FBCA CP Section 3.2.3.1, Authentication Of Human Subscribers, Medium, v2.27
Profile of Medium level of assurance requirements for the Federal Bridge Certificate Authority (FBCA) Certificate Policy (CP), version 2.27, Section 3.2.3.1, Authentication Of Human Subscribers .
| Identifier | https://artifacts.trustmarkinitiative.org/lib/tips/fbca-cp-section-3.2.3.1_-authentication-of-human-subscribers_-medium/2.27/ | ||||
| Publication Date | 2021-02-04 | ||||
| Issuing Organization |
Trustmark Initiative (https://trustmarkinitiative.org/)
View Contact
|
||||
| Keywords | PIV-I, Security, Identity, Federal Bridge | ||||
| Legal Notice | This artifact is published by the Georgia Tech Research Institute (GTRI) as part of the Trustmark Initiative. This artifact and the information contained herein is provided on an "AS IS" basis, and GTRI disclaims all warranties, express or implied, including but not limited to any warranty that the use of the information herein will not infringe any rights or any implied warranties or merchantability or fitness for a particular purpose. In addition, GTRI disclaims legal liability for any loss incurred as a result of the use or reliance on the document or the information contained herein. |
Loading...
Trust Expression:
TD_IdentityVerificationTimeBeforeIssuingPKICertificates and TD_IdentityVerificationTimeBeforeIssuingPKICertificates.TimeWindow < 31 and ( TD_IdentityForPKICertificatesEstablishedInpersonBeforeRegistrationAuthorityRA or TD_IdentityForPKICertificatesEstablishedInpersonBeforeATrustedAgentOfTheRegistrationAuthorityRA or TD_IdentityForPKICertificatesEstablishedInpersonBeforeAnEntityCertifiedByAStateOrganization or TD_IdentityForPKICertificatesEstablishedInpersonBeforeAnEntityCertifiedByAFederalOrganization ) and TD_InformationProvidedDuringIdentityProofingIsVerifiedToEnsureLegitimacy and TD_InPersonAntecedentIsAcceptableForMeetingAnInPersonIdentityProofingRequirement and TD_FederalGovernmentissuedPictureIDRequiredForIdentityProofing and TD_CredentialsPresentedForIdentityProofingNotExpired and TD_IdentityofPersonPerformingIdentityVerificationForPKICertificateIssuanceIsRecorded and TD_SignedDeclarationsByPersonsPerformingIdentityVerificationForPKICertificateIssuance and TD_InpersonIdentityProofingRecordsUniqueIdentifyingNumbersFromApplicantsID and TD_InpersonIdentityProofingRecordsAFacsimileOfApplicantsID and TD_DateofIdentityVerificationIsRecordedForEachPKICertificateIssued and TD_SignedDeclarationsOfIdentityByPKICertificateApplicants and ( TD_REALIDActCompliantPictureIDRequiredForIdentityProofing or TD_TwoNonFederalGovernmentIDsRequiredForIdentityProofing )
References (17)
| TD Identity Verification Time Before Issuing PKI Certificates, v1.0 | |
|---|---|
| Description | Addresses requirements for identity being established no more than 30 days before initial certificate issuance for Medium Assurance. |
| ID | TD_IdentityVerificationTimeBeforeIssuingPKICertificates |
| Provider Reference | |
| TD Identity For PKI Certificates Established In-person Before Registration Authority (RA), v1.0 | |
|---|---|
| Description | Addresses requirements for in-person identity proofing before a PKI Registration Authority. |
| ID | TD_IdentityForPKICertificatesEstablishedInpersonBeforeRegistrationAuthorityRA |
| Provider Reference | |
| TD Identity For PKI Certificates Established In-person Before A Trusted Agent Of The Registration Authority (RA), v1.0 | |
|---|---|
| Description | Addresses requirements for in-person identity proofing before a Trusted Agent of a PKI Registration Authority. |
| ID | TD_IdentityForPKICertificatesEstablishedInpersonBeforeATrustedAgentOfTheRegistrationAuthorityRA |
| Provider Reference | |
| TD Identity For PKI Certificates Established In-person Before An Entity Certified By A State Organization, v1.0 | |
|---|---|
| Description | Addresses requirements for in-person identity proofing before a state-certified entity. |
| ID | TD_IdentityForPKICertificatesEstablishedInpersonBeforeAnEntityCertifiedByAStateOrganization |
| Provider Reference | |
| TD Identity For PKI Certificates Established In-person Before An Entity Certified By A Federal Organization, v1.0 | |
|---|---|
| Description | Addresses requirements for in-person identity proofing before a Federally certified entity. |
| ID | TD_IdentityForPKICertificatesEstablishedInpersonBeforeAnEntityCertifiedByAFederalOrganization |
| Provider Reference | |
| TD Information Provided During Identity Proofing Is Verified To Ensure Legitimacy, v1.0 | |
|---|---|
| Description | Addresses requirements for verifying information provided during identity proofing. |
| ID | TD_InformationProvidedDuringIdentityProofingIsVerifiedToEnsureLegitimacy |
| Provider Reference | |
| TD In-Person Antecedent Is Acceptable For Meeting An In-Person Identity Proofing Requirement, v1.0 | |
|---|---|
| Description | Addresses requirements for establishing that an organization accepts a prior in-person event for the purposes of meeting in-person identity proofing requirements. |
| ID | TD_InPersonAntecedentIsAcceptableForMeetingAnInPersonIdentityProofingRequirement |
| Provider Reference | |
| TD Federal Government-issued Picture ID Required For Identity Proofing, v1.0 | |
|---|---|
| Description | Addresses requirements for establishing that an organization requires a Federal Government-issued Picture I.D. for the purpose of identity proofing. |
| ID | TD_FederalGovernmentissuedPictureIDRequiredForIdentityProofing |
| Provider Reference | |
| TD Credentials Presented For Identity Proofing Not Expired, v1.0 | |
|---|---|
| Description | Addresses requirements for identity credentials presented for identity proofing to be unexpired. |
| ID | TD_CredentialsPresentedForIdentityProofingNotExpired |
| Provider Reference | |
| TD Identity of Person Performing Identity Verification For PKI Certificate Issuance Is Recorded, v1.0 | |
|---|---|
| Description | Addresses requirements for organizations to record the identity persons performing identity verification for PKI certificate issuance. |
| ID | TD_IdentityofPersonPerformingIdentityVerificationForPKICertificateIssuanceIsRecorded |
| Provider Reference | |
| TD Signed Declarations By Persons Performing Identity Verification For PKI Certificate Issuance, v1.0 | |
|---|---|
| Description | Addresses requirements that organizations record signed declarations by individuals performing identity verification for PKI certificate issuance. |
| ID | TD_SignedDeclarationsByPersonsPerformingIdentityVerificationForPKICertificateIssuance |
| Provider Reference | |
| TD In-person Identity Proofing Records Unique Identifying Number(s) From Applicant's ID, v1.0 | |
|---|---|
| Description | Addresses requirements for recording unique identifying number(s) from the ID(s) of PKI certificate applicants when performing in-person identity proofing. |
| ID | TD_InpersonIdentityProofingRecordsUniqueIdentifyingNumbersFromApplicantsID |
| Provider Reference | |
| TD In-person Identity Proofing Records A Facsimile Of Applicant's ID, v1.0 | |
|---|---|
| Description | Addresses requirements for recording a facsimile of the ID(s) of PKI certificate applicants when performing in-person identity proofing. |
| ID | TD_InpersonIdentityProofingRecordsAFacsimileOfApplicantsID |
| Provider Reference | |
| TD Date of Identity Verification Is Recorded For Each PKI Certificate Issued, v1.0 | |
|---|---|
| Description | Addresses requirements for recording the date that the identity of a PKI certificate applicant is verified. |
| ID | TD_DateofIdentityVerificationIsRecordedForEachPKICertificateIssued |
| Provider Reference | |
| TD Signed Declarations Of Identity By PKI Certificate Applicants, v1.0 | |
|---|---|
| Description | Addresses requirements that organizations record signed declarations of identity by PKI certificate applicants. |
| ID | TD_SignedDeclarationsOfIdentityByPKICertificateApplicants |
| Provider Reference | |
| TD REAL ID Act Compliant Picture ID Required For Identity Proofing, v1.0 | |
|---|---|
| Description | Addresses requirements for establishing that an organization requires a REAL ID Act compliant picture ID for the purpose of identity proofing. |
| ID | TD_REALIDActCompliantPictureIDRequiredForIdentityProofing |
| Provider Reference | |
| TD Two Non-Federal Government IDs Required For Identity Proofing, v1.0 | |
|---|---|
| Description | Addresses requirements for two Non-Federal Government I.D.s to be used for the purpose of identity proofing. |
| ID | TD_TwoNonFederalGovernmentIDsRequiredForIdentityProofing |
| Provider Reference | |
Sources (1)
| FBCA-CP | X.509 Certificate Policy For the Federal Bridge Certification Authority (FBCA), Version 2.27. December 2, 2013. |