Implementing Multi-factor Authentication for CJIS Compliance

The criminal history information, background checks, fingerprint database, and crime statistics housed in Criminal Justice Information System (CJIS) databases are so sensitive, the FBI requires even authorized users to use multi-factor authentication, using methods including strong passwords, hard or soft tokens, biometrics and PINs.

The Phoenix Police Department serves one of the largest cities in the United States, employing more than 3,800 officers to support 1.5 million citizens. As part of their daily work, officers rely on CJIS for up-to-date information. But as more officers switched to rugged mobile devices in the field, it became difficult to ensure compliance with CJIS standards. At the same time, the police department wanted a better way to strengthen security across the board.

The solution was equipping officers with Panasonic TOUGHBOOK laptops running multi-factor authentication software. The authentication software enables the department to choose from a variety of secure authentication methods, including one-time passwords, smart cards, USB keys, risk- and context-based methods, and biometrics such as fingerprint, face, and behavioral keystroke. Because the TOUGHBOOK laptops are equipped with fingerprint readers, deputies can more quickly access information (versus password input) and the IT department can be confident that only authorized persons are using department computers. 

For more information, read the full case study.