IC in the News

IC in the News

Depending on your point of view, U.S. General Keith Alexander is either an Army four-star trying to stave off a cyber Pearl Harbor attack, or an overreaching spy chief who wants to eavesdrop on the private emails of every American.
The U.S. intelligence community will be relying to a greater degree on commercial technologies to meet its current and future requirements, including some that formerly were the purview of government laboratories. And, because much of the community’s research is applied research, it will select its budgeting priorities based in part on how well the commercial sector can fill in some technology gaps on its own.
The Honorable James R. Clapper, Director of National Intelligence (DNI) will deliver the commencement address to National Intelligence University graduates on Friday, July 26, 2013.
Congressmen are already lining up to label the Boston Marathon bombing as yet another failure of the U.S. intelligence community. The head of America’s 16 spy agencies has response for the Capitol Hill critics: back off.
Tuesday, 23 April 2013 10:23

RR: End-to-End Identity Propagation (2)

Chief Information Officer

IC CIO Enterprise Integration & Architecture

REST Service Encoding Specification for Identity Propagation

Overview

This technical specification applies to non-SOAP-based web services over HTTP and provides guidance for REST-based services in an environment that does not utilize a Security Token Service (STS).


(U) This specification provides a mechanism to track a sequence of requestor identifier(s), from the initiating requestor to the final called service, providing "end-to-end" visibility of the requestor(s) in the transaction sequence.


The solution provided by this specification provides a mechanism for conveying identity in an interoperable manner. The specification does not by itself provide integrity, confidentiality or non-repudiation of the requestor identity or identities over the service chain. This specification will, however, address how these security goals can be accomplished by using this specification in combination with other security mechanisms.

Current Version

  • REST Service Encoding Specification for Identity Propagation (RR-ID.V1) 17 July 12



Page 14 of 29