Federal agencies slow to adopt two factor authentication, says White House annual report

The majority of Federal employees are able to access Federal computer systems with nothing more than a username and password, despite President George W. Bush ordering Federal agencies to secure their information systems with strong authentication technologies more than a decade ago, according to a report by Govtech Works. Only half of the largest Federal agencies — including General Services Administration (GSA), the Labor and Treasury departments, the Small Business Administration (SBA), National Science Foundation (NSF), and the Nuclear Regulatory

Department of Defense far from adopting biometrics for identity and access management

The Department of Defense is currently re-assessing and updating its Identity and Access Management (IdAM) strategy to improve its overall network access security without making the authorization process more difficult for authorized users, according to a report by C4ISR & Networks. “We’ve looked at a number of different solutions, from biometrics to different kinds of encryption; there’s a whole spectrum of solutions out there,” said Michael McCarthy, director of operations and program manager for the Army’s Brigade Modernization Command. But

HID Global adds PIV credential to its government solutions offering, extends benefits for commercial applications

HID Global has announced the addition of a dual-interface Personal Identity Verification (PIV) credential to its pivCLASS Government Solutions portfolio, which simplifies issuance of PIV cards and the process of upgrading an existing physical access control system to support Federal Information Processing Standards Publication 201 (FIPS-201) standards. The new pivCLASS smart card, along with the company’s comprehensive pivCLASS portfolio supports federal contractors that need to leverage high-security PIV Interoperability through the Federal Bridge. “The FIPS-201 standard for federal employee and

Intercede, NitroDesk team up for smart card-secured email solutions

Intercede, a leader in identity and credential management systems known for its MyID identity management platform has announced a partnership with NitroDesk to provide secure email solutions on iOS devices, compatible with personal identity verification (PIV) smart cards. Building on NitroDesk’s proprietary email client, TouchDown and Intercede’s proven success in the smart card and credential management space, this partnership will make it possible to exchange signed and encrypted emails protected by keys and certificates held securely on a PIN-protect PIV

NIST asks for comment on credential security standard

The National Institute of Standards and Technology (NIST) has released the second-round draft version of its updated security standard for identity credentials in the Personal Identity Verification cards (PIV cards) that all federal employees and contractors must use. NIST is requesting comments from the public on the document, which is intended to be the last draft before the final version is published. The document is the next step toward updating Federal Information Processing Standard (FIPS) 201, which was published in February 2005.