National Institutes of Health Interfederation Initiatives Peter Alterman

  • Slides: 9
Download presentation
National Institutes of Health Interfederation Initiatives Peter Alterman, Ph. D. Assistant CIO for e-Authentication

National Institutes of Health Interfederation Initiatives Peter Alterman, Ph. D. Assistant CIO for e-Authentication

NIH Interfederation Goals • Trust credentials issued by business partners at known Levels of

NIH Interfederation Goals • Trust credentials issued by business partners at known Levels of Assurance • Lower costs to all • Simplify transactions for customers 2

NIH Interfederation Process 1. Identify need (internal and/or external process) 2. Engage Policy Mapping

NIH Interfederation Process 1. Identify need (internal and/or external process) 2. Engage Policy Mapping with Candidate Federations 3. Engage Technical Interoperability Testing with Candidate Federations 4. Draft and sign MOAs (yes, the lawyers) 5. Regular reviews 3

NIH Service Provider Architecture Level 1 apps Local Auth. Z NIH SSO Level 2

NIH Service Provider Architecture Level 1 apps Local Auth. Z NIH SSO Level 2 apps Local Auth. Z Level 3 apps Local Auth. Z Level 4 apps NIH SSO CSP validation 4 Local Auth. Z Fed PKI validation

Federated Credential Validation Model NIH SSO End user credential Parse credential Issuer known/trusted? no

Federated Credential Validation Model NIH SSO End user credential Parse credential Issuer known/trusted? no Reject yes Digital certificates validated via Federal PKI Architecture Digital certificates validated directly @ CA 5 Userid/passwords Validated @ issuer SAML assertions Validated @ issuer

Who Does NIH SSO Trust Now … and How Much? U Tx Sys Adm

Who Does NIH SSO Trust Now … and How Much? U Tx Sys Adm PKI end users 2 In. Common Member users: 1 (2 pending) End Users with PKI creds from FPKI xcert CAs 3&4 6 All Feds And Contractors w/ HSPD-12 creds 3&4 End Users with Grants. gov Userid/pswd 2 Users with NIH AD Accounts 3 End Users with e. Auth creds 1&2

Federated Online Apps – Phase I Level 1 apps Level 2 apps Level 4

Federated Online Apps – Phase I Level 1 apps Level 2 apps Level 4 apps NCI Tumor Microenvironment Network TMEN e. RA Fed PKI Policy Authority Doc Mgt Sys HSPD-12 NIH Communication Officers Network Firebird Departmental Systems (cross-Operating Divisions) NIAID Training NIH Library ca. BIG/ca. Grid NCRR Grant Reporting System NICHD Clinical reporting system 7 Level 3 apps

Questions? 8

Questions? 8

U. S. Federal Trust Mapping FPKI Rudimentary; C 4 E-Auth Level 1 E-Auth Level

U. S. Federal Trust Mapping FPKI Rudimentary; C 4 E-Auth Level 1 E-Auth Level 2 FPKI Basic FRAC, TWIC, ACIS FPKI Medium & Medium-cbp E-Auth Level 3 E-Auth Level 4 9 FPKI Medium/HW & Medium/HW-cbp HSPD-12 compatible FPKI High (governments only) HSPD-12 compatible

Federal Electronic Identity Initiatives Current Status Peter AltermanFederal Electronic Identity Initiatives Current Status Peter Alterman
Health Health Health Health Health Health Health HealthHealth Health Health Health Health Health Health Health
Federal PKI Architecture Update Peter Alterman Ph DFederal PKI Architecture Update Peter Alterman Ph D
The EAuthentication Initiative An Overview Peter Alterman PhThe EAuthentication Initiative An Overview Peter Alterman Ph
Federal PKI Architecture Update Peter Alterman Ph DFederal PKI Architecture Update Peter Alterman Ph D
NIH Interfederation Activities and Status Federal PKI PeterNIH Interfederation Activities and Status Federal PKI Peter
National Public Health Institutes Core Attributes Peter BNational Public Health Institutes Core Attributes Peter B
CMS Institutes 202 Institutes in 46 countries 12202021CMS Institutes 202 Institutes in 46 countries 12202021