DISA seeks white papers on secure identity management across Department of Defense
The U.S. Military’s Defense Information Systems Agency (DISA) has posted a request for white papers on “Identity, Credential, and Access Management” (ICAM) with the Federal Budget Office as part of a research, development and testing process for a prototype of a Department of Defense (DoD) Enterprise Identity Service.
The project is intended to result in a federated identity service for DISA, mission partners, non-CAC (common access card) holders, and non-person entities to reduce the inefficiencies of the current system while providing strong authentication. The service would be expected to authenticate against current cloud services, provide authorization with role-based access, and enable audits of users and resources. The ability to centrally monitor and control a range of “dynamic and disjointed computing environments” is identified as a key challenge to the project.
GCN reports that in addition to the increased audit functions and modernized identity capabilities, DISA is seeking to streamline processes, expand functionality for better productivity, improve secure information sharing and interoperability, and identify threats across the organization.
The solicitation is open to “non-traditional defense contractors,” which are entities that are currently not under a DoD contract and have not been for at least a year.
The technology DoD seeks is available in the market, but not at the necessary scope and bandwidth to accommodate the entire DoD Enterprise with its various unique systems and requirements, according to the tender document. The collection of white papers is Technical Phase I of a two-phase project, with the top two or three approaches selected for prototype development.
Submissions are due by November 5.
WWT and Privoro were selected recently to develop an assured identity solution for iOS devices for DISA.