The Federal Administration operates numerous IT systems in order to perform its tasks. With most of them, who has access to which information is crucial. Federal identity and access management (IAM Bund) ensures that the right people and applications have the right access at the right time. With the ever-expanding scope of the use of information beyond organisations themselves, overarching coordinated services are essential to meet the protection and functionality requirements efficiently.
ICT standard service IAM – market model version 1.0
The Federal Council defined IAM as an ICT standard service on 13 December 2013 and adopted its market model version 1.0. The standard service offers the administrative units several services, particularly for issuing electronic certificates (PKI), remote access to internal data and applications, and IAM services that can integrate applications of the Federal Administration.
IAM Bund programme
The FITSU was instructed to commence the IAM programme in order to find a central IAM solution for the Federal Administration. In addition, the FITSU adopted the IAM sub-strategy on 8 July 2014 in implementation of the Federal ICT Strategy 2012-2015 adopted by the Federal Council on 9 December 2011.
The IAM programme is examining the entire range of IAM functions in a bid to identify the best possible solution for the Federal Administration. The IAM requirements of the Federal Chancellery, the departments and the cantons have been determined and an IAM target architecture is being prepared on that basis. It indicates how IAM should be established in the Federal Administration in the future. The first components of the new target architecture are already being implemented. Other implementation components should be addressed with market model version 2.0, which is scheduled to be adopted by the Federal Council by the end of 2015.