White Paper Helps Security Directors Migrate To FIPS 201
Security directors and those responsible for physical access control systems (PACS) within government agencies have a new resource to help them choose the right path to accept FIPS 201 compliant credentials — a white paper, developed by the Smart Card Alliance Physical Access Council in collaboration with the Open Security Exchange (OSE), Security Industry Association (SIA) and International Biometric Industry Association (IBIA).
The white paper, “Physical Access Control System Migration Options for Using FIPS 201-1 Compliant Credentials,” directly addresses challenges unique to PACS when transitioning to FIPS 201-1 compliant credentials (the Personal Identity Verification card, known as the PIV card). It describes key elements of a typical PACS, identifies migration considerations relative to each and outlines various migration options and their benefits and challenges. The white paper also discusses options for integration, PACS enrollment and registration and biometrics.
“The PIV credential enables agencies to implement a range of identity authentication methods, allowing the appropriate method to be used based on an agency’s unique security requirements,” says Randy Vanderhoof, executive director of the Smart Card Alliance. “This white paper allows security directors, facilities managers or systems managers to understand the changes introduced by PIV cards, what migration options are available and how to manage the transition to guarantee success.”
“Reviewing this white paper puts a security director in good position to decide how to employ PIV credentials within the context of their overall security plan,” says Physical Access Council Chair Roger Roehr, of Tyco International’s access control and video systems. “Directors can use the guide to select authentication methods while keeping in mind requirements for throughput, as well as operational and interoperability considerations.”
The Smart Card Alliance Physical Access Council sought cooperation and input from SIA, OSE and IBIA on this white paper so that the resulting guidance would reflect the broad industry perspective.
“This document provides federal security directors with the tools to create migration strategies that not only achieve compliance, but also improve overall security for their organizations,” says Richard Chace, executive director and CEO, the Security Industry Association.
“For the first time, all migration considerations and options are detailed in one place,” says IBIA Chair Walter Hamilton. “A real benefit to federal security officers is that the white paper goes into detail about security options beyond minimum FIPS 201 requirements, such as using biometric authentication for high assurance physical access control.”
“A hot topic addressed in the white paper is convergence of IT security and physical security,” says Laurie Aaron, vice chair, OSE. “This topic is one of the key objectives for government agencies complying with directives, and can also benefit commercial organizations looking to develop overarching strategies for stronger security based on the government model.”
Members from the Smart Card Alliance Physical Access Council, OSE, SIA and IBIA were involved in the development of the white paper, including: AMAG Technology, BearingPoint, Brivo Systems, CoreStreet, Diebold, EDS, Fargo Electronics, Gemalto, HID Global, HIRSCH Electronics, Identification Technology Partners (IDTP), Integrated Engineering, International Biometric Industry Association, LEGIC Identsystems, MDI Security Systems, NASA, Northrop Grumman, Open Security Exchange, PricewaterhouseCoopers, Quantum Secure, Sagem Morpho Inc., SCM Microsystems, Security Industry Association, Shane Gelling Company, SI International, Siemens Building Technologies, Tennessee Valley Authority, Thales e-Security, Tyco International, U.S. Department of Defense and U.S. Department of State.
The white paper is available at www.smartcardalliance.org.