https://www.americancityandcounty.com/wp-content/themes/acc_child/assets/images/logo/footer-logo.png
  • Home
  • Co-op Solutions
  • Commentaries
  • News
  • In-Depth
  • Multimedia
    • Back
    • Podcast
  • Resources
    • Back
    • Resources
    • Webinars
    • White Papers
    • Events
    • How to Contribute
    • Municipal Cost Index – Archive
    • Equipment Watch Page
    • American City & County Awards
  • Magazine
    • Back
    • Digital Editions
    • Reprints & Reuse
    • Advertise
  • About Us
    • Back
    • About Us
    • Contact Us
    • Privacy Statement
    • Terms of Service
American City and County
  • NEWSLETTER
  • Home
  • Co-op Solutions
  • Commentaries
  • News
  • In-Depth
  • Multimedia
    • Back
    • Podcasts
  • Resources
    • Back
    • Webinars
    • White Papers
    • Events
    • How to Contribute
    • American City & County Awards
    • Municipal Cost Index
    • Equipment Watch Page
  • Magazine
    • Back
    • Digital Editions
    • Reprints & Reuse
    • Subscribe to GovPro
    • Manage GovPro Subscription
    • Advertise
  • About Us
    • Back
    • About Us
    • Contact Us
    • Cookie Policy
    • Privacy Stament
    • Terms of Service
  • newsletter
  • Administration
  • Economy & Finance
  • Procurement
  • Public Safety
  • Public Works & Utilities
  • Smart Cities & Technology
acc.com

Smart Cities & Technology


DOD Secures Network with Smart Cards

DOD Secures Network with Smart Cards

What an amazing enabler it is for security, U.S. Army Col. Barry Hensley said of the Department of Defense (DOD) smart card-based network security implementation.
  • Written by American City & County Administrator
  • 13th April 2007

“What an amazing enabler it is for security,” U.S. Army Col. Barry Hensley said of the Department of Defense (DOD) smart card-based network security implementation. Hensley’s remarks came as the Smart Card Alliance kicked off its 6th Annual Government Conference by hosting a meeting of the Federal Smart Card Interagency Advisory Board (IAB) at the Ronald Reagan Building.

Hensley said the network security threats are real, and as the manager responsible for operating and defending the DOD’s 15,000 networks, he should know. Every six seconds someone, somewhere is scanning their network trying to get in, he said, and passwords present an unacceptable risk. “The problem with user name/password is once you get it, you’re in,” he said.

But he was enthusiastic in his praise for the success of the agency in securing its networks using the Common Access Card (CAC) smart card with a digital certificate implementation based on a public key infrastructure (PKI). “It’s amazing how we’ve cut them off at the knees just using CAC PKI. We are seeing ROI, so much so that we want to take it to the next level”,” he said.

Since 2000, the DOD has purchased and issued 12 million CAC smart cards, with a current user population of 3.4 million. Today 92% of eligible users are logging in using the smart cards and 98% of DOD’s servers are PKI capable.

The DOD CAC program is the U.S. federal government’s most advanced smart card credential program and the forerunner for the program mandated by Homeland Security Presidential Directive 12 (HSPD-12) that requires a smart card identity credential for all federal employees and contractors.

Mary Dixon, director of the Defense Manpower Data Center for the DOD, encouraged other government agencies represented at the meeting to move forward with their own programs to issue the Personal Identity Verification (PIV) cards and use them for network security. “It does work and we’re proof positive. Smart card credentials are the identity token of the future,” she said.

Other Highlights

HSPD-12. The GSA plans to announce a new shared services provider to issue PIV cards within the next two weeks, Michel Kareis of the GSA Managed Service Office announced. The GSA Shared Services contract will provide credential issuing support for 420,000 end users in 42 agencies and is one of the most important initiatives for ramping up the PIV program. The agency plans to have 200 fixed and 25 mobile stations deployed over the next ten months. Once started, the agency expects deployment capacity to ramp up by 10,000 units each month.

TWIC. John Schwartz, assistant director of the Transportation Worker Identity Credential (TWIC) program for Dept. of Homeland Security (DHS)/U.S. Coast Guard, announced the cost per worker for TWIC credentials and background checks will be $137.25. The credential is valid for five years. With the rule published January 25th now in effect, the organization has the legal authority to issue TWIC cards; however, the organization is still wrestling with decisions on biometrics and encryption.

DHS looks for credentialing interoperability. Tom Lockwood has been appointed as senior advisor for credentialing interoperability with the Department of Homeland Security’s Screening Coordination Office, Alliance meeting attendees learned Wednesday. In his new capacity, Lockwood will build on his pioneering success in developing common interoperable credentials for public and private sector first responders by working on key screening initiatives including fostering interoperability of credentialing systems for federal, state, and local governments. Lockwood has served as director of the Office of National Capital Region Coordination since May 2004.

State governments. “New Jersey is in fact looking at implementing FIPS 201 compliant HSPD-12 credentials for our first responders,” said Paula Arcioni, currently serving as the statewide information security officer at the State of New Jersey Office of Information Technology.

Arcioni also had some pragmatic views on what states should be doing about protecting people’s identities, though she stressed her opinions represented her own views and not those of the State of New Jersey. “Dead people shouldn’t drive and they shouldn’t vote but we all know that they do,” she said. “State and local governments need to step up to the plate to protect people’s identities. What they need to do is re-engineer identity systems for life in the 21st century.”

Eventually she sees states integrating breeder documents like birth certificates to support some form of widespread credentialing model for vetting purposes. She also sees practical steps that can be taken in the short term, like flagging someone’s birth certificate record when deceased.

Privacy considerations and Real ID. Ari Schwartz, deputy director of the Center for Democracy and Technology, representing the privacy community, supported the idea of driver’s license reform. In fact, he said, good security is essential to protecting privacy and the two are tightly linked.

“We are in an identity crisis,” he said. “Identity theft is bad for privacy, and one of the most important things privacy advocates talk about is that driver’s licenses are a part of the problem.”

Commenting on the DHS Notice of Proposed Rulemaking (NPRM) on the Real ID Act, Schwartz identified some remaining privacy issues. In his view, DHS needs to do more to set privacy sensitive policy for the states and does have the authority, though DHS feels it does not. DHS is promoting common access to a database administered by the American Association of Motor Vehicle Administrators (AAMVA), which would effectively create a centralized database and would give states with the weakest privacy and security practices access to private information collected by the strongest states.

Schwartz also criticized the current DHS plan because it creates security concerns about the license credential itself. The plan leaves the Machine Readable Zone (MRZ) without any security features. The DHS “lean” towards encryption is not good enough, and allowing a free read of the MRZ stripe would encourage its use for other applications and create databases full of information at risk.

“People say privacy groups are against driver’s license reform. That is not true. Privacy groups are trying to stop bad driver’s license reform,” said Schwartz.

The Smart Card Alliance is a not-for-profit, multi-industry association working to stimulate the understanding, adoption, use and widespread application of smart card technology.

Tags: ar mag Smart Cities & Technology

Related


  • A video surveillance camera and sign warning about CCTV being in operation
    All activities monitored: The 10 most surveilled major cities in the U.S.
    Public close-circuit television (CCTV) cameras, or public video surveillance camera, hold multiple benefits for cities. They can help reduce crimes around public areas, buildings and roads, and with the increasing deployment of smart sensors and 5G, these cameras will be able to utilize the Internet of Things (IoT) to accomplish much more in the future. […]
  • A street in Denver
    Denver anticipates autonomous vehicles with cross-agency, cross-sector collaborative planning
    Without early planning by regulators, autonomous vehicles (AVs) have the potential to fail on their promises of safer and more convenient travel. Before and even during the pandemic, which has understandably shifted priorities of local and state officials, leaders in AV policy development are nonetheless thinking about and producing plans to deal with hundreds of […]
  • Revenue and zoning evolution prepares Seattle for an autonomous vehicle future
    Although autonomous vehicles (AVs) are not fully ready for deployment, history provides strong incentive to begin planning for its implementation now. In the early 20th century, the growth of the automobile erupted faster than regulators could have imagined with far-reaching consequences. Although cars eventually helped fulfill promises of economic growth, middle-class jobs, and on-demand mobility, […]
  • A street in Los Angeles
    Los Angeles infrastructure inventory anticipates future autonomous vehicle policy
    With respect to autonomous vehicles (AVs), city and state regulators are eventually going to confront hundreds of interrelated policy and economic issues in order to adequately prepare their roads and populations for safe, fair, and effective use. During the pandemic, city budgets have become strained, and regulators understandably have important and pressing financial burdens such […]

Leave a comment Cancel reply

-or-

Log in with your American City and County account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • Report: Ransomware attacks cost local and state governments over $18 billion in 2020
  • Tennessee county allows autonomous shuttle to operate on public road
  • Why Tucson is building its own 4G network
  • Key steps governments can take to guard against malware attacks

White papers


How-to Tips to Prepare for Your Summer Construction Projects

5th April 2021

How to Procure an eProcurement System that Generates More Value from Your Budget

1st April 2021

The Technology Solutions Vital to Clerk Productivity in Our Post-Pandemic Communities

18th March 2021
view all

Events


PODCAST


Young Leaders Episode 4 – Cyril Jefferson – City Councilman, High Point, North Carolina

13th October 2020

Young Leaders Episode 3 – Shannon Hardin – City Council President, Columbus, Ohio

27th July 2020

Young Leaders Episode 2 – Christian Williams – Development Services Planner, Goodyear, Ariz.

1st July 2020
view all

Twitter


AmerCityCounty

The Community Game Changer: Library Outsourcing dlvr.it/RxLd6r

9th April 2021
AmerCityCounty

Cooperative contracts can be an entryway for small and diverse companies to successfully compete for government sal… twitter.com/i/web/status/1…

9th April 2021
AmerCityCounty

Electric slide: Mayors form collaborative organization to purchase electric vehicles for cities dlvr.it/RxGsHY

8th April 2021
AmerCityCounty

Celebrating the unsung heroes of the COVID-19 pandemic: Procurement professionals dlvr.it/RxGsG2

8th April 2021
AmerCityCounty

Expanding opportunities: Nebraska’s bold procurement Concierge Program dlvr.it/RxGpyr

8th April 2021
AmerCityCounty

All activities monitored: The 10 most surveilled major cities in the U.S. dlvr.it/RxCKzy

7th April 2021
AmerCityCounty

Denver anticipates autonomous vehicles with cross-agency, cross-sector collaborative planning dlvr.it/RxC1dP

7th April 2021
AmerCityCounty

Revenue and zoning evolution prepares Seattle for an autonomous vehicle future dlvr.it/RxBzyC

7th April 2021

Newsletters

Sign up for American City & County’s newsletters to receive regular news and information updates about local governments.

Resale Insights Dashboard

The Resale Insights Dashboard provides model-level data for the entire used equipment market to help you save time and money.

Municipal Cost Index

Updated monthly since 1978, our exclusive Municipal Cost Index shows the effects of inflation on the cost of providing municipal services

Media Kit and Advertising

Want to reach our digital audience? Learn more here.

DISCOVER MORE FROM INFORMA TECH

  • IWCE’s Urgent Communications
  • IWCE Expo

WORKING WITH US

  • About Us
  • Contact Us

FOLLOW American City and County ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookies Policy
  • Terms
Copyright © 2021 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X