1 / 23

07.15.2003 eAuthentication Decision Makers Meeting

Design eAuth Identity & Access Management Components. Design eForms ... Create Technical Design for eAuth components. Build Technical eAuth components. Build ...

Jimmy
Download Presentation

07.15.2003 eAuthentication Decision Makers Meeting

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


    Slide 1:eAuthentication Initiative Pre-Implementation Status eGovernment Program

    Slide 2:Agenda

    eAuthentication Overview USDA eAuthentication Solution Components Agency Integration Responsibilities eAuthentication Costs and Resources Questions and Answers High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again. High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again.

    Customer interactions with USDA, also called transactions, will be transformed to allow customer submission through electronic means For many interactions, the identity of the person submitting the data needs to be known, either to enable an electronic signature of the form or data, or for informational purposes eAuthentication encompasses the processes and technology that identify a person electronically and present that information to the application that is accepting the user’s data submission eAuthentication in the current phase will only support interactions that are presented in a web format over the Internet

    Slide 3:What is eAuthentication?

    35 (61%) out of the 57 in-scope interactions require Level 2 Authentication. Currently, USDA eAuthentication supports Level 1 and Level 2 authentication. Of the 736 interactions scheduled for GPEA compliance for October 2003, 639 require eAuthentication. 57 of these have been completed in the Online Impact Assessment Tool.

    Slide 4:eAuthentication Needs

    Authentication Levels define the credibility necessary to support a person’s identification. The higher authentication level, the more information is needed to validate a person is who they say they are…

    Slide 5:eAuthentication Schedule

    Continue eAuthentication communications in the form of postcards, presentations and integration documentation Present the Costing Model to Agencies for eAuthentication by July 25, 2003 Distribute the Agency Guidebook by July 25, 2003 Road map and details for integrating Agency Applications Begin Implementation on July 28, 2003 WebCAAF Expansion, Directory Services, Identity Management, User Registration Initiate GSA Gateway Integration Proof-of-Concept in August 2003 Provide Integration Planning assistance beginning August 2003 Begin integration of applications in September 2003 GPEA Deadline is October 21, 2003

    Slide 6:Agenda

    eAuthentication Overview USDA eAuthentication Solution Components Agency Integration Responsibilities eAuthentication Costs and Resources Questions and Answers High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again. High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again.

    Slide 7:USDA eAuthentication Solution Components

    The USDA eAuthentication solution encompasses four main components… USDA eAuthentication Solution Technical Solution Identity and Access Management Registration Process Presidential Initiative (GSA Gateway) High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again. High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again.

    Slide 8:USDA eAuthentication Solution Components

    Technical Solution Internet Router Switch Router Switch INTERNET INTRANET Enforcer WEB FARMS www.xyz.usda.gov Enforcer USDA Network FIREWALL ALTERNATIVE HOSTING FACILITY “Enforcer” – web agent installed on the agency’s web server to perform authentication. Communicates with central authentication system in Web Farm “Web Farm” – secure, redundant hosting facility that hosts the USDA eAuthentication solution “Firewall Stack” – set of network and security devices that protects the USDA network from the Internet. The Web Farm Firewall Stack is part of the USDA eAuthentication C&A “User Stores” – central USDA user store. Maintains information about the user that is common across agencies. Agency-specific user stores maintain more detailed information if needed “Policy Server” and “Policy Store” – core components of the USDA authentication solution. Ties together enforcers and user stores through “policies” www.abc.gov/form1 High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again. High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again.

    Password Services – Enforcement of strong password standards and allow password maintenance such as password changes, password expiration, etc Self Services – Administration of user information without calling the USDA help desk. This is non-authentication information such as the user’s phone number and username, not information about the user’s relationship with the agency or his permission to access certain web applications Delegated Administration – Administration access to the central user store to establish users access to agency’s applications Help Desk – Assistance with authentication related issues such as password resets, directions to a registration center etc. The USDA Help Desk is not able to help with application-specific questions. Agencies must provide contact information for application-specific problems

    Slide 9:USDA eAuthentication Solution Components

    Identity and Access Management High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again. High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again.

    Self Service Registration for Level 1 Assurance Registration for the most basic form of authentication, not a strong indicator of the user’s actual identity since it relies on information from the user, but is useful in some settings such as web site personalization Identification Proofing for Higher Levels Validation of identity by a Local Registration Authority. Currently this identity-proofing must be done in-person Service Center or other Local Registration Authorities Agency-specific Authorization Profile Creation Authorization of a which users may access their applications. Each agency may create a set of conditions based on the common user information that is collected or may create web pages to collect additional information.

    Slide 10:USDA eAuthentication Solution Components

    Registration Process High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again. High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again.

    Agency Web Servers USDA Logon Servers Internet GSA Gateway ECP ECP ECP The GSA Gateway is the Presidential Initiative solution for eAuthentication. USDA’s integration approach is to create a single point of integration with the GSA Gateway, through the USDA eAuthentication solution. The USDA eAuthentication solution and GSA Gateway integration will occur once the Gateway is complete An integration proof-of-concept is planned for August, 2003 Applications will integrate with the USDA eAuthentication solution, which will connect to the GSA Gateway, so each agency application will not have to be integrated separately with the GSA Gateway Upon completion, Agency applications will receive the benefits of the GSA Gateway

    Slide 11:USDA eAuthentication Solution Components

    Presidential Initiative (GSA Gateway) USDA eAuthentication High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again. High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again.

    eAuthentication Overview USDA eAuthentication Solution Components Agency Integration Responsibilities eAuthentication Costs and Resources Questions and Answers

    Slide 12:Agenda

    High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again. High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again.

    Oct 21 GPEA Deadline

    Slide 13:Agency Integration Responsibilities

    August October September July eForms/eAuth Design Meetings Build Coordination Meetings Test/Certification Meetings Production Readiness ID ’03 Funding ID ’04 Funding ID GPEA-Compliant Interactions Select Forms tool(s) Complete Authentication Impact Profile Assessment Confirm GPEA Functional Team Confirm GPEA Technical Team Design eAuth Registration Components Design eAuth Identity & Access Management Components Design eForms System Process OMB Approvals Create Technical Design for eAuth components Build Technical eAuth components Build eForms System Develop On-Line Alternatives Communications plan Implement eAuth Registration Components Implement eAuth Identity & Access Management Components Publish Communications eForms System Test Train LRAs Train Agency Admins Request eRecords Disposition Authority Certify LRA process eForms System Go-Live High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again. High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again.

    Technical Solution

    Slide 14:Agency Integration Responsibilities

    Web Farm Hosting Environment Identity Management Services Pages Test Environments Create web application on supported web server Assist in installation of web “enforcer” Decide what user information your agency applications need to receive from the central user store in the form of header variables Give eAuthentication team information to integrate new “enforcer” into eAuthentication system Build web pages to collect any additional user information for authorization High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again. High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again.

    Authorization Pages User Stores Identity Management Services Pages Help Desk User Stores Users Password Services User Self-Administration Delegated Administration

    Slide 15:Agency Integration Responsibilities

    Identity and Access Management Authorization Processes and Role Definition Build a process to decide whether a user should be allowed to access your agency’s applications If that process requires any user information that is not collected by the central registration procedure, build “authorization registration” web pages to collect this information (including company representation) Designate and train agency administrators to “authorize” users in the eAuthentication system for agency applications Maintain a list of customer/company representative relationships Map USDA Customer IDs to Agency Customer IDs High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again. High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again.

    User Stores Authentication Registration Pages Users Agency-Specific LRAs Level 1 Self-Registration Email Verification Level 2 LRA Registration Level 1 Self Registration Level 2 In-Person Registration Identity Proofing Procedure Agency-Specific LRAs Identity Proofing Procedure

    Slide 16:Agency Integration Responsibilities

    Registration Process Determine if Service Centers will provide “Local Registration Authority” (LRA) services for your user population If not, create identity proofing processes and training for your LRAs following USDA standards Communicate registration processes and requirements to your users High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again. High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again.

    Presidential Initiative (GSA Gateway) Integrate with USDA eAuthentication solution Alert USDA eAuthentication team of any applications/interactions that require higher levels of credentials than the eAuthentication passwords (through the online tool) Work with eAuthentication team to identify sources of credentials from GSA Gateway providers

    Slide 17:Agency Integration Responsibilities

    Agency Web Servers USDA Logon Servers Internet GSA Gateway ECP ECP ECP USDA eAuthentication High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again. High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again.

    eAuthentication Overview USDA eAuthentication Solution Components Agency Integration Responsibilities eAuthentication Costs and Resources Questions and Answers

    Slide 18:Agenda

    High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again. High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again.

    The fixed and variable costs for the eAuthentication initiative are broken out as follows… Cost distribution calculations/algorithms need to be created quickly, any suggestions on how the cost should be allocated?

    Slide 19:eAuthentication Costs

    High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again. High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again.

    Slide 20:eAuthentication Resource Needs

    USDA eAuthentication Solution Team Technical Services Team Integration Team Agency Solution Team Integration Team Business process and user communities expertise Technical Team Developers representing the Agency application High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again. High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again.

    eAuthentication Overview USDA eAuthentication Solution Components Agency Integration Responsibilities eAuthentication Costs and Resources Questions and Answers

    Slide 21:Agenda

    High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again. High energy Welcome. Get jazzed. Good things are happening: EITIRB meeting tomorrow for 30 minutes exclusively on eGov EC and I will be meeting with DS ideally this week as well but may slip to next week Relatively positive feedback from OMB based on our efforts – only Yellow Thanks for efforts to date. Time to roll up sleeves again.

    Slide 22:Questions and Answers

    Slide 23:For More Information

    For more information on the eAuthentication Initiative, please review the eAuthentication Frequently Asked Questions on the eGovernment site: http://www.egov.usda.gov/resources/teamspace/team_resources.html Please contact the eGovernment team for username and password.

More Related