information security and privacy board
play

Information Security and Privacy Board Background and current status - PowerPoint PPT Presentation

Feb 08, 2023 •108 likes •258 views

Information Security and Privacy Board Background and current status Use of Hashing Algorithms in the U.S. Federal Personal Identity Verification Program Biometrics Storage Format Selection for the U.S. Federal Personal Identity

  1. Information Security and Privacy Board Background and current status � Use of Hashing Algorithms in the U.S. Federal Personal Identity Verification Program � Biometrics Storage Format Selection for the U.S. Federal Personal Identity Verification Program Curt Barker December 2005 1 1

  2. Topics � General Status of U.S. Federal Personal Identity Verification Program � Use of Hashing Algorithms in the U.S. Federal Personal Identity Verification Program � Processing Concept � Programmed Changes in Key/Hash Size Requirements � Other Uses of Hashes � Biometrics Decision for Special Publication 800-76 � Minutiae-based vs Image-based Storage � SP 800-76 Biometrics Storage Formats � Conformance Determination 2 2

  3. Topics � General Status of U.S. Federal Personal Identity Verification Program � Use of Hashing Algorithms in the U.S. Federal Personal Identity Verification Program � Processing Concept � Programmed Changes in Key/Hash Size Requirements � Other Uses of Hashes � Biometrics Decision for Special Publication 800-76 � Minutiae-based vs Image-based Storage � SP 800-76 Biometrics Storage Formats � Conformance Determination 3 3

  4. FIPS 201 REQUIREMENTS Phased-Implementation In Two Parts � Part 1 – Common Identification and Security Requirements � HSPD 12 Control Objectives � Identity Proofing, Registration and Issuance Requirements � Effective October 2005 � Part 2 - Common Interoperability Requirements � Detailed Technical Specifications � Office of Management and Budget made Effective October 2006 (OMB M-05-24) � Migration Timeframe (i.e., Phase I to II) � Agency implementation plans have been provided to OMB � OMB has issued schedule for full implementation in 2009 4 4

  5. FIPS 201 Implementation Status and Current Actions � Revision to FIPS 201 (FIPS 201-1) • Interim Issuance Based on National Criminal History Check • Electronic Indication of Interim Status � Conformance Testing of Cards Built to FIPS 201/SP 800-73 Currently Underway • Card Interfaces • Card Storage Formats • Middleware Interfaces � Formal NVLAP Accreditation of NPIVP Laboratories Underway 5 5

  6. Topics � General Status of U.S. Federal Personal Identity Verification Program � Use of Hashing Algorithms in the U.S. Federal Personal Identity Verification Program � Processing Concept � Programmed Changes in Key/Hash Size Requirements � Other Uses of Hashes � Biometrics Decision for Special Publication 800-76 � Minutiae-based vs Image-based Storage � SP 800-76 Biometrics Storage Formats � Conformance Determination 6 6

  7. Special Publication 800-78 Cryptographic Algorithms and Key Sizes for Personal Identity Verification SP 800-78 specifies: � Mandatory PIV Authentication Data (asymmetric key pair and corresponding PKI certificate) � Optional Keys • Asymmetric key pair and corresponding certificate for digital signatures • Asymmetric key pair and corresponding certificate for key management • Asymmetric or symmetric card authentication keys for supporting additional physical access applications � Cryptographic Algorithms and Key Sizes � Authentication Information Stored on the PIV Card 7 7

  8. Personal Identity Verification Hashing Concept (Data Stored on Card) Issuance System Card Data Digital _________________ RSA Hash Signature _________________ Hash _________________ _________________ Signature Function _________________ _________________ _________________ _________________ Function _________________ Card Digital RSA Signature Hash Verification _________________ _________________ Function Compare Data _________________ Hash _________________ Hash _________________ _________________ Function _________________ _________________ _________________ _________________ Access System 8 8

  9. Personal Identity Verification Hashing Concept (Card Signs Data) Card Data Originating System _________________ Hash _________________ Hash _________________ _________________ Function _________________ _________________ Digital _________________ _________________ RSA Signature Signature _________________ Function Digital RSA Signature Hash Verification _________________ _________________ Function Compare Data _________________ Hash _________________ Hash _________________ _________________ Function _________________ _________________ _________________ _________________ Receiving System 9 9

  10. Special Publication 800-78 Cryptographic Algorithms and Key Sizes for Personal Identity Verification SP 800-78 specifies: � Digital Signatures for Card Holder-Unique ID, Stored Biometric Information, X.509 Certificates, “Security Object” that Includes these Identifying Information � Expiration of SHA-1 Hash Algorithm and 1024 bit RSA After 12/31/2010 10 10

  11. Other SHA-1 Uses � Broader use of SHA-1 by the Federal PKI for the implementation of digital signatures. � Default hash algorithm used in the creation of signatures on all certificates issued by Federal PKI CAs. SHA-1 is used (along with MD5) in the NIST National Software Reference Library. � Hash algorithm used for certificates and other signed objects on CAC cards. � SHA-1 is used in many other Federal applications, since it has been the recommended, FIPS-approved hash function for years. 11 11

  12. Topics � General Status of U.S. Federal Personal Identity Verification Program � Use of Hashing Algorithms in the U.S. Federal Personal Identity Verification Program � Processing Concept � Programmed Changes in Key/Hash Size Requirements � Other Uses of Hashes � Biometrics Decision for Special Publication 800-76 � Minutiae-based vs Image-based Storage � SP 800-76 Biometrics Storage Formats � Conformance Determination 12 12

  13. Special Publication 800-76 Biometric Data Specification for Personal Identity Verification Biometrics Decision for Special Publication 800-76 � Minutiae-based Rather Than Image-based Storage � SP 800-76 Biometrics Storage Formats � ANSI/INCITS 378 � EER Compatible With TSA Requirement � Conformance Determination � MINEX? � NPIVP? 13 13

  14. 14 wbarker@nist.gov Questions…. 301-975-8443 Thank you. Curt Barker 14 Contact Information:

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

CS573 Data Privacy and Security Data Privacy and Security in Healthcare Data Privacy and Security

CS573 Data Privacy and Security Data Privacy and Security in Healthcare Data Privacy and Security

CS573 Data Privacy and Security Data Privacy and Security in Healthcare Data Privacy and Security in Healthcare Li Xiong Healthcare security and privacy HIPAA overview Research survey on information security and privacy in healthcare

1.05k views • 57 slides
NHTSA and Automotive Cybersecurity Briefing to the Information Security and Privacy Advisory

NHTSA and Automotive Cybersecurity Briefing to the Information Security and Privacy Advisory

National Highway Traffic Safety Administration NHTSA and Automotive Cybersecurity Briefing to the Information Security and Privacy Advisory Board October 2015 The Need for Cybersecurity Research 32,719 people died due to motor vehicle

556 views • 17 slides
$ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that

$ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that

Presentation Slides $ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that involves the rights of individuals in relation to information about them that is circulating in society. why privacy is an

318 views • 13 slides
Privacy Challenges in RFID Gildas Avoine Information Security Group Universit e catholique de

Privacy Challenges in RFID Gildas Avoine Information Security Group Universit e catholique de

Privacy Challenges in RFID Gildas Avoine Information Security Group Universit e catholique de Louvain Belgium SUMMARY Background about RFID Privacy: Information Leakage Privacy: Malicious Traceability Is Privacy a Research Challenge?

343 views • 32 slides
$ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy

$ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy

Presentation Slides $ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy that involves the rights of individuals in relation to information about them that is circulating in society. why privacy is an

429 views • 13 slides
Healthcare privacy and security Li Xiong CS573 Data Privacy and Security Patients Are Concerned

Healthcare privacy and security Li Xiong CS573 Data Privacy and Security Patients Are Concerned

Healthcare privacy and security Li Xiong CS573 Data Privacy and Security Patients Are Concerned Did you know... 77 percent of all Americans feel their personal health information privacy is very important, and 84 percent said they

769 views • 50 slides
Mobile Device Security and Privacy Information Security and Privacy Office January 2012 Agenda

Mobile Device Security and Privacy Information Security and Privacy Office January 2012 Agenda

Mobile Device Security and Privacy Information Security and Privacy Office January 2012 Agenda Protecting mobile devices and your privacy Protecting Mobile Devices and Your Privacy Before We Start The City of Phoenix does not

971 views • 52 slides
INFORMATION SECURITY AND PRIVACY ADVISORY BOARD 1 Mega Breaches The Year of the Breach 2011

INFORMATION SECURITY AND PRIVACY ADVISORY BOARD 1 Mega Breaches The Year of the Breach 2011

INFORMATION SECURITY AND PRIVACY ADVISORY BOARD 1 Mega Breaches The Year of the Breach 2011 2012 2013 Breaches 208 156 253 Identities Exposed 232M 93M 552M Breaches >10M 5 1 8 2013 was the Year of the Mega Breach Internet

214 views • 5 slides
CS573 Data Privacy and Security Location Privacy Location Privacy Yonghui (Yohu) Xiao htt //

CS573 Data Privacy and Security Location Privacy Location Privacy Yonghui (Yohu) Xiao htt //

CS573 Data Privacy and Security Location Privacy Location Privacy Yonghui (Yohu) Xiao htt // http://yxiao.info i i f Outline Outline What is Location Privacy Basic Techniques Private Information Retrieval Probabilistic

415 views • 24 slides
CLUSIT and Information Security & Privacy Osservatorio introduce their perspective Gabriele

CLUSIT and Information Security & Privacy Osservatorio introduce their perspective Gabriele

IT Security: CLUSIT and Information Security & Privacy Osservatorio introduce their perspective Gabriele Faggioli November 27 th , 2017 Clusit Osservatori Politecnico of Milan CLUSIT , the Italian Association for Information Security,

813 views • 17 slides
PANEL 5: SECURITY AND PRIVACY OF INFORMATION SYSTEMS KEN KLINGENSTEIN, EHAB AL-SHAER, ALPTEKIN

PANEL 5: SECURITY AND PRIVACY OF INFORMATION SYSTEMS KEN KLINGENSTEIN, EHAB AL-SHAER, ALPTEKIN

1 PANEL 5: SECURITY AND PRIVACY OF INFORMATION SYSTEMS KEN KLINGENSTEIN, EHAB AL-SHAER, ALPTEKIN KUPCU, ALBERT LEVI, DI MA & GENE TSUDIK 2 Security and Privacy (S&P) Throughout 70-s and early 80-s Mainly within

151 views • 12 slides
PRIVACY POST-SNOWDEN Ian Brown, Prof. of Information Security and Privacy Oxford Internet

PRIVACY POST-SNOWDEN Ian Brown, Prof. of Information Security and Privacy Oxford Internet

PRIVACY POST-SNOWDEN Ian Brown, Prof. of Information Security and Privacy Oxford Internet Institute, University of Oxford @IanBrownOII Implants in the supply chain International law and politics International Covenant on Civil and Political

384 views • 17 slides
Security and Privacy 12A. Operating Systems Security Operating Systems Principles 12B.

Security and Privacy 12A. Operating Systems Security Operating Systems Principles 12B.

5/18/2016 Security and Privacy 12A. Operating Systems Security Operating Systems Principles 12B. Authentication 12C. Authorization Security and Privacy 12D. Trust 12E. At-Rest Encryption Mark Kampe (markk@cs.ucla.edu) Security and Privacy

116 views • 8 slides
The Security-Privacy tension: recent developments in the U.K. and elsewhere James Davenport

The Security-Privacy tension: recent developments in the U.K. and elsewhere James Davenport

The Security-Privacy tension: recent developments in the U.K. and elsewhere James Davenport Hebron & Medlock Professor of Information Technology University of Bath (U.K.) 16 January 2014 Overall Thesis When it comes to security/privacy,

419 views • 18 slides
SECURITY, ADVERSARIAL SECURITY, ADVERSARIAL LEARNING, AND PRIVACY LEARNING, AND PRIVACY

SECURITY, ADVERSARIAL SECURITY, ADVERSARIAL LEARNING, AND PRIVACY LEARNING, AND PRIVACY

SECURITY, ADVERSARIAL SECURITY, ADVERSARIAL LEARNING, AND PRIVACY LEARNING, AND PRIVACY Christian Kaestner with slides from Eunsuk Kang Required reading: Hulten, Geoff. "Building Intelligent Systems: A Guide to Machine Learning

1.95k views • 113 slides
Compliance Workshop Privacy & Security Protecting Personal Information & SNAP Program

Compliance Workshop Privacy & Security Protecting Personal Information & SNAP Program

3/27/2015 Compliance Workshop Privacy & Security Protecting Personal Information & SNAP Program Considerations August 14, 2014 Presentation by: Jennifer L. Cox, J.D. Cox & Osowiecki, LLC Hartford, Connecticut 1 Todays Privacy &

475 views • 24 slides
Town of Southborough PILOT Update February 8, 2011 PILOT The Massachusetts State

Town of Southborough PILOT Update February 8, 2011 PILOT The Massachusetts State

Town of Southborough PILOT Update February 8, 2011 PILOT The Massachusetts State Constitution, written in 1780, empowered the legislature to promote the arts, sciences, and natural history of our country by granting reasonable

582 views • 35 slides
The Harvard Turnaround Leadership Training Presented by: Toyia Wilson, Principal Chris Sloane,

The Harvard Turnaround Leadership Training Presented by: Toyia Wilson, Principal Chris Sloane,

The Harvard Turnaround Leadership Training Presented by: Toyia Wilson, Principal Chris Sloane, Principal Jeremy Smalline, Principal Marc Fleming, Asst. Principal Gina Biondolillo, Asst. Principal 8/1/2014 2 Envision Greece 2017 outlines

135 views • 13 slides
What does it look like in the Colchester School District? National School Lunch Federal Poverty

What does it look like in the Colchester School District? National School Lunch Federal Poverty

What does it look like in the Colchester School District? National School Lunch Federal Poverty Guidelines Program FAMILY OF FOUR (2017) FAMILY OF FOUR (2017) $24,600 $45,510 VERMONT RATE (2016) VERMONT RATE (2016) 11.9% 44.1% 50 45

355 views • 18 slides
NEEDS ASSESSMENT GROUP Chair: Thomas Crain Co-Chair: Marc Fowler 12/17/2015 AREAS OF FOCUS

NEEDS ASSESSMENT GROUP Chair: Thomas Crain Co-Chair: Marc Fowler 12/17/2015 AREAS OF FOCUS

MIDDLE SCHOOL COMMUNITY TASK FORCE NEEDS ASSESSMENT GROUP Chair: Thomas Crain Co-Chair: Marc Fowler 12/17/2015 AREAS OF FOCUS Short-Term MMS Requirements Building Security Internet Technology (IT) Future MMS (Current MHS)

361 views • 11 slides
CRYPTOCURRENCIES When life is light years ahead of the law Advocate Vicky Milner Rob Dudley 12

CRYPTOCURRENCIES When life is light years ahead of the law Advocate Vicky Milner Rob Dudley 12

CALLINGTON CHAMBERS CRYPTOCURRENCIES When life is light years ahead of the law Advocate Vicky Milner Rob Dudley 12 June 2018 CALLINGTON Introductions CHAMBERS Advocate Vicky Milner, Callington Chambers Rob Dudley, CTO, Global

564 views • 38 slides
Beta Presentation Automatic Resume Verification The Capstone Experience Team Yello Giorgio

Beta Presentation Automatic Resume Verification The Capstone Experience Team Yello Giorgio

Beta Presentation Automatic Resume Verification The Capstone Experience Team Yello Giorgio Maroki Wan Kim Nathaniel Hagan Brandon Burt Ryan Nagy Department of Computer Science and Engineering Michigan State University Fall 2017 From

399 views • 12 slides
Hash functions and Cayley graphs: The end of the story ? Christophe Petit UCL Crypto Group Ch.

Hash functions and Cayley graphs: The end of the story ? Christophe Petit UCL Crypto Group Ch.

Hash functions and Cayley graphs: The end of the story ? Christophe Petit UCL Crypto Group Ch. Petit - Paris VI - Nov 2010 1 Microelectronics Laboratory Hash functions H : { 0 , 1 } { 0 , 1 } n UCL Crypto Group Ch. Petit - Paris VI

786 views • 45 slides
What's new in MySQL 5.5? Performance/Scale Unleashed Mikael Ronstrm Senior MySQL Architect The

What's new in MySQL 5.5? Performance/Scale Unleashed Mikael Ronstrm Senior MySQL Architect The

<Insert Picture Here> What's new in MySQL 5.5? Performance/Scale Unleashed Mikael Ronstrm Senior MySQL Architect The preceding is intended to outline our general product direction. It is intended for information purposes only, and may

710 views • 38 slides

More recommend