2019 Agenda Columns

REGISTRATION

Coffee and pastries

Welcome and Agenda Review

Randy Vanderhoof, Executive Director, Secure Technology Alliance

Keynote Speaker
Securing Critical Infrastructure and the Federal Government – What Problem is Government Trying to Solve?

The speaker will be presenting how the use of federal enterprise-wide digital identity credentials enables government to achieve its mission to secure critical infrastructure and serve government agencies, workers, and citizens.

Keynote Speaker
How Are Governments Consuming Digital Identities?

The speaker to describe the use for the many different government digital identities which enable secure access to government operated or controlled services, such as military bases, ports and airports, REAL-ID compliant drivers licenses, electronic healthcare benefits.

Keynote Speaker
The Search for Trust in a Haystack of Digital Authenticators

The speaker will explain what authenticators are being used and what new authenticators are being considered for securing federal identity and how they align with SP800-63-3.

Panel Session
What Happens When Identity Credentials Are No Longer Safe and Protected?

This panel session will discuss the effects of when individual credentials are stolen

• What Are the Protections Available?
• What Data is Stolen, Where is it Used?
• What is a Multiplying Effect on Risk for Cloud Migration?
• Does Everything Belong in the Cloud?

Featured Speaker
New Approaches for Authentication – How SAML, OpenID Connect, FIDO-enabled Devices Align with SP 800-63

The session will consider these open-sourced or commercial authentication methods for government use

Featured Roundtable #1:
Can Federation of Identity Be Achieved for Government Use?

This moderated roundtable session will look at the prospect of federation of government and non-government identity credentials and authentication choices across government domains that may be aligned with SP800-63-3

Featured Speaker #2

A View of the Identity Applications for Mobile Drivers Licenses and REAL ID

• AAMVA

4 speakers, 15 min ea., plus 15 min Q&A

REGISTRATION

Coffee and pastries

Day 2 Keynote Speaker

Top Fed Administration Official – ie Fed CIO (Suzette Kent level)

Day 2 Panel  Government Leadership Report

NIST – FIPS 201 -3  revisions- Hildy Ferraiolo

GSA / FICAM Report – Jim Sheire

OMB Federal Identity and Security Policy   – cyber scoring, FISMA metrics for measuring – Jordan Burris

 

GSA/FAS Schedule 70/84 Changes – Kevin Mitchell, GSA

Day 2 Roundtable: Future of Mobile Identity in Government (Tom Lockwood to moderate)

A mix of short presentations and discussion on mobile identity, including fed derived ?? credentials,; MDL, FIDO, NIST, Project Verify

Walter Beisheim, Nok Nok Labs (Project Verify)

NIST, FIDO

HID, Gemalto, IDEMIA, Exponent

CONFERENCE CONCLUDES  (No lunch served)

Mobile devices are increasingly the primary device that employees, customers and citizens are using to authenticate their identity when accessing online services from companies and governments and to pay for products both online and in store.  While providing a rich and secure platform for storing identity credentials and using them for authentication for these services, implementation approaches vary across industry sectors on how identity credentials are provisioned and used and what technologies are used to store and present the credential.  This workshop will include presentations by experts and panels on two mobile identity credential initiatives – mobile driver’s licenses and the Federal government’s mobile “derived” credentials – and explore how they can be used in various use cases.  The workshop will also look at current commercial standards and practices for using mobile identity credentials for online authentication.

Welcome and Introduction

Randy Vanderhoof, Executive Director, Secure Technology Alliance

Mobile Driver’s Licenses

Mobile driver’s licenses have the potential to revolutionize identity authentication processes in a wide variety of use cases. This session will provide an in-depth look at the status of mobile driver’s license standards, security frameworks, and the emerging processes for identity proofing, provisioning, and digital presentation for authentication. Panelists will offer an exploration of how mobile driver’s licenses can be used to provide identity authentication for various use cases — law enforcement, proof of identity, age verification, and access to government facilities.

• Presentation: Mobile Driver’s License Overview
• Panel: Use Cases for the Mobile Driver’s License

Derived Credentials in Mobile Identity

This session will discuss how derived credentials can be used with mobile devices to provide secure, easy-to-use identity authentication within the Federal government.

• Presentation: Derived Credentials Overview: What They Are and How They’re Used
• Panel: Use Cases for Derived Credentials

Using Mobile Identities for Online Authentication: Current Standards and Practices

This session will discuss the current standards and best practices for online mobile identity authentication in the commercial environment, including the role of biometrics in mobile authentication.

• Presentation: Current Standards for Online Authentication using Mobile Devices (FIDO, W3C, NIST)
• Panel: Making Sense of the Standards