Home About Product Solution Partner

Overview
Government Overview
Government Solutions
 

FIPS 201 Compliance & Physical Identity Management Solutions


gvnmtAs mandated by FIPS 201, the PIV II backend Physical Security Infrastructure for Government agencies must be able to achieve the following goals to achieve full compliance with HSPD-12 initiatives:


Uses of PIV Smart Card to manage IT credentials and simultaneously manage physical access credentials


The physical access control systems (PACS) infrastructure, often consisting of disjointed and silos of multiple PACS, must be able to unite and interoperate amongst themselves, such that PIV rules and policies can be implemented seamlessly across this heterogeneous infrastructure


The PIV Smart Card, regardless of issuing agency, must be able to seamlessly work with such     heterogeneous PACS infrastructure


The PACS infrastructure must be able to seamlessly integrate with Public Key Infrastructures (PKI)     with OCSP for certificate validation


The PACS infrastructure must be able to support employees, contractors and visitors holding PIV     cards issued by variety of government offices & bureaus without manual intervention


Quantum Secure’s Government solutions offering are off-the-shelf, standards-based software products designed to meet all the security and interoperability requirements of FIPS 201 regulation. Quantum Secure’s SAFE product suite seamlessly integrates and provides interoperability amongst all physical access control systems into a common interface such that a PIV Smart Card can be automatically provisioned in the access control systems with right credentials, after applying intelligent rules / policies and real-time OCSP check for certificate validity in PACS infrastructure.

 

The policy-based system allows for automatic enrollment of PIV card in disjointed and often standalone PACS; manages visitors and contractors holding PIV cards from various agencies bearing certificates from various certificate authorities; enables automated self-service and delegated administration for PIV cardholders; enables automated provisioning and de-provisioning of physical credentials and access rights based upon central HR/LDAP/IDMS system; and changes in certificate information in real time.

 

Section 508 Compliance

Quantum Secure has performed numerous past activities with requirements relative to 508 mandates which support the needs of the disabled and their ability to access IT applications and equipment. Our experience in this arena enables us to readily comply with all the prerequisites associated with this regulation. In those instances when it is required, we provide written verification for each applicable line item in the contract schedule concerning whether each product or service is compliant or non-compliant with accessibility standards.

 

The following definitions apply to Quantum Secure's implementation of Section 508 requirements:

 

Section 508 Standards - Subpart B -- Technical Standards:

Quantum Secure is committed to Section 508 compliance and we welcome any ideas or comments that may help our team further improve upon the accessibility of our products and services.
 

 

 
   
Copyright © 2007-2008 QUANTUM SECURE. All Rights Reserved.
Reproduction in whole or in part in any form or medium without express written permission is prohibited.