Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

NIST Releases final version of "Best Practices for Privileged User PIV Authentication"
April 21, 2016

NIST announces the final release of the Best Practices for Privileged User PIV Authentication. The paper is in response to the Office of Management and Budget (OMB)’s October 2015 Cybersecurity Strategy and Implementation Plan (and included in the Cyber National Action Plan (CNAP), requiring Federal agencies to use PIV credentials for authenticating privileged users. The paper outlines the risks of password-based single-factor authentication, explains the need for multi-factor PIV-based user authentication and provides best practices for agencies to implement PIV authentication for privileged users.

Created December 21, 2016, Updated June 22, 2020

NIST Releases final version of "Best Practices for Privileged User PIV Authentication" April 21, 2016

Related Pages

NIST Releases final version of "Best Practices for Privileged User PIV Authentication"
April 21, 2016