Spillman’s PassKey allows agencies to meet CJIS Security Policy 5.0 requirements and enhance the security of their Spillman systems. Agencies can manage security options for specific computers and users, remotely prevent access to the system by specific computers, and create a record of users who try to log-in to the system. Spillman PassKey also enables agencies to utilize advanced authentication, also known as multifactor authentication, for an additional level of security on computers located outside secure facilities. Enabling this feature will require users to plug secure USB device into the computer before a login can be completed.* Who needs Spillman PassKey? While Spillman is implementing the federal CJIS Security Policy 5.0 requirements, each state interprets those requirements separately and implements their own security policies. Agencies should check with their Spillman account manager for state-specific information. How Can Spillman PassKey Help My Agency Become CJIS 5.0-Compliant? CJIS Security Policy 5.0 requires agencies secure devices that provide access to sensitive information, preventing abuse and misuse of confidential data. Spillman PassKey gives your agency tools to achieve new levels of security for all system computers, especially those in unsecured locations like patrol cars or substations. The feature also allows you to deactivate access remotely, gives system use notification prior to access, and documents user login attempts to help you meet CJIS requirements. How Can Spillman PassKey Help My Agency Protect Sensitive Data? • Manage User Access to Consoles Set security measures on individual computer consoles using Spillman PassKey. Your agency’s SAA can set security requirements on each computer used by the agency. Personnel utilizing computers that are located outside agency headquarters, such as vehicle laptops, can be required to use a USB PassKey device to access the Spillman system. • Control Access to Agency Data Determine which personnel are able to access agency data from a non-secure computer. Your agency’s SAA can associate a specific user to a specific USB PassKey device. Without a device, users will be unable to log in to your agency’s Spillman system from a computer housed outside agency headquarters. • View User Activity View logs to see who has been accessing the Spillman system. These records allow agencies to see if the system is being used outside of its intended applications. User login tracking helps Spillman PassKey Enhance your agency’s security and meet CJIS security policy requirements using advanced authentication.