Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Guideline for the Use of Advanced Authentication Technology Alternatives



James F. Dray Jr.


[Withdrawn October 19, 2015] This Guideline describes the primary alternative methods for verifying the identities of computer system users, and provides recommendations to Federal agencies and departments for the acquisition and use of technology which supports these methods. Although the traditional approach to authentication relies primarily on passwords, it is clear that password-only authentication often fails to provide an adequate level of protection. Stronger authentication techniques become increasingly more important as information processing evolves toward an open systems environment. Modern technology has produced authentication tokens and biometric devices which are reliable, practical, and cost- effective. Passwords, tokens, and biometrics can be used in various combinations to provide far greater assurance in the authentication process than can be attained with passwords alone.
Federal Inf. Process. Stds. (NIST FIPS) - 190
Report Number


computer security, cryptographic modules, cryptography, Federal Information Processing Standards Publication, telecommunication security


Dray, J. (1994), Guideline for the Use of Advanced Authentication Technology Alternatives, Federal Inf. Process. Stds. (NIST FIPS), National Institute of Standards and Technology, Gaithersburg, MD, [online], (Accessed July 22, 2024)


If you have any questions about this publication or are having problems accessing it, please contact

Created September 27, 1994, Updated August 17, 2020