Bluetooth CAC readers (Re: [Fed-Talk] CAC and iPhone)
Bluetooth CAC readers (Re: [Fed-Talk] CAC and iPhone)
- Subject: Bluetooth CAC readers (Re: [Fed-Talk] CAC and iPhone)
- From: Timothy J Miller <email@hidden>
- Date: Thu, 12 Jun 2008 13:17:44 -0500
Allow me to reiterate: It's not a simple request to have BT CAC
readers support in *any* device.
Currently, there are two approved BT CAC readers, but only for certain
software loads on RIM and Win Mobile devices. Both of these readers
rely on a crypto layer in addition to BT pair binding, so in effect
the reader has to bind *twice*; once for BT, and once for the crypto
layer. The readers differ in how they do key distribution; RIM's uses
a one-time password scheme, similar to SecurID (or maybe it *is*
SecurID, but that doesn't really matter), and Apriva's uses a hard-
wire connection to share a symmetric encryption key.
In both cases, support for the reader comes from the reader
manufacturer, *not* from the handheld OS maker. So if you're gonna
beat anyone up for iPhone support, it should be RIM and Apriva.
Somehow I don't think RIM is going to be interested.
And again, in both cases, feedback from users is fairly uniformly
negative. They work, but the user's overall experience is not very
good. In the RIM BT reader case, you turn the reader on, bind BT, hit
the little button to gen the OTP, enter the OTP on the handheld, and
hope it binds and you're ready to use the card. In the Apriva reader
case, you have to pair bond to the device over a wire *first*, and
then you can use that reader with *only* that device--*and* you have
to do the pairing ceremony periodically (offhand I don't recall all
the events that force a repair) or after the battery in the reader
dies. And let's just say that the hard wired pairing ceremony is
lengthy.
Don't get me started about reader battery life. You don't want to go
there.
-- Tim
On Jun 11, 2008, at 7:42 PM, William G. Cerniuk wrote:
There was a federal discussion about this over lunch immediately
following the announcement on Monday. The consensus was that we
should have the bluetooth sled product for use with iPhone and Mac.
Product used with BlackBerry, WinCE:
http://iss.apriva.com/iss_pdfs/BT200_SCR_COTS_080907.pdf
and for reference, the STIG
http://iase.disa.mil/stigs/checklist/DoD-Bluetooth-Smart-Card-Reader-Security-Requirements-Matrix.pdf
V/R
Wm. Cerniuk
On Jun 10, 2008, at 3:21 PM, Luigart, Craig B. wrote:
Absolutely! Bet that's coming as well!
++++++++++++++++++++++
HealtheVet® the future of Veterans care, our mission & our passion!
----------------------
Sent from my Blackberry, please excuse my limited thumbmanship!
----- Original Message -----
From: fed-talk-bounces+craig.luigart=email@hidden <fed-talk-bounces+craig.luigart=email@hidden
>
To: Todd Heberlein <email@hidden>
Cc: Apple Fed Talk <email@hidden>
Sent: Tue Jun 10 18:13:06 2008
Subject: Re: [Fed-Talk] CAC and iPhone
OK, .....
I need a CAC reader for my iPhone.... :-)
Bryan
http://prometheus.med.utah.edu/~bwjones/
On Jun 10, 2008, at 4:09 PM, Todd Heberlein wrote:
I am waiting for the emails to start "I need a CAC reader for my
iPhone."
Todd
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden
Bryan William Jones, Ph.D.
email@hidden
Moran Eye Center
65 Mario Capecchi Dr., Rm S3872
Salt Lake City, Utah 84132
http://prometheus.med.utah.edu/~marclab/
iChat/AIM address: email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
@va.gov
This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden