Identity
NIST Personal Identity Verification Program (NPIVP) Testing
Consult our experts. We are happy to support you.
In response to U.S. Homeland Security Presidential Directive 12 (HSPD-12), the National Institute of Standards and Technology (NIST) Computer Security Division initiated a program for improving the identification and authentication of U.S. federal employees and contractors accessing U.S. federal facilities and information systems.
The resulting Federal Information Processing Standard (FIPS) 201 defines the requirements for personal identification verification (PIV) products issued by U.S. Federal departments and agencies.
What atsec offers:
atsec US offers the following NPIVP services through its accredited Cryptographic Security Testing (CST) laboratory (NVLAP Lab Code #200658-0):
- Conformance testing of PIV applets (PIV card applications)
- Conformance testing of PIV middleware
Customers often also require FIPS 140-3 testing, which atsec US provides as well.
Authoritative websites:
More information:
Why our services are important to you:
Compliance with FIPS 201: Personal Identity Verification (PIV) of Federal Employees and Contractors mandates that heads of executive departments and agencies must have a program in place to ensure that identification products issued by their departments and agencies to federal employees and contractors meet the standard.
NIST has developed a program to ensure that products claiming to meet the standard do so, and compliant products are recorded on the NPIVP validated products list. Having your products tested and then included on the validated products list will facilitate sales of your product in the Federal arena.
Downloads:
Further information for your certification journey.
Vendor / Implementation | Certificate / Date |
---|---|
Thales IDPrime PIV 4.0 FIDO |
52 2024-08-02 |
ZTPass Inc ZTPass PIV Applet v.2. on NXP P71D600 |
51 2024-07-19 |
IDEMIA IDplug PIV Middleware (version 1.4) |
24 2024-01-02 |
IDEMIA ID-One PIV 243 on Cosmo X |
50 2024-01-02 |
HID Global Corporation HID Global Applet PIV End-Point v2.7.7 on Thales IDCore 3230 smart card |
49 2023-10-23 |
Still have questions?
Can’t find what you’re looking for? Let’s talk!
eIDAS Trust Service Provider Assessments
The eIDAS Regulation defines requirements for Trust Service Providers (TSP) and their systems providing Qualified Trust Services. atsec is a recognized test laboratory under eIDAS.
FIDO
FIDO, short for “Fast IDentity Online”, is a series of authentication standards that help reduce reliance on passwords. atsec China is an accredited security laboratory with the FIDO Alliance.
Cryptographic Algorithm Testing
Testing that cryptographic algorithms are implemented correctly is a prerequisite for FIPS 140-3 cryptographic module testing and NIAP Common Criteria evaluations.
The Information Security Provider
Read Our Latest Blog Articles
Learn the latest and greatest about information security. You’ll find insights and analyses of recent developments in technology and policy on our blog.
-
Strengthening IoT Security: The Role of SESIP Certification
SESIP is an important standard for IoT security, and atsec is now an approved laboratory for SESIP assessments.
-
ICMC 2024 Update
We enjoyed seeing our colleagues at ICMC24, and have updated this year’s animation with Stephan’s opening remarks.
-
The NCCoE’s Automation of the CMVP
The NCCoE presented an update for the Automated CMVP at ICMC 2024 – we have a bit more detail on atsec’s involvement!