NIST logo
*

Cryptographic Key Management Workshop 2014

Purpose:

March 4 - NIST Delayed Opening - Due to snow and ice in Gaithersburg, NIST will not open until 10:00 a.m. March 4. The CKM Workshop will begin at 10:30 a.m.

Inclement/Hazardous Weather: The NIST Gaithersburg site decision is made independently of the Office of Personnel Management (OPM) decision for the Federal Government agencies located within the beltway. Employees and visitors should check the NIST Status Line (301) 975-8000 or 1-800-437-4385 x8000 in Gaithersburg for the latest updates.

NIST is conducting a two-day Key Management Workshop on March 4-5, 2014. The workshop is being held to discuss a draft of NIST Special Publication (SP) 800-152 (“A Profile for U.S. Federal CKMS”) that will be available for public comment prior to the workshop. This draft is based on the requirements in SP 800-130 (“A Framework for Designing Cryptographic Key Management Systems”), but extends beyond SP 800-130 to establish specific requirements for Federal organizations desiring to use or operate a CKMS, either directly or under contract; recommends augmentations to these requirements for those Federal CKMSs requiring additional security; and suggests additional features for consideration. This Profile addresses the topics included in SP 800-130, and also includes discussions on CKMS testing, procurement, installation, administration, operation, maintenance and use.

While the Profile is intended for use by the U.S. Federal government, it may also be used by other public or private sectors as a model for the development of their own profile.
 
Input from the workshop participants will be solicited regarding the utility and feasibility of these requirements, recommended augmentations and suggested features. This input, along with comments received during the public comment period will be incorporated into the next version of SP 800-152.


Webcast URL: http://www.nist.gov/itl/csd/ct/ckm-workshop2014-webcast.cfm

The event will be webcast live on March 4-5, 2014. Registration is not required to view the webcast. Particpants can tweet using #NISTkmw14 and/or submit questions to kmwquestions@nist.gov


Reference Documentation:
Printed copies of NIST SP 800-152 will not be available at the workshop. If you would like to reference the document while at the workshop, please bring an electronic or printed copy of the document.  Note that internet access will be available to the attendees.


Preliminary Agenda
Printable Agenda

Presentations are linked via sessions (below)

Tuesday, March 4, 2014
(times will be adjusted to accommodate NIST's delayed opening)

New Start Time 10:30am - 10:45am

Welcome and administrative information
Elaine Barker, NIST

10:45am - 11:00am

SESSION 1: Introduction
(Sections 1-3) – Dennis Branstad

  • Cryptographic Key Management Project Overview
  • Profile Introduction, Scope, Goals, Audience
  • Framework Requirements (FRs), Profile Requirements (PRs), Profile Augmentations (PAs) and Profile Features (PFs)
  • Terminology
  • Framework and Profile Documents (Structure, Differences)
  • Questions/Comments
11:00am - 12:15pm

SESSION 2: Basic Concepts, Security Policies and Roles
(Sections 4 & 5) – Elaine Barker and Dennis Branstad

  • FCKMS Modules
  • Security Policies
  • Security Domains
  • Roles
  • Questions/Comments
12:15pm - 1:05pm

LUNCH

1:05pm - 3:00pm

SESSION 3: Secure Architectures
(Sections 6 and 10) - Miles Smid

  • Key and Metadata Protection and Management Functions
  • Access Control
  • Compromise Recovery
  • Disaster Recovery
  • Possible Network Configurations
  • Questions/Comments
3:00pm - 3:30pm

BREAK

3:30pm - 5:00pm

SESSION 4: Spectrum of Applications
Elaine Barker and others


Wednesday, March 5, 2014

9:00am - 10:30am

SESSION 5: Measures and Security Controls
(Sections 6 and 8) – Elaine Barker and Ron Ross

10:30am- 11:00am

BREAK

11:00am - 12:30pm

SESSION 6: Testing, Evaluation, and Validation
(Sections 9 and 11) – Dennis Branstad, Ron Ross, Miles Smid, Elaine Barker

  • Types of Testing 
  • Maintenance
  • FIPS 199, FIPS 200, and SP 800-53
  • Assessment (Ron Ross) (Miles Smid)
  • Validation
  • Questions/Comments
12:30pm - 1:30pm

LUNCH

1:30pm - 3:00pm

SESSION 7: Interoperability and Transitioning
(Section 7) - Elaine Barker

  • Interoperability Defaults and Recommendations
  • Transitioning
  • Questions/Comments
3:00pm - 3:30pm

BREAK

3:30pm - 5:00pm

SESSION 8: Comments and Feedback
Elaine Barker 

  • Presentation and Discussion of Comments Received to Date – Elaine Barker, Dennis Branstad, Miles Smid
  • Outstanding Unresolved Issues
  • Test Cases
  • Where do we go from here?
  • Wrap-up

Details:

Start Date: Tuesday, March 4, 2014
End Date: Wednesday, March 5, 2014
Location: NIST - Gaithersburg - Lecture Room D
Audience: Industry, Government, Academia
Format: Workshop

Registration:

Registration is now closed. Maximum capacity for the meeting room has been reached.

There is no on-site registration for meetings held at NIST.

Webcast Information: Registration is not required to view the webcast. However, if you would like to register, and have a reminder and link to the webcast sent to you, you can do so at the CKMW 2014 Webcast Registration page. This registration link is only for webcast participation.

Cancellation requests must be received in writing or by email by 5:00 p.m. ET February 25, 2014 to be eligible for a refund of the entire registration fee. Please send inquiries to teresa.vicente@nist.gov

NIST Visitor Information

Registration Contact:

Technical Contact:

Elaine Barker
Dennis Branstad
Miles Smid

kmwquestions@nist.gov