Mailing Lists: Apple Mailing Lists
Image of Mac OS face in stamp
 
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Fed-Talk] Getting a CAC card for Macs

Paul Nelson wrote:

If you have a valid need to access gov sites, you have a valid need for a
real CAC.  Nothing else will do.

This is incorrect. CAC eligibility for contractors requires 1) a DoD contract, 2) DoD furnished equipment, and 3) your presence on a DoD network. Generally that means you're working in a DoD facility, but it's not unknown for NIPRNet to be extended to a contractor facility.

I don't think any agency will issue a soft cert that works the same as a CAC
for obvious security reasons.  Soft certs don't work with CAC, but you can
store soft certs and private keys on many generic smart cards.  The problem
is that middleware (Apple's tokend) is needed for each new type of card.

The ECA program will issue smartcards, but I have no idea which card or what applets are used, so they may not work with OS X. Softcerts are more compatible, obviously, and once trust is established in the DoD system he's accessing, it won't matter.

-- Tim

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/fed-talk/email@hidden

This email sent to email@hidden
References: 
 >Re: [Fed-Talk] Getting a CAC card for Macs (From: Paul Nelson <email@hidden>)



Visit the Apple Store online or at retail locations.
1-800-MY-APPLE

Contact Apple | Terms of Use | Privacy Policy

Copyright © 2007 Apple Inc. All rights reserved.