Date Published: November 2020
Comments Due: February 1, 2021 (public comment period is CLOSED)
Email Questions to:
piv_comments@nist.gov
This Standard defines common credentials and authentication mechanisms offering varying degrees of security for both logical and physical access applications. The draft revision proposes changes to FIPS 201-2, Standard for Personal Identity Verification of Federal Employees and Contractors, including:
The draft of FIPS 201-3 is available for review and comment on the NIST Pages website at https://pages.nist.gov/FIPS201 and as a printable PDF.
Comments on FIPS 201-3 must be received on or before February 1, 2021. Comments should be submitted on the project repository at https://github.com/usnistgov/FIPS201/issues. Comments may alternatively be sent to piv_comments@nist.gov preferably using the comment template.
All submissions, including attachments and other supporting materials, will become part of the public record and subject to public disclosure. NIST reserves the right to publish relevant comments, unedited and in their entirety. Relevant comments received by the deadline will be published electronically at https://github.com/usnistgov/FIPS201 without change or redaction, so commenters should not include information they do not wish to be posted. Personal information, such as account numbers or Social Security numbers, or names of other individuals, should not be included. Do not submit confidential business information or otherwise sensitive or protected information. Comments that contain profanity, vulgarity, threats, or other inappropriate language or content will not be posted or considered.
Access Control; Identification and Authentication; Planning; System and Communications Protection
Publication:
https://doi.org/10.6028/NIST.FIPS.201-3-draft
Download URL
Supplemental Material:
GitHub: review and comment
Comment template
Public Comments and Resolutions (pdf)
Posted comments
Federal Register Notice
FIPS 201-3 Virtual Workshop (Dec. 9)
Document History:
11/03/20: FIPS 201-3 (Draft)
01/24/22: FIPS 201-3 (Final)
access control, authentication, Personal Identity Verification, personnel security
Technologies Laws and Regulations