Achieving the FICAM Roadmap’s AAES
The Federal Identity, Credential, and Access Management Roadmap, or “FICAM,” provides federal agencies with architecture and implementation guidelines to meet the identity, credential, and access management challenges they face every day. To that end, FICAM introduced the Authoritative Attribute Exchange Service (AAES) capability as an architectural construct that, when implemented, would enable the secure sharing of authoritative identity attributes within an agency. As part of Initiative 5, which seeks to streamline the collection and sharing of digital identity data, an AAES: “…is a technical solution that enables agencies to connect various authoritative data sources and share identity and other attributes within the shared enterprise infrastructure. To support the AAES capability, agencies must establish an enterprise digital identity model, identify authoritative data sources, and streamline the processes used to populate those authoritative sources.”
The RadiantOne Solution: A Federated Identity Service through Model-Driven Virtualization
Only one solution offers out-of-the-box functionality to meet—and exceed—the implementation demands of the AAES. With its federated identity service, the RadiantOne virtualization platform creates a flexible, scalable infrastructure that offers a solid foundation for the FICAM initiative.
With its complete identity service, the RadiantOne virtualization platform creates a flexible, scalable infrastructure that complies with all aspects of the FICAM initiative.
RadiantOne provides all the functions of a complete Authoritative Attribute Exchange Service, including logical service layers to act as both the Authoritative Attribute Manager and the Authoritative Attribute Distributor. A federated identity service overcomes the primary challenges of identity and access management, enabling identity teams to create custom views of data that span enterprise and security systems, and deliver data via different protocols based on the application’s requirements.
Through a virtual abstraction layer, RadiantOne brings together identity information from disparate data silos, delivering a global view of identity while enforcing security at the local level, as close to the sources of service as possible. So each data store manages its own information and maintains control over its identities, and passwords do not leave their stores. With this solution, agencies can securely share credential and identity information throughout the federated infrastructure.
The platform consists of an advanced Virtual Directory Server (VDS), the Identity Correlation and Synchronization Server (ICS), and the Cloud Federation Service (CFS) component, all fine-tuned to give agencies an overarching, federated view of their identities. This complete identity service aggregates and correlates identities across systems—from both ICAM agencies and their contractors—to provide a single authoritative source of digital identity, without the need for custom coding or complex synchronizations.
Read about it:
A Complete Identity Service—The RadiantOne Solution for the FICAM Initiative: See how a complete identity service from RadiantOne makes it easy to build the components of the AAES—the Authoritative Attribute Manager and Authoritative Attribute Manager Distributor—and deliver on the goals of the FICAM initiative.
FICAM 2/7/2013: Our second FICAM event held at the Spy Museum. Protecting the nation’s IT infrastructure and citizens from cyber security threats through a federated identity standard.
FICAM 3/28/2012: Take a deep dive into the FICAM guidelines, discuss potential use cases, and gather best practices for implementation. Read about it from FICAM gurus Deborah Gallagher and Anil John, and explore how the RadiantOne complete identity service, based on model-driven virtualization, is being used to build the Authoritative Attribute Exchange Service.
FICAM Roadmap: The document presents the Federal Government with a common framework and implementation guidance needed to plan and execute Identity, Credential, & Access Management (ICAM) programs.
- Download RadiantOne
- Solve a Problem
- Leverage AD for New IdM Initiatives
- Integrate and Provide SSO in the Cloud
- Securely Deliver a 360 Degree View of Your Customers
- Enrich Your SiteMinder Portal Without Disruption
- Integrate the Rest of the World With Your SharePoint Portal
- Move Away From Your Old & Costly Infrastructures
- Achieving the FICAM Roadmap’s AAES
- Check Out Our Events
- RadiantOne Training
- Resource Center