An audit by the U.S. Department of Defense’s Inspector General’s office shows that the agency is not complying the HSPD-12 and FIPS 201. The White House Office of Management and Budget and the President’s Council on Integrity and Efficiency requested the audit.
The report shows that the DOD is lacking in six specific areas with its credentialing project. These include:
• Failing to meet government-wide milestones for completing background checks.
* Staff at stations that issue the Common Access Card cannot electronically verify whether card applicants have initiated or completed a National Agency Check with Written Inquiries. * DOD displays full Social Security number on the Geneva Conventions credential, increasing the risk of identity theft. * Purchasing equipment that is not compliant with HSPD-12. * Using bar code technology on the Defense Biometric Identification System credential that is not equivalent to mandatory HSPD-12 security features. * DOD’s current PIV credential does not meet interoperability requirements. The Inspector General recommends that the DOD issue HSPD-12 implementation guidance within 90 days; revise and update DOD Directives and Instructions to incorporate FIPS requirements; and submit proposed end-state PIV credential to GSA for conformance testing. The Inspector General is requesting comments on the final report by July 30, 2008. The full 90-page report can be downloaded here
The General Services Administration (GSA) has implemented its first cloud-based physical access system at the Neal Smith Federal Building in Des Moines, Iowa.
The GSA contracted with BridgePoint Systems to utilize its TrustAlert Physical Access Control Systems. BridgePoint partnered with EmbarkIT to install the system, which replaced the GSA’s 10-year-old legacy system. The system leverages the GSA’s Kansas City, Missouri-based WAN and remote IT infrastructure, which allows the building to shrink its carbon footprint.
read more »Florida-based Codebench has released IDSync, a software development kit that enables automated provisioning and deprovisioning of users and credentials into a supported physical access control system.
read more »The White Sands Missile Range (WSMR) in south central New Mexico is doing away with its own badges and coming in line with HSPD-12 and PIV.
read more »Codebench Inc. and Hirsch Identive announced the integration of Codebench’s PIVCheck Plus software with Hirsch Identive’s Velocity Management Software, which aims to provide federal government and commercial customers with a solution for identity validation, authentication and PACS registration using mobile handheld devices.
read more »Codebench Inc. and S2 Security Corp. announced that Codebench’s PIVCheck Plus software suite, a card validation, authentication, and registration solution for HSPD-12 compliance, now integrates with the S2 NetBox Extreme and Enterprise systems from S2 Security Corporation.
read more »In order to help federal agencies and governmental organizations comply with HSPD-12, Codebench has integrated its PIVCheck Plus software with IDenticard’s PremiSys access control system.
read more »
