Identity
NIST Personal Identity Verification Program (NPIVP) Testing
Consult our experts. We are happy to support you.
In response to U.S. Homeland Security Presidential Directive 12 (HSPD-12), the National Institute of Standards and Technology (NIST) Computer Security Division initiated a program for improving the identification and authentication of U.S. federal employees and contractors accessing U.S. federal facilities and information systems.
The resulting Federal Information Processing Standard (FIPS) 201 defines the requirements for personal identification verification (PIV) products issued by U.S. Federal departments and agencies.
What atsec offers:
atsec US offers the following NPIVP services through its accredited Cryptographic Security Testing (CST) laboratory (NVLAP Lab Code #200658-0):
- Conformance testing of PIV applets (PIV card applications)
- Conformance testing of PIV middleware
Customers often also require FIPS 140-3 testing, which atsec US provides as well.
Authoritative websites:
More information:
Why our services are important to you:
Compliance with FIPS 201: Personal Identity Verification (PIV) of Federal Employees and Contractors mandates that heads of executive departments and agencies must have a program in place to ensure that identification products issued by their departments and agencies to federal employees and contractors meet the standard.
NIST has developed a program to ensure that products claiming to meet the standard do so, and compliant products are recorded on the NPIVP validated products list. Having your products tested and then included on the validated products list will facilitate sales of your product in the Federal arena.
Downloads:
Further information for your certification journey.
Vendor / Implementation | Certificate / Date |
---|---|
Thales IDPrime PIV 4.0 FIDO |
52 2024-08-02 |
ZTPass Inc ZTPass PIV Applet v.2. on NXP P71D600 |
51 2024-07-19 |
IDEMIA IDplug PIV Middleware (version 1.4) |
24 2024-01-02 |
IDEMIA ID-One PIV 243 on Cosmo X |
50 2024-01-02 |
HID Global Corporation HID Global Applet PIV End-Point v2.7.7 on Thales IDCore 3230 smart card |
49 2023-10-23 |
Still have questions?
Can’t find what you’re looking for? Let’s talk!
eIDAS Trust Service Provider Assessments
The eIDAS Regulation defines requirements for Trust Service Providers (TSP) and their systems providing Qualified Trust Services. atsec is a recognized test laboratory under eIDAS.
FIDO
FIDO, short for “Fast IDentity Online”, is a series of authentication standards that help reduce reliance on passwords. atsec China is an accredited security laboratory with the FIDO Alliance.
Cryptographic Algorithm Testing
Testing that cryptographic algorithms are implemented correctly is a prerequisite for FIPS 140-3 cryptographic module testing and NIAP Common Criteria evaluations.
The Information Security Provider
Read Our Latest Blog Articles
Learn the latest and greatest about information security. You’ll find insights and analyses of recent developments in technology and policy on our blog.
-
atsec’s Yi Mao Interviewed on the TopCyberPro Podcast
Written by Evan Barnett Dr. Yi Mao, CEO of atsec information security US, recently joined host Jim West on the TopCyberPro podcast to discuss the Common Criteria and FIPS standards. They went into the fundamentals and history of each standard before diving into the impacts and implications of…
-
atsec Presenting at the 2024 PCI Community Meeting
Written by Yan Liu atsec will participate in the PCI (Payment Card Industry) Security Standards Council 2024 Asia-Pacific Community Meeting held in Hanoi, Vietnam, on the 20th and 21st of November and will host a booth, as we have in previous years. atsec’s principal consultants Yan Liu and…
-
Exciting Milestone: First atsec Cybersecurity Certificates Issued for Common Criteria
Written by Rasma Mozuraite Araby We are thrilled to announce that atsec’s Certification Body (CB) officially issued its first cybersecurity certificates for Common Criteria. This achievement represents atsec’s readiness for the upcoming European Cybersecurity Certification Scheme (EUCC), positioning our Certification Body at the forefront of cybersecurity compliance in…