Credentialing

A fundamental truth is that the emergency services community is the most dedicated to its mission, yet, with the same passion is the most tradition bound. Nowhere is this more noticeable than with the introduction of “technology.” Although tremendous strides have been made over the last twenty years using technology to make us safer and more effective firefighters, law enforcement officers, EMS professionals etc, there can be some resistance when something new comes down the pike. One of the newest uses of technology concepts to be introduced over the last few years has involved the push to introduce interoperable credentialing systems. There exists a great deal of historic evidence supporting the need for development of an interoperable network of credentialing systems. It is important to point out the perceived requirement is to develop an interoperable network not to establish a federally sponsored, sole-sourced database system.

There exists a great deal of confusion as to what a credential actually is. It is actually easier to first define what a credential is not. It is not simply an ID badge. An ID badge in its various forms is relatively easy to duplicate. Although it obviously identifies the owner it offers no guarantees to the accuracy of that identification. A credential is not a license. Although credentials can be issued by both government authorities at local, regional and state levels, large private sector institutions such as hospitals, or even professional associations, they do not give the credential holder the legal right to perform any action or act on any authority. What a credential does do is offer verified proof of its holder’s identity, a record of licenses granted to the holder, and professional qualifications and/or training certifications that allow the holder to do their job. In order for a credentialing system to be successful in our increasingly shrinking world three factors must be addressed:

First, the technology used to support the system must be built on an open architecture using recognized national or international standards. Over the last few years tremendous strides have been taken, in large part by the federal government, in identifying what these standards will be.
Second, a token must be used that can be definitively attached to the identity of the token holder. This token does not have to be in the form of an “ID Card,” in fact, an individual’s fingerprint would suffice.
Finally, a common set of administrative rules must be developed, recognized, and utilized by ALL individuals and agencies participating in the program.

There is a solution that addresses all three of these factors, a currently deployed system referred to as RAPTOR. The technology employed by Advanced Response Concepts has been developed, and is continually refined to meet the guidelines identified by the federal government in its Federal Information Processing Standard 201 (FIPS 201), “Personal Identity Verification of Federal Employees and Contractors,” Department of Health and Human Services, Health Resources Services Administration’s (HRSA) “Emergency Systems for Advance Registration of Volunteer Health Professionals (ESAR-VHP) Program Interim Technical and Policy Guidelines, Standards, and Definitions”, and the referenced technical standards published by the National Institute of Standards and Technology (NIST), American National Standards Institute (ANSI), and the International Standards Organizations (ISO). Advanced Response Concepts a more traditional, commonly accepted approach with respect to the token.

Although our system supports the use of biometric signatures, the ‘credential” produced is in the form a physical ‘Identification Card.’ This card leverages the latest Smart Card technology with processing and encryption capabilities allowing for the storage of identity, licensure, professional qualifications, and critical information profiles within a two-chip hybrid or dual interface card. This is the same type of technology mandated by the federal government’s developing programs, the Department of Defense’s Common Access Card (CAC) Program, and the Department of Homeland Security’s (DHS) National Capitol Region’s First Responder Authentication Credential (FRAC) Program.Advanced Response Concepts has addressed the last factor, that of a common set of administrative rules, by requiring its clients to follow a written set of “rules” in the administration and use of the RAPTOR program. These administrative rules outline the process and procedures for validation of a credential holder’s identity, verification of their licensure, certifications, and professional qualifications, and administrative management of the overall program. This type of program methodology is typically referred to as a trust model. Although Advanced Response Concepts developed these rules independently they used national standards and guidelines as the foundation. For example, the rules used to validate the licensure and subsequent resource typing of a clinician meeting all the requirements delineated in the ESAR-VHP Interim Standards and Guidelines. The rules for verification of identity follow the requirements of the U.S. Department of Commerce FIPS PUB 201 PIV I Standards.

Further, RAPTOR’s administrative rules dovetail with those of the Federation for Identity and Cross Credentialing Systems (FiXs) allowing for a credential to be issued that is capable of interoperability with the Department of Defense CAC, owner of the largest smart card credentialing program in the United States.Advanced Response Concepts. has made significant investment in the technology and infrastructure required to keep the RAPTOR program aligned with the federal standards mentioned, but also with National Incident Management System (NIMS), the National Emergency Responder Credentialing System (NERCS), as well as other initiatives. We have also agreed to make critical administrative functions available in a web environment alleviating firewall issues while keeping a tight grip on security through a powerful administrative privileges security matrix secured with TecSec Corporations Constructive Key Management System. Nearly every state is investigating the credentialing of all personnel who may be deployed in a mass casualty or other catastrophic event, and most are now awaiting the out come of the Implementing Recommendations of the 9/11 Commission Act of 2007 (Public Law 110-53). This act requires DHS to help state, local, and tribal jurisdictions implement standards and provide, “Documentation that identifies personnel and authenticates and verifies the qualifications of such personnel by ensuring that such personnel possess a minimum common level of training, experience …and capability appropriate for a particular position.”[i] Such a system will necessitate the use of identification cards; with smart cards being at the forefront for use in such situations due to the enhanced security and functionality that they offer, and a superior system that provides information on identity and baseline qualifications.

The RAPTOR credentialing system can act as the primary repository for both in a state-based credentialing program and/or can be integrated with additional databases to provide comprehensive functionality. The RAPTOR system is a tool. Advanced Response Concepts provides you with a secure database that allows the user to retrieve information in an emergency situation so that they can make a determination based on local or regional or state protocol if the card holder is qualified to operate in any capacity during the emergency.

[i] PUBLIC LAW 110–53- Implementing Recommendations of the 9/11 Commission Act of 2007, TITLE IV, SEC. 401- DEFINITIONS, § (a) (3), Retrieved from http://frwebgate.access.gpo.gov/cgi-bin/getdoc.cgi?dbname=110_cong_public_laws&docid=f:publ053.110.pdf, October 10, 2007

Raptor_Creator	Latest page update: made by Raptor_Creator , Mar 5 2010, 4:34 PM EST (about this update About This Update Edited by Raptor_Creator 19 words added 8 words deleted view changes - complete history)
	Keyword tags: None More Info: links to this page

Threads for this page

Post a new thread

There are no threads for this page. Be the first to start a new thread.

JavaScript must be enabled in order for you to contribute to this site.
To start contributing, enable JavaScript by changing your browser options, then try again.

Home