Breakout
What About a Derived Credential PACS?

This presentation will explore a new alternative topology for PACS using derived credentials. The current approved FIPS 201 13.01 and 13.02 topologies rely on the traditional card + reader + controller architecture. Many agencies find these systems overly complex and expense to install and maintain; however, the introduction of SP 800-157r1 for derived credentials provides an opportunity for the U.S. government to simplify PACS by eliminating the need for the card reader and controller components.

With this new topology a mobile app using a derived credential would communicate directly to a database on a FedRamp approved cloud host and bypass the need for readers. The cloud database would perform the traditional authentication functions of the control panel and send message commands to simple IP relays to control doors and manage alarms. This simplified PACS topology could eliminate up to 90% of the future e-waste associated with PACS electronic hardware components. End-users in the commercial sector are saving 80% or more by deploying the architecture.