This website requires certain cookies to work and uses other cookies to help you have the best experience. By visiting this website, certain cookies have already been set, which you may delete and block. By closing this message or continuing to use our site, you agree to the use of cookies. Visit our updated privacy and cookie policy to learn more.
This Website Uses Cookies
By closing this message or continuing to use our site, you agree to our cookie policy. Learn More
This website requires certain cookies to work and uses other cookies to help you have the best experience. By visiting this website, certain cookies have already been set, which you may delete and block. By closing this message or continuing to use our site, you agree to the use of cookies. Visit our updated privacy and cookie policy to learn more.
Security Magazine logo
search
cart
facebook twitter linkedin youtube
Security Magazine logo
  • MAGAZINE
    • Digital Edition
    • This Month's Issue
    • Archives
  • NEWS
    • Security Newswire
    • COVID-19
    • Technologies
    • Security Blog
    • Newsletter
    • Web Exclusives
  • COLUMNS
    • Career Intelligence
    • Security Talk
    • The Corner Office
    • Leadership & Management
    • Cyber Tactics
    • Overseas and Secure
    • The Risk Matrix
  • MANAGEMENT
    • Leadership Management
    • Enterprise Services
    • Security Education & Training
    • More
  • PHYSICAL
    • Access Management
    • Video Surveillance
    • Identity Management
    • More
  • CYBER
  • SECTORS
    • Education: University
    • Hospitals & Medical Centers
    • Critical Infrastructure
    • More
  • EXCLUSIVES
    • Security 500 Report
    • Most Influential People in Security
    • Top Guard and Security Officer Companies
    • The Security Leadership Issue
    • Annual Innovations, Technology, & Services Report
  • EVENTS
    • Industry Events
    • Webinars
    • Solutions by Sector
    • Security 500 Conference
  • MORE
    • Videos
      • ISC West 2019
    • Photo Galleries
    • Polls
    • Classifieds & Job Listings
    • White Papers
    • Mobile App
    • Store
    • Sponsor Insights
    • Continuing Education
    • Call for Entries
  • CONTACT
    • Advertise
    • Editorial Guidelines
  • Sign In
  • Create Account
  • Sign Out
  • My Account
Home » Access Control, the Government Version

You have 0 Articles Left This Month. Register Today for Unlimited Access.

Access Control, the Government Version

January 1, 2008
Jeffrey Dingle
Order Reprints

The U.S. Government is providing direction for access control users in the United States today. While non-government end-users have generally been happy to be allowed to do what they feel best – the government is finally setting standards. There are significant changes in the way that the Government is managing access control. Let’s count the acronyms.

HSPD-12 (don’t you love government acronyms) is Homeland Security Presidential Directive number twelve. Signed in 2004, HSPD-12 mandates the development and agency implementation of a common security card to be created and issued to all federal employees and contractors. It is designed to be used for computer access, physical access, and as an ID credential. Acronym number two is FIPS-201, which is a Federal Identity Processing Standard that supports HSPD-12. While HSPD-12 is a great idea, it is an unfunded initiative, which means while the government also thinks it’s a great idea, the government is not providing money to make it happen.

The Government process includes Identity Management Systems (IDMS) and Card Management Systems (CMS) to provide a support infrastructure for many local sites, each having one or more doors with physical access control and one or more computers with logical access control. Each site will typically have its own Physical Access Control System (PACS). A Personal Identity Verification (PIV) card is used for access control and will contain information “on the card” such as a photo, name, expiration date, logo, magnetic stripe, bar code or other data storage/transfer mechanism. Contact and contactless smart card technologies are used to contain information “in the card,” the Federal Agency Smart Credential Number (FASC-N) and the Card Holder Unique Identifier (CHUID), biometric fingerprint templates and a Personal Identification Number (PIN). Contact cards require the card to physically touch the reader mechanism in order to transfer data. Contactless cards do not require actual contact between the card and the reader (think prox card). A variety of readers available from a variety of manufacturers are available to support local security levels and strategies.
 

Personal and biometric information is obtained from the employee or contractor for “enrollment” into the IDMS. The CMS receives the information from the IDMS to “personalize” the PIV card by printing information on the card and encoding information into the smart card chips. The employee or contractor must verify that he or she matches the identity on the card for “issuance.” Subsequently, the employee or contractor must again verify his or her identity prior to enrollment in a local PACS. The PACS obtains the personal identity information and expiration date, either by reading the data from the PIV card, or obtaining the data via open XML exchange with the IDMS and CMS. In addition to the authentication (identity verification) performed between the smart card chip and the reader on the attack side of the door, the PACS also performs the authentication and authorization (who goes where when) from the secure side of the door.
 

You have 0 complimentary articles left.

Register for free today to continue reading!

Already have an account? Sign in here.

Privacy Policy

Related Articles

Preventing Cargo Crime with Access Control

Access Control and Training

Turning to Access Control Turnstiles

Surveying Access Control Systems

Subscribe For Free!
  • Digital Edition Subscriptions
  • Security eNewsletter & Other eNews Alerts
  • Online Registration
  • Mobile App
  • Subscription Customer Service

More Videos

Sponsored Content

Sponsored Content is a special paid section where industry companies provide high quality, objective, non-commercial content around topics of interest to the Security audience. All Sponsored Content is supplied by the advertising company. Interested in participating in our Sponsored Content section? Contact your local rep.

Close
Sponsored content bnp covid  3j9fmqpy3i  1
Sponsored By
SureView Operations

How command centers are responding to COVID-19

In recent months, I’ve had many different conversations with our customers about how the COVID pandemic has impacted their security operations—from global companies with hundreds of thousands of employees to much smaller organizations with control rooms responsible for local operations and campuses. The overwhelming feedback is that everyone has needed, in one way or another, to change their processes, and expect to continue having to do so for the foreseeable future.

Popular Stories

USA flag

China has stolen the personal data of 80% of American adults

ransomware - cyber

Kia Motors allegedly suffers ransomware attack; cybercriminals demand $20 million to recover sensitive data

cyber

Top 10 cybersecurity predictions for 2021

Security guards Allied, gardaworld and G4S

GardaWorld and Allied Universal to enter bidding war over G4S

Potawatomi Casino implements temp detection and touchless weapons detection for improved safety and security

Milwaukee-based Potawatomi Hotel & Casino implements touchless screening for guests

2.16_SEC_SBS_REV_360X180_customcontent

Events

September 24, 2020

Pandemics, Recessions and Disasters: Insider Threats During Troubling Times

ON DEMAND: The insider threat—consisting of scores of different types of crimes and incidents—is a scourge even during the best of times. But the chaos, instability and desperation that characterize crises also catalyze both intentional and unwitting insider attacks. Learn how your workers, contractors, volunteers and partners are exploiting the dislocation caused by today's climate of Coronavirus, unemployment, disinformation and social unrest.

October 28, 2020

Industrial Cybersecurity: What Every Food & Bev Executive Needs to Know

ON DEMAND: There's a lot at stake when it comes to cybersecurity. Reputation, productivity, quality. Join us to discuss the future of your global security strategy and a path forward with trusted partners Cisco and Rockwell Automation, and turn your Food & Bev security challenges into strategic advantages that drive business value.

View All Submit An Event

Poll

Who has ownership or primary responsibility of video surveillance at your enterprise?

Who has ownership or primary responsibility of video surveillance at your enterprise?
View Results Poll Archive

Products

Effective Security Management, 7th Edition

Effective Security Management, 7th Edition

 Effective Security Management, 5e, teaches practicing security professionals how to build their careers by mastering the fundamentals of good management. Charles Sennewald brings a time-tested blend of common sense, wisdom, and humor to this bestselling introduction to workplace dynamics. 

See More Products
Security 500 360

The latest news and information

Content written for business-minded executives who manage enterprise risk and security

REGISTER TODAY
  • More
    • Market Research
    • Custom Content & Marketing Services
    • Security Group
    • Editorial Guidelines
    • Privacy Policy
    • Survey And Sample
  • Want More
    • Subscribe
    • Connect
    • Partners
  • Privacy
    • PRIVACY POLICY
    • TERMS & CONDITIONS
    • DO NOT SELL MY PERSONAL INFORMATION
    • PRIVACY REQUEST
    • ACCESSIBILITY

Copyright ©2021. All Rights Reserved BNP Media.

Design, CMS, Hosting & Web Development :: ePublishing