ICAM: Identity Credential Access Management

ICAM: Identity Credential Access Management

ICAM Background:

The Federal ICAM Roadmap lays out a comprehensive vision for the full lifecycle of Digital Identity including: Credentialing, Privilege Management, Authentication, Authorization & Access, Cryptography, and Auditing & Reporting services. The architecture enables trust and interoperability for digital transactions for broad use by constituents in the Federal government, other governments, external organizations, and citizens.

ICAM is designed to:

• Overcome vulnerabilities associated with identity management
• Break down the stovepipe approach to security
• Promote interoperability through standards
• Enable inter-agency collaboration

Federated Single Sign On (SSO) is a pillar for ICAM.

Solution: Intel^® Expressway Cloud Access 360 / McAfee^® Cloud Identity Manager enables federated access, Cloud SSO (SAML, OAuth, Open ID), Account Provisioning with Strong Auth and One Time Passwords

• Drives cross agency collaboration and strong auth access
• Supports log-in using private sector identity credentials such as Open Id, Pay Pal, OAuth
• Supports Trust Framework LOA level of access level 3 with SAML ID support
• GSA listed

Security for Web Services

Solution: Solution: Intel^® Expressway Service Gateway / McAfee^® Service Gateway can be used to authenticate Web Services (REST/SOAP) and expose secure APIs.

• Ready for High Assurance Environments
• Tamper Resistant Hardware appliance
• FIPS 140-2 Level 3 Cryptographic Hardware
• Common Criteria EAL4+
• JITC DoD PKI Certified
• DoD STIG Ready and PKI Certified
• Secure cryptographic boundary and PKI key storage in HSM safe from attacker access
• High performance Cavium crypto acceleration
• GSA listed

Webinar: Mapping Identity Credential and Access Management to Meet Challenges