The Smart Card Alliance has issued some guidance for organizations wanting to issue PIV-I credentials. As states, corporations and other organizations look to secure logical and physical access many are looking at what the federal government has done.
Two publications from the federal government can help groups get started: Personal Identity Verification Interoperability (PIV-I) for Non-Federal Issuers 1, which was issued by the Federal CIO Council in May 2009, and PIV-I Frequently Asked Questions 2— provide states, local jurisdictions, and commercial organizations with standards and guidance.
Using PIV-I can help organizations make a cost effective decision on standards-based products, the paper states. “The maturity of the Federal standards, the availability of compliant commercial off-the- shelf (COTS) products, and the ability to use a single, interoperable, and secure PIV credential across multiple application areas can enable states, local jurisdictions, and enterprises to improve their security postures, infrastructures, and services for employees, contractors, businesses, and consumers.”
This white paper is intended to help state and local jurisdictions explore the following issues:
- The policies, processes, and technologies available to achieve interoperability
- The value of a single multi-purpose credential, including cost, security, and privacy benefits
- What state programs are suitable candidates for considering a move to an interoperable identity credential
- Future considerations for technology migration
The paper can be downloaded here.