Call for Comments on the Initial Public Draft of SP 800-217: Guidelines for the Use of Personal Identity Verification (PIV) Credentials with Federation
NIST requests comments on the initial public draft of Special Publication 800-217, Guidelines for the Use of Personal Identity Verification (PIV) Credentials with Federation. This publication complements FIPS 201-3, which defines the requirements and characteristics of government-wide interoperable identity credentials used by federal employees and contractors. The draft guidelines in SP 800-217 provide technical requirements on the use of federated PIV identity and the use of assertions to implement PIV federations backed by PIV identity accounts and PIV credentials.
A companion document, the initial public draft of SP 800-157r1 Guidelines for Derived PIV Credentials, is also available for public comment. That draft provides revised guidelines for the issuance and maintenance of authenticators used as derived PIV credentials.
NIST requests that all comments be submitted by 11:59pm Eastern Time on April 21, 2023. Please submit your comments to piv_comments@nist.gov. See the Note to Reviewers section below for specific topics about which NIST is seeking your feedback. NIST will review all comments and make them available at the NIST Computer Security Resource Center website. Commenters are encouraged to use the comment template provided with the document announcement.
Reviewers are encouraged to comment and suggest changes to the text of this draft. A web-based version of this draft document, along with a Note to Reviewers with specific topics about which NIST is seeking feedback, is available at https://pages.nist.gov/800-217/.
This repository, used for development of SP 800-217, and the associated website, are available as a resource for those who prefer to view the documents in HTML form or who wish to view the original Markdown. Issues have been disabled on this repository as public comments should be submitted via the the email address provided above.