Beyond Traditional Boundaries: Modernizing PIV/CAC Authentication
While the Personal Identity Verification (PIV) and Common Access Card (CAC) represent a high assurance, technically interoperable, and a highly regulated method of authentication, they suffer from factors such as ease of use, ability to work with mobile devices and across devices. Office of Management and Budget (OMB) memorandum M-19-17, Enabling Mission Delivery Through Improved Identity, Credential, and Access Management, opened the door for federal agencies to consider “additional solutions that meet the intent of HSPD-12” beyond the mandated credentials such as the PIV and CAC.” As a modern approach for phishing-resistant authentication, FIDO2 has the benefits of ease of use, support on a variety of operating systems (OS), web and mobile platforms, ability to sync across devices and to support cross-platform authentication.
In this webinar, panelists will describe their agency’s progress and challenges in leveraging PIV/CAC and the PKI credentials embedded within as the primary identity authentication mechanism for federal enterprise users. They will discuss the trend of agencies implementing additional (often weaker) authentication techniques to support a variety of use cases that PIV/CAC do not readily support. They will also discuss their agency vision with respect to leveraging FIDO2 credentials, and specifically, Derived FIDO2 Credentials to address multiple authentication use cases and the benefits and challenges of such implementations.
Speaker Details
Dr. Babur Kohy
Chief Cybersecurity Strategist, Identity Assurance and Trusted Access Division, Office of Government-Wide Policy, General Services Administration
Nalin De Silva
Cybersecurity Strategist, U.S. Department of Education
Tim Baldridge
IT Specialist, Identity Credential Management (ICM) Program, Defense Manpower Data Center, U.S. Department of Defense
Catherine Bergan
Security Project Manager, Application Development, Identity and Access Management (IAM), U.S. Federal Agency
Dr. Kenneth Myers
Senior ICAM Architect, Team Lead, Information Security, Federal Reserve Board of Governers (Pending Agency Approval)
Dr. Sarbari Gupta
Chief Executive Officer, Electrosoft
Moderator: Kiersten Patton
Consultant, ATARC
Event Topic
IT, Modernization, TechnologyRelevant Audiences
All State and Local Government, All Federal Government, National Guard, Air Force, Coast Guard, Navy, City Government, County Government, Municipalities, State Government, Central Intelligence Agency, Department of Agriculture, Department of Commerce, Department of Defense, Department of Energy, Department of Health and Human Services, Department of Homeland Security, Department of Housing and Urban Development, Department of Interior, Department of Justice, Department of Labor, Department of State, Department of Transportation, Department of the Treasury, Environmental Protection Agency, Equal Employment Opportunity Commission, Federal Aviation Administration, Federal Communications Commission, Food and Drug Administration, Federal Emergency Management Agency, General Services Administration, Government Accountability Office, National Aeronautics and Space Administration, National Institute of Health, National Security Agency, U.S. Agency of International Development, U.S. Census Bureau, U.S. Office of Personnel Management, U.S. Postal Service, Veterans AffairsOther Agency
Office of the President (includes OMB), Other Federal Agencies, Judicial Branch Agencies, Foreign Governments/Agencies