How to find usdirections
Speakers » Brett Sovereign
Systems Security Researcher, IoT Team, Information Assurance Research, National Security Agency (NSA), USA
Wearable authentication for the secure enterprise: The Smart Office Project
- The pain to the user of creating and managing multiple passwords is large and is growing larger;
- At the same time security requirements for authentication on high security government networks are also increasing in complexity;
- The use of a biometrically authenticated wearable using low range RF offers value to users and IT administration;
- The use of RF wearables introduces additional security concerns which the project addresses in its design.
The prototype Smart Office wearable offers a solution for people who hate passwords, and organizations who hate managing them. This innovative research and development effort is a joint project between NSA Information Assurance Research and Information Assurance Engineering. Our goal is to build upon a wearable ecosystem, with commercial partners, and provide value to users of national security systems in removing the inconvenience and insecurities inherent in the use of passwords.
The Smart Office proposal began as part of Information Assurance Directorate I-Corps innovation pilot in 2015. After meeting with nearly 40 different internal and external groups to refine the concept, the team began developing a wearable device that incorporates IA techniques with IoT technology to create a frictionless, secure log-in experience. User on-body status, biometrics, proximity, and intent are detected and utilized for device provisioning, platform logon, and location-based services.
Dr Brett Sovereign is a security researcher for the Information Assurance Research Group at the National Security Agency. He has over 18 years of experience in software security evaluation and secure communications. Prior to this position, he was the inaugural NSA Visiting Professor to the U.S. Coast Guard Academy. His current research interests are in the use of next generation network security protocols.