL IDENTITY VERIFICATION (PIV) PROCESS TECHNOLOGY AND DATABASE IN COMPLIANCE WITH HOMELAND SECURITY PRESIDENTIAL DIRECTIVE

More information

All. Presidential Directive (HSPD) 7, Critical Infrastructure Identification, Prioritization, and Protection, and as they relate to the NRF.

All. Presidential Directive (HSPD) 7, Critical Infrastructure Identification, Prioritization, and Protection, and as they relate to the NRF. Coordinating Agency: Department of Homeland Security Cooperating Agencies: All INTRODUCTION Purpose Scope This annex describes the policies, responsibilities, and concept of operations for Federal incident

More information

THE WHITE HOUSE. Office of the Press Secretary. For Immediate Release February 12, 2013. February 12, 2013

THE WHITE HOUSE. Office of the Press Secretary. For Immediate Release February 12, 2013. February 12, 2013 THE WHITE HOUSE Office of the Press Secretary For Immediate Release February 12, 2013 February 12, 2013 PRESIDENTIAL POLICY DIRECTIVE/PPD-21 SUBJECT: Critical Infrastructure Security and Resilience The

More information

U.S. Department of Energy Washington, D.C.

U.S. Department of Energy Washington, D.C. U.S. Department of Energy Washington, D.C. ORDER DOE O 206.2 Approved: SUBJECT: IDENTITY, CREDENTIAL, AND ACCESS MANAGEMENT (ICAM) 1. PURPOSE. To establish requirements and responsibilities for DOE s identity,

More information

1. The human guard at the access control entry point determines whether the PIV Card appears to be genuine and has not been altered in any way.

1. The human guard at the access control entry point determines whether the PIV Card appears to be genuine and has not been altered in any way. + Expiration date + Agency card serial number (back of card) + Issuer identification (back of card). The PIV Card may also bear the following optional components: + Agency name and/or department + Department

More information

Mission Assurance and Security Services

Mission Assurance and Security Services Mission Assurance and Security Services Dan Galik, Chief Federation of Tax Administrators Computer Security Officer Conference March 2007 Security, privacy and emergency preparedness issues are front page

More information

No additional requirements to use the PIV I card for physical facility access have been identified.

No additional requirements to use the PIV I card for physical facility access have been identified. 1. The RFI request document regarding Driver Authentication states that "any one or more of the following methods" will be required: Personal Identification Number (PIN) Non Federal Personal Identity Verification

More information

Subject: Critical Infrastructure Identification, Prioritization, and Protection

Subject: Critical Infrastructure Identification, Prioritization, and Protection For Immediate Release Office of the Press Secretary The White House December 17, 2003 Homeland Security Presidential Directive / HSPD-7 Subject: Critical Infrastructure Identification, Prioritization,

More information

2. Each server or domain controller requires its own server certificate, DoD Root Certificates and enterprise validator installed.

2. Each server or domain controller requires its own server certificate, DoD Root Certificates and enterprise validator installed. Purpose and Scope The purpose of this policy is to define the roles and responsibilities on implementing the Homeland Security Presidential Directive 12 (HSPD-12) Logical Access Control (LAC) throughout

More information

FEDERAL IDENTITY, CREDENTIAL, AND ACCESS MANAGEMENT AND PERSONAL IDENTITY VERIFICATION (PIV) SOLUTIONS

FEDERAL IDENTITY, CREDENTIAL, AND ACCESS MANAGEMENT AND PERSONAL IDENTITY VERIFICATION (PIV) SOLUTIONS FEDERAL IDENTITY, CREDENTIAL, AND ACCESS MANAGEMENT AND PERSONAL IDENTITY VERIFICATION (PIV) SOLUTIONS Homeland Security Presidential Directive 12 (HSPD 12), FIPS 201, and the latest Federal Identity,

More information

Information Technology Policy

Information Technology Policy Information Technology Policy Identity Protection and Access Management (IPAM) Architectural Standard Identity Management Services ITP Number ITP-SEC013 Category Recommended Policy Contact RA-ITCentral@pa.gov

More information

Larimer County Comprehensive Emergency Management Plan 2015

Larimer County Comprehensive Emergency Management Plan 2015 Larimer County Comprehensive Emergency Management Plan 2015 EMERGENCY SUPPORT FUNCTIONS Emergency Support Functions (ESFs) provide the structure for coordinating county activities in support of incident

More information

DEPARTMENT OF DEFENSE 6000 DEFENSE PENTAGON WASHINGTON, DC 20301-6000

DEPARTMENT OF DEFENSE 6000 DEFENSE PENTAGON WASHINGTON, DC 20301-6000 DEPARTMENT OF DEFENSE 6000 DEFENSE PENTAGON WASHINGTON, DC 20301-6000 CHIEF INFORMATION OFFICER OCT 05 2010 MEMORANDUM FOR SECRETARIES OF THE MILITARY DEPARTMENTS CHAIRMAN OF THE JOrNT CHIEFS OF STAFF

More information

Personal Identity Verification

Personal Identity Verification for the Personal Identity Verification Contact Point Cynthia Sjoberg Program Manager, HSPD 12 Training and Operations Security Division Office of Security Department of Homeland Security (202) 447 5010

More information

Lesson 1: What Is the National Incident Management System (NIMS)? Summary of Lesson Content

Lesson 1: What Is the National Incident Management System (NIMS)? Summary of Lesson Content Lesson 1: What Is the National Incident Management System (NIMS)? Lesson Overview On February 28, 2003, President Bush issued Homeland Security Presidential Directive 5. HSPD 5 directed the Secretary of

More information

US Security Directive FIPS 201

US Security Directive FIPS 201 Security US Security Directive FIPS 201 Compliance Strategies Learn about compliance strategies for governmental agencies in meeting requirements of Homeland Security Presidential Directive 12 (HSPD-12),

More information

STATE HOMELAND SECURITY PROGRAM (SHSP)

STATE HOMELAND SECURITY PROGRAM (SHSP) STATE HOMELAND SECURITY PROGRAM (SHSP) 8, 7, 6, 5, 4, 3, 2, 1, $719,986. $645,216.87 $299,531.2 $216,834.5 $165,12 $169,77.69 $124,138. $152,388. 27 28 29 21 211 212 213 214 State Homeland Security Program

More information

Announcing Approval of Federal Information Processing Standard (FIPS) Publication 201-2,

Announcing Approval of Federal Information Processing Standard (FIPS) Publication 201-2, This document is scheduled to be published in the Federal Register on 09/05/2013 and available online at http://federalregister.gov/a/2013-21491, and on FDsys.gov Billing Code 3510-13 DEPARTMENT OF COMMERCE

More information

NEBRASKA STATE HOMELAND SECURITY STRATEGY

NEBRASKA STATE HOMELAND SECURITY STRATEGY NEBRASKA STATE HOMELAND SECURITY STRATEGY 2014-2016 Nebraska Homeland Security Policy Group/Senior Advisory Council This document provides an overall framework for what the State of Nebraska hopes to achieve

More information

U.S. Department of Homeland Security Protective Security Advisor (PSA) North Carolina District

U.S. Department of Homeland Security Protective Security Advisor (PSA) North Carolina District U.S. Department of Homeland Security Protective Security Advisor (PSA) North Carolina District Securing the Nation s s critical infrastructures one community at a time Critical Infrastructure & Key Resources

More information

ANNEX 3 ESF-3 - PUBLIC WORKS AND ENGINEERING. SC Budget and Control Board, Division of Procurement Services, Materials Management Office

ANNEX 3 ESF-3 - PUBLIC WORKS AND ENGINEERING. SC Budget and Control Board, Division of Procurement Services, Materials Management Office ANNEX 3 ESF-3 - PUBLIC WORKS AND ENGINEERING PRIMARY: SUPPORT: SC Budget and Control Board, Division of Procurement Services, Materials Management Office Clemson University Regulatory and Public Service

More information

Department of Defense INSTRUCTION

Department of Defense INSTRUCTION Department of Defense INSTRUCTION NUMBER 1000.25 March 2, 2016 USD(P&R) SUBJECT: DoD Personnel Identity Protection (PIP) Program References: See Enclosure 1 1. PURPOSE. This instruction: a. Reissues DoD

More information

NEBRASKA EMERGENCY MANAGEMENT AGENCY

NEBRASKA EMERGENCY MANAGEMENT AGENCY NEBRASKA EMERGENCY MANAGEMENT AGENCY Directive Type: Special Number: 6150 Topic: Nebraska Credentialing Policy Issued By: Al Berndt Date: 5 January 2011 Revised: 25 September 2013 Supersedes: Reference:

More information

Integration of Access Security with Cloud- Based Credentialing Services

Integration of Access Security with Cloud- Based Credentialing Services Integration of Access Security with Cloud- Based Credentialing Services Global Identity Summit September 17, 2014 All text, graphics, the selection and arrangement thereof, unless otherwise cited as externally

More information

The Government-wide Implementation of Biometrics for HSPD-12

The Government-wide Implementation of Biometrics for HSPD-12 The Government-wide Implementation of Biometrics for HSPD-12 David Temoshok Director, Identity Policy and Management GSA Office of Governmentwide Policy September 24, 2008 1 The HSPD-12 Mandate Home Security

More information

December 17, 2003 Homeland Security Presidential Directive/Hspd-7

December 17, 2003 Homeland Security Presidential Directive/Hspd-7 For Immediate Release Office of the Press Secretary December 17, 2003 December 17, 2003 Homeland Security Presidential Directive/Hspd-7 Subject: Critical Infrastructure Identification, Prioritization,

More information

Issuance and use of PIV at FAA

Issuance and use of PIV at FAA Issuance and use of PIV at FAA Presented to: Government Smart Card Interagency Advisory Board By: Ed Ebright, Division Manager, ID Media Division Date: May 2011 Agenda What we use PIV Card Status FAA HSPD-12

More information

New Mexico Homeland Security and Emergency Management REQUEST TO USE FEDERAL GRANT FUNDS For Training, Conferences or Exercise Activities

New Mexico Homeland Security and Emergency Management REQUEST TO USE FEDERAL GRANT FUNDS For Training, Conferences or Exercise Activities New Mexico Homeland Security and Emergency Management REQUEST TO USE FEDERAL GRANT FUNDS For Training, Conferences or Exercise Activities NMDHSEM, State Administrative Agency (SAA) PO Box, 27111, Santa

More information

This page intentionally left blank.

This page intentionally left blank. This page intentionally left blank. This page intentionally left blank. CONTENTS List of Tables...vii List of Figures...vii What Is the National Incident Management System?...1 PREFACE... 3 INTRODUCTION

More information

NSF AuthentX Identity Management System (IDMS) Privacy Impact Assessment. Version: 1.1 Date: 12/04/2006. National Science Foundation

NSF AuthentX Identity Management System (IDMS) Privacy Impact Assessment. Version: 1.1 Date: 12/04/2006. National Science Foundation This document has been archived and replaced by piaauthentx1207..0 National Science Foundation NSF AuthentX Identity Management System (IDMS) Privacy Impact Assessment Version: 1.1 Date: 12/04/2006 Table

More information

Personal Identity Verification (PIV) of Federal Employees and Contractors

Personal Identity Verification (PIV) of Federal Employees and Contractors FIPS PUB 201-2 FEDERAL INFORMATION PROCESSING STANDARDS PUBLICATION Personal Identity Verification (PIV) of Federal Employees and Contractors Computer Security Division Information Technology Laboratory

More information

2. APPLICABILITY AND SCOPE

2. APPLICABILITY AND SCOPE Department of Defense DIRECTIVE NUMBER 1000.25 July 19, 2004 Certified Current as of April 23, 2007 USD(P&R) SUBJECT: DoD Personnel Identity Protection (PIP) Program References: (a) DoD Directive 1000.22,

More information

Identity - Privacy - Security

Identity - Privacy - Security Identity - Privacy - Security Systems Security Engineering and Privacy Privacy and Security Workshop 3 Nov 2006 Toronto Recent Digital FIPS Border 201 Motivation Identity Security for Security Privacy

More information

January 2008 National Response Framework: Overview Page i

January 2008 National Response Framework: Overview Page i January 2008 National Response Framework: Overview Page i This document was developed expressly for emergency management practitioners as an overview of the process, roles, and responsibilities for requesting

More information

DEPARTMENT OF DEFENSE GUIDEBOOK FOR CAC-ELIGIBLE CONTRACTORS FOR UNCLASSIFIED NETWORK ACCESS

DEPARTMENT OF DEFENSE GUIDEBOOK FOR CAC-ELIGIBLE CONTRACTORS FOR UNCLASSIFIED NETWORK ACCESS DEPARTMENT OF DEFENSE GUIDEBOOK FOR CAC-ELIGIBLE CONTRACTORS FOR UNCLASSIFIED NETWORK ACCESS 21 NOVEMBER 2014 Contents SCOPE CHAPTER 1 INTRODUCTION... 4 1.1 PURPOSE AND BACKGROUND... 4 1.2 POLICY AND REGULATIONS...

More information

Final Exam for: IS-700.a National Incident Management System (NIMS), I-700

Final Exam for: IS-700.a National Incident Management System (NIMS), I-700 Final Exam for: IS-700.a National Incident Management System (NIMS), I-700 Privacy Act Statement (Public Law 93 579) Please note that you will be required to enter your Social Security number at the completion

More information

Personal Identity Verification (PIV) of Federal Employees and Contractors

Personal Identity Verification (PIV) of Federal Employees and Contractors FIPS PUB 201-1 Change Notice 1 FEDERAL INFORMATION PROCESSING STANDARDS PUBLICATION Personal Identity Verification (PIV) of Federal Employees and Contractors Computer Security Division Information Technology

More information

Personal Identity Verification (PIV) of Federal Employees and Contractors

Personal Identity Verification (PIV) of Federal Employees and Contractors FIPS PUB 201-2 FEDERAL INFORMATION PROCESSING STANDARDS PUBLICATION Personal Identity Verification (PIV) of Federal Employees and Contractors Computer Security Division Information Technology Laboratory

More information

Overview of Homeland Security Funding 1999 to Present National Incident Management System Mandates and Training Requirements

Overview of Homeland Security Funding 1999 to Present National Incident Management System Mandates and Training Requirements Overview of Homeland Security Funding 1999 to Present National Incident Management System Mandates and Training Requirements Jim Weldin Delaware League of Local Governments 1 Homeland Security Grant Funding

More information

NIMS Study Guide. Lesson One: What Is the National Incident Management System (NIMS)? What is NIMS?

NIMS Study Guide. Lesson One: What Is the National Incident Management System (NIMS)? What is NIMS? NIMS Study Guide Lesson One: What Is the National Incident Management System (NIMS)? What is NIMS? NIMS is a comprehensive, national approach to incident management that is applicable at all jurisdictional

More information

Moving to Multi-factor Authentication. Kevin Unthank

Moving to Multi-factor Authentication. Kevin Unthank Moving to Multi-factor Authentication Kevin Unthank What is Authentication 3 steps of Access Control Identification: The entity makes claim to a particular Identity Authentication: The entity proves that

More information

U.S. DEPARTMENT OF COMMERCE UNITED STATES PATENT AND TRADEMARK OFFICE. Privacy Impact Assessment

U.S. DEPARTMENT OF COMMERCE UNITED STATES PATENT AND TRADEMARK OFFICE. Privacy Impact Assessment U.S. DEPARTMENT OF COMMERCE UNITED STATES PATENT AND TRADEMARK OFFICE Privacy Impact Assessment Personal Identity Verification System Card Management System (HSPD12-PIVS/CMS) PTOI-007-00 September 18,

More information

National Incident Management System (NIMS) Update. Matthew P Bernard NIMS Coordinator FEMA Region X April 2012

National Incident Management System (NIMS) Update. Matthew P Bernard NIMS Coordinator FEMA Region X April 2012 National Incident Management System (NIMS) Update 1 Matthew P Bernard NIMS Coordinator FEMA Region X April 2012 Presentation Agenda Overview of PPD 8 National Preparedness NIMS Overview NIMS Update 2012

More information

Michigan State Police Emergency Management & Homeland Security. Infrastructure Analysis & Response Section. Sgt. Bruce E. Payne

Michigan State Police Emergency Management & Homeland Security. Infrastructure Analysis & Response Section. Sgt. Bruce E. Payne Michigan State Police Emergency Management & Homeland Security Infrastructure Analysis & Response Section Sgt. Bruce E. Payne Presidential Directive On December 17, 2003, President Bush issued Homeland

More information

The following NIMS FAQ was prepared by NIMS on-line, which has additional information at www.nimsonline.com.

The following NIMS FAQ was prepared by NIMS on-line, which has additional information at www.nimsonline.com. The National Incident Management System is a structure for management large-scale or multi-jurisdictional incidents. It is being phased in at the federal, state and local levels. Eventually, any jurisdiction

More information

Identity and Access Management Initiatives in the United States Government

Identity and Access Management Initiatives in the United States Government Identity and Access Management Initiatives in the United States Government Executive Office of the President November 2008 Importance of Identity Management within the Federal Government "Trusted Identity"

More information

A Uniform Identification Badge for Medical and Emergency Workers: Managing a Regional Personal Identification Verification Program

A Uniform Identification Badge for Medical and Emergency Workers: Managing a Regional Personal Identification Verification Program A Uniform Identification Badge for Medical and Emergency Workers: Managing a Regional Personal Identification Verification Program Rasa Silenas Texas A&M Health Science Center Eric Epley Southwest Texas

More information

Final Exam for: IS-700.a: National Incident Management System (NIMS) An Introduction

Final Exam for: IS-700.a: National Incident Management System (NIMS) An Introduction Final Exam for: IS-700.a: National Incident Management System (NIMS) An Introduction Each time that this test is taken online, questions and answers are scrambled to protect the integrity of the exam Completion

More information

Strong Authentication for PIV and PIV-I using PKI and Biometrics

Strong Authentication for PIV and PIV-I using PKI and Biometrics Strong Authentication for PIV and PIV-I using PKI and Biometrics Adam Shane PSP, Product Manager and Sr. Systems Design Architect AMAG Technology Bob Fontana CSCIP/G, Vice President-Federal Identity Codebench/HID

More information

Personal Identity Verification (PIV) of Federal Employees and Contractors DRAFT

Personal Identity Verification (PIV) of Federal Employees and Contractors DRAFT 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 FIPS PUB 201-2 FEDERAL INFORMATION PROCESSING STANDARDS PUBLICATION Personal Identity Verification (PIV) of Federal Employees and

More information

HOMELAND SECURITY PRESIDENTIAL DIRECTIVE 12 (HSPD-12) PROGRAM

HOMELAND SECURITY PRESIDENTIAL DIRECTIVE 12 (HSPD-12) PROGRAM Department of Veterans Affairs Washington, DC 20420 VA HANDBOOK 0735 Transmittal Sheet Version 5.5 HOMELAND SECURITY PRESIDENTIAL DIRECTIVE 12 (HSPD-12) PROGRAM 1. REASON FOR ISSUE: This handbook defines

More information

Electronic Prescribing of Controlled Substances: Establishing a Secure, Auditable Chain of Trust

Electronic Prescribing of Controlled Substances: Establishing a Secure, Auditable Chain of Trust Electronic Prescribing of Controlled Substances: Establishing a Secure, Auditable Chain of Trust Imprivata Confirm ID and the DEA Interim Final Rule on EPCS Technology requirements to comply with the DEA

More information

Establishing A Secure & Resilient Water Sector. Overview. Legislative Drivers

Establishing A Secure & Resilient Water Sector. Overview. Legislative Drivers Establishing A Secure & Resilient Water Sector December 14-15, 2010 LWQTC Overview Key Drivers Legislation Presidential Directives AWWA & Sector Initiatives Standards & Guidance Mutual Aid & Assistance

More information

Homeland Security Information Network (HSIN) Theresa Phillips HSIN Program Manager

Homeland Security Information Network (HSIN) Theresa Phillips HSIN Program Manager Homeland Security Information Network (HSIN) Theresa Phillips HSIN Program Manager Strategic Overview HSIN Mission: HSIN provides a common network platform for gathering, fusing, analyzing and reporting

More information

North Carolina Emergency Management

North Carolina Emergency Management North Carolina Emergency Management North Carolina Incidents North Carolina Incidents Primary mission is consequence management Must be prepared to: Search and Rescue Provide Mass Care Protect Life and

More information

A Smart Card Alliance Physical Access Council and Identity Council White Paper. Publication Date: January 2011 Publication Number: PAC-11001

A Smart Card Alliance Physical Access Council and Identity Council White Paper. Publication Date: January 2011 Publication Number: PAC-11001 Personal Identity Verification Interoperability (PIV-I) for Non-Federal Issuers: Trusted Identities for Citizens across States, Counties, Cities and Businesses A Smart Card Alliance Physical Access Council

More information

Chapter 7. Response & Recovery. 9/11 Response. 9/11 Response (cont.) Chapter 7 Response and Recovery Fall 2007. Introduction to Homeland Security

Chapter 7. Response & Recovery. 9/11 Response. 9/11 Response (cont.) Chapter 7 Response and Recovery Fall 2007. Introduction to Homeland Security Introduction to Homeland Security Chapter 7 Response & Recovery 9/11 Response The 9/11 and anthrax attacks exposed weaknesses in the US interagency response system, outside of regular operations There

More information

NIST Cyber Security Activities

NIST Cyber Security Activities NIST Cyber Security Activities Dr. Alicia Clay Deputy Chief, Computer Security Division NIST Information Technology Laboratory U.S. Department of Commerce September 29, 2004 1 Computer Security Division

More information