Date Published: September 2016
Comments Due:
Email Questions to:
Author(s)
D. Tobin (NIST)
Announcement
[10/11/16 - The comment period has been extended to 11/10 (from 10/12).]
The National Cybersecurity Center of Excellence (NCCoE) has posted a draft Project Description on the topic of Authentication for Law Enforcement Vehicle Systems.
Law enforcement vehicles often serve as mobile offices for officers. In-vehicle laptop(s) or other computer systems are used to access a wide range of software applications and databases hosted and operated by federal, state, and local agencies, with each typically requiring a different username and password. The operational environment presents unique security challenges, as officers must frequently leave the vehicle unattended, perhaps on short notice, and must be able to gain access to systems quickly, possibly while the vehicle is in motion. These needs discourage the use of screen locks and traditional single sign on solutions.
In collaboration with stakeholders, the NCCoE aims to demonstrate an integrated set of authentication mechanisms, improving system security, usability and safety. By integrating simplified identity and authentication technologies, based on proximity, biometrics, tokens, or other similar technologies, with readily available integrated reduced-sign-on (RSO) tools, law enforcement organizations can enhance mission effectiveness, improve officer safety, and, through more consistently applied security controls, reduce risk to sensitive back-end databases and systems. This project will also explore additional capabilities, such as proximity authentication, derived Personal Identity Verification (PIV) credentials, integration with FirstNet, and integration with vehicle drive-away protection and Computer Assisted Dispatch systems to indicate whether the officer is in the vehicle or not.
Law enforcement vehicles often serve as mobile offices. In-vehicle laptops or other computer systems are used to access a wide range of software applications and databases hosted and operated by federal, state, and local agencies, with each typically requiring a different username and password. This operational environment presents unique security challenges. Officers must frequently leave the vehicle unattended, perhaps on short notice, and must be able to gain access to systems quickly once they return or possibly while the vehicle is in motion. These needs discourage the use of screen locks and traditional single sign-on solutions. This project will demonstrate an integrated set of authentication mechanisms, improving system security, usability, and safety. This project will also explore additional capabilities, such as proximity authentication, derived Personal Identity Verification (PIV) credentials, integration with FirstNet, and integration with vehicle drive-away protection and Computer Assisted Dispatch systems to indicate whether the officer is in the vehicle. This project will result in a freely available NIST Cybersecurity Practice Guide that will enable members of the community to more easily and effectively incorporate proximity access and reduced-sign-on technologies.
Law enforcement vehicles often serve as mobile offices. In-vehicle laptops or other computer systems are used to access a wide range of software applications and databases hosted and operated by federal, state, and local agencies, with each typically requiring a different username and password. This...
See full abstract
Law enforcement vehicles often serve as mobile offices. In-vehicle laptops or other computer systems are used to access a wide range of software applications and databases hosted and operated by federal, state, and local agencies, with each typically requiring a different username and password. This operational environment presents unique security challenges. Officers must frequently leave the vehicle unattended, perhaps on short notice, and must be able to gain access to systems quickly once they return or possibly while the vehicle is in motion. These needs discourage the use of screen locks and traditional single sign-on solutions. This project will demonstrate an integrated set of authentication mechanisms, improving system security, usability, and safety. This project will also explore additional capabilities, such as proximity authentication, derived Personal Identity Verification (PIV) credentials, integration with FirstNet, and integration with vehicle drive-away protection and Computer Assisted Dispatch systems to indicate whether the officer is in the vehicle. This project will result in a freely available NIST Cybersecurity Practice Guide that will enable members of the community to more easily and effectively incorporate proximity access and reduced-sign-on technologies.
Hide full abstract
Keywords
automotive; vehicle upfit systems; law enforcement; reduced sign on; proximity authentication
Control Families
Access Control; Identification and Authentication