Release of NIST Special Publication 800-157, Guidelines for Derived Personal Identity Verification (PIV) Credentials
Hildegard Ferraiolo, Larry Feldman, Gregory A. Witte
NIST has recently released Special Publication (SP) 800-157, Guidelines for Derived Personal Identity Verification (PIV) Credentials. Itto provide the technical details for a system by which mobile devices such as smart phones and tables are provisioned with PIV credentials, allowing the mobile device to take the place of the smart card for remote authentication to federal systems. This publication describes how a user with a valid PIV card could obtain a derived, integrated PIV token with associated credential using either hardware or software cryptographic modules. This approach is in response to the mobile device authentication credential outlined in Federal Information Processing Standard (FIPS) 201-2, Personal Identity Verification (PIV) of Federal Employees and Contractors, published in August 2013.