Global Federated Identity and Privilege Management (GFIPM)

gfipmJustice organizations need ways to provide secured access to multiple agency information systems with a single log-on.   The information being shared is sensitive—so it is important to establish a trusted method to share it only with those who need or are authorized to access it. The GFIPM framework provides a solution that is based on an electronic justice credential. 

This standards-based justice credential can be used to securely connect law enforcement and public safety personnel to interagency applications and data over secured networks or the Internet by establishing an electronic trust between caretakers and users of critical information. 

Initiated in 2005, the GFIPM program is part of the Global Initiative. The GFIPM specifications and associated implementation documents evolved through a collaborative effort of BJA, the National Institute of Justice (NIJ), Department of Homeland Security (DHS), and major participants and contributors. 

SEARCH has long supported and helped develop key standards for information sharing and interoperability, such as GFIPM. In fact, SEARCH staff serve on the Global Infrastructure/Standards Working Group and its GFIPM Delivery Team, which evolves GFIPM products, specifications, and operational federation into a fully vetted and production-quality capability for cross-jurisdictional identity management. 

GFIPM involves—

  • Federated identity, which allows a user’s roles, rights, and privileges to be communicated securely.
  • Privilege management, which is the process of managing user authorizations. 

GFIPM provides implementers with a head start on governance, policy and technology standards so these transactions occur in a manner that is both secure and compliant with legal and policy requirements. Users benefit by increased convenience and privacy and reduced complexity when accessing data sources.  

SEARCH offers assistance and guidance to organizations interested in GFIPM solutions, including interagency governance and policy guidance, technical specifications, and implementation.  We have experience in incorporating GFIPM standards in statewide justice web portals. 

Additional Resources

View or download this SEARCH Technical Brief, which provides guidance on GFIPM implementation:

Karen Lissy

Ms. Karen Lissy is a Justice Information Services Specialist for the Law and Policy Program of SEARCH, The National Consortium for Justice Information and Statistics. In this position, she provides assistance to state and local justice and public safety agencies to collect, curate, and use National Incident-Based Reporting System (NIBRS) data and computerized criminal history record (CCH/CHRI) information for policy analysis and development.

She also guides justice and related organizations in how to craft and implement laws, policies, practices, and technology applications to effectively collect and use CCH and related justice/public safety data; address legal, policy, and regulatory issues associated with CCH data; better manage and operate criminal justice information and identification systems; and develop security and privacy policies that protect justice information sharing systems.

Ms. Lissy has nearly two decades of research and data analysis experience, having led projects and tasks in support of two agencies within the U.S. Department of Justice’s Office of Justice Programs (the Bureau of Justice Statistics and National Institute of Justice), as well as the Centers of Disease Control and Prevention, and multiple foundations, including Ford, Annie E. Casey, and Hewlett. Prior to joining SEARCH in October 2020, Ms. Lissy served as a Social Science Researcher at RTI International, as a regional Crime Analyst for the Redmond (WA) Police Department, and as Director of a research program with the Harvard Center for Risk Analysis. Beginning in 2012, Ms. Lissy’s work has focused on improving data in law enforcement to answer policy questions and improve community/police relations.

Ms. Lissy earned a Bachelor’s degree in Public Policy from Duke University, and a Master’s in Public Health from the University of North Carolina at Chapel Hill.

Michael Mackay

Mr. Michael Mackay is an Information Sharing Developer for SEARCH, The National Consortium for Justice Information and Statistics. As part of the Software and Data Engineering Program (SDEP) team, he plans, develops, implements, and deploys information sharing systems on behalf of SEARCH clients in local, state, tribal, and Federal government settings. He also provides programming, configuration, and testing assistance, and consults on implementation architecture and design with clients. 

Mr. Mackay supports justice, public safety, and homeland security information sharing nationwide through SDEP services that include software architecture and systems design, application development, deployment and support, data management services, and direct technical assistance and training. These services offer capabilities that include federated query, authentication access/control, subscription/notification, process/workflow automation, data analysis, and more. 

Prior to joining SEARCH in 2021, Mr. Mackay worked as a Software Engineering Intern for TDM Business Toole Suite, where he provided software development support using Java frameworks, implemented relational database models using MySQL, and designed GUI components using NetBeans. 

Mr. Mackay will work in an Agile development environment, a methodology that SEARCH embraces that focuses on incremental development and delivery, collaboration in a team approach, and rapid and flexible response to change throughout the development cycle. 

Mr. Mackay earned a bachelor’s degree in Computer Science and Applied Mathematics and Statistics from Stony Brook University, New York.