Base Access. Smart Identity Card Program. November 16, Jay Orgeron. BISA Program Manager

Similar documents
Using the Prototype TWIC for Access A System Integrator Perspective

FiXs - Federated and Secure Identity Management in Operation

Single Secure Credential to Access Facilities and IT Resources

TWIC / CAC Wiegand 58 bit format

DoD Common Access Card Convergence of Technology Access/E-Commerce/Biometrics

Transportation Worker Identification Credential (TWIC) Steve Parsons Deputy Program Manager, TWIC July 27, 2005

Strategies for the Implementation of PIV I Secure Identity Credentials

Using Workspace ONE PIV-D Manager. VMware Workspace ONE UEM 1811 VMware Workspace ONE PIV-D Manager

TWIC Update to Sector Delaware Bay AMSC 8 June 2018

Secure Lightweight Activation and Lifecycle Management

Helping Meet the OMB Directive

IMPLEMENTING AN HSPD-12 SOLUTION

Unified PACS with PKI Authentication, to Assist US Government Agencies in Compliance with NIST SP (HSPD 12) in a Trusted FICAM Platform

Next Generation Physical Access Control Systems A Smart Card Alliance Educational Institute Workshop

Interagency Advisory Board Meeting Agenda, Tuesday, November 1, 2011

Version 3.4 December 01,

Services Directorate Dual Persona User Guide for DoD Enterprise Portal Service Military Sealift Command Version September 8, 2016

Office of Transportation Vetting and Credentialing. Transportation Worker Identification Credential (TWIC)

Biometric Enabling Capabilities Increment 1 (BEC Inc 1) Information Exchange. LTC Eric Pavlick PM, Biometric Enabling Capabilities

Biometrics In Identity Management Concepts To Applications Artech House Information Security And Privacy

Will Federated Cross Credentialing Solutions Accelerate Adoption of Smart Card Based Identity Solutions?

Biometric Standards for DoD Operational Requirements

Command Center Access Control Software

Application Virtualization Hosting Environment

FIPS and NIST Special Publications Update. Smart Card Alliance Webinar November 6, 2013

VMware PIV-D Manager Deployment Guide

NGI and Rap Back Focus Group Briefing

Biometric Use Case Models for Personal Identity Verification

Mobile ID, the Size Compromise

Credentialing Project Technical Architecture

FBI Next Generation Identification (NGI)

DHS ID & CREDENTIALING INITIATIVE IPT MEETING

Federated Access. Identity & Privacy Protection

Secure Web Fingerprint Transaction (SWFT) Access, Registration, and Testing Procedures

Coesys Enrollment Solutions for Government Programs

IAFIS Overview. NGI Development. NGI Capabilities. NGI Implementation. NGI User Support UNCLASSIFIED 2

Interagency Advisory Board Meeting Agenda, Wednesday, February 27, 2013

Revision 2 of FIPS 201 and its Associated Special Publications

Secure Government Computing Initiatives & SecureZIP

GLOBALPLATFORM CASE STUDY. Overview. Development of the Solution. The Standard for Smart Card Infrastructure

TWIC Transportation Worker Identification Credential. Overview

IAB Minutes Page 1 of 6 April 18, 2006

Joseph Cevetello, Chief Information Officer, Information Systems Department Subject: Bid Award for the Purchase of 345 Mobile Phone Tablets

(PIV-I) Trusted ID across States, Counties, Cities and Businesses in the US

2016 Global Identity Summit Pre-Conference Paper Biometric Interoperability 2021

Cryptologic and Cyber Systems Division

IDCore. Flexible, Trusted Open Platform. financial services & retail. Government. telecommunications. transport. Alexandra Miller

Shock Isolated Environmentally Sealed Rugged Airline carry on Sized Case (9 x 14 x 22 ).

SOF U OUTLOOK WEB ACCESS (OWA) AND SSL VPN HOME USERS MANUAL

Keith Ward Northrop Grumman IT Smart Card Security Solutions June 04, 2002

Information Technology (IT) Services Worksheet. PART I User Information

DoDD DoDI

Next Generation Physical Access Control Systems A Smart Card Alliance Educational Institute Workshop

g6 Authentication Platform

Velocity Certificate Checking Service Installation Guide & Release Notes

TWIC Implementation Challenges and Successes at the Port of LA. July 20, 2011

Securing Federal Government Facilities A Primer on the Why, What and How of PIV Systems and PACS

DoD Information Technology Security Certification and Accreditation Process (DITSCAP) A presentation by Lawrence Feinstein, CISSP

Strong Authentication for Physical Access using Mobile Devices

Biometric Center of Excellence (BCOE)

Physical Access Control Systems and FIPS 201

Gold finger: Fingerprints lead biometric authentication

Enterprise Adoption Best Practices

Multiple Credential formats & PACS Lars R. Suneborn, Director - Government Program, HIRSCH Electronics Corporation

Interagency Advisory Board Meeting Agenda, February 2, 2009

UNCLASSIFIED / FOUO UNCLASSIFIED / FOUO

mobichk powered by White Paper address 345 Plainfield Avenue, Suite 204 Edison, New Jersey, phone

Biometrics 101. Presented by The International Biometrics & Identification Association (IBIA)

BCA MNJIS Resources and Information Sharing Initiatives MCPA CLEO AND COMMAND ACADEMY DECEMBER 4TH, 2014 CAMP RIPLEY, MINNESOTA

DoD & FiXs : Identity Superiority

Applicant User Guide

DoD Common Access Card Information Brief. Smart Card Project Managers Group

ADmitMac PKI Executive Summary. 2010, Thursby Software Systems, Inc.

Physical Access End-to-End Security

EU Passport Specification

L-1 Fingerprint Reader Solutions. V-Flex 4G

5. Execute the attack and obtain unauthorized access to the system.

TWIC Reader Technology Phase

Secure Web Fingerprint Transaction (SWFT) Frequently Asked Questions

Based on all adults [n=1907]

The Open Protocol for Access Control Identification and Ticketing with PrivacY

The Leader in Unified Access and Intrusion

Secure Solutions. EntryPointTM Access Readers TrustPointTM Access Readers EntryPointTM Single-Door System PIV-I Compatible Cards Accessories

About MagTek. PIN Entry & Management

DEFENSE INFORMATION SYSTEMS AGENCY P. O. BOX 549 Fort Meade, Maryland

Interagency Advisory Board Meeting Agenda, Wednesday, May 23, 2012

AIM Application v. 2.4 User Manual

PKI Credentialing Handbook

Registry of USG Recommended Biometric Standards

Corporate Commitment to Excellence

National Biometric Security Project

Common Access Card for Xerox VersaLink Printers

BioPassport TM Enterprise Server

FRAMEWORK FOR CERTIFICATION OF BIOMETRIC FINGERPRINT SCANNERS. (PUBLIC)

DMDC Card Technologies & Identification Systems Division. Evaluation of NIST SP End State Reference Implementation. Version 1.

Nov ember 14, Memo

Integrating Complex Regional Information Sharing Programs

How Next Generation Trusted Identities Can Help Transform Your Business

The Match On Card Technology

Technical Bulletin: CAC Data Model Change in 144K Dual Interface Cards

Transcription:

Base Access Smart Identity Card Program November 16, 2010 Jay Orgeron BISA Program Manager 2004-2006 Mark pages according to the proprietary level of information as described in Company Procedure J103 (or remove)

Topics History Base Access What Is It? Operations Today Potentials for Tomorrow 2 A Biometrically Enabled Smart ID Card Program Used Throughout Iraq Today

YOU RE SENDING ME WHERE!!?? Me, waiting for Al Fallujah, Iraq One for these to my next destination 3

Base Access History August 2004 - Multipurpose Access Card (MPAC) in development for the Army Rapid Equipping Force (AREF) Prototype Iraqi National ID card Instantiate and print 3500 biometrically enabled identity cards Demonstrate capabilities in-country December 20, 2004 Insurgent bombing of the Marez Dining Facility January 2005 - Deputy Secretary of Defense, Paul Wolfowitz mandates a secure base access program be implemented throughout Iraq immediately. January 2005 - AREF directs all MPAC work be shifted to support the Biometric Identification System for Access (BISA) now Base Access July 2005 Initial deployments of Base Access card printing components 4

Base Access History (Con t) June 2005 Testing and Installation of the CMS component at the Biometric Fusion Center, Clarksburg, WV. August - October 2005 Equipment departs Williamsburg, VA for sites throughout Iraq Destination Pallets Date Destination Pallets Date Victory Base Camp 7 8/24/05 Diamondback Mariz 6 10/25/05 International 7 8/5/05 Al Asad 6 9/20/05 Zone Camp Anaconda 7 8/17/05 Al Fallujah 6 9/23/05 Taji 7 10/25/05 Taqqadum 6 10/6/05 Speicher 6 10/12/05 Tallil 6 10/18/05 5

Base Access What Is It? 2. VETTING Used to verify enrollees. Hits are used for intelligence purposes 3. EFT File Preparation Enrolled EFT files prepared and transmitted to the CMS 1. ENROLLMENT 4. EFT PROCESSING CMS Server processes EFT files, and prepares files for printing the BISA Card Personnel Data Facial Image and Biometrics captured 4th ID Soldier Verifying Identification Papers 6. VERIFICATION BISA Cards issued to enrollees enrollees. Cards used to verify identity via cards and verification stations 6 5. CARD PRINTING CMS Client instantiates the card chip and prints the BISA ID Card

Base Access Enrollment Enrollment - Occurred in country and provided the enrollee s fingerprints, facial images and personal data. EBTS files were transmitted to the Biometric Fusion Center (BFC) (Now the Biometrics Identity Management Agency (BIMA) in Clarksburg, WV for vetting 7

Base Access Vetting Vetting EFT files are received in Clarksburg, WV by the Transaction Manager and transmitted to the DOD ABIS and FBI IAFIS to ensure personnel are not wanted or on a Watch List Base specific adjudication web site is used to approve cards at the base level Transaction Manager age DOD ABIS Adjudication Web Service FBI IAFIS 8

Base Access EFT File Preparation EFT File Preparation - Adjudicated EFT files are forwarded to the Base Access Card Management Server (CMS) located at the BIMA In Clarksburg, WV where data is extracted and placed into EFT files for transmission to the Card Management System Client at the appropriate site in Iraq CMS Server window used to prepare EBT data for card printing 9

Smart Cards DoD Common Access Card Initial BISA card Axalto 32K e-gate Personal Container demographics (Name, Issue Date, Expiration Date) Biometric Container (Four Fingerprints, Facial Image) PKI certificates Card Capability Container (Card Unique Identifier) PIN card added for Coalition Forces personnel Today s Base Access Card - Gemalto 64K e-gate Personal Container demographics (Name, Issue date, Expiration Date, Arabic added) Biometric Container (Four Fingerprints, Facial Image, IRIS) PKI certificates Card Capability Container (Card Unique Identifier) SPOT barcode added Added Baghdad International Airport and Weapons Card (Different enrollment and Certificate Authority) 10

Smart Card Security X509 PKI Certificates used to sign biometrics Hardware Security Modules (HSM) to secure communications between CMS Server and Client components. HSM (Internal) to CMS server to generate PKI certificates. Attribute Authority - wraps a biometric object in a digitally signed X9.84 attribute certificate From Here To Here 11

Base Access Card Printing Card Printing - In Country, the CMS data file was downloaded to the CMS Client machine where the smart card was instantiated and card printed. To date over 1,000,000 cards printed and issued. 12

Base Access BISA Cards Card modifications over the years Added Arabic Authorized Locations Barcodes FASC-N IRIS BISA PIN Card Card Revocation 13

Base Access Fixed Verification Portals Laptop Portal Standoff Portal Panasonic Toughbook 150 ft Crossover Cable to Anywhere USB/5 Port Hub 5 port USB Hub UPS Site Power 220 V/DC 150 ft Power Cable 14 What was envisioned Verification Portal - ECP 13 Camp Slayer, Iraq

Portable Verification Device BISA Handheld Verification Device Al Asad, Iraq BISA OIC and NCOIC Al Fallujah, Iraq ECP 3 Al Fallujah, Iraq ECP 3 15

Initial Deployment CMS Hardware Delivered 2 CMS Servers (Ops & test) 22 CA workstations 10 CMS Client workstations 10 CMS Card Printers Preliminary printer consumables HSMs 250,000 smart cards BISA Portals 260 System Enclosures 130 Rugged Notebooks & Docking Stations 130 DFR 200 Fingerprint Scanners 130 smart card readers 130 PIN Pads 130 Anywhere USB Hubs 130 European UPS Power Strips, Ethernet cabling 130 150 ft power cords Spares 400 Portable Handheld Biometric Verification Devices 16

Operations Today & Tomorrow 17 Deployed the card printing and verifications systems to an additional 60 Tier II sites throughout Iraq DOD CACs Originally issued using GCSIS 2.0 standard End of 2009, CAC no longer issued using the GCSIS 2.0 standard, but the PIV/HSPD-12 standard Drove immediate modification to the base access systems to read the PIV/HSPD-12 compliant CACs Reviewing vendor supplied PIV cards as an option Additional variations include: Iraqi Weapons Card Baghdad International Airport (BIAP) Workers ID In Country repair saves $ Card Printers Handheld verifiers

In Summary History Base Access What Is It? A Brief History Operations Today Memorial to the victims of the Marez Dining Facility bombing 20 Dec 2004 Potentials for Tomorrow 18 There has never been another insurgent penetration on a US military installation in Iraq since the deployment of the base access system.

19 Questions

Mark pages according to the proprietary level of information as described in Company Procedure J103 (or remove)

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback