Nov. 15-17, 2004 • Washington Convention Center • Washington D.C.
Event Schedule:
Conference Hours:
November 15: 8:00am - 5:00pm
November 16: 8:30am - 4:30pm
November 17: 8:30am - 5:00pm Registration Hours:
November 15: 7:00am - 5:00pm
November 16: 8:00am - 6:00pm
November 17: 8:00am - 4:00pm Expo Hall Hours:
November 16: 11:00am - 6:00pm
November 17: 10:00am - 3:00pm
Platinum Plus Sponsor:
Platinum Sponsor:
Gold Sponsor:
Hosted By:
Partnering Organizations:
Media Partners:
Agenda - Monday, November 15, 2004 Conference Only Day
8:00am - 9:00am
Identity Management Primer David Weitzel, Senior Principal, Mitretek Systems George H. Datesman, Ph.D., Senior Manager, Information Technology Services, Mitretek Systems, Inc.
9:00am - 12:00pm
Attendees may choose to attend one of three tracks offered during this time.
The State of Identity Management: The Need and The Marketplace (Enterprise Identity Management Track) Identification has always been at the heart of human interactions and transactions, but the rapid pace at which we have raced into the networked world has exceeded our ability to manage this most basic function. Nowhere is this truer than in the enterprise where identity management has become one of the top priorities for organizations of all types. From the basic functions of access management, provisioning and single sign-on, to the sophisticated challenges of federated ID, Inside ID puts you on the inside track to more secure, confidence inspiring, networks.
Moderator: Yuriy Dzambasow, Director, Commercial & Federal Security Services, A & N Associates, Inc.
IN-DEPTH SESSIONS WITHIN THIS SEMINAR INCLUDE:
9:00am
Identity Management: Emergence of a Discipline Yuriy Dzambasow, Director, Commercial & Federal Security Services, A & N Associates, Inc.
9:25am
The Business of Identity Management: Evolution of the Marketplace Dan Blum, Research Director, Directory and Security Strategies, Burton Group
9:50am
FEATURED KEYNOTE: Simplifying Identity Management While Ensuring Online Security
Success in Web-driven commerce depends on how effectively businesses manage users' unique identity data. Businesses need assurance that each user is qualified to complete a transaction; and Web site users need assurance that the sensitive information they provide is secure against any misuse. This presentation will address:
Three trends driving the demand for identity management: the aggregation of content and users, Web services, online partnerships
Challenges in creating, managing, and using online identities
Three identity management models: silo, closed community, federated
Requirements for achieving single sign-on for the Internet: identity vetting, credential maintenance, revocation, privacy, user access and control
Innovations in identity management and what businesses must do to prepare for online federated identity
Industry outlook: how identity management will extend the reach of business partnerships and online commerce
Joe Uniejewski, Chief Technology Officer and Senior Vice President, Corporate Development, RSA Security
10:20am - 10:35am
Break
10:35am
Identity-Driven Security for On Demand Business
Identity management has come to the forefront of controlling exactly who gets access to what information inside legacy and e-business systems. Leveraging knowledge about internal and external users into a controlled access environment delivers strong security and a clear return-on-investment. This session breaks down the goals and challenges of planning an end-to-end security environment driven by identity information including the proper use and relationships between user provisioning, web access control, privacy management, directories and meta-directory components. Laura Voglino, Director, Market Management of IT Optimization, Service Support and Security, IBM Tivoli Software Group
11:00am
Identity Management: From the Edge to the Enterprise Jim Ganthier, Director- WW Defense, Intelligence and Security- Customer Solutions Group, Hewlett Packard
11:30am
Identity Management in the Mobile World Stuart Vaeth, Chief Security Officer, Diversinet
Identity Theft (Government ID Applications Track) The term identity theft encompasses many different crimes, but one factor that they all have in common is that they are growing fast –tripling year-to-year– and depending on the definition, now topping $5 billion annually in the U.S.
The first defenses against the nation's long-standing "fastest growing crime" have been law enforcement investigations and consumer education. But, new ways to steal account numbers, passwords and personal information keep popping up… and growing. What will it take to put a damper on the rapid rise in ID theft and the resulting financial losses and inconvenience? This session will report on the current state of the criminal art and provide insights into how the crime, and efforts to fight it, will evolve over the coming year.
This session will examine the environment surrounding the current excitement about enterprise ID management. Industry analysts will describe how the market is taking shape and what to watch for in the rapidly changing, and very competitive ID environment.
Moderator: Chris Nerney, Executive Editor, IT Management Channel, Jupitermedia
Financial Fraud: Recent Schemes, Cases and Stats Maxwell Marker, Supervisory Special Agent, Financial Institutions, Federal Bureau of Investigation
9:45am
The Changing Face of Identity Theft: Beyond the Phishing Phase Jonathan Kraden, Attorney, Division of Marketing Practices, U.S. Federal Trade Commission, Bureau of Consumer Protection
10:15am - 10:30am
Break
10:30am
Initiatives for Protecting Financial Institution Customers Jerry Archer, Managing Executive, FSTC Standing Committee on Security and Infrastructure, Financial Services Technology Consortium
11:00am
Technologies and Best Practices for Fighting Identity Theft Joel Lisker, Senior Vice Chairman, Dudinsky Lisker & Associates
11:30am
Identity Theft: The Range of Solutions Bob Sullivan, Technology Correspondent, MSNBC.com
Biometric Technology (Technologies and Policies Track) Biometric technology has come a long way in the past few years and in more ways than you may think. While technical breakthroughs continue to be made, the real progress has come through integration of biometrics into broader system solutions, the development of interoperability standards and better application-appropriate testing. Significant revenues are beginning to flow in the market as many large-scale programs enter their implementation stages.
With costs dropping and performance improving, the most important factor for success may be as simple as making sure to choose the right technology and supplier to fit your situation. This session will put you face to face with the experts who can help guide you through the myths and realities of modern biometric solutions.
Moderator: Jim Wayman, Senior Fellow and Director, Biometric Identification Research program, San Jose State University
IN-DEPTH SESSIONS WITHIN THIS SEMINAR INCLUDE:
9:00am
Biometric Products, Trends, and Applications Craig Arndt, Senior Manager, Mitretek Systems
9:30am
DoD Biometric Interoperability Challenges Rick Randall, Contract Support, Department of Defense Biometrics
10:00am - 10:15am
Break
10:15am
Biometric Standards: Sublime, Sexy or Superfluous?
Lack of standards may be one of the biggest barriers to Automatic Personal Identification (biometrics) implementation", wrote Stanford Research Institute in 1974. The development of standards for biometric technologies, data and applications has long been seen as the sine qua non for widespread commercial and government adoption of biometrics. Under impetus from U.S. federal legislation (USA-PATRIOT and Enhanced Border Security Acts), there has been a flurry of national and international standards activities over the last 24 months. But standards may not be the elixir of permanent health for the biometrics industry. Although helpful in giving us a point of departure, the necessarily slow and painful standard creation process may not ensure interoperability or even operability of biometric systems. In this talk, we will consider the current state of biometric standards development at the international level, with particular emphasis on the controversial work of vocabulary, data format, and testing standardization. Jim Wayman, Senior Fellow and Director, Biometric Identification Research program, San Jose State University
11:00am
Balancing Scaleability and Accuracy in Large-Scale Biometric Systems Elham Tabassi, Computer Scientist, National Institute of Standards and Technology
11:30am
Coordinating the Government's Biometric R&D Efforts Duane Blackburn, Program Manager, Federal Bureau of Investigation
11:45am
Deployment Issues in the Face Recognition Grand Challenge Jonathon Phillips, Ph.D., Program Manager, NIST
12:00pm - 1:30pm
Lunch Break (Lunch Served from 12:00pm-1:30pm)
12:30pm - 1:00pm
KEYNOTE: Fostering Strong ID Management Technologies and Processes Howard Schmidt, Former White House Cyber Security Advisor
1:00pm - 1:30pm
KEYNOTE: Border and Transportation Security Through Enhanced Identification Systems C. Stewart Verdery, Jr., Assistant Secretary for Border and Transportation Security Policy and Planning, Department of Homeland Security
1:30pm - 5:00pm
Attendees may choose to attend one of three tracks offered during this time.
Authentication: The Front End of Sound Identity Management (Enterprise Identity Management Track) Often we get caught up in the technical sophistication of our systems, but the fact is that the foundation of a trusted identity management system is establishing our trust in the individual. Independently verifying a user's identity in a transaction is the basis for defining the relationships between entities. Complicating matters is the fact that there are different levels of security assurances for different situations.
This session covers the authentication processes and attributes within industry verticals as well as the technical and business implications of setting and assigning assurance levels through public key certificate policy. Find out how knowledge-based authentication services are being used for proofing and vetting and learn about the implementation challenges in verifying user identities in the pharmaceutical, transportation, and financial industries.
Moderator: Daniel Greenwood, Esq., Director, eCommerce Architecture Program, Massachusetts Institute of Technology (MIT)
IN-DEPTH SESSIONS WITHIN THIS SEMINAR INCLUDE:
1:30pm
Identity Management Policy in the Modern Enterprise Daniel Greenwood Esq., Director, eCommerce Architecture Program, Massachusetts Institute of Technology (MIT)
Open Authentication: Providing Interoperable Identity Credentials Ajay Nigam, Director - Communication Security Services, Verisign, OATH Representative
3:15pm - 3:30pm
Break
3:30pm
Using Authentication to Manage Access to Public Health Records
A birth certificate, obtained from a state department of Health Vital Records, is commonly referred to as a "Breeder Document" because it is often used as proof of identification to obtain other identity documents. State motor vehicle licensing departments use the birth certificate in the process of issuing driving licenses and identification cards. Various federal, state, local and private agencies rely on them to issue U.S. passports, social security benefits and other benefits and services. Because birth certificates are so widely relied upon for identification purposes, they are also used in many cases of identity theft and other fraudulent activities.
This presentation will focus on the lessons learned from implementing Knowledge Based Authentication (KBA) for online ordering of vital records at the Virginia Department of Health Vital Records. Utilizing KBA is an example of the state's due diligence process to reduce the risk of a vital record being obtained fraudulently. Deborah Little-Bowser, Director, Authentication Services, VitalChek Network®, Inc., A ChoicePoint Company
4:00pm
The Role of Hardware Tokens in Secure Transactions Ram Banerjee, Chief Technology Officer, TrustEra
4:30pm
The Role of Biometrics in Secure Transactions
Recent security threats and the escalation in the fraudulent use of identity have increased the critical requirements for enhanced security. Today, governments, airports and commercial organizations require the capability to better protect their borders, citizens and assets in a less secure world. A single form of identification is not enough. A passport must be accompanied by a facial biometric to cross a border, a smart card must be accompanied by an iris scan to speed your way through airport security and a swipe card must be accompanied by a finger biometric to enter your building and log on to your PC. In this session, Daon will discuss an how an integrated approach to identity management is required to achieve strong authentication of individuals and facilitate genuine transactions in both government and commercial organizations. We will discuss how the TSA are using biometrics plus smart cards to authenticate employees and travelers in the TWIC and Registered Traveler Programs and how an insurance company in New York City are using cards plus biometrics to meet their requirements for enhanced physical and logical access control security. Conor White, Chief Technology Officer, Daon
Homeland Security (Government ID Applications Track) No single problem has mobilized activity in the identification systems marketplace as much as global terrorism. Now, three years after the September 11 attacks, many of the systems that have long been on the drawing board are moving into the field. In almost every case, ID technologies are just part of the overall system solution, but in many cases it is a very big piece. Homeland security is quickly becoming home to some of the largest and most sophisticated applications of smart cards, RFID, fingerprints, facial and iris recognition, electronic photo ID, PKI and more.
The recently awarded US-VISIT program alone could have a value of nearly $10 billion. And soon, additional projects such as the Transportation Worker Identity Credential (TWIC), Registered Traveler, and DHS cross-credentialing will take major steps toward realization.
Always one of our best-attended conference sessions, this is the place to get the facts and join the discussion about the pivotal role of identification in the war on terrorism.
Moderator: Joe Broghamer, Director of Authentication Technologies and Senior Security Architect, U.S. Department of Homeland Security
IN-DEPTH SESSIONS WITHIN THIS SEMINAR INCLUDE:
1:30pm
U.S. VISIT: The Identity Management Mega Project Bob Mocny, Deputy Director, US-VISIT, U.S. Department of Homeland Security
2:15pm
The Transportation Worker Identification Credential: Bringing Trust to the Transportation Infrastructure Lolie Kull, TWIC Program Manager, U.S. Department of Homeland Security, Transportation Security Administration
2:45pm
The Maritime Administrative Card: Credentialing and Work Record Applications Todd Ripley, Senior Technical Advisor to the Associate Administrator for Financial Approval and Cargo Preference, U.S. Maritime Administration
3:15pm - 3:30pm
Break
3:30pm
The Registered Traveler Program: Expediting Passenger Screening Bryan Ichikawa, ID Solutions Architect, Unisys Global Public Sector
4:00pm
Implementing DHS Employee Credentialing Joe Broghamer, Director of Authentication Technologies and Senior Security Architect, U.S. Department of Homeland Security David Corcoran, Smart Card & PKI Technology Lead, Identity Alliance Steve Parsons, TWIC Technical Manager, U.S. Department of Homeland Security, Transportation Security Administration
Card Technology (Technologies and Policies Track) The card has been the dominant form factor for identification credentials for over 50 years. Now, with increased importance being placed on security and convenience, more sophisticated cards are playing more important roles in physical and virtual identity solutions. Today's ID cards, carrying computer chips and a host of other machine-readable technologies, are being deployed for enterprise security, homeland security and provision of government services.
This session is the place to find out if the technology, standards, and infrastructure are ready for prime time in your application.
Moderator: Catherine Johnston, President & CEO, ACT Canada
IN-DEPTH SESSIONS WITHIN THIS SEMINAR INCLUDE:
1:30pm
The Current & Future State of ICs Used in Smart Cards
Smart Card ID or Passport projects are blooming in many coming countries. The requirements from a security point of view are often clear but Issuers seem to sometimes underestimate the complexity of the issuance and key management aspects of their project.
Also the growing demand for biometric identification puts new requirements on the smart cards hardware and software as well as on the above mentioned issuing systems.
This session reviews current solutions and their pitfalls and provides a prospective view on the evolution of ID systems. Armand Linkens, Group Vice President, R&D, STMicroelectronics
2:00pm
Chip Cards: The Key to Robust Security Gilles Lisimaque, Co-Founder & Senior Vice President, Gemplus
2:30pm
Providing the Platform for Multi-Application Smart Cards Marc Kekicheff, GlobalPlatform Technical Director and Chair, Card Committee and Vice President, Emerging Technologies, Visa International
3:00pm - 3:15pm
Break
3:15pm
Interoperability Standards for Smart Cards Teresa Schwarzhoff, GSC Program Manager, National Institute of Standards and Technology
3:45pm
Practical Implications of Putting Multiple Technologies on Cards William Alsbrooks, Group Vice President, Anteon International
4:15pm
Processing Power in your Pocket: Why Form Factor Matters Bill Bialick, Managing Partner, Bialick, Lee and Associates, LLC
For information or complete details on exhibiting or any sponsorship opportunity, please contact: Elaine Mershon, Director of Sales, at emershon@jupitermedia.com or at (508) 533-4995.
Registration questions please contact:
Our Registration Department at registration@jupitermedia.com or (203) 662-2857.
