from dabears: " http://www.disa.mil/News/Conferences-and-Events/DISA-Mission-Partner-Conference-2012/~/media/Files/DISA/News/Conference/2012/Idenity_Access_Management.pdf PAGE 9 Non-Person Entity (NPE) will provide PKI certificates to devices - Will remove anonymity for devices on DoD networks - Supports IPSEC - Allows DoD to manage devices on its networks * Initial focus will be on workstations, domain controller and web servers * Capability will provide: - A centralized trust on the SIPRNet and NIPRNet - Auto issuance/rekey of PKI certificates to workstation and domain controllers - Will support both Microsoft and non-Microsoft devices - Certificates will have 12 month validity periods * Future plans to support VOIP, radios, and other devices * Initial operation capability will be available by May 2013 * Full Operational Capability (FOC) is planned for June 2014" alea comment - initial availability in just under a year, full capability in nearly two. phew. this does get tiresome.