WASHINGTON – August 3, 2020 — – Waverley Labs, a pioneer in Software Defined Perimeters (SDP) and digital risk reduction solutions, today announced it has been awarded a $1 million contract from the Department of Homeland Security (DHS) Science and Technology Directorate’s (S&T) Small Business Innovation Research (SBIR) program.
Following the Phase 1 development of a prototype for use of state issued drivers’ licenses, Phase 2 is to deploy Waverley Labs’ Dynamic AccessIDTM Network, to improve identity proofing on the fly for crisis and emergency managers.
During an emergency, Incident Managers are challenged in their ability to rapidly proof identities with valid credentials for first responders to access systems of interest (e.g. visitor systems, camera systems etc.). Existing ICAM solutions are closed, place onerous restrictions on the trust mechanism, do not account for mobile environments and are static in nature.
Currently it is difficult to onboard systems that use federated credentials from untrusted parties. The Dynamic AccessIDTM Network will enable Incident Managers to quickly identify, vet and approve emergency personnel based on existing identification credentials (bring-your-own credentials or BYOC) such as a drivers’ license, government issued smart card, personal identification verification card (PIV), and first-responder-owned devices (bring-your-own-devices (BYOD).
Much like a banking ATM network where cards from other banks are accepted for cash dispensing from ATMs, Waverley Labs’ Dynamic AccessIDTM Network is the first commercial infrastructure that provides the ability to dynamically associate disparate credentials and devices with first responder systems and physical security systems.
During emergencies, systems of interest that leverage Waverley Labs’ Software Defined Perimeter for protection, can accept certificates issued by the Incident Manager for dynamic access to these systems ONLY for that emergency. The Dynamic AccessIDTM Network will not only provide a multi-jurisdictional trust mechanism for a specific emergency, but also the ability to securely on-board first responders to use said emergency systems. Once implemented it will have proved the much needed identity proofing capability for any Zero Trust implementation for successful commercialization.
“For the first time, crisis and emergency managers can standup secure ephemeral networks, dynamically federate participants and onboard privately-owned systems on-the-fly while ensuring that access control continues to be managed by the system owners,” said Juanita Koilpillai, Founder of Waverley Labs. “This much needed ability to proof identities as part of the ICAM process represents the last mile in achieving a true Zero Trust solution.
In addition to delivery of the Dynamic AccessIDTM Network, Phase 2 will enlist participation and testing of the network with government organizations and commercial enterprises.
“The early and current ICAM systems are long overdue for improvements and modernization. For emergencies, federation and managing access based upon ICAM guidelines remains non-existent,” said Jeff Friedman, Chief Executive Officer of Building Intelligence. “Waverley Lab’s development of the Dynamic AccessID Network is not only a brilliant and important breakthrough for emergency services, it will ultimately save lives and protect first responders. For many industries, Dynamic AccessID has many broader applications.”
To learn more about identity proofing and reducing risk using the SDP check out this white paper. Waverley Labs worked closely with the Cloud Security Alliance (CSA) to develop the first commercial SDP specification and recently co-authored the CSA’s new white paper – Software Defined Perimeter and Zero Trust.
About Waverley Labs
Waverley Labs is a leading provider of digital risk management software and services that helps large organizations reduce their exposure to digital risk. Its products and services range from the industry’s first open source software defined perimeters (SDPs) for large federal agencies, to the assessment, quantification, and mitigation of digital risk from the business perspective. Waverley Labs worked closely with the Cloud Security Alliance (CSA) to develop the first commercial SDP specification and recently co-authored the CSA’s new Software-Defined Perimeter (SDP) Architecture Guide.
Waverley Labs works closely with NIST and the Cloud Security Alliance to provide thought leadership in digital risk management. For more information visit http://www.waverleylabs.com, or call (800) 401-5180.