Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Guidelines for Derived PIV Credentials and PIV Federation: SP 800-157r1 and SP 800-217 Available for Public Comment
November 14, 2024

The final public drafts (fpd) of NIST Special Publication (SP) 800-157r1 (Revision 1), Guidelines for Derived Personal Identity Verification (PIV) Credentials, and SP 800-217, Guidelines for Personal Identity Verification (PIV) Federation, are now available for public review and comment. 

  • SP 800-157r1 fpd details the expanded set of derived PIV credentials in a variety of form factors and authenticator types, as envisioned in OMB Memoranda M-19-17 and M-22-09 and subsequently outlined in FIPS 201-3
  • SP 800-217 fpd details the cross-domain and interagency use of the derived PIV credentials using federation protocols.

Both guidelines address the comments received on the 2023 initial public drafts and align with the recently published second public draft of SP 800-63-4Digital Identity Guidelines.

The public comment period for both final drafts are open through January 10, 2025. See the publication details for SP 800-157r1 and SP 800-217 to download the drafts and find instructions for submitting comments. Comments should be submitted to piv_comments@nist.gov. Reviewers are encouraged to comment on all or parts of the publications using the comment template that is available on the publication details page. Comments received in response to this request will be posted online after the due date. Submitters’ names and affiliations (when provided) will be included, while contact information will be removed. Please direct questions and comments to piv_comments@nist.gov.

Created November 13, 2024, Updated November 14, 2024