Get documents about "Delaware Report on Network Grant Progress, Implementing Network
Document Sample
Delaware Report on Network
Grant Progress, Implementing
Network Connectivity, and
Flowing Data.
EPA Region III Workshop
October 4, 2005
History of Network Grants in
Delaware
• 2001 - One Stop Grant - $500,000
• 2002 - Readiness Grant - $338,944
• 2002 - Beach Monitoring Challenge Grant - $70,000
• 2003 - Readiness Grant - $297,700
• 2003 - CROMERR Challenge Grant - $378,000
• 2004 - Network Implementation Grant - $300,000
• 2004 - Biodiversity Challenge Grant - $615,000
• 2005 –Implementation Grant - $300,000
Summary of Tasks Accomplished
• 2002 – Integrated environmental information system called
Delaware Environmental Navigator launched
• 2003 March - pilot node implemented
• 2003 August - Beach data flow implemented through production
node
• 2004 April – NEI data flow implemented
• 2004 December – PCS dataflow implemented
• 2005 July – SDWIS data flow implemented
• March 2005 – Flow of Substance Registry System data from CDX to
Delaware node implemented
• August 2005 – Pilot electronic signature was successfully
implemented for National Emissions Inventory complying with
CROMERR requirements.
Status of Grants
• One Stop – Completed – Integration environmental data as
identified in the work plan completed
• Readiness 2002 – Node implemented; NEI data flow and PCS data
flow accomplished
• Readiness 2003 – SDWIS data flow completed; integration of well
data from public into Environmental Navigator in progress; Cleanup
SDWIS data completed;
• Challenge 2003 – Application for Web based Online submittal of NEI
data completed; pilot for electronic signature in compliance with
proposed CROMERR completed; participating states are testing the
online submission application
• Readiness 2004 – Import of Substance Registry System data from
CDX to Delaware node completed; work on mapping AQS data to
XML schema in progress; mapping of handler data to XML schema
in progress (RCRAInfo flow)
Status of Grants- contd.
• Challenge 2004 – development of XML schema for Biodiversity data
in progress.
• Readiness 2005 – Just received the grant. Scope includes
implementation of data flows for TRI and Underground injection
programs;
NEI Data flow and Electronic
Signature
• Delaware took the lead in the NEI challenge grant with participation
from S Carolina, Kansas, Arizona and Indiana
• The scope of this was to:
– Develop a web based online application for facilities to submit NEI data
to State agencies
– establish a flow through the node for the NEI data
– Implement electronic signature in compliance with the draft CROMERR
• All the States participating in this grant were using a COTS product
called iSteps to collect, maintain and export to EPA the NEI data
• Since Delaware already had an online system using terminal server,
it was only logical that it take the lead in developing the web based
online system which will then be modified to met each participating
state’s special needs
• The web based application was developed in MS ASP to be used
with either MS SQL Server or Oracle backend
NEI Data flow and Electronic
Signature- contd.
• Data received from terminal server application was mapped to XML
schema flowed through Delaware node successfully in April 2004
• The web based application was tested successfully using a limited
number of participants (the rest still submitting data using the
terminal server application) in April 2005
• The web based application has been customized to meet the needs
of S Carolina and Kansas and is undergoing testing
• Delaware participated in EPA’s eAuthentication pilot to implement
electronic signature using digital certificate. The pilot was
successfully concluded in August 2005 with 4 facilities participating
in the test
Conceptual Model Architecture Diagram
GSA E-Authentication Systems
Authentication
Request/Response
Certificate Validation and Step-Down Request
SAML Artifact Response
E-Auth Portal
Certificate Validation
Request/Response
EPA-CDX Systems
State Nodes/ SAML Assertion
Client Browsers Request/Response
GSA Step-Down
Translator
Bridge
CDX SAML Query/Reply
Server
Certificate Validation CAM 4.0
Request/Response Server
Hosted Validation
Bridge Service
SAML Assertion Query/Reply
CDX Web
Request/Response
Registry
Database
Authentication User Credential & Policy
Request Validation
Client Browser Certificate validation Request/Response
Request;
SecurityToken CDX NAAS
Response NAAS User Identity &
Federal Bridge CA
Security Policy
Store
CDX IIS
Redirect to application
Web Server
w/ Token
Artifact/Token Validation AuthN/AuthZ
State/Federal Request/Response Request/Response
Application
EPA Data
AuthN/AuthZ CDX Node - EPA
Request/Response Backend Interaction
EPA Backend Systems:
FRS
State Node CDX Node NEI
eBeaches
SDWIS
eDMR/IDEF
.
.
Delaware Use Case 1
i-STEPS user using a Level 3 credentials to access the i-STEPS application (Level 3) by authenticating against CDX (using EPA-CDX CAM Server)
i-STEPS User i-STEPS Application CDX IIS Web Server CDX NAAS CDX CAM Server E-Authentication Portal Federal Bridge
1. Authentication Request using level 3 credential (HTTPS)
2. User redirected to Portal with AAid in query string (HTTPS)
3. User selects EPA-CDX as their CSP (HTTPS)
4. Redirect header to CDX with AAid in query string (HTTPS)
5. User is redirected to CDX w/ AAid in query string (HTTPS)
6. User presents level 3 PKI certificate to CDX (HTTPS)
7. Certificate Validation Request (SOAP)
8. Certificate Validation Request (CAM)
9. Query Bridge (LDAP)
10. Bridge Reply (LDAP)
11. Certificate Validation Response (CAM)
12. Generate AuthN ticket [SecurityToken] (Prop.)
13. Return AuthN ticket (SOAP)
14. Redirect header to AAid with AuthN ticket (HTTPS)
15. User redirected to i-Steps w/ AuthN ticket in query string
16. AuthN ticket validation request (SOAP)
17. Validate AuthN ticket & lookup userID (Prop.)
18. AuthN ticket validation response + userID (SOAP)
19. OPTIONAL: Map userID to internal AuthZ policy (Prop.)
20. User granted access to i-STEPS (HTTPS)
21. Sign and submit document (HTTPS)
22. Certificate Validation Request (SOAP)
23. Certificate Validation Request (CAM)
24. Query Bridge (LDAP)
25. Bridge Reply (LDAP)
26. Certificate Validation Response (CAM)
27. Certificate Validation Response (SOAP)
LEGEND
28. OPTIONAL: Verify Signature (Prop.) AAid = Agency Application Identifier
29. User submission successful (HTTPS) CSP = Credential Service Provider
AuthN = Authentication
AuthZ = Authorization
Normal text = Browser-based communication
Bold text = Machine-to-machine communication
Other IT Data Projects
• Online submittal of storm water NOI forms
• Online submittal of Haz Waste generator
notifications and annual reports
• Well & Septic licensing and permitting
including a voice xml call in system for
construction authorizations
• Wetlands permitting
• Location Wizard
Related docs
