VA PKI for Austin ITC 82000 - PowerPoint PPT Presentation

1 / 11
About This Presentation
Title:

VA PKI for Austin ITC 82000

Description:

VeriSign Certificate Authority and Directory Services. Cygnacom Help Desk ... Escrow of Encryption Key. Roll-out Local Registration Authorities (LRA) ... – PowerPoint PPT presentation

Number of Views:25
Avg rating:3.0/5.0
Slides: 12
Provided by: danmaloney9
Category:
Tags: itc | pki | austin | escrow

less

Transcript and Presenter's Notes

Title: VA PKI for Austin ITC 82000


1
VA PKI VAs Public Key Infrastructure Evolution
Ruth Anderson
2
What is VA PKI?
  • A Partnership Between
  • VA -- Management and Identity Proofing
  • Cygnacom -- Consultation and Integration
  • VeriSign -- Certificate Authority and Directory

3
What is VA PKI?
  • User Certificates --
  • Secure Electronic Mail
  • Web-Based Applications
  • Remote Access Services
  • Server Certificates --
  • Server Authentication
  • Encrypted Sessions

4
How has PKI been implemented in VA?
  • VeriSign On-Site Enterprise Edition
  • Moving Toward Decentralized Registration
  • VeriSign Certificate Authority and Directory
    Services
  • Cygnacom Help Desk

5
How has PKI been implemented in VA?
  • VA PKI Web Site - www.va.gov/vapki.htm
  • Secure Electronic Mail
  • Subscribers - VA Personnel and Business Partners
    on Separate CAs

6
How will VA use ACES with VAPKI?
  • Electronic Service Delivery for Veterans and
    Beneficiaries -- ACES
  • VA Employees and Business Partners -- VA PKI

7
How has VA PKI Evolved?
  • VA PKI Subscriber Database
  • Single Key to Dual Key Pair
  • Escrow of Encryption Key
  • Roll-out Local Registration Authorities (LRA)
  • User and LRA Documentation
  • Monitor and Evaluate Evolving PKI Marketplace

8
Where is VA PKI Going?
  • Web-Based Applications DEMPS, CoreFLS, HRLINK
  • Certificates in Centralized Directory for Easy
    Access from E-mail
  • Distributed Proofing and Registration
  • Supported by Departmental Policy

9
What has VA done right?
  • A Single, Centralized PKI Model
  • Centralized Funding
  • Early Start -- 1998
  • Involvement in Federal PKI Steering Committee
  • Enbraced ACES
  • Policy and Documentation Improvement
  • Constant Review of PKI Marketplace

10
What has VA Learned?
  • Get Executive Buy-In for Funding, Implementation,
    and USE
  • Involve Systems Administrators from Conception
    Phase
  • Develop Policy First
  • Pilot Several Options
  • Develop Methodical, Phased Implementation
  • Target Two Applications -- E-mail and Legacy
    System

11
Ruth Anderson Office of Cyber Security
(045C) ruth.anderson_at_mail.va.gov 202.273.9842 Dan
Maloney VHA Emerging Technologies Daniel.maloney_at_
med.va.gov 301.734.0107
Write a Comment
User Comments (0)
About PowerShow.com