Online and Digital Identification, Securing Web 2.0, PKI and Digital Certificates

CertiPath unveils federated physical access control system

Monday, October 26, 2009

CertiPath, a credentialing authority for aviation, aerospace and defense organizations, has introduced architecture systems for federated physical access control that leverage high-assurance credentials. The concept demonstrates the viability of a single-credential system that can provide secure access for both physical and logical assets, and provide interoperability for employees, customers and partners.

Funded in part by the General Services Administration, CertiPath was tapped to design and oversee the implementation of a system that could overcome the fragmented, expensive and vulnerable approaches to managing physical and logical identity authentication and access control.

CertiPath’s architecture eliminates the need to physically issue visitor passes and enables certainty that each visitor is employed and in good standing with their employer. The system extends PKI-based security systems for managing and assuring logical access control to the challenges of managing and assuring physical access control.

CertiPath’s architecture conforms to the principles of NIST SP 800-116 and also:

  • Leverages PIV, PIV-I , and Department of Defense Common Access Card credentials issued by any valid issuer, as well as Transportation Workers Identity Credentials
  • Utilizes FIPS 201-certified (or in process) components
  • Enables customers to upgrade physical access control system without replacing existing systems
  • Leverages commercially available products to minimize custom solutions
  • Uses the U.S. Federal Bridge to validate interagency trust
  • Delivers cost-effective options to operate at one or multiple assurance levels

The system was installed and is in production at Exostar, the provider of collaboration solutions for the world’s largest aerospace and defense manufacturers and their 40,000 supply chain partners.

In the past, a visitor pass had to be issued for every single non-employee to enter the premises, and the visitor required an escort. Now visitors can use a single enterprise-issued smart card credential with an embedded chip containing digital certificates to enter the building. [end] 

Related Articles
GSA implements cloud-based physical access system

The General Services Administration (GSA) has implemented its first cloud-based physical access system at the Neal Smith Federal Building in Des Moines, Iowa.

The GSA contracted with BridgePoint Systems to utilize its TrustAlert Physical Access Control Systems. BridgePoint partnered with EmbarkIT to install the system, which replaced the GSA’s 10-year-old legacy system. The system leverages the GSA’s Kansas City, Missouri-based WAN and remote IT infrastructure, which allows the building to shrink its carbon footprint.

read more »
Hirsch’s certification enables greater convergence

Hirsch Identive announced that its Velocity Access Control and Security Management software has been tested and verified to be compliant with the IF-MAP computing standard by the international industry standards organization, Trusted Computing Group.

read more »
BridgePoint unveils Crypto ID for facility access

BridgePoint Systems announced the launched its new Crypto ID smart card, designed to offer improved security standards for smart card usage in the facility access industry.

read more »
Identive forms converged access ID product group

Identive Group Inc. has formed a new product group within its business structure to provide services for integrated access control. This Converged Access group will build on technology designed for Identity as a Service/SaaS products like idOnDemand, as well as work with Identive’s products in the network access smart reader technology field.

read more »
Multicard to supply multi-functional credentials for Henkel

Multicard, a unit of Identive Group that supplies credential, identity management and system integration services, has signed a contract with global consumer products company Henkel to provide a global multi-function identity credential service card to Henkel employees.

read more »
Codebench releases PACS SDK

Florida-based Codebench has released IDSync, a software development kit that enables automated provisioning and deprovisioning of users and credentials into a supported physical access control system.

read more »

Copyright © 2012, AVISIAN, Inc. All rights reserved.