Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

SP 800-63-3 (DRAFT)

Digital Authentication Guideline (Public Preview)

Date Published: May 8, 2016
Comments Due: September 7, 2016 (public comment period is CLOSED)
Email Questions to: dig-comments@nist.gov

Withdrawn: January 30, 2017

Superseded By: SP 800-63-3 (January 2017)
Supersedes: SP 800-63-3 (April 9, 2015)

Author(s)

Paul Grassi (NIST)

Announcement

[Updated: 11/30/2016]

NIST has initiated an effort to update Special Publication 800-63-2, Electronic Authentication Guideline. After a call for comments on SP 800-63-2 in 2015, NIST began drafting a revision of the Guideline, which is being reorganized into multiple parts:

SP 800-63-3    Digital Authentication Guideline
SP 800-63A    Enrollment and Identity Proofing Requirements
SP 800-63B    Authentication and Lifecycle Management
SP 800-63C    Federation and Assertions

SP 800-63-3 development will follow a four-phase approach:

Phase I - Initial Drafting (March-April) [completed]
Phase II - Public Preview (May-September) [completed]
Phase III - Public Comment (starting January 2017)
Phase IV - Document Finalization (mid-2017)

The Guideline is currently being prepared for the Public Comment phase (Phase III), comprising a traditional, extended public comment period.

Visit the links below to learn more:

Abstract

Control Families

Identification and Authentication;