June 2021 Monthly Member Bulletin

Executive Director Message

The Building Blocks of Converged Identity

The majority of the questions we often get from companies considering membership to the Secure Technology Alliance and U.S. Payments Forum are typically focused on what type of work we do and how we help foster collaboration and education of the technology industry on key issues. Generally, this is quickly followed up with more detailed questions around the structure of the entities and why they are paired together.

One of the key strengths we have as a group are the diverse perspectives from multiple stakeholders within the broader technology community. Not only do we have deep expertise in the payments industry, but also significant representation from members that support the access control, IoT and cybersecurity industries. It might seem that there is not much overlap on a daily basis between these market segments, but the base-level technology building blocks that enable these markets to function is relatively consistent.  All four of the segments listed above rely on the following technology building blocks in some shape or form: physical credentials, digital / mobile credentials, biometrics, and cryptography.  One could even potentially add artificial intelligence to the list as it continues to become a larger part of our daily lives.

It’s safe to assume that advances in any of the building blocks would benefit each of the major markets that we serve today.  Therein lies the true power of both of our organizations.  Undoubtedly, we have more strength and representation in some areas than others; but it’s also an opportunity as we look across the broader technology landscape and it begins to bring into focus some potential new ideas as we develop our strategic plan for both entities.

We’ve come a long way from the initial challenges in rolling out smart cards in the Unites States, but the future looks even more exciting.  I look forward to partnering with the leadership of both organizations to capture these opportunities.

Regards,
Jason

---

Council Highlights

• Council projects. A summary of all active Council projects is posted on the Secure Technology Alliance members-only site.
• The Access Control Council published a white paper on access control with mobile devices.
• The Identity Council is developing an industry response to the DHS request for comment, “Minimum Standards for Driver’s Licenses and Identification Cards Acceptable by Federal Agencies for Official Purposes; Mobile Driver’s Licenses.” The Council is also discussing new projects related to accelerating mDL implementation in the U.S.  Monthly mDL project calls present the status of projects and include guest speakers presenting different aspects of mDL implementation using the ISO 18013-5 standard.
• The Payments Council completed a webinar on dynamic security code cards.
• The Transportation Council is finalizing the emerging MaaS ecosystem white paper.

If you would like to participate in a Secure Technology Alliance Council, please contact Devon Rohrer, [email protected].  The full list of active Council projects is available on the Alliance members-only site.

---

Alliance Member Registration for U.S. Payments Forum Summer Virtual Meeting

Secure Technology Alliance members are invited to register for the U.S. Payments Forum Summer Virtual Members Meeting.  The Forum is offering Secure Technology Alliance member organizations one complimentary registration for the event sessions that are open to organizations who are not Forum members.

The U.S. Payments Forum Summer Meeting will be held from July 19-22, 2021. Registration is open on the Forum web site.  Click HERE to see the latest agenda.  Open sessions include:

• QR Code Use Cases and Best Practices Panel
• Petro EMV Migration – Three Months after the Liability Shift Panel
• Global Chip Supply Challenges: The Impact to the Payments Industry Panel
• New Technology Impact on the Future of Payments Panel
• Implementing NFC Technology at the ATM
• Transit Trends Panel
• Buy Now, Pay Later Birds-of-a-Feather Session

Alliance registration codes were sent to all member organization primary points of contact last month. If you don’t know your primary point of contact or if you have questions, please contact Devon Rohrer.

---

New Resource: Using Mobile Devices for Physical Access Control

The Secure Technology Alliance Access Control Council and Identity Council published a new white paper, Using Mobile Devices for Physical Access Control.

Mobile devices, especially smartphones, provide versatile credential hosting platforms that can be employed in a wide range of physical access control use cases. The features provided by these devices support secure credentials that, if implemented correctly, are resistant to cloning, forgery, and alteration. In addition, these devices can protect access to the most secure access control areas with high levels of assurance, due to the implementation of tamper-resistant hardware (e.g. secure elements), the use of strong, multifactor authentication, and the control and management of device configurations, third-party apps that can be installed on the device, and secure forms of communications.

Topics discussed in the white paper include:

• Market trends for using mobile devices for physical access
• Mobile device landscape
• Trust frameworks
• Use cases
• Mobile devices and relying party interfaces
• Mobile device support for multifactor authentication

Lars Suneborn, ID Technology Partners and Mark Dale, XTec, Inc. led the project. Council members who contributed to the white paper include: Defense Manpower Data Center (DMDC); DualAuth; General Services Administration (GSA); IDEMIA; ID Technology Partners; Integrated Security Technologies, Inc.; IQ Devices: Intercede; JCI Software House; NextgenID; Thales; Transportation Security Administration (TSA); U.S. Department of Homeland Security (DHS); XTec, Inc.

---

Welcome New Members

FIME

RSMT Limited

Stanley Convergent Security Solutions

---

Congratulations New Certificants

CSEIP

Jacob Winbury, Adept Patriot Services, LLC

Jonathan Vinson, Alliant Security Inc.

Scott Agans, Genetec Inc.

Scott Chetwynd, ICF International

Marc Fain, M.C. Dean, Inc.

Matthew Palmer, M.C. Dean, Inc.

Robert Morrison, Naval Information Warfare Center, Atlantic

Zachary Stalls, Signet Technologies, Inc.

 

CSEIP-Recertified

Christian Grohmann, Force Security Solutions

Brett Howard, Integrated Security Solutions, Inc.

John Placious, Integrated Security Technologies, Inc.

Scott Hunter, Johnson Controls

Joseph Stinnett, Johnson Controls

Richard Dietz, M.C. Dean, Inc.

Nasir Durrani, M.C. Dean, Inc.

Paul Hagen, M.C. Dean, Inc.

Nigel Stewart, M.C. Dean, Inc.

James Burke, SynchroCyber Corporation

Edward Yu, U.S. Department of Defense

---

Current Training and Exam Dates

The following dates have been announced for CSEIP and TSCIP training. Class sizes have been reduced to six people per class due to COVID-19 health guidelines and safety concerns. As a result, classes are selling out faster than they have in the past, so we are advising organizations to make their reservations in advance of future security system contracts and installations.

• CSEIP Recertification Course, July 16, 2021
• TSCIP Certification Course, July 30, 2021

---

Follow the Alliance on Social Media

The Secure Technology Alliance has an active presence on social media.  Here are some ways for you to interact with the organization:

• Follow us on Twitter: @SecureTechOrg
• Connect with us on LinkedIn: www.linkedin.com/company/secure-technology-alliance
• Share news, insights and resources by liking and retweeting or sharing our posts
• Share our pages with colleagues