Cryptographic Key Management Workshop 2014

Purpose:

NIST is conducting a two-day Key Management Workshop on March 4-5, 2014. The workshop is being held to discuss a draft of NIST Special Publication (SP) 800-152 (“A Profile for U.S. Federal CKMS”) that will be available for public comment prior to the workshop. This draft is based on the requirements in SP 800-130 (“A Framework for Designing Cryptographic Key Management Systems”), but extends beyond SP 800-130 to establish specific requirements for Federal organizations desiring to use or operate a CKMS, either directly or under contract; recommends augmentations to these requirements for those Federal CKMSs requiring additional security; and suggests additional features for consideration. This Profile addresses the topics included in SP 800-130, and also includes discussions on CKMS testing, procurement, installation, administration, operation, maintenance and use.

While the Profile is intended for use by the U.S. Federal government, it may also be used by other public or private sectors as a model for the development of their own profile.

Input from the workshop participants will be solicited regarding the utility and feasibility of these requirements, recommended augmentations and suggested features. This input, along with comments received during the public comment period will be incorporated into the next version of SP 800-152.

Webcast: The event will be webcast live on March 4-5, 2014. Registration is not required to view the webcast. Details will be posted when available.
Reference Documentation: Printed copies of NIST SP 800-152 will not be available at the workshop. If you would like to reference the document while at the workshop, please bring an electronic or printed copy of the document. Note that internet access will be available to the attendees.

Preliminary Agenda Printable Agenda
Tuesday, March 4, 2014
9:00am - 9:15amWelcome and administrative information
Elaine Barker, NIST
9:15am - 10:30amSESSION 1: Introduction
(Sections 1-3) – Dennis Branstad
  • Cryptographic Key Management Project Overview
  • Profile Introduction, Scope, Goals, Audience
  • Framework Requirements (FRs), Profile Requirements (PRs), Profile Augmentations (PAs) and Profile Features (PFs)
  • Terminology
  • Framework and Profile Documents (Structure, Differences)
  • Questions/Comments
10:30am - 11:00amBREAK
11:00am - 12:30pmSESSION 2: Basic Concepts, Security Policies and Roles
(Sections 4 & 5) – Elaine Barker and Dennis Branstad
  • Designers, Implementers, FCKMS Service Providers, FCKMS Service usersFCKMS vs. CKMS
  • FCKMS Modules
  • Security Policies
  • Security Domains
  • Roles
  • Questions/Comments
12:30pm - 1:30pmLUNCH
1:30pm - 3:00pmSESSION 3: Secure Architectures
(Sections 6 and 10) - Miles Smid
  • Key and Metadata Protection and Management Functions
  • Access Control
  • Compromise Recovery
  • Disaster Recovery
  • Possible Network Configurations
  • Questions/Comments
3:00pm - 3:30pmBREAK
3:30pm - 5:00pmSESSION 4: Spectrum of ApplicationsElaine Barker and others
  • Intended Scope
  • Email
  • Mobile – Lily Chen
  • Cloud Security – Michaela Iorga
  • Key and Metadata Storage
  • Key Establishment
  • Questions/Comments

Wednesday, March 5, 2014
9:00am - 10:30amSESSION 5: Measures and Security Controls
(Sections 6 and 8) – Elaine Barker and Ron Ross
  • Security Strength
  • FIPS 140-2 Security Level (Cryptographic Modules)
  • Impact/Sensitivity Level of Data (per FIPS 199, FIPS 200, and SP 800-53) – Ron Ross
  • Low, Moderate, High Requirements
    Security Controls
  • Questions/Comments
10:30am- 11:00amBREAK
11:00am - 12:30pmSESSION 6: Testing, Evaluation, and Validation
(Sections 9 and 11) – Dennis Branstad, Ron Ross, Miles Smid, Elaine Barker
  • Types of Testing
  • Maintenance
  • FIPS 199, FIPS 200, and SP 800-53
  • Evaluation
  • Validation
  • Questions/Comments
12:30pm - 1:30pmLUNCH
1:30pm - 3:00pmSESSION 7: Interoperability and Transitioning (Section 7) - Elaine Barker
  • Interoperability Defaults and Recommendations
  • Transitioning
  • Questions/Comments
3:00pm - 3:30pmBREAK
3:30pm - 5:00pmSESSION 8: Comments and FeedbackElaine Barker
  • Presentation and Discussion of Comments Received to Date – Elaine Barker, Dennis Branstad, Miles Smid
  • Outstanding Unresolved Issues
  • Test Cases
  • Where do we go from here?
  • Wrap-up

0 yorum: