Authentication - Use of Multi-Factor Cryptographic Device, v1.0

Multi-factor cryptographic devices may be used for authentication and must adhere to the rules found within NIST 800-63-3B: 5.1.9

Assessment Steps (2)

1
Device Crypto Authenticators (DeviceCryptoAuthenticators)
Does the multi-factor cryptographic device adhere to NIST 800-63-3B: 5.1.9.1?
Artifact
A1
Provide evidence (e.g. policies, software documentation) that the use of multi-factor crypto device adheres to requirements.
2
Device Crypto Verifiers (DeviceCryptoVerifiers)
Does the multi-factor cryptographic device verifier adhere to NIST 800-63-3B: 5.1.7.2?
Artifact
A1
Provide evidence (e.g. policies, software documentation) that the use of multi-factor crypto device verifiers adheres to requirements.

Conformance Criteria (2)

C1
CSPs using multi-factor cryptographic device MUST adhere to NIST 800-63-3B: 5.1.9.1.
Citation
NIST SP 800-63B
Section 5.1.9.1
C2
CSPs using multi-factor cryptographic device verifiers MUST adhere to NIST 800-63-3B: 5.1.7.2.
Citation
NIST SP 800-63B
Section 5.1.9.2