Apriva, a provider of end-to-end wireless transactions and secure information solutions, announced the release of its Android Software Development Kit (SDK) version 2.0 that enables application providers and mobile device manufacturers to deliver products compliant with stringent HSPD-12 (Homeland Security Presidential Directive 12) and federal security policies including Wireless Security Technical Implementation Guides (STIGs) and authentication using Public Key Infrastructure (PKI).
The new SDK gives developers and manufacturers a robust development toolset that does not require root-level access to the Android operating system, to meet the federal government’s growing interest in adopting Android-based mobile devices to complement legacy Windows Mobile® and BlackBerry® solutions. The Android SDK gives providers the ability to create products and services that comply with stringent STIGs issued by the Defense Information Security Agency (DISA), which define policies for personal identity verification, and integration with the Department of Defense’s Common Access Card (CAC) standard, as well as government and non-government personal identification verification (PIV/PIV-I) cards.
The use of PIV-I cards in security-conscious industries such as energy production and transmission, healthcare, and financial services is a strong indicator of the demand for strong authentication and security in the private sector. As with many enterprises, those requiring the most secure capabilities are facing bring your own device (BYOD) and financial challenges that are introducing more Android-based devices into the equation. Enabled by the Apriva Android SDK, solution developers can help to navigate this new corporate landscape to ensure secure operation.
In addition, pilot projects such as the connecting soldiers to digital applications (CSDA) initiative underway by the US Army are examining a multitude of educational and potential operational benefits that can be availed through ubiquitous use of commercial smartphones. The upcoming second phase of CSDA is reported to include the evaluation of applications for tactical operations that will require secure transmission capabilities. And with Android-based smartphones representing the largest and fastest growing segment of the commercial smartphone market, enabling security is of a high priority for many agencies and developers.
“The growth of PIV and other smart card credential reliance in private industry, and projects like CSDA are evidence of the growing and increasingly urgent demand within the government and the private sector to accelerate solutions that meet stringent security requirements for mobile devices on an Android platform,” said Jeff Ford, chief operating officer of Apriva in a prepared statement. “Apriva’s Android SDK 2.0 gives developers the ability to quickly implement applications that support PKI, PIV, PIV-I and CAC authentication and security protocols that are necessary to maintain compliance with HSPD-12 and other governmental regulations and policies.”
Apriva’s highly successful authentication offering includes the portable Apriva BT-200 Bluetooth® Smart Card Reader (SCR), a universal device that has broad compatibility with Windows Mobile and BlackBerry devices, as well as Android devices using applications developed with the Apriva Android SDK. Compatibility of this device with all three mobile device platforms simplifies deployment and provides uniform authentication operation across the full range of mobile devices approved for secure government communications over wireless.
Developers using the Apriva Android SDK 2.0 will no longer need to access the Android operating system root level in creating secure applications. The SDK includes all of the software, drivers, libraries, and interfaces necessary to extend smart card operations into new or existing platforms and applications. Through the Apriva SDK, Android device manufacturers can provide “STIG capable” platforms, allowing add-on middleware and applications to be in compliance with government security policies. The Apriva SDK handles and hides the complexity of using and managing PKI smart cards, while providing a simple way to add the PKI-based encryption and identity management to new Android applications and platforms. Solution integrators can also use the SDK to create features that will benefit government end users by providing full HSPD-12 compliance.
Android device manufacturers and application developers can leverage the SDK from Apriva at no cost with a signed license agreement. For further information on how to download the SDK, please contact Apriva at ISS-Sales@apriva.com.