In the first half of the session, Brandon will cover a brief history of mobile authenticaton and provide a high level overview and status of Purebred, DoD's solution for mobile derived credential issuance. Purebred was developed by DISA PKI Engineering to provide a secure, scalable method of distributing software certificates for DoD PKI subscribers' use on commercial mobile devices. The system first establishes trust in device certificates used to encrypt configuration data bound for a device, then permits a subscriber to demonstrate possession and usage of their CAC to generate two new derived credentials and recover existing email encryption keys.
In the second half of this session Jeremy will discuss the encore to Purebred and where Assured Identity is looking to evolve our means for mobile authentication and strong credentials. Assured Identity is the concept of obtaining and sustaining the confidence established in a trustworthy process, and assigning attributes to a digital identity that connect an identity to the correct individual or genuine device. The system enhances the current trust established in device certifictes through device key attestation and improve the current Purebred enrollment process. The initiative also aims to experiment with fusing multiple biometric and contectual factors into a confidence score of an individual.