The Inner Circle

NIST Draft Federal Information Processing Standard (FIPS) 201-3, Personal Identity Verification (PIV) of Federal Employees and Contractors.

  • 1.  NIST Draft Federal Information Processing Standard (FIPS) 201-3, Personal Identity Verification (PIV) of Federal Employees and Contractors.

    Posted 24 days ago
      |   view attached
    Hi All,

    NIST requests comments on Draft Federal Information Processing Standard (FIPS) 201-3, Personal Identity Verification (PIV) of Federal Employees and Contractors. This Standard defines common credentials and authentication mechanisms offering varying degrees of security for both logical and physical access applications. The draft revision proposes changes to FIPS 201-2, Standard for Personal Identity Verification of Federal Employees and Contractors, including:

    • expanding specification on the use of additional PIV credentials known as derived PIV credentials,
    • procedures for supervised remote identity proofing,
    • the use of federation as a means for a relying system to interoperate with PIV credentials issued by other agencies,
    • alignment with the current practice/policy of the Federal Government, and
    • specific changes requested by federal agencies and implementers.

    Request for Comments

    The draft of FIPS 201-3 is available for review and comment on the NIST Pages website at https://pages.nist.gov/FIPS201 and as a printable PDF.

    Comments on FIPS 201-3 must be received on or before February 1, 2021. Comments should be submitted on the project repository at https://github.com/usnistgov/FIPS201/issues. Comments may alternatively be sent to [email protected] preferably using the comment template

    ------------------------------
    Michael Roza CPA, CISA, CIA, MBA, Exec MBA
    ------------------------------