U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

Project Description (Initial Public Draft)

Authentication for Law Enforcement Vehicle Systems

Date Published: September 2016
Comments Due: November 10, 2016 (public comment period is CLOSED)
Email Questions to: lev-nccoe@nist.gov

Author(s)

D. Tobin (NIST)

Announcement

[10/11/16 - The comment period has been extended to 11/10 (from 10/12).]

The National Cybersecurity Center of Excellence (NCCoE) has posted a draft Project Description on the topic of Authentication for Law Enforcement Vehicle Systems.

Law enforcement vehicles often serve as mobile offices for officers. In-vehicle laptop(s) or other computer systems are used to access a wide range of software applications and databases hosted and operated by federal, state, and local agencies, with each typically requiring a different username and password. The operational environment presents unique security challenges, as officers must frequently leave the vehicle unattended, perhaps on short notice, and must be able to gain access to systems quickly, possibly while the vehicle is in motion. These needs discourage the use of screen locks and traditional single sign on solutions.

In collaboration with stakeholders, the NCCoE aims to demonstrate an integrated set of authentication mechanisms, improving system security, usability and safety. By integrating simplified identity and authentication technologies, based on proximity, biometrics, tokens, or other similar technologies, with readily available integrated reduced-sign-on (RSO) tools, law enforcement organizations can enhance mission effectiveness, improve officer safety, and, through more consistently applied security controls, reduce risk to sensitive back-end databases and systems. This project will also explore additional capabilities, such as proximity authentication, derived Personal Identity Verification (PIV) credentials, integration with FirstNet, and integration with vehicle drive-away protection and Computer Assisted Dispatch systems to indicate whether the officer is in the vehicle or not.

Abstract

Keywords

automotive; vehicle upfit systems; law enforcement; reduced sign on; proximity authentication
Control Families

Access Control; Identification and Authentication

Documentation

Publication:
Draft Project Description (pdf)

Supplemental Material:
None available

Document History:
09/13/16: Project Description (Draft)

Topics

Security and Privacy

authentication

Laws and Regulations

First Responder Network Authority

Sectors

public safety