RISSTech RISSTech Global Justice Information Sharing Initiative Global
RISSTech
RISSTech ? Global Justice Information Sharing Initiative ? Global Advisory Committee ? RISS / RISSNET ? Trusted Credential Project ? ? Washington, D. C. April 28, 2005 ? George P. March, Director
RISS Trusted Credential Project Mission To permit users with credentials from trusted partners to access resources available via RISSNET without using the user authentication credential (V-ONE Smart. Pass) currently required RISSTech
RISS INTELLIGENCE CENTERS NESPIN Franklin, MA MOCIC Springfield, MO WSIN MAGLOCLEN Newtown, PA Sacramento, CA RMIN Phoenix, AZ ROCIC Nashville, TN RISSTech
RISS REGIONAL INFORMATION SHARING SYSTEMS (RISS) RISSNET LAW ENFORCEMENT ONLINE (LEO) LEO RISS National Law Enforcement Telecommunication System RISSTech
RISS Information Sharing Participation Initiatives RISSTech
RISS What is the RISS Intranet? A Sensitive But Unclassified (SBU) secure electronic communication network supporting information sharing between the RISS Intelligence Centers, node agency systems, and authorized individual users, known as RISSNET RISSTech
RISSNET NODES WA SP RISSNW HIDTA OR DOJ / OR HIDTA WSIN CA DOJ CIB / LEIU CISANet MN BCA MLW HIDTA SD DCI WY DCI NE SP CO CBI MI SP NDIC CHI HIDTA PA SP LC HIDTA OH BCII IA DSP UT LEIN LA HIDTA NY SP MW HIDTA KS BI MO SHP CENTRAL SITE MOCIC AZ DPS NLETS RMIN NW 3 C NESPIN CT DSP NY/NJ HIDTA MAGLOCLEN PHL/CAM HIDTA DE GOV WA/BALT HIDTA ORI FBI LEO US DOJ CD ATF (BATFE) USSS (NTAC) TN BI ROCIC GA BI HI CD EPIC / CLSS GC HIDTA FL DLE S TX (SWB) HIDTA S FL HIDTA RISSTech
RISS / RISSNET Trusted Credential Project RISSTech
RISS Trusted Credential Project Objectives Identify industry-leading technologies for user authentication and access control Develop, test, and demonstrate methods to recognize and accept credentials in addition to those currently used on RISSNET Provide expanded information sharing and collaboration while allowing all partners to keep their current infrastructure investments intact RISSTech
RISS Trusted Credential Project Components LDAP Octet. String XML / SAML Enterprise Portal Elements PK Certificates, Secure. ID Tokens, SSL VPNs Trust Pillars Agency vetting Credential composition RISSTech
RISS Trusted Credential Project Phases Phase I: Build a foundation for information sharing and collaboration among trusted organizations Demonstrate RISSNET’s ability to allow vetted users with X. 509 certificates issued by trusted partners to access resources currently only available via RISSNET to users presenting a valid V-ONE Smart. Pass credential RISSTech
RISS Trusted Credential Project Phases Phase II: Build upon lessons learned in Phase I Develop a Federated Identity Management infrastructure that will operate on the current RISSNET architecture Implement an enterprise information technology portal as the focal point of access to offered resources RISSTech
RISS Trusted Credential Project Phases Phase II (continued): Build a robust and flexible system that allows for interoperability with a wide variety of potential partners with whom RISS can work to Agree on a set of rules governing federated authentication, authorization, and access control Agree on a set of individual and role-based privileges Generate and consume the proper SAML assertions Make the appropriate privilege management decision based upon the content of the SAML assertions Ensure initial and continued system interoperability with the Federated Identity and Privilege Management Security Demonstration project RISSTech
RISS Thank You For further information, please contact: George P. March Director Regional Information Sharing Systems Office of Information Technology P. O. Box 1869 West Chester, PA 19380 -0131 Telephone: (610) 738 -8810 Fax: (610) 738 -8813 gmarch@risstech. riss. net RISSTech
RISS Thank You For further information, please contact: Lawrence M. Maloney Senior Project Manager Regional Information Sharing Systems Office of Information Technology P. O. Box 1869 West Chester, PA 19380 -0131 Telephone: (610) 738 -8810 Fax: (610) 738 -8813 lmaloney@risstech. riss. net RISSTech
- Slides: 16