[Tokend-Dev] [SmartcardServices-Users] BETA Tokend available: CAC-NG (Leopard Mac OS X 10.5.6+)

Paul Kwan paul.kwan at centrify.com
Wed Dec 2 11:04:58 PST 2009


Hi Shawn,

    Thanks for the pointer. I will take this info to my team to figure
things  out. Take care.

PSK


On 12/2/09 [Dec 2] 10:45 AM, "Shawn A. Geddis" <geddis at apple.com> wrote:

> Paul,
> 
> As always, it is a continuing challenge for ISVs to get a hold of US Federal
> CAC/CAC-NG Smart Cards.  That said, your best bet is to speak directly to the
> DMDC folks and submit a request with a DoD customer as the sponsor.
> 
> For what it is worth, I have "1" of these cards in my possession right now....
> 
> -Shawn
> 
> __________________________________________________
> Shawn Geddis      geddis at mac.com
> Security Consulting Engineer
> 
> MacOSForge Project Lead:                           Smart Card Services
> Web: http://smartcardservices.macosforge.org/
> Lists: http://lists.macosforge.org/mailman/listinfo
> __________________________________________________
> 
> On Dec 2, 2009, at 1:39 PM, Paul Kwan wrote:
> 
>> Hi Shawn,
>> 
>>     This is great! I would like to check this out. Can you tell me where and
>> how can I order/get some CAC-NG smart cards to test this? Thanks for your
>> help.
>> 
>> PSK
>> 
>> On 12/2/09 [Dec 2] 10:11 AM, "Shawn A. Geddis" <geddis at apple.com
>> <x-msg://343/geddis@apple.com> > wrote:
>> 
>>> SmartCardServices - "CAC-NG" Tokend
>>> 
>>>  
>>> The SmartCardServices Project Team is pleased to provide access to the*BETA*
>>> for CAC Next Generation (a.k.a. CAC-NG) Tokend support for Mac OS X 10.5
>>> "Leopard".   Support for Snow Leopard is forth coming, but you can proceed
>>> to test with your Mac OS X 10.5.6+ machines with this installation.
>>> 
>>> Background
>>> CAC-NG Smart Cards
>>> The following is an excerpt taken directly from the "DoD Implementation
>>> Guide for CAC Next Generation (NG), v2.5, November 2006".
>>>  
>>>> The DoD CAC Environment
>>>> The PIV transitional, as defined in SP 800-73, is added to the existing CAC
>>>> v2 card as an additional data model in conjunction with other evolutions
>>>> such as the purse and access control. This CAC with PIV is called the CAC
>>>> Next Generation (NG). The CAC NG is the first and most significant step
>>>> towards the PIV end point solution.
>>>>  
>>>> The PIV solution is implemented on the DoD CAC NG, but is largely separate
>>>> and distinct from the DoD multi-application CAC. It will evolve at its own
>>>> pace but in the same environment.
>>>>  
>>>> The purpose and function of the CAC NG is much broader than the focused
>>>> interoperability function of the PIV. In 1999, Congress directed the
>>>> Secretary of Defense to implement smart card technology within the DoD with
>>>> the objective of increasing efficiency, security, and readiness. The result
>>>> has been the creation of the CAC. The baseline functionality of the CAC is
>>>> to (1) provide for logical access to computer systems, (2) provide
>>>> personnel identification, (3) enable physical access to buildings, and (4)
>>>> PKI for signing, encryption, and non-repudiation. The CAC is the standard
>>>> identification card for active duty military personnel, Selected
>>>> Reservists, DoD civilian employees, and eligible contractor personnel.
>>>>  
>>>> The CAC NG is a multi-application smart card. It serves as a token for PK
>>>> identity, email, and encryption certificates. Additionally, it contains a
>>>> linear barcode, two-dimensional barcode, magnetic stripe, color digital
>>>> photograph, and printed text.
>>> 
>>> Installer
>>>  http://smartcardservices.macosforge.org/trac/wiki/installers
>>>  
>>> Installation
>>>  
>>> Smart Card Tokend Installation
>>>  
>>> * CAC-NG 
>>> /System/Library/Security/tokend/CACNG.tokend
>>> 
>>> __________________________________________________
>>> Shawn Geddis      geddis at mac.com <x-msg://343/geddis@mac.com>
>>> Security Consulting Engineer
>>> 
>>> MacOSForge Project Lead:                           Smart Card Services
>>> Web: http://smartcardservices.macosforge.org/
>>> Lists: http://lists.macosforge.org/mailman/listinfo
> 
> 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.macosforge.org/pipermail/tokend-dev/attachments/20091202/cc41e65e/attachment.html>


More information about the Tokend-Dev mailing list