What if a user enjoyed a comprehensive single sign on experience to ALL applications upon successful PIV-I Smartcard validation at their desktop or any shared workstation?
Why not? HSPD-12 and subsequent OMB Memorandum such as M-11-11 require PIV-I Smartcard utilization by November, 2011. However, the user experience and accelerated secure access can be enhanced if a relatively simple next step is employed. What if the user simply inserts their card with their provisioned PKI credentials, authenticates to the desktop subsequent to the appropriate validation authority checks (CRL) and leverages their stored Windows Authentication to single sign on to applications they have been provisioned.
The IRS and other forward thinking agencies are steps ahead of many Federal Agencies and DOD to enhance the user experience. This assures higher levels of security assurance and enables utilization of the required PIV card for LACS (logical access). Quest Software has a unique PK Authentication offering that takes the PKI and hashes the Windows Authentication to further accelerate secure access.
No comments:
Post a Comment