FBCA CP Section 3.2.3.1, Authentication Of Human Subscribers, PIV-I Card Authentication, v2.27
Profile of PIV-I Card Authentication level of assurance requirements for the Federal Bridge Certificate Authority (FBCA) Certificate Policy (CP), version 2.27, Section 3.2.3.1, Authentication Of Human Subscribers .
| Identifier | https://artifacts.trustmarkinitiative.org/lib/tips/fbca-cp-section-3.2.3.1_-authentication-of-human-subscribers_-piv-i-card-authentication/2.27/ | ||||
| Publication Date | 2021-02-04 | ||||
| Issuing Organization |
Trustmark Initiative (https://trustmarkinitiative.org/)
View Contact
|
||||
| Keywords | PIV-I, Security, Identity, Federal Bridge | ||||
| Legal Notice | This artifact is published by the Georgia Tech Research Institute (GTRI) as part of the Trustmark Initiative. This artifact and the information contained herein is provided on an "AS IS" basis, and GTRI disclaims all warranties, express or implied, including but not limited to any warranty that the use of the information herein will not infringe any rights or any implied warranties or merchantability or fitness for a particular purpose. In addition, GTRI disclaims legal liability for any loss incurred as a result of the use or reliance on the document or the information contained herein. |
Loading...
Trust Expression:
TD_IdentityVerificationTimeBeforeIssuingPKICertificates and TD_IdentityVerificationTimeBeforeIssuingPKICertificates.TimeWindow < 31 and ( TD_IdentityForPKICertificatesEstablishedInpersonBeforeRegistrationAuthorityRA or TD_IdentityForPKICertificatesEstablishedInpersonBeforeATrustedAgentOfTheRegistrationAuthorityRA or TD_IdentityForPKICertificatesEstablishedInpersonBeforeAnEntityCertifiedByAStateOrganization or TD_IdentityForPKICertificatesEstablishedInpersonBeforeAnEntityCertifiedByAFederalOrganization ) and TD_InformationProvidedDuringIdentityProofingIsVerifiedToEnsureLegitimacy and TD_ElectronicFacialImageCollectedDuringIdentityProofingAndRegistrationForPKICards and TD_FormattingOfElectronicFacialImageCollectedDuringIdentityProofingAndRegistrationForPKICards and TD_NewFacialImageCollectedEachTimePKICardIsIssued and TD_TwoElectronicFingerprintsCollectedDuringIdentityProofingAndRegistrationForPKICards and TD_FormattingOfElectronicFingerprintsCollectedDuringIdentityProofingAndRegistrationForPKICards and TD_AcceptableIdentitySourceDocumentsForIdentityProofingMustBeFromFormI9OMBNo11150136EmploymentEligibilityVerification and TD_CredentialsPresentedForIdentityProofingNotExpired and TD_IdentityofPersonPerformingIdentityVerificationForPKICertificateIssuanceIsRecorded and TD_SignedDeclarationsByPersonsPerformingIdentityVerificationForPKICertificateIssuance and TD_InpersonIdentityProofingRecordsUniqueIdentifyingNumbersFromApplicantsID and TD_InpersonIdentityProofingRecordsAFacsimileOfApplicantsID and TD_DateofIdentityVerificationIsRecordedForEachPKICertificateIssued and TD_SignedDeclarationsOfIdentityByPKICertificateApplicants and TD_IdentitySourceDocumentsForIdentityProofingAreInOriginalForm and ( TD_StateGovernmentissuedPictureIDRequiredForIdentityProofing or TD_FederalGovernmentissuedPictureIDRequiredForIdentityProofing )
References (22)
| TD Identity Verification Time Before Issuing PKI Certificates, v1.0 | |
|---|---|
| Description | Addresses requirements for identity being established no more than 30 days before initial certificate issuance for Medium Assurance. |
| ID | TD_IdentityVerificationTimeBeforeIssuingPKICertificates |
| Provider Reference | |
| TD Identity For PKI Certificates Established In-person Before Registration Authority (RA), v1.0 | |
|---|---|
| Description | Addresses requirements for in-person identity proofing before a PKI Registration Authority. |
| ID | TD_IdentityForPKICertificatesEstablishedInpersonBeforeRegistrationAuthorityRA |
| Provider Reference | |
| TD Identity For PKI Certificates Established In-person Before A Trusted Agent Of The Registration Authority (RA), v1.0 | |
|---|---|
| Description | Addresses requirements for in-person identity proofing before a Trusted Agent of a PKI Registration Authority. |
| ID | TD_IdentityForPKICertificatesEstablishedInpersonBeforeATrustedAgentOfTheRegistrationAuthorityRA |
| Provider Reference | |
| TD Identity For PKI Certificates Established In-person Before An Entity Certified By A State Organization, v1.0 | |
|---|---|
| Description | Addresses requirements for in-person identity proofing before a state-certified entity. |
| ID | TD_IdentityForPKICertificatesEstablishedInpersonBeforeAnEntityCertifiedByAStateOrganization |
| Provider Reference | |
| TD Identity For PKI Certificates Established In-person Before An Entity Certified By A Federal Organization, v1.0 | |
|---|---|
| Description | Addresses requirements for in-person identity proofing before a Federally certified entity. |
| ID | TD_IdentityForPKICertificatesEstablishedInpersonBeforeAnEntityCertifiedByAFederalOrganization |
| Provider Reference | |
| TD Information Provided During Identity Proofing Is Verified To Ensure Legitimacy, v1.0 | |
|---|---|
| Description | Addresses requirements for verifying information provided during identity proofing. |
| ID | TD_InformationProvidedDuringIdentityProofingIsVerifiedToEnsureLegitimacy |
| Provider Reference | |
| TD Electronic Facial Image Collected During Identity Proofing And Registration For PKI Cards, v1.0 | |
|---|---|
| Description | Addresses requirements for an electronic facial image to be collected during identity proofing for PKI card issuance. |
| ID | TD_ElectronicFacialImageCollectedDuringIdentityProofingAndRegistrationForPKICards |
| Provider Reference | |
| TD Formatting Of Electronic Facial Image Collected During Identity Proofing And Registration For PKI Cards, v1.0 | |
|---|---|
| Description | Addresses formatting requirements for electronic facial images collected during identity proofing for PKI card issuance. |
| ID | TD_FormattingOfElectronicFacialImageCollectedDuringIdentityProofingAndRegistrationForPKICards |
| Provider Reference | |
| TD New Facial Image Collected Each Time PKI Card Is Issued, v1.0 | |
|---|---|
| Description | Addresses requirements for collecting new facial images each time a PKI card is issued. |
| ID | TD_NewFacialImageCollectedEachTimePKICardIsIssued |
| Provider Reference | |
| TD Two Electronic Fingerprints Collected During Identity Proofing And Registration For PKI Cards, v1.0 | |
|---|---|
| Description | Addresses requirements for electronic fingerprints to be collected during identity proofing for PKI card issuance. |
| ID | TD_TwoElectronicFingerprintsCollectedDuringIdentityProofingAndRegistrationForPKICards |
| Provider Reference | |
| TD Formatting Of Electronic Fingerprints Collected During Identity Proofing And Registration For PKI Cards, v1.0 | |
|---|---|
| Description | Addresses formatting requirements for electronic fingerprints collected during identity proofing for PKI card issuance. |
| ID | TD_FormattingOfElectronicFingerprintsCollectedDuringIdentityProofingAndRegistrationForPKICards |
| Provider Reference | |
| TD Acceptable Identity Source Documents For Identity Proofing Must Be From Form I-9, OMB No. 1115-0136, Employment Eligibility Verification, v1.0 | |
|---|---|
| Description | Addresses requirements for identity source documents used for identity proofing to be from the list of acceptable documents included in Form I-9, OMB No. 1115-0136, Employment Eligibility Verification. |
| ID | TD_AcceptableIdentitySourceDocumentsForIdentityProofingMustBeFromFormI9OMBNo11150136EmploymentEligibilityVerification |
| Provider Reference | |
| TD Credentials Presented For Identity Proofing Not Expired, v1.0 | |
|---|---|
| Description | Addresses requirements for identity credentials presented for identity proofing to be unexpired. |
| ID | TD_CredentialsPresentedForIdentityProofingNotExpired |
| Provider Reference | |
| TD Identity of Person Performing Identity Verification For PKI Certificate Issuance Is Recorded, v1.0 | |
|---|---|
| Description | Addresses requirements for organizations to record the identity persons performing identity verification for PKI certificate issuance. |
| ID | TD_IdentityofPersonPerformingIdentityVerificationForPKICertificateIssuanceIsRecorded |
| Provider Reference | |
| TD Signed Declarations By Persons Performing Identity Verification For PKI Certificate Issuance, v1.0 | |
|---|---|
| Description | Addresses requirements that organizations record signed declarations by individuals performing identity verification for PKI certificate issuance. |
| ID | TD_SignedDeclarationsByPersonsPerformingIdentityVerificationForPKICertificateIssuance |
| Provider Reference | |
| TD In-person Identity Proofing Records Unique Identifying Number(s) From Applicant's ID, v1.0 | |
|---|---|
| Description | Addresses requirements for recording unique identifying number(s) from the ID(s) of PKI certificate applicants when performing in-person identity proofing. |
| ID | TD_InpersonIdentityProofingRecordsUniqueIdentifyingNumbersFromApplicantsID |
| Provider Reference | |
| TD In-person Identity Proofing Records A Facsimile Of Applicant's ID, v1.0 | |
|---|---|
| Description | Addresses requirements for recording a facsimile of the ID(s) of PKI certificate applicants when performing in-person identity proofing. |
| ID | TD_InpersonIdentityProofingRecordsAFacsimileOfApplicantsID |
| Provider Reference | |
| TD Date of Identity Verification Is Recorded For Each PKI Certificate Issued, v1.0 | |
|---|---|
| Description | Addresses requirements for recording the date that the identity of a PKI certificate applicant is verified. |
| ID | TD_DateofIdentityVerificationIsRecordedForEachPKICertificateIssued |
| Provider Reference | |
| TD Signed Declarations Of Identity By PKI Certificate Applicants, v1.0 | |
|---|---|
| Description | Addresses requirements that organizations record signed declarations of identity by PKI certificate applicants. |
| ID | TD_SignedDeclarationsOfIdentityByPKICertificateApplicants |
| Provider Reference | |
| TD Identity Source Documents For Identity Proofing Are In Original Form, v1.0 | |
|---|---|
| Description | Addresses requirements for an organization to require identity source documents used for identity proofing to be in their original form. |
| ID | TD_IdentitySourceDocumentsForIdentityProofingAreInOriginalForm |
| Provider Reference | |
| TD State Government-issued Picture ID Required For Identity Proofing, v1.0 | |
|---|---|
| Description | Addresses requirements for establishing that an organization requires a State Government-issued Picture I.D. for the purpose of identity proofing. |
| ID | TD_StateGovernmentissuedPictureIDRequiredForIdentityProofing |
| Provider Reference | |
| TD Federal Government-issued Picture ID Required For Identity Proofing, v1.0 | |
|---|---|
| Description | Addresses requirements for establishing that an organization requires a Federal Government-issued Picture I.D. for the purpose of identity proofing. |
| ID | TD_FederalGovernmentissuedPictureIDRequiredForIdentityProofing |
| Provider Reference | |
Sources (1)
| FBCA-CP | X.509 Certificate Policy For the Federal Bridge Certification Authority (FBCA), Version 2.27. December 2, 2013. |