The end of CAC? Don't hold your breath
The Defense Department's common access card will continue to be a major component of the Pentagon's evolving identity management strategy, DOD CIO Dana Deasy said.
The Defense Department's common access card will continue to be a major component of the Pentagon's evolving identity management strategy, DOD CIO Dana Deasy said.
The CAC “will remain the department’s principal authenticator for the foreseeable future,” Deasy said at the Billington Cybersecurity Summit on Sept. 6. However, the department will stay open and adaptable to emerging tech, such as biometrics, he added.
The goal of the Identity, Credentials and Access Management strategy is to allow DOD to “know who [or what] is on the network at any given time” and create a “secure, trusted environment where any of our users can access all of the authorized resources, including applications and valuable data, Deasy said.
Deasy also said that DOD plans to expand its reach on supply chain threats into other sectors, such as energy and transportation, and is working with the Department of Homeland Security and the financial services sector to identify and manage supply chain threats.
The goal is "to create a much more improved way that we can collect the data from the financial services sector, bring it in to DHS and allow us to look at it and come and, in an unclassified way, send the results back in a way that allows private industry to act on it," Deasy said.
“We’re starting to get some really interesting results in terms of the volume of data, the speed of which we can read it recognize it, and send the information back out” to industry, he said.
The effort will touch other critical infrastructure sectors, including those regulated by the Energy and Transportation Departments, Deasy said.