50 likes | 132 Vues
E-Authentication briefing for 11th Fed/Ed PKI Meeting. Thursday June 16th, 2005. Federated Identity Architecture Pilot. Pilot members included NSF, USDA (WebCAAF), HHS (Grants.gov) and ORC (Grants.gov CSP) Fastlane used as both an Agency Application (AA) and Credential Service Provider (CSP)
E N D
E-Authentication briefing for 11th Fed/Ed PKI Meeting Thursday June 16th, 2005
Federated Identity Architecture Pilot • Pilot members included NSF, USDA (WebCAAF), HHS (Grants.gov) and ORC (Grants.gov CSP) • Fastlane used as both an Agency Application (AA) and Credential Service Provider (CSP) • WebCAAF is Web-based Centralized Authentication and Authorization Facility used by USDA • Fastlane credentials certified at Level 1 via CAF • Use of Fastlane credentials to access Grants.gov and use of USDA and Grants.gov credentials to access Fastlane
NSF and Shibboleth • Build on results from HHS/Internet2 Shibboleth Authentication pilot and the Federated Identity Architecture pilot • Work with CAF’ed universities that are part of the E-Authentication Federation • Currently in progress are Cornell, U of Washington, Penn State and UMBC. • Would be able to accept any credential at the appropriate authentication level of Fastlane if certified by the E-Authentication federation
NSF and Shibboleth cont. • E-Auth federation beginning to build relationships with other federations including the InCommon federation • Prompted activation required • Subsequent logins will not require activation if using the same credentials
Web site links • E-Authentication web site www.cio.gov/eauthentication • EA Guidance for federal agencies www.whitehouse.gov/omb/memoranda/fy04/m04-04.pdf • NIST Guidance 800-633 Electronic Authentication Guidelines http://www.cio.gov/eauthentication/documents/SP800-63V6_3_3.pdf • Trusted Credential Service Provider List http://www.cio.gov/eauthentication/TCSPlist.htm • E-RA tool site http://www.cio.gov/eauthentication/era.htm • E-A Handbook for federal agencies http://www.cio.gov/eauthentication/documents/GOVhandbook.pdf • E-A technical architecture guidance http://www.cio.gov/eauthentication/TechSuite.htm • E-A Cookbook http://www.cio.gov/eauthentication/documents/Cookbook.pdf