giesecke & devrient’s fips 201 - piv solution presentation · pdf filefips 201 - piv...
TRANSCRIPT
Giesecke & Devrient’sFIPS 201 - PIV SolutionPresentation
NIST PIV Implementation WorkshopJune 28, 2005
Won J. Jun
Presentation at NIST PIV Workshop Copyright 2005 Giesecke & Devrient
Page 2
Presentation Agenda
G&D Corporate Information G&D’s Perspective on FIPS 201 – PIV G&D’s PIV Solution
The Complete SolutionCardsSoftwareServicesRoadmap
Questions
Presentation at NIST PIV Workshop Copyright 2005 Giesecke & Devrient
Page 3
G&D Corporate Information
The Giesecke & Devrient Group of Companies:
Founded 1852
Consolidated group revenue $ 1.5 billion($730M from Card Solutions)
Workforce 7,337
Privately-held, profitable, and growing organization
Presentation at NIST PIV Workshop Copyright 2005 Giesecke & Devrient
Page 4
G&D Corporate Information
Business Unit 2
BanknotesSecurity PaperProduct SecurityBrand Protection
Business Unit 1 Business Unit 2 Business Unit 4Business Unit 3
Currency AutomationBanknote ProcessingSystems
Smart Cards forPayment, Industryand Government
Systems and Solutionsfor security in E-Government,E-Business, Telecommuni-cations, ID Systems
System Banknotes System Cards
G&D’s Main Business UnitsCard Systems and Solutions
Banknotes and Currency Printing and Processing
Presentation at NIST PIV Workshop Copyright 2005 Giesecke & Devrient
Page 5
G&D’s Perspective on PIV
G&D’s Commitment:Qualifying a new smart card OSTesting and validationWorking with industry partners
Merits of FIPS 201Leveling of the playing fieldBuilding on previous initiatives
Dar Robinson
Presentation at NIST PIV Workshop Copyright 2005 Giesecke & Devrient
Page 6
G&D’s Perspective on PIV
Contactless Technology IssuesCurrent contactless implemen-tations are not compliant to PIV IIrequirementsHybrid vs. Dual-interface
Presentation at NIST PIV Workshop Copyright 2005 Giesecke & Devrient
Page 7
G&D’s Perspective on PIV
Challenges ahead: evolving requirements
Presentation at NIST PIV Workshop Copyright 2005 Giesecke & Devrient
Page 8
G&D’s Perspective on PIV
Business ConcernsBusiness case and major investmentsCommitment from the Government to purchase“If we build it, they will come?”
“Field of Dreams”
Presentation at NIST PIV Workshop Copyright 2005 Giesecke & Devrient
Page 9
G&D’s PIV Solution: a Complete Solution
SecurityApplicationsSecurity
Applications
Single Sign OnSSOSingle Sign On
SSO
Secure WLANVPNSecure WLAN
VPN
File- / FolderEncryptionFile- / Folder
EncryptionHard disk
EncryptionHard diskEncryption
SecureEmail
SSL/SMime
SecureEmail
SSL/SMime
CAMS (Card and Appl. Mgmt)
CAMS (Card and Appl. Mgmt)
AETAET Bell IDBell ID IntercedeIntercede TrustmanagerTrustmanager
IdentitymanagementIdentity
managementSingle Point of User AdministrationSingle Point of User Administration
Card / TokenCard / TokenStarcos
2.3/2.4/2.5/3.0Starcos2.3/2.4/2.5/3.0
Sm@rtCafèExpert
32k / 64k FIPSJava Cards
Sm@rtCafèExpert
32k / 64k FIPSJava Cards
Starkey 100USB TokenStarkey 100
USB Token
StarSign BioTokenStarSign Bio
Token
StarSignMemoryToken
StarSignMemoryToken
Card ReaderCard Reader PCSC-Compliant Devices (e.g., Omnikey, SCM )PCSC-Compliant Devices (e.g., Omnikey, SCM )
Standard InterfacesStandard
InterfacesMiddleware (PKCS#11 / CSP / APDU)Middleware (PKCS#11 / CSP / APDU)
Card Body /Security FeaturesCard Body /
Security FeaturesContact CAC/PIV compliant Card BodyContact CAC/PIV compliant Card Body Contactless CAC/PIV compliant Card BodyContactless CAC/PIV compliant Card Body
Presentation at NIST PIV Workshop Copyright 2005 Giesecke & Devrient
Page 10
G&D’s PIV Solution: Sm@rtCafé® Expert FIPS 64
Sm@rtCafé® Expert 64 combines the benefits of innovative developments on one platform
Cost efficiency
Decision security
Future-proof
Investment protection
Flexibility
Technological leadership
Features:16-bit microcontroller68 KByte EEPROM (64KB avail.)Java Card™2.2Global Platform 2.0.1‘Logical channels2048-bit RSA key generationDSA key generationEnhanced garbage collection
HW random number generatorFIPS 140-2 Level 3 validation with card managerFIPS 140-2 Level 2 validation with DOD CACApplets v.2Delegated managementDAP VerificationSecurity domainsGSC-IS v2.1
Presentation at NIST PIV Workshop Copyright 2005 Giesecke & Devrient
Page 11
G&D’s PIV Solution: Sm@rtCafé® Expert 3.x
The Java Card™ solution for maximum flexibility.
Sm@rtCafé® Expert 3.0 available now: Java Card™ 2.2.1 Global Platform 2.1.1 Dual interface (ISO 14443 Type A) Highest-level security Capacity of up to 64 KB EEPROM Multiple security domains Delegated management
Presentation at NIST PIV Workshop Copyright 2005 Giesecke & Devrient
Page 12
Compatible with any PIV-compliant applets and middlewareG&D’s PIV Demonstration Package (Q3/05)FIPS 140-2 validation
Development and testingCompliance testing by labReview by NIST CMVP
FIPS 201 validation
G&D’s PIV Solution: Software
Presentation at NIST PIV Workshop Copyright 2005 Giesecke & Devrient
Page 13
ConsultingServices
Infra-structure
• Strategic goal• Needs Analysis• Regulatory
environment• Business case• Time & Budget• Pre-Pilot
• IT & Mgmttraining
• Standards andlegacy systems
• Applicationsdefinition
• Hardware andsoftware selectionand upgrades
• implementation• Technology and
partner selection• Definition of
processes
• Smart cardmanufacturing
• Applicationdevelopment
• Customisation• Integration into
existing infra-structure
• Applicationdeployment &integration
• Process roll-out• Real-time and
post-pilot analysis
• Outsourcedservices
• Training (users)
• Upgrade
PKIProducts
Smart CardServices
Rollout Support
G&
D
Par
tner
s
BusinessConsultancies
IT Integrators
Trust Centers
G&D’s PIV Solution: Services
Presentation at NIST PIV Workshop Copyright 2005 Giesecke & Devrient
Page 14
G&D’s PIV Solution: RoadmapPIV – I
CompliantProducts
PIV – IICompliantProducts(Gen. 1)
PIV – IICompliantProducts(Gen. 2)
Cards Sm@rtCaféExpert FIPS
64+
MifareDESFire
Sm@rtCaféExpert FIPS
64+
Sm@rtCaféExpert 3.0
Sm@rtCaféExpert 3.x
Applets CAC Applets PIV Appletv.1.0
PIV Appletv.2.0
Availability Now 2005 2006
Presentation at NIST PIV Workshop Copyright 2005 Giesecke & Devrient
Page 15
Questions
Presentation at NIST PIV Workshop Copyright 2005 Giesecke & Devrient
Page 16
Won J. JunProject ManagerIndustry and GovernmentGiesecke & Devrient
Tel.: [email protected]
http://www.gdai.com
Contact Information