Re: [Fed-Talk] DoD Certificates on Iphones & Ipads
Re: [Fed-Talk] DoD Certificates on Iphones & Ipads
- Subject: Re: [Fed-Talk] DoD Certificates on Iphones & Ipads
- From: Dan Beatty <email@hidden>
- Date: Thu, 02 Dec 2010 11:05:26 -0800
- Thread-topic: [Fed-Talk] DoD Certificates on Iphones & Ipads
Title: Re: [Fed-Talk] DoD Certificates on Iphones & Ipads
Greetings Tim,
I think you are probably right. It is not difficult to conceive of a WebKit or Safari plugin to incorporate the CAC. Of course, one aspect I would like to work on that may augment this capability is a CAC integration for the Web Authentication mechanism known as Shibboleth. In combination with such a CAC enabled WebKit browser, I could a CAC enabled Shibboleth making much simpler means of implementing web applications for military use.
It is just a thought on for a capability, that I would be happy to build.
Thank you,
Daniel Beatty
Computer Scientist, Detonation Sciences Branch
Code 474300D
2400 E. Pilot Plant Rd. M/S 1109
China Lake, CA 93555
email@hidden
(760)939-7097
On 12/2/10 8:07 AM, "Miller, Timothy J." <email@hidden> wrote:
So it appears that non-corporate-managed iOS devices will copy certificates and trust settings from the user's keychain from machine it's synced with (at least, on a Mac). So if you install some new trust on the machine where you're running iTunes, it will sync that to the iOS devices.
Client certificates, however, are a no-go so far. There is a STIG based on a particular vendor in draft that will (eventually) cover this aspect. CAC support is unlikely to ever come from Apple, but can be provided by individual apps (so no CAC in Safari but someone could provide a browser with CAC support).
-- Tim
From: Mike Moore [email@hidden]
Sent: Thursday, December 02, 2010 4:49 AM
To: email@hidden; Miller, Timothy J.
Cc: email@hidden
Subject: RE: [Fed-Talk] DoD Certificates on Iphones & Ipads
Is it just the Army then that has not approved the use of iPhones & iPads yet?
I have not seen anything in writing that has yet to approve the use of these devices.
I would appreciate any documentation that would allow it's use as well as the configuration guide.
Mike Moore
U.S. Army Accessions Command
> From: email@hidden
> To: email@hidden
> Date: Wed, 1 Dec 2010 14:39:29 -0800
> Subject: Re: [Fed-Talk] DoD Certificates on Iphones & Ipads
> CC: email@hidden
>
> Certificates should be able to be downloaded using the iPhone configuration utility or a commercial iPhone/iPad management application/system.
>
> On Dec 1, 2010, at 2:36 PM, Miller, Timothy J. wrote:
>
> > On Dec 1, 2010, at 2:19 PM, Villano, Paul Mr CIV USA TRADOC wrote:
> >
> >> Is it okay to download DoD certificates onto an Iphone/Ipad?
> >
> > Yes.
> >
> >> If so, how (since there's no way to hook either that I know of to a CAC).
> >
> > Damfino. :-/
> >
> > -- Tim<smime.p7s><ATT00001..txt>
>
> Peter Link
> Cyber Security Analyst
> Cyber Security Program
> Lawrence Livermore National Laboratory
> PO Box 808, L-315
> Livermore, CA 94550
> email@hidden
>
>
>
> _______________________________________________
> Do not post admin requests to the list. They will be ignored.
> Fed-talk mailing list (email@hidden)
> Help/Unsubscribe/Update your Subscription:
>
> This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden