Smart Card Alliance White Paper Aids Federal Security Directors Migrating to FIPS 201 Physical Access Control Systems
Developed in collaboration with the Open Security Exchange, Security Industry Association and International Biometric Industry Association
PRINCETON JUNCTION, NJ, September 24, 2007–Security directors and those responsible for physical access control systems (PACS) within government agencies have a new resource to help them choose the right path to accept FIPS 201 compliant credentials–a new white paper, developed by the Smart Card Alliance Physical Access Council in collaboration with the Open Security Exchange (OSE), Security Industry Association (SIA) and International Biometric Industry Association (IBIA).
The white paper, “Physical Access Control System Migration Options for Using FIPS 201-1 Compliant Credentials,” directly addresses the challenges unique to PACS when transitioning to FIPS 201-1 compliant credentials (the Personal Identity Verification card, known as the PIV card). It describes key elements of a typical PACS, identifies migration considerations relative to each, and outlines different migration options and their benefits and challenges. The white paper also discusses options for integration, PACS enrollment and registration, and biometrics.
“The PIV credential enables agencies to implement a range of identity authentication methods, allowing the appropriate method to be used based on an agency’s unique security requirements,” said Randy Vanderhoof, executive director of the Smart Card Alliance. “This white paper allows security directors, facilities managers or systems managers to understand the changes introduced by PIV cards, what migration options are available, and how to manage the transition to guarantee success.”
“Review of this white paper puts a security director in good position to decide how to employ PIV credentials within the context of their overall security plan,” said Physical Access Council Chair Roger Roehr, from Tyco International’s access control and video systems. “Directors can use the guide to select authentication methods while keeping in mind requirements for throughput, as well as operational and interoperability considerations.”
The Smart Card Alliance Physical Access Council sought cooperation and input from SIA, OSE and IBIA on this white paper so that the resulting guidance would reflect the broad industry perspective.
“This document provides federal security directors with the tools to create migration strategies that not only achieve compliance, but also improve overall security for their organizations,” said Richard Chace, executive director and CEO, the Security Industry Association.
“For the first time, all migration considerations and options are detailed in one place,” said IBIA Chair Walter Hamilton. “A real benefit to federal security officers is that the white paper goes into detail about security options beyond minimum FIPS 201 requirements, such as using biometric authentication for high assurance physical access control.”
“A hot topic addressed in the white paper is convergence of IT security and physical security,” said Laurie Aaron, vice chair, OSE. “This topic is one of the key objectives for government agencies complying with directives, and can also benefit commercial organizations looking to develop overarching strategies for stronger security based on the government model.”
Members from the Smart Card Alliance Physical Access Council, Open Security Exchange, Security Industry Association and International Biometric Industry Association were involved in the development of the white paper, including: AMAG Technology, BearingPoint, Brivo Systems, CoreStreet, Diebold, EDS, Fargo Electronics, Gemalto, HID Global, HIRSCH Electronics, Identification Technology Partners (IDTP), Integrated Engineering, International Biometric Industry Association, LEGIC Identsystems, MDI Security Systems, NASA, Northrop Grumman, Open Security Exchange, PricewaterhouseCoopers, Quantum Secure, Sagem Morpho, Inc., SCM Microsystems, Security Industry Association, Shane Gelling Company, SI International, Siemens Building Technologies, Tennessee Valley Authority, Thales e-Security, Tyco International, U.S. Department of Defense, U.S. Department of State.
The white paper is available free on the Smart Card Alliance Web site, http://www.securetechalliance.org.
About the Smart Card Alliance Physical Access Council
The Smart Card Alliance Physical Access Council is focused on accelerating the widespread acceptance, usage, and application of smart card technology for physical access control. The group brings together, in an open forum, leading users and technologists from both the public and private sectors and works on activities that are important to the physical access industry and that will address key issues that end user organizations have in deploying new physical access system technology.
The Physical Access Council includes participants from across the smart card and physical access control system industry, including end users; smart card chip, card, software and reader vendors; physical access control systems vendors; and integration service providers. Physical Access Council participation is open to any Smart Card Alliance member who wishes to contribute to the Council projects.
About the Smart Card Alliance
The Smart Card Alliance is a not-for-profit, multi-industry association working to stimulate the understanding, adoption, use and widespread application of smart card technology.
Through specific projects such as education programs, market research, advocacy, industry relations and open forums, the Alliance keeps its members connected to industry leaders and innovative thought. The Alliance is the single industry voice for smart cards, leading industry discussion on the impact and value of smart cards in the United States and Latin America. For more information, please visit http://www.securetechalliance.org.
About The Security Industry Association
The Security Industry Association (SIA) is a nonprofit international trade association representing electronic and physical security product manufacturers, integrators, specifiers, and service providers. SIA advocates for and supports the industry by providing education, research, technical standards and representation and defense of its members’ interests. SIA is sole sponsor of the International Security Conference and Exhibitions (ISC EXPO). Learn more at http://www.siaonline.org.
About The Open Security Exchange
The Open Security ExchangeSM (OSE) is a not-for-profit association of security experts that provides a forum for end-users, manufacturers, integrators, consultants and allied organizations to mutually define opportunities for converging physical and IT security. Its goal is to help improve enterprise security through the collaborative development of reusable models, definitions, vendor-neutral interoperability specifications and best practice guidelines that accelerate the convergence of security systems. Visit http://www.opensecurityexchange.org for more information.
About the International Biometric Industry Association
Founded in 1998 as a non-profit trade association in Washington, DC, the International Biometric Industry Association (IBIA) represents the manufacturers, developers, and solution providers of biometric technologies used in electronic human identity authentication – face, fingerprint, hand, iris, vascular, speech, as well as skin/dermis. IBIA impartially represents all biometric technologies in all applications.
IBIA advances the use of biometrics as the most effective and reliable means of ascertaining personal identity for the government, the commercial/private sector, and the consumer. The industry’s leading voice on key policy issues affecting biometrics, IBIA fulfills its mission through education and advocacy.