Protect Critical Infrastructure With Advanced Identity Management Solutions -- Security Today

Protect Critical Infrastructure With Advanced Identity Management Solutions

By Daniel W. Krantz
Jul 22, 2014

We live in a high-risk world. Our post 9-11 culture has taught us not to be as trusting as we once were. Sadly, our nation's critical infrastructures have increasingly become high-risk terrorist targets. While risks and threats are always out there, a huge component in protecting critical infrastructure in times of crises is properly managing the identities of those who are trying to get in - and out - of secured zones.

It's a daunting task, but building a trusted community in support of secure operations and incident response is possible. In an age when identification cards and credentials can be so easily replicated and duped, real-time verification of individuals’ identity, employment affiliations, background and skills is essential in mitigating the “inside threat” inherent in the construction and operations of our nation’s critical infrastructure.

Protect Critical Infrastructure With Advanced Identity Management Solutions As a co-founder of the Secure Worker Access Consortium program, known as SWAC, I can attest to the increased efficiency and effectiveness that results from uniting otherwise disconnected organizations in support of trusted communities of workers - people who stand ready to support critical infrastructure and re-enter a site with the proper identity, clearances and skill sets. The program has been implemented at some of our highest value targets - World Trade Center, the NY/NJ region’s bridges, airports and tunnels. So, how can an identity management solution work for you? How do you go about implementing such a program? Here are some simple steps:

Collect personal information securely, and validate it. It's critical to validate personal information as it’s collected. In running these types of program, we have a responsibility to collect information securely and maintain the integrity of that data so it can be trusted for secure operations. Rule # 1 - Stop the Faxes! Faxing documents that contain sensitive information such as a Social Security Number, date of birth, address and employment history, can very easily compromise highly personal information.

To establish trusted communities, we must collect personal information securely, protect it, and, most importantly, validate identities and backgrounds as being truly authentic. For instance, very simple document authentication equipment can analyze the security features embedded within any government-issued ID to assure that an identity document presented is, in fact, legitimate. It enables you to positively ID that person for entry to facilities.

Organize personnel by active affiliations and skill sets. We must understand individuals’ employment affiliations and skill sets. Simply because someone is who they say they are doesn't mean that he/she is authorized to perform certain tasks, or that they belong at a particular incident scene. Contracted workers often attempt using obsolete credentials to gain access to secure sites. Once inside they may have access to sensitive facilities and mechanical system, and the opportunity to do harm. In public safety communities, emergency responders can be tempted by radio traffic from nearby incidents to self-dispatch and inappropriately respond to emergency scenes. That type of unauthorized response results in unnecessary risks, and can prolong the duration of the incident, and the cost associated with response and recovery efforts.

Different people possess unique, specialized skillsets that can keep us safe and minimize risk and liability. These should be tracked to ensure that someone is not only who they say they are, but also that they belong at a site because they were summoned there, and have the proper training and skill sets to perform the job that needs to be done. This can sometimes involve integrating third parties, such as the training academies, to assure the proper assignment of certifications to individuals. This comprehensive view of a person creates a profile that goes way beyond a mere name on a list, but rather an educated selection of individuals to expedite a response and minimize the impact of that event.

Standards and audit controls. Don't be anxious that you're collecting personal information, and will know who’s affiliated with whom, who does what, and when someone's security clearance or training certification expires. Yes, you're collecting and managing a lot of personal data, but you can protect yourself with standards that are already established, and audit controls that prove compliance with those standards. Many standards have already been put in place, such as Homeland Security Presidential Directives, FIPS data standards, and CFRs related to national infrastructure protection that clearly define, at the federal level, what an individual's profile should look like in order to comply with federal recommendations and mandates.

This allows you to say "We don’t set the criteria. We simply collect information, process it to third parties who are certifying authorities in that particular discipline, and enable the secure need-to-know sharing of that information with public safety officials for the purpose of securing a zone, or allowing only those individuals needed back into a zone for expedited response and minimized impact."

Provide officers with accurate, real-time information. To establish a trusted community, officers and emergency responders must be empowered with accurate, real-time information that’s secure, trusted, and reliable. Data contained on credentials is potentially obsolete in a short period of time. And ID cards can be relatively easily forged. Today’s fake IDs look authentic. They may not have the security features that are invisible to the eye that a bona-fide Real-ID has, but in a flash and pass program, someone would likely get through nine or more times out of 10!

Protect Critical Infrastructure With Advanced Identity Management Solutions SWAC’s trusted community empowers security personnel with real-time information that doesn't disclose personal information, but instead, privately says that an individual accessing critical infrastructure meets the criteria to access the location at a specific time. When we consider identities, affiliations, and skill sets as part of the access decision equation, it drastically cuts the chaos at entry points, enabling our public safety officers to more efficiently and effectively control entry to secure locations and critical incident scenes.

Action Plan

Positively identify the community that works for you and track their skill sets if they’re in environments where that’s important. Pinpoint criteria that makes sense for you and authenticate that access, not by issuing an ID card that anybody can fake or defraud, but by authenticating it back to the original data source. Where’s the protected data that we know is valid? That’s the data that should be used for authenticating individuals’ access rights. It's the backbone to building trusted communities for secure operations and incident response.

(Image #1 - SWAC bridge in NY)

(Image #2 - SWAC terminal)

About the Author

Daniel W. Krantz is managing director and CEO of Real-Time Technology Group (RTTG).

ZBeta Strengthens Its Advisory Bench with New Appointment
05/05/2025
Security Trends Reshaping Enterprise Resilience Into 2027
05/05/2025
Amerant Bank Selects Omnilert AI Technology for Enhanced Video Surveillance Security
05/02/2025
Minnesota County Is Still Reaping Huge Benefits from ASAP Service
05/01/2025
Winsted Unveils Pinnacle Collection with Sliding Worksurface
04/30/2025
Everon Awarded Sourcewell Cooperative Purchasing Contract
04/30/2025
Honeywell Signs Global Distribution Agreement With Milestone Systems
04/28/2025
DSI Security Services Announces Leadership Reorganization and Strategic Growth Initiatives
04/21/2025

Featured

Body-Worn Cameras on the Rise

On the evening of Oct. 29, 2024, the owner of 300 Guard based in Houston, was shot while on duty at a convenience store. He returned fire. He was wearing a plated vest and thankfully recovered in the hospital. Read Now
- Government
Fast-Forward from 1,000 B.C.E. to Today

The lock and key have been around since time immemorial. In fact, the locksmith profession is one of the oldest in the world when you consider the earliest wooden tumbler lock debuted three-plus millennia ago. Read Now
- Access Control
Brazil Port Enhances Surveillance and Supports Wildlife Conservation with Sustainable Technology

Ferroport, which operates the iron ore terminal at the Port of Açu in São João da Barra, Rio de Janeiro, Brazil, has deployed state-of-the-art video surveillance cameras from Axis Communications to enhance nighttime security and visibility, while decreasing environmental impact and prioritizing sustainability. With cutting-edge technology, the port now has precise surveillance cameras that capture high-quality nighttime images, while reducing the amount of artificial lighting that negatively impacts the surrounding ecosystem. Read Now
- Government
Verizon’s 2025 Data Breach Investigations Report Notes Alarming Cyberattack Surge Through Third Parties

Verizon Business recently released its 2025 Data Breach Investigations Report (DBIR), which reveals a significant increase in cyberattacks. The report found that third-party involvement in breaches has doubled to 30%, and exploitation of vulnerabilities has surged by 34%, creating a concerning threat landscape for businesses globally. Read Now
- Cybersecurity
Net2 Access Control Increases Reliability at Residential Complex

Encore Atlantic Shores is a residential complex of 240 luxurious townhomes for ages 55 and over in Eastport, New York. Completed in 2011, the site boasts an 11,800 square foot clubhouse, with amenities such as a fitness center, heated indoor pool, whirlpool spa, multi-purpose ballroom, cardroom and clubroom with billiards, tennis courts and an outdoor putting green. Read Now
- Access Control

Security Today eNews

Sign up today for essential industry news and product information that can help you stay afloat in the fast-paced world of security.

Email Address*Country*

Please type the letters/numbers you see above.

Webinars

Whitepapers

New Products

Luma x20

Snap One has announced its popular Luma x20 family of surveillance products now offers even greater security and privacy for home and business owners across the globe by giving them full control over integrators’ system access to view live and recorded video. According to Snap One Product Manager Derek Webb, the new “customer handoff” feature provides enhanced user control after initial installation, allowing the owners to have total privacy while also making it easy to reinstate integrator access when maintenance or assistance is required. This new feature is now available to all Luma x20 users globally. “The Luma x20 family of surveillance solutions provides excellent image and audio capture, and with the new customer handoff feature, it now offers absolute privacy for camera feeds and recordings,” Webb said. “With notifications and integrator access controlled through the powerful OvrC remote system management platform, it’s easy for integrators to give their clients full control of their footage and then to get temporary access from the client for any troubleshooting needs.”
Unified VMS

AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities
FEP GameChanger

Paige Datacom Solutions Introduces Important and Innovative Cabling Products GameChanger Cable, a proven and patented solution that significantly exceeds the reach of traditional category cable will now have a FEP/FEP construction.