Digital Authentication Guideline (Public Preview)

Grassi, Paul

July 19, 2023: URLs for CSRC publication details pages have changed. Legacy URLs should automatically redirect to the new URLs. However, links to the actual publications have NOT changed (e.g., DOIs and PDFs on nvlpubs.nist.gov). Please send inquiries to csrc-inquiry@nist.gov.

NIST SP 800-63-3 (2nd Preliminary Draft)

Further development of this draft has ceased (January 30, 2017).

Digital Authentication Guideline (Public Preview)

Documentation Topics

Date Published: May 2016
Comments Due: September 7, 2016 (public comment period is CLOSED)
Email Questions to: dig-comments@nist.gov

Supersedes: SP 800-63-3 (04/09/2015)

Author(s)

Paul Grassi (NIST)

Announcement

[Updated: 11/30/2016]

NIST has initiated an effort to update Special Publication 800-63-2, Electronic Authentication Guideline. After a call for comments on SP 800-63-2 in 2015, NIST began drafting a revision of the Guideline, which is being reorganized into multiple parts:

SP 800-63-3    Digital Authentication Guideline
SP 800-63A    Enrollment and Identity Proofing Requirements
SP 800-63B    Authentication and Lifecycle Management
SP 800-63C    Federation and Assertions

SP 800-63-3 development will follow a four-phase approach:

Phase I - Initial Drafting (March-April) [completed]
Phase II - Public Preview (May-September) [completed]
Phase III - Public Comment (starting January 2017)
Phase IV - Document Finalization (mid-2017)

The Guideline is currently being prepared for the Public Comment phase (Phase III), comprising a traditional, extended public comment period.

Visit the links below to learn more:

Control Families

Identification and Authentication

Documentation

Publication:
SP 800-63-3 Development: Public Preview Site (GitHub)

Supplemental Material:
Development Milestones
Public Preview Summary (blog)

Document History:
05/08/16: SP 800-63-3 (Draft)

Topics

Security and Privacy

authentication, cryptography, public key infrastructure