By Topic

Requiring Strong Credentials: What's Taking So Long?

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$31 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

2 Author(s)

Individuals can already purchase digital certificates through the General Services Administration's (GSA's) Access Certificates for Electronic Services (ACES) program or through VeriSign, Thawte, and the like. Federal employees, contractors, and Web servers could have their digital certificates issued through the Federal PKI Common Policy program. In other words, the complete solution is in place if only someone would use it. This reluctance is particularly puzzling, given that these stronger authentication and authorization infrastructures are foundational for the secure data access and transactions that must conform to federal privacy laws and industry's best practices. Without strong credentials, support for the next generation of secure automation simply can't occur. And even more important, smartcard credentials that include digital certificates are already mandatory for federal employees and contractors.

Published in:

IT Professional  (Volume:12 ,  Issue: 1 )