Connect with us

Politics

‘E-authentication’ memo puts the focus on secure, usable digital identity

Published

2 months ago

on

What: Office of Management and Budget memo “E-Authentication Guidance for Federal Agencies”
When: Dec. 16, 2003
Why it matters: The memo directed agencies to ensure secure and trustworthy online transactions. Agencies have made plenty of progress, but still struggle with the issue today amid evolving cyber threats and AI-inflated fraud risks.
To celebrate our 25th anniversary in 2025, we’re spotlighting 25 pivotal moments that reshaped the way the government operates. Visit our anniversary page each week as we look back on these defining moments.

(Justin note: Still figuring out potential photos/multimedia)

Like many federal technology initiatives from the early aughts, the Bush administration’s “e-authentication” push can be viewed in retrospect as both forward leaning and, more than 20 years later, very outdated.

The December 2003 “e-authentication” memo from the Office of Management and Budget pushed agencies to manage the secure access to online services. Amid a broad push to open up access to a digital government, the memo ensured agencies also focused on security and privacy.

“I do think in a lot of ways, the government did lead the way in projecting what was required to defend against the threats as we saw at that moment in time,” Jordan Burris, former chief of staff to the federal chief information officer and vice president of public sector solutions at identity security firm Socure, said in an interview.

In the decades since the 2003 memo, however, identity management has become exponentially more complex and difficult, as the demand for digital services — whether internal to the workforce or public facing — has skyrocketed.

Identity management technologies have evolving rapidly. But cyber attackers and fraudsters alike are taking advantages of gaps and lapses in identity management to steal data and money. Adversaries are already using artificial intelligence to supercharge their attacks using AI-aided phishing, deep fakes and more.

Meanwhile, agencies and organizations of all types have struggled to keep pace with the threats, according to Jeremy Grant, the former director of the National Strategy for Trusted Identities in Cyberspace and coordinator of the Better Identity Coalition.

“Over the last 10 years, I’d argue that government writ large has been looking at this issue a lot less strategically and proactively than it should be,” Grant said.

The one constant in the digital identity challenge has been the tension between access and security.

“It really sits at that center point of your user’s experience and the security and the protection that you’re able to provide,” Ryan Galluzzo, the National Institute of Standards and Technology’s digital identity program lead, said in a recent interview with Federal News Network. “So it has this very unique blend of people need to be able to use it, and particularly if you’re public facing, you need to be able to make sure it’s supporting the broader population of users that you have, but it also needs to be deployed in a way that supports security.”

Leaning forward on identity

In Grant’s view, the government’s online identity management push got going during the Clinton administration, when the Defense Department piloted the first “smart cards,” leading to the adoption of the Common Access Card (CAC).

The General Services Administration also had a smart card program office to ensure the civilian side of government could take advantage of the technology.

“This is really promising technology to start to transform government and start to digitize a lot of paper-based processes,” Grant said of the thinking at the time.

The 2003 e-authentication memo, meanwhile, came amid the “e-government” push during the Bush administration. It directed agencies to take a risk management approach to authenticating the identity of online users, whether they be a federal employee accessing an internal system or a member of the public seeking access to an online government service.

“The administration is committed to reducing the paperwork burden on citizens and businesses, and improving government response time to citizens — from weeks down to minutes,” then-OMB Director Joshua Bolten wrote in the memo. “To achieve these goals, citizens need to be able to access government services quickly and easily by using the Internet. This guidance document addresses those federal government services accomplished using the Internet online, instead of on paper. To make sure that online government services are secure and protect privacy, some type of identity verification or authentication is needed.”

Burris said the government was “leaning in” at a time to address online identity infrastructure strategically.

“We had to stop thinking as much in a siloed manner as was being done with every agency kind of doing it for themselves,” he said.

The memo led to multiple major identity developments, including the first version of what would become NIST’s digital identity guidelines.

It also helped accelerate the adoption of federal public key infrastructure and the now ubiquitous Personal Identity Verification (PIV) card under Homeland Security Presidential Directive-12 signed in 2004.

While those latter developments helped agencies ensure the identity security of their enterprise workforce, the Obama administration started to look more toward public facing identity strategies as part of the National Strategy for Trusted Identities in Cyberspace (NSTIC).

Grant, who led the NSTIC program at NIST from 2011 to 2015, said the goal was to establish a national vision for security identity at a time when the digital economy was expanding rapidly.

“It laid out a very forward leaning vision of what the country should look to do on digital identity that relied heavily on partnering with the private sector to solve it, but it was also, bluntly, way ahead of where the market was at the time,” Grant said.

The NSTIC funded multiple projects to advance secure online transactions, especially to reduce the reliance on usernames and passwords. The initiative bolstered an emerging identity security industry that offered new tools for users to secure their online accounts and organizations to secure their enterprise networks.

The NSTIC also launched a project that would eventually lead to Login.gov, a single sign-on service that has garnered both plaudits and controversy. But like with “e-authentication,” the goal was to streamline access to online services by providing citizens with one login option for multiple agencies.

COVID fraud and AI

Under the Trump administration, agencies continued to deepen their digital modernization efforts. OMB sparked another governmentwide push to modernize identity management under a 2019 memo, “Enabling Mission Delivery through Improved Identity, Credential, and Access Management.”

Burris, who served as chief of staff to the federal CIO at the time, said the goal was to update several outdated policies and facilitate “continuous modernization” of identity, credential and access management systems.

“We wanted to also make sure that we were assigning ownership responsibility to the right organizations to say, ‘Hey, you have a key role in moving the conversation forward,’” Burris said. “We had to have that pinwheel for innovation, making sure that with that guidance, we weren’t getting in the way of what needed to come next. Because there was a vision of what a modern government would look like from an identity standpoint. And if we didn’t at least clean up the policy framework for it, which is effectively what we did with [the memo], we wouldn’t be able to pivot to what came next, like the push to zero trust.”

Indeed, the federal government would continue the push to “zero trust” cybersecurity under a 2022 Biden administration policy. Strong identity management practices are central to the zero trust concept, as hackers have long abused stolen identities and credentials to pull off devastating cyber attacks.

But the issue of online identity is also now wrapped up in the debate around public benefits fraud.

When agencies rushed to make federal aid available online during the COVID-19 pandemic, fraudsters pounced, using stolen identities and other techniques to steal an estimated $280 billion in relief funding.

Hackers and fraudsters alike are harvesting personal information available for purchase over the dark web to pull off their attacks. Artificial intelligence is also helping them supercharge their identity-based exploits. Generative AI, deep fakes, and automation are all helping make an already bad problem even worse.

“There’s an arms race that’s taking place where nation state actors are leveraging AI in order to disrupt benefits,” Burris said. “They’re using it in order to impersonate good people, whether you look at it from a deep fake standpoint, or just the scale of automation for collecting and using [personally identifiable information] in order to attack any single threaded view.”

Under the Biden administration, the monumental challenges sparked some ripples of support and progress. The 2022 zero trust strategy pushed agencies to adopt strong identity management technologies, particularly for their workforces.

And the 2023 National Cybersecurity Strategy set a strategic objective to “support development of an identity ecosystem.” But subsequent implementation plans for the strategy made little mention of that objective. According to Grant, the objective got bogged down by infighting over an executive order on fraud that never materialized.

Meanwhile, the Trump administration’s approach to digital identity management is still unclear.

While Elon Musk’s “Department of Government Efficiency” has made rooting out fraud a central pillar of its mission, Grant’s Better Identity Coalition wrote DOGE in January, urging it to take a broader view.

The administration has a chance to take “decisive action that will not only address government benefits fraud but also give Americans tools that they can use to better protect themselves everywhere they do business online,” the coalition wrote.

Grant argues digital identity is an issue of national security and a part of modern critical infrastructure.

“At a time when digital identity threats are becoming more pervasive, and when every one of what we would consider peer countries across the globe has a strategy and plan to elevate it as a national priority, we don’t have any vision at the national level of what good looks like and how to get there, or what bad might look like in terms of bad outcomes with digital identity,” Grant said.

Amid the fast-moving technological landscape, digital identity experts are watching a landmark update to NIST’s digital identity guidelines. The guidelines spelled out in Special Publication 800-63 are mandatory for federal agencies and are closely followed by industry.

NIST’s Galluzzo said his team hopes to have the final revisions out by the end of 2025.

The draft revisions to the guidelines account for emerging digital wallet and verifiable credential technologies, such as mobile driver’s licenses. They include performance requirements for biometric technologies, like facial recognition. And they focus on fraud prevention and phishing-resistant multifactor authentication, among many other areas.

“Any technology that can start to consolidate a smooth user experience with increased security is, I think, the kind of thing that can show a lot of value and gain a lot of traction,” Galluzzo said. “It’s why we’re so interested in things like passkeys and FIDO authenticators, as well as things like mobile wallets and the credentials that reside inside them, because they really do focus on bringing those two components together.”

NIST officials are also testing out standards for things like mobile driver’s licenses through the agency’s National Cybersecurity Center of Excellence. The focus is on public-private sector use cases for financial, government and healthcare purposes.

In many ways, the 2003 “e-authentication” memo’s focus on facilitating secure access continues to this day.

“Wherever you can find that nexus of secure and usable, I think is a really interesting innovation point for the overall industry, as well as for folks like us who are looking to help standardize those things and make sure they’re interoperable and make sure they are providing a consistent degree of protection, as well as that usability,” Galluzzo said.

The post ‘E-authentication’ memo puts the focus on secure, usable digital identity first appeared on Federal News Network.

Related Topics:
Continue Reading
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Politics

Judge Subramanian DENIES Sean ‘Diddy’ Combs Bail for the Fifth Time – Disgraced Rapper Will Remain in Prison Pending His October 3rd Sentencing

Published

12 hours ago

on

August 5, 2025

By

Judge Subramanian: no “exceptional reasons” to release Diddy before sentencing.

Recent Judge Subramanian’s decisions may indicate hard times for Diddy come sentencing.

We have been following the pre-sentencing motions in the high-profile criminal trial of rap mogul Sean ‘Diddy’ Combs.

The defense: ‘Sean Diddy’s Combs’ Conviction Is Racist and Sexist’, Say Disgraced Rapper’s Lawyers on Yet Another Legal Filing Trying to Release Him on Bail Pending Sentencing

The Prosecution: Prosecutors Oppose Sean Diddy Combs’ 50M Bail Package, Ask for ‘Substantially Higher’ Sentence Than Before

Look who appeared: Sean ‘Diddy’ Combs Trial: Ex-girlfirend Who Disappeared and Did Not Testify Against Rapper as ‘Victim 3’ Now Writes Letter to Judge to Grant Him Pre-sentencing Bail

Diddy has had his request for bail denied for the 5th time.

Today, we learn that federal judge Subramanian has yet again declined to grant Sean “Diddy” Combs bail, saying he found no ‘exceptional reasons’ to release him pending his October sentencing.

ABC News reported:

“Combs was convicted of transportation to engage in prostitution, which the judge said mandates incarceration. His sentencing is set for Oct. 3.

Judge Arun Subramanian said Combs remains a risk of flight and a danger to the community, pointing to the violence exhibited on 2016 hotel surveillance footage that shows him kicking and dragging Cassie Ventura.”

Combs remains a risk of flight and a danger to the community: Judge.

The judge ruled that the ‘swinger lifestyle’ argument does not fly in a case that includes ‘evidence of violence, coercion or subjugation in connection with the prostitution’. And the record, he wrote, contains evidence of all three.

Subramanian: “’While Combs may contend at sentencing that this evidence should be discounted and that what happened was nothing more than a case of willing ‘swingers’ utilizing the voluntary services of escorts for their mutual pleasure, the Government takes the opposite view: that Cassie Ventura and Jane were beaten, coerced, threatened, lied to, and victimized by Combs as part of their participation in these’.”

Read more:

As He Awaits Sentencing in Prison, Sean ‘Diddy’ Combs Joins ‘Self-Improvement’ Program To Curb Drug Use and Violence Against Women

The post Judge Subramanian DENIES Sean ‘Diddy’ Combs Bail for the Fifth Time – Disgraced Rapper Will Remain in Prison Pending His October 3rd Sentencing appeared first on The Gateway Pundit.

Continue Reading

Politics

Nearly 78,000 New Applicants Flood ICE Recruitment to Help Crack Down on Illegal Immigration (VIDEO)

Published

12 hours ago

on

August 5, 2025

By

In a scorching new development under the Trump-backed ICE reign, Acting Director Todd Lyons confidently announced that “we have almost 78,000 applicants since we opened up,” referring to the agency’s massive recruitment surge launched just one week prior.

This seismic surge in interest aligns with ICE’s newly launched “Defend the Homeland” recruitment blitz, unveiled by the Department of Homeland Security on July 29, 2025.

ICE is budgeting for 10,000 new agents, dangling $50,000 signing bonuses, student‑loan forgiveness, enhanced overtime pay, and upgraded retirement plans to attract recruits.

According to the press release:

The Department of Homeland Security (DHS) today launched a new U.S. Immigration and Customs Enforcement (ICE) campaign to recruit brave and heroic Americans to join ICE as federal law enforcement agents and remove the worst of the worst criminal illegal aliens from America’s streets.

“Your country is calling you to serve at ICE. In the wake of the Biden administration’s failed immigration policies, your country needs dedicated men and women of ICE to get the worst of the worst criminals out of our country,” said Secretary Kristi Noem“This is a defining moment in our nation’s history. Your skills, your experience, and your courage have never been more essential. Together, we must defend the homeland.”

To support this effort, ICE is offering a robust package of federal law enforcement incentives, including: 

  • A maximum $50,000 signing bonus
  • Student loan repayment and forgiveness options
  • 25% Law Enforcement Availability Pay (LEAP) for HSI Special Agents
  • Administratively Uncontrollable Overtime (AUI) for Enforcement Removal Operations (ERO) Deportation Officers
  • Enhanced retirement benefits

Backed by significant new funding through the recently signed One Big Beautiful Bill, ICE is rolling out patriotic recruitment posters and benefits to attract the next generation of law enforcement professionals to find, arrest, and remove criminal illegal aliens.

During the Fox interview, Todd Lyons delivered the incredible news.

“We have almost 78,000 applicants since we opened up. We’re going through and finding those people who really want to serve the country and truly be in law enforcement. I think it’s a great way to recruit now.

We’re taking back our re-hired annuitants — people who left the job early because they weren’t allowed to do the law enforcement mission.

But we have so many people who are now interested in working with ICE because, under Secretary Nome’s leadership, they’re seeing that we have a viable law enforcement partner in the community. You’re actually out making a difference. We’re really ecstatic about seeing the increase in new recruits who are applying.”

WATCH:

The post Nearly 78,000 New Applicants Flood ICE Recruitment to Help Crack Down on Illegal Immigration (VIDEO) appeared first on The Gateway Pundit.

Continue Reading

Politics

Rep. Marjorie Taylor Greene Calls on Trump to Commute George Santos’ Excessive 7-Year-Sentence: ‘Some Members of Congress Who’ve Done Far Worse Still Walk Free’

Published

12 hours ago

on

August 5, 2025

By

Rep. Marjorie Taylor Greene (R‑GA) has formally thrown down the gauntlet.

On Monday, she submitted a letter to the Office of the Pardon Attorney pleading for President Trump to commute the 87-month federal sentence of ex‑Congressman George Santos (NY‑03)—a punishment she calls “a grave injustice” and emblematic of a justice system fractured by politically selective persecution.

Greene wrote on X:

“BREAKING: I just sent a letter to the Office of the Pardon Attorney urging President Trump to commute the sentence of former Congressman @MrSantosNY.

A 7‑year prison sentence for campaign‑related charges is excessive, especially when Members of Congress who’ve done far worse still walk free.

George Santos has taken responsibility. He’s shown remorse. It’s time to correct this injustice. We must demand equal justice under the law!”

Greene signed her letter Aug. 4 to Pardon Attorney Edward Martin Jr. at the Justice Department, demanding Trump use his executive power to undo what she calls a “grave injustice.”

Drawing on inside knowledge, she described Santos as “without a prior criminal record,” “sincerely remorseful,” and portrayed his case as campaign-related maleficence, nothing warranting “one of the most extreme sentences in recent history.”

Green also reminded officials of the roster of current or former lawmakers who actually broke laws or ethics rules yet never lost a day.

The letter reads:

“I am writing to request that your office urge the President to commute the sentence of former Congressman George Santos. In April 2025, Mr. Santos was sentenced to 87 months in federal prison for wire fraud and aggravated identity theft charges. I wholeheartedly believe in justice and the rule of the law, and I understand the gravity of such actions. However, I believe a seven-year sentence for such campaign-related matters for an individual with no prior criminal record extends far beyond what is warranted.

As a Member of Congress, I worked with Mr. Santos on many issues and can attest to his willingness and dedication to serve the people of New York who elected him to office. He committed himself to serving his constituents and did whatever it took to represent their interests in Washington, D.C. He is sincerely remorseful and has accepted full responsibility for his actions. Furthermore, my office has spoken with a pastor of his who discussed the regret and remorse of Mr. Santos, agreeing that the sentence imposed is a grave injustice.

While his crimes warrant punishment, many of my colleagues who I serve with have committed far worse offenses than Mr. Santos yet have faced zero criminal charges. I strongly believe in accountability for one’s actions, but I believe the sentencing of Mr. Santos is an abusive overreach by the judicial system.

Commuting his sentence would acknowledge the severity of his actions and simultaneously provide a path forward in allowing him to make amends for his crimes and strive to better serve the people in his community.

I respectfully request you to urge the President to commute the sentence of Mr. George Santos.

Thank you for your attention to this matter.”

According to the Advocate, Trump can pardon Santos, but has not been asked about it.

The Advocate reported:

“He lied like hell, and I didn’t know him,” Trump told Newsmax host Rob Finnerty during an interview at the White House. “But he was 100 percent for Trump. I might’ve met him. Maybe, maybe not, but he was a congressman and his vote was solid.”

[…]

In the Newsmax interview, Trump seemed to question the severity of Santos’s sentence. “It sounds like a lot,” he said. “Is it seven years he just went away? It’s a long time.”

Trump went on to say that while he hadn’t been approached about pardoning Santos, the door remained open. “Nobody’s talked to me about it,” he said. “They really haven’t talked to me about [Santos]. They have talked to me about Sean [Combs], but they haven’t talked to me about [George]. But again, with him, I have the right to do it. Nobody’s asked me, but it’s interesting.”

In April, U.S. District Judge Joanna Seybert sentenced Santos to 87 months in federal prison for wire fraud and aggravated identity theft after a guilty plea in August 2024.

Those charges stemmed from fabricating donor names, laundering campaign funds, misusing donor money, and claiming unemployment while campaigning.

Santos took to social media earlier this year to criticize the ruling and pleaded with President Trump for leniency.

He wrote:

This is the hardest statement I have ever written. I write this humbled, chastened, and fully accountable for choices that shattered the faith so many placed in me.

I betrayed the confidence entrusted to me by many. For that, I offer my deepest apology.

When I pled guilty, I did so without reservation. I said then, and I repeat now, that my conduct betrayed my supporters and diminished the institution I was privileged to serve. Those words have weighed on me every day since.

I cannot rewrite the past, but I can control the road ahead. I asked the Court for a sentence that balances accountability with the chance to prove through sustained, measurable action that I can still contribute positively to the community I wronged.

I believe that 7 years is an over the top politically influenced sentence and I implore that President Trump gives me a chance to prove I’m more than the mistakes I’ve made.

Before the sentencing, Santos had slammed federal prosecutors for going easy on violent criminals while trying to make an example out of him.

“I will however remind everyone that they want me to go to prison for 87 months while they let sex traffickers walk freely, they give drug lords slaps on the wrist and most importantly refuse to prosecute the cabal of pedophiles running around in every power structure in the world including the US Government,” he wrote on X.

The post Rep. Marjorie Taylor Greene Calls on Trump to Commute George Santos’ Excessive 7-Year-Sentence: ‘Some Members of Congress Who’ve Done Far Worse Still Walk Free’ appeared first on The Gateway Pundit.

Continue Reading

Trending