Base Access Smart Identity Card Program November 16, 2010 Jay Orgeron BISA Program Manager 2004-2006 Mark pages according to the proprietary level of information as described in Company Procedure J103 (or remove)
Topics History Base Access What Is It? Operations Today Potentials for Tomorrow 2 A Biometrically Enabled Smart ID Card Program Used Throughout Iraq Today
YOU RE SENDING ME WHERE!!?? Me, waiting for Al Fallujah, Iraq One for these to my next destination 3
Base Access History August 2004 - Multipurpose Access Card (MPAC) in development for the Army Rapid Equipping Force (AREF) Prototype Iraqi National ID card Instantiate and print 3500 biometrically enabled identity cards Demonstrate capabilities in-country December 20, 2004 Insurgent bombing of the Marez Dining Facility January 2005 - Deputy Secretary of Defense, Paul Wolfowitz mandates a secure base access program be implemented throughout Iraq immediately. January 2005 - AREF directs all MPAC work be shifted to support the Biometric Identification System for Access (BISA) now Base Access July 2005 Initial deployments of Base Access card printing components 4
Base Access History (Con t) June 2005 Testing and Installation of the CMS component at the Biometric Fusion Center, Clarksburg, WV. August - October 2005 Equipment departs Williamsburg, VA for sites throughout Iraq Destination Pallets Date Destination Pallets Date Victory Base Camp 7 8/24/05 Diamondback Mariz 6 10/25/05 International 7 8/5/05 Al Asad 6 9/20/05 Zone Camp Anaconda 7 8/17/05 Al Fallujah 6 9/23/05 Taji 7 10/25/05 Taqqadum 6 10/6/05 Speicher 6 10/12/05 Tallil 6 10/18/05 5
Base Access What Is It? 2. VETTING Used to verify enrollees. Hits are used for intelligence purposes 3. EFT File Preparation Enrolled EFT files prepared and transmitted to the CMS 1. ENROLLMENT 4. EFT PROCESSING CMS Server processes EFT files, and prepares files for printing the BISA Card Personnel Data Facial Image and Biometrics captured 4th ID Soldier Verifying Identification Papers 6. VERIFICATION BISA Cards issued to enrollees enrollees. Cards used to verify identity via cards and verification stations 6 5. CARD PRINTING CMS Client instantiates the card chip and prints the BISA ID Card
Base Access Enrollment Enrollment - Occurred in country and provided the enrollee s fingerprints, facial images and personal data. EBTS files were transmitted to the Biometric Fusion Center (BFC) (Now the Biometrics Identity Management Agency (BIMA) in Clarksburg, WV for vetting 7
Base Access Vetting Vetting EFT files are received in Clarksburg, WV by the Transaction Manager and transmitted to the DOD ABIS and FBI IAFIS to ensure personnel are not wanted or on a Watch List Base specific adjudication web site is used to approve cards at the base level Transaction Manager age DOD ABIS Adjudication Web Service FBI IAFIS 8
Base Access EFT File Preparation EFT File Preparation - Adjudicated EFT files are forwarded to the Base Access Card Management Server (CMS) located at the BIMA In Clarksburg, WV where data is extracted and placed into EFT files for transmission to the Card Management System Client at the appropriate site in Iraq CMS Server window used to prepare EBT data for card printing 9
Smart Cards DoD Common Access Card Initial BISA card Axalto 32K e-gate Personal Container demographics (Name, Issue Date, Expiration Date) Biometric Container (Four Fingerprints, Facial Image) PKI certificates Card Capability Container (Card Unique Identifier) PIN card added for Coalition Forces personnel Today s Base Access Card - Gemalto 64K e-gate Personal Container demographics (Name, Issue date, Expiration Date, Arabic added) Biometric Container (Four Fingerprints, Facial Image, IRIS) PKI certificates Card Capability Container (Card Unique Identifier) SPOT barcode added Added Baghdad International Airport and Weapons Card (Different enrollment and Certificate Authority) 10
Smart Card Security X509 PKI Certificates used to sign biometrics Hardware Security Modules (HSM) to secure communications between CMS Server and Client components. HSM (Internal) to CMS server to generate PKI certificates. Attribute Authority - wraps a biometric object in a digitally signed X9.84 attribute certificate From Here To Here 11
Base Access Card Printing Card Printing - In Country, the CMS data file was downloaded to the CMS Client machine where the smart card was instantiated and card printed. To date over 1,000,000 cards printed and issued. 12
Base Access BISA Cards Card modifications over the years Added Arabic Authorized Locations Barcodes FASC-N IRIS BISA PIN Card Card Revocation 13
Base Access Fixed Verification Portals Laptop Portal Standoff Portal Panasonic Toughbook 150 ft Crossover Cable to Anywhere USB/5 Port Hub 5 port USB Hub UPS Site Power 220 V/DC 150 ft Power Cable 14 What was envisioned Verification Portal - ECP 13 Camp Slayer, Iraq
Portable Verification Device BISA Handheld Verification Device Al Asad, Iraq BISA OIC and NCOIC Al Fallujah, Iraq ECP 3 Al Fallujah, Iraq ECP 3 15
Initial Deployment CMS Hardware Delivered 2 CMS Servers (Ops & test) 22 CA workstations 10 CMS Client workstations 10 CMS Card Printers Preliminary printer consumables HSMs 250,000 smart cards BISA Portals 260 System Enclosures 130 Rugged Notebooks & Docking Stations 130 DFR 200 Fingerprint Scanners 130 smart card readers 130 PIN Pads 130 Anywhere USB Hubs 130 European UPS Power Strips, Ethernet cabling 130 150 ft power cords Spares 400 Portable Handheld Biometric Verification Devices 16
Operations Today & Tomorrow 17 Deployed the card printing and verifications systems to an additional 60 Tier II sites throughout Iraq DOD CACs Originally issued using GCSIS 2.0 standard End of 2009, CAC no longer issued using the GCSIS 2.0 standard, but the PIV/HSPD-12 standard Drove immediate modification to the base access systems to read the PIV/HSPD-12 compliant CACs Reviewing vendor supplied PIV cards as an option Additional variations include: Iraqi Weapons Card Baghdad International Airport (BIAP) Workers ID In Country repair saves $ Card Printers Handheld verifiers
In Summary History Base Access What Is It? A Brief History Operations Today Memorial to the victims of the Marez Dining Facility bombing 20 Dec 2004 Potentials for Tomorrow 18 There has never been another insurgent penetration on a US military installation in Iraq since the deployment of the base access system.
19 Questions
Mark pages according to the proprietary level of information as described in Company Procedure J103 (or remove)