CertiPath to Federal Agencies: The Clock is Ticking on OMB M-11-11; Where's Your FICAM Roadmap?

Trusted Authority in High-Assurance Identity Credentials Accelerates Compliance with Expert Services

Mar 02, 2011, 10:16 ET from CertiPath

HERNDON, Va., March 2, 2011 /PRNewswire/ -- With less than one month remaining for all federal agencies to file implementation plans for a federated identity credential access and management (FICAM) strategy as defined by the Office of Management and Budget Memo 11-11, CertiPath offers agency heads an accelerated path to compliance with a complete range of expert services that can both meet the fast-approaching deadline and help them execute their implementation strategy.

(Logo: http://photos.prnewswire.com/prnh/20110302/NE57750LOGO )

The memo, issued February 3, 2011, puts real teeth into the government's call for raising the bar on the identity and credential access and management systems, policies and processes, tying access to future information technology funding to compliance with the standards defined by the FICAM sub-committee. M-11-11 recognizes that while more than 70 percent of federal employees currently use PIV credentials that meet the FIPS 201 standard required by HSPD-12, there remains a significant opportunity for all agencies to "aggressively step up their efforts to use the electronic capabilities of the credentials"; specifically to use these credentials as the common means of authentication for access to facilities, networks, and information systems.

Today, CertiPath is the only company with a proven effective approach to building the systems, policies, and processes that can meet the requirements of an integrated approach to controlling access to both federal facilities and information systems. During 2009 and 2010, in partnership with the U.S. General Services Administration, CertiPath participated in the design, deployment, and successful demonstration of one of the first and only systems that leverages PIV credentials for integrated physical and network access. Since then, CertiPath has developed a comprehensive suite of services designed to help government agencies and commercial organizations:

  • identify requirements and resources and design an effective and accelerated implementation strategy
  • successfully manage the implementation process
  • evaluate and test implementations to ensure performance and compliance
  • select products that are in fact engineered to meet the unique requirements of an integrated environment for access control
  • choose integrators  that are highly trained and certified in the installation of integrated identity   access and control systems

"By now, every agency security officer should recognize the value of using PIV credentials as the common means of identity authentication for access to their agency's facilities, networks, and information systems – for their own employees, and for making access control decisions regarding employees of other federal agencies," said Judith Spencer, chair of CertiPath's Policy Management Authority. "The challenge is to find the expertise, time, and resources to make that recognition a reality."

For federal agencies seeking to act quickly and with high-assurance that their implementation policy will meet the scrutiny of the U.S. Department of Homeland Security and the National Security Office, CertiPath's team of experts can act as a buyers' agent – assessing current systems and policies; recommending strategies and tactics for closing gaps, as well as partners and products for rapid implementation and eventually providing evaluation and testing of implemented systems to ensure compliance.  

About CertiPath

CertiPath is the trusted authority for interoperable identities for collaboration in the aerospace and defense industry. Advancing the use of PKI-based high assurance credentials for both physical and logical access and control, CertiPath tears down the burdensome and costly company, employee and program-centric approaches to identity assurance. 

CertiPath is trusted by more than four million public and private sector users and leverages a turnkey approach that delivers robust, cost-effective and proven physical and logical asset protection. Today, organizations in the U.S., U.K. and Europe including Boeing, BAE Systems, EADS, Exostar, Lockheed Martin, Northrop-Grumman, Raytheon, SITA and the U.S. Federal Bridge (FBCA) are members of this fast-growing community.  For more information, visit CertiPath on the web at http://www.certipath.com

All product and company names herein may be trademarks of their registered owners.

SOURCE CertiPath