Why FIPS 201 matters to corporate security

Sep 1, 2006 12:00 PM, LARRY ANDERSON, EDITOR


         Subscribe in NewsGator Online   Subscribe in Bloglines

A deadline looms next month related to HSPD-12 and FIPS 201 and the federal government. For anyone who speaks a language other than Alphanumeric, these initiatives have to do with establishing a “common identification standard” for federal employees and contractors. The FIPS 201 standard describes the process for verifying an individual government employee's identity (biometrics) and the technical requirements for a smart card or other credential.

Corporate security directors should be paying attention to what is happening at the federal level because it will impact them in huge ways in the coming years.

The federal government is helping to create something that has been a struggle during the march of technology in the private sector — a critical mass of smart card applications that combine principles of identity management with issues of physical security and protection of computers and information.

Private-sector economics have served our industry well over the years, but in this case there is a chicken-or-egg question: How can an infrastructure of smart card applications be created unless or until there is a critical mass of smart cards? And how can a critical mass of smart cards be created until there is an infrastructure of applications in place?

The government market can break out of the chicken-or-egg conundrum by way of a mandate (such as the Presidential Directive HSPD-12). A mandate for government agencies creates an additional impetus for technology implementation that is missing in the private sector. Dollars and cents (a.k.a., return on investment) drive the private sector. Corporate people want their technologies tried-and-true and battle-tested. But government has different rules.

What we hear is that the technologies and developments that are going into the HSPD-12 and FIPS 201 initiatives will — sooner rather than later — migrate to the private sector.

So as our friends in the government security arena struggle to use FIPS 201 standards — to meet the mandate — they are also laying the groundwork for the corporate world to adopt the same technologies down the road.

Government standards will likely become de facto standards for the corporate world, too, and then the true benefits of smart cards will be available to all.

YOUR THOUGHTS

We are looking for reader feedback. E-mail landerson@securitysolutions.com and tell us what you think!

Want to use this article? Click here for options!
© 2008 Penton Media Inc.

Today's New Product

Product 1 Image

Axis H.264-Based Video Systems

Axis Communications has introduced a new generation of network video products built on its in-house-developed ARTPEC-3 chip, which allows integration of in-camera processing for megapixel video, H.264 compression and video analytics. By using the H.264 compression format, the systems save up to 50 percent of storage and network bandwidth compared to MPEG-4 compression and up to 80 percent compared to MJPEG. This allows for more cost-effective video surveillance systems and simplified deployment and management of large-scale video systems.

To read more...


Govt Security

Cover

SUBSCRIBE

This month in Access Control

Popular Stories

Resources

Webinar

Mass Notification Systems

Join AC&SS and ADT as they discuss the crucial role of mass notification systems before, during, and after emergency situations.
March 26 at 2pm ET

Register Now!

Back to Top