AoR+SWG+1+-+Digital+Credentials

include component="page" wikiName="siframework" page="esMD Header" =Announcements= toc =Works Approved Through Consensus= =Works in Progress= =Meeting Materials= =Reference Materials=
 * ~ Sub-Workgroup Links ||
 * = **SWG 1**
 * Digital Credentials** ||= **SWG 2**
 * Identity Proofing** ||= **SWG 3**
 * Digital Signatures & Delegation of Rights** ||
 * **__ Thank you for your participation!! __** As of January 9th, 2013, the esMD AoR Digital Credentials White Paper has been finalized. The document below as well as the text embedded within the Digital Credentials White Paper Wiki reflect updates that were proposed and agreed upon during the formal Consensus Process. Please contact the Workgroup Lead or Support Lead if you have any remaining questions or concerns.
 * **Date** || **Artifact Name** || **Artifact Links** ||
 * 1/9/2013 || esMD AoR L1 SWG Report - Digital Credentials Management || * Wiki link
 * Consensus votes
 * S&I Framework Repository Link - White Paper ||
 * **Artifact Name** || **Description/Purpose** || **Status** || **Current Status/**
 * Last Updated** || **Reviewers** || **Target Date for Completion** ||
 * [[file:SIFramework_esMD_AoR_SWG_Digital_Identities_Draft V1 6.docx|Digital Credentials Draft White Paper]] || Expansion upon AoR L1 UC and input for AoR L1 Harmonization || Draft || 11/9/2012 ||  || December 1, 2012 ||
 * **Meeting Date** || **Meeting Materials** || **Presentation Materials** || **Minutes** || **View Meeting Recordings** ||
 * December 5, 2012 || Meeting Materials || [[file:siframework/AoR SWG DIM 12-05-12.pptx|Meeting Presentation (.pptx)]] ||  ||   ||
 * November 28, 2012 || Meeting Materials || [[file:AoR SWG DIM 11-28-2012.pptx|Meeting Presentation (.pptx) (intro slides)]] ||  || View on Vimeo ||
 * November 21, 2012 ||||||||= MEETING CANCELLED ||
 * November 14, 2012 || Meeting Materials || [[file:siframework/AoR SWG DIM 11-14-2012.pptx|Meeting Presentation (.pptx) (intro slides)]] || [[file:siframework/esMD AoR L1 Digital Credentials SWG A&D 2012-11-14.docx|Meeting Minutes (.docx)]] || View on Vimeo ||
 * November 7, 2012 || Meeting Materials || [[file:AoR SWG DIM 11-07-2012.pptx|Meeting Presentation (.pptx) (intro slides)]] || [[file:esMD AoR L1 Digital Credentials SWG A&D 2012-11-07.docx|Meeting Minutes (.docx)]] || View on Vimeo ||
 * October 31, 2012 || Meeting Materials || [[file:siframework/AoR SWG DIM 10-31-2012.pptx|Meeting Presentation (.pptx)]] || [[file:siframework/esMD AoR L1 Digital Credentials SWG A&D 2012-10-31.docx|Meeting Minutes (.docx)]] || View on Vimeo ||
 * October 24, 2012 || Meeting Materials || [[file:AoR SWG DIM 10-24-2012.pptx|Meeting Presentation (.pptx)]] || [[file:esMD AoR L1 Digital Credentials SWG A&D 2012-10-24.docx|Meeting Minutes (.docx)]] || View on Vimeo ||
 * October 17, 2012 || Meeting Materials || [[file:esMD Identity standards 3.pptx|Meeting Presentation (.pptx)]] || [[file:siframework/esMD AoR L1 Digital Credentials SWG A&D 2012-10-17.docx|Meeting Minutes (.docx)]] || View on Vimeo ||
 * October 10, 2012 || Meeting Materials || [[file:AoR SWG Digital Identity 10-10-2012.pptx|Meeting Presentation (.pptx)]] || [[file:siframework/esMD AoR L1 Combined SWG A&D 2012-10-10.docx|Meeting Minutes (.docx)]] || View on Vimeo ||
 * October 3, 2012 || Meeting Materials || [[file:AoR SWG DC 2012-10-03.pptx|Meeting Presentation (.pptx)]] || [[file:esMD AoR L1 Digital Credentials SWG A&D 2012-10-03.docx|Meeting Minutes (.docx)]] || View on Vimeo ||
 * September 26, 2012 || Meeting Materials || [[file:AoR SWG DC 2012-09-26.pptx|Meeting Presentation (.pptx)]] || [[file:esMD AoR L1 Digital Credentials SWG A&D 2012-09-26.docx|Meeting Minutes (.docx)]] || View on Vimeo ||
 * September 19, 2012 || Meeting Materials || [[file:AoR Subworkgroup Kick-off Slides 9-19-2012 (10am).pptx|Meeting Presentation (.pptx)]] || [[file:esMD AoR L1 Digital Credentials SWG A&D 2012-09-19.docx|Meeting Minutes (.docx)]] || View on Vimeo ||

Standards
July 2012 || Dec 9, 2011 || Dec 2012 || Dec 2, 2011 || May 1, 2012 ||
 * **Document Link** || **Description** || **Version/Date** ||
 * NIST SP 800-63-1 (PDF) || NIST Electronic Authentication Guideline Recommendations || Dec 2011 ||
 * NIST SP 800-57 Part 1 (PDF) || NIST Recommendations for Key Management - Part 1: General || Revision 3
 * FBCA X.509 Certificate Policy (PDF) || X.509 Certificate Policy for the Federal Bridge Certification Authority || Version 2.25
 * ITU-T Recommendation X.509 || Information technology – Open systems interconnection – The Directory: Public-key and attribute certificate frameworks || Nov 2008 ||
 * OMB M-04-04 (PDF) || E-Authentication Guidance for Federal Agencies || Dec 16, 2003 ||
 * FIPS PUB 140-2 (PDF) || Security Requirements for Cryptographic Modules || May 25, 2001 ||
 * FIPS PUB 199 (PDF) || Standards for Security Categorization of Federal Information and Information Systems || Feb 2, 2004 ||
 * IETF RFC 5055 || Server-Based Certificate Validation Protocol (SCVP) || Dec 2007 ||
 * IETF RFC 5280 || Internet X.509 PKI Certificate and CRL Profile || May 2008 ||
 * IETF RFC 6712 || Internet X.509 PKI - HTTP Transfer or Certificate Management Protocol || Proposed Standard
 * FICAM Roadmap / Implementation Guide (PDF) || Federal Identity, Credential, and Access Management (FICAM) Roadmap and Implementation Guidance || Version 2.0
 * FPKIPA Applicant Requirements (DOC) || Federal Public Key Infrastructure Certification Applicant Requirements || Version 1.0.6

Industry Implementations

 * **Document Link** || **Description** || **Version/Date** ||
 * SAFE-BioPharma Expert Panel Report (PDF) || Interoperable Digital Identity Management in the Electronic Exchange of Health Information || Dec 17, 2007 ||

White Papers/Industry Reports

 * **Document Link** || **Description** || **Version/Date** ||
 * INCIT Study Report (PDF) || Study Report on Biometrics in E-Authentication, InterNational Committee for Information Technology Standards || Mar 30, 2007 ||

Federal Requirements
CMS Authentication Standards || Version 1.2 Jul 31, 2012 ||
 * **Document Link** || **Description** || **Version/Date** ||
 * RMH Vol. III Standard 3-1 Authentication || CMS Risk Management Handbook Volume III, Standard 3.1:

=Workgroup Details=
 * See all Author of Record SWG reference materials on the esMD Reference Materials page. **

Objective:
Define required process for issuing and managing digital credentials for esMD.

Requirements:

 * NIST SP 800-63-1 Level 3 Authentication (December 2011)
 * Federal Bridge Certification Authority (FBCA)
 * Digital Certificates must be X.509v3+ based
 * Must be from CA cross-certified with FB
 * Must provide for non-repudiation as part of the credentials and artifacts

In Scope:

 * Digital credential life cycle
 * Relevant standards
 * Policy issues regarding digital credentials

Out of Scope:

 * Identity Proofing
 * Digital Signatures

Deliverable: Summary White Paper
=Workgroup Leads= =Support Team= =SWG Members=
 * Assumptions
 * Statement of Problem
 * Recommended Solution(s)
 * Review of Standards (e.g., NIST, FBCA, FICAM)
 * CA qualifications and list
 * Issuance process
 * Credential types and forms
 * Credential uses (Identity, Signing, Proxy, Encryption, Data Integrity)
 * Specific use credentials (e.g., Direct, DEA)
 * Maintenance requirements
 * Revocation process
 * Trust anchor validation
 * Non-repudiation assurance
 * Identify gaps in current policy impacting Digital Credentials
 * References
 * **Name** || **Role** || **Contact Information** ||
 * Bob Dieterle || esMD Initiative Coordinator || rdieterle@enablecare.us ||
 * Dan Kalwa || Co-Workgroup Lead || Daniel.Kalwa@cms.hhs.gov ||
 * Mark Pilley || Co-Workgroup Lead || m.pilley@strategichs.com ||
 * Debbie Bucci || Digital Credentials Sub-Workgroup Lead || bucci@exchange.nih.gov ||
 * **Name** || **Role** || **Contact Information** ||
 * Sweta Ladwa || Project Manager || sweta.ladwa@esacinc.com ||
 * Zachary May || Administrative Lead || zachary.may@esacinc.com ||

include component="page" wikiName="siframework" page="esMD Contacts" include component="page" wikiName="siframework" page="space.template.inc_contentleft_end"