Mobile Application Single Sign-On

Current Status

This project is moving into the build phase. We have selected several technology collaborators for this project. If you are interested in collaborating on this effort please see our Federal Register notice for more information. Companies that have been selected to participate have signed a Cooperative Research and Development Agreement (CRADA; see an example) with NIST.

Download the Mobile Application Single Sign-On project description (PDF) for more detailed information or the two-page fact sheet for a quick synopsis. Project leader William Fisher recently presented an overview of the project at the PSCR Public Safety Broadband Stakeholder Meeting. Click here to view the presentation

If you have additional comments, questions, or would like to join the Community of Interest helping to guide this project, please email us at psfr-nccoe@nist.gov.

Summary

On-demand access to public safety data is critical to ensuring that public safety and first responder (PSFR) personnel can deliver the proper care and support during an emergency. This requirement necessitates heavy reliance on mobile platforms while in the field, which may be used to access sensitive information such as personally identifiable information (PII), law enforcement sensitive (LES) information, or protected health information (PHI). However, complex authentication requirements can hinder the process of providing emergency services, and any delay—even seconds—can become a matter of life or death.

In collaboration with stakeholders, the NCCoE aims to help PSFR personnel efficiently and securely gain access to mission data via mobile devices and applications. This project seeks to demonstrate, using standards-based commercially available and open source products, a reference design for multifactor authentication (MFA) and mobile single sign on (SSO) for native and web applications, while improving interoperability between mobile platforms, applications, and identity providers irrespective of the application development platform used in their construction.

Questions? Comments? Reach us at psfr-nccoe@nist.gov.

Collaborating Vendors

Organizations participating in this project submitted their capabilities in response to an open call in the Federal Register for all sources of relevant security capabilities from academia and industry (vendors and integrators). The following respondents with relevant capabilities or product components (identified as “Technology Partners/Collaborators” herein) signed a Cooperative Research and Development Agreement to collaborate with NIST in a consortium to build this example solution.

Motorola Solutions logo
Nok Nok Labs logo
Ping Identity logo
StrongAuth logo
Yubico logo