NIST Personal Identity Verification Program (NPIVP)

What is NPIVP?

As stated on the NIST CSRC website, NIST has established the NIST Personal Identity Verification Validation Program (NPIVP) to validate Personal Identity Verification (PIV) components required by Federal Information Processing Standard (FIPS) 201.

The objectives of the NPIVP program are:

  • to validate the compliance/conformance of PIV card applications with the specifications in NIST SP 800-73; and
  • to provides the assurance that PIV card applications that have been validated by NPIVP are interoperable.

All of the tests under NPIVP are handled by third-party test facilities that are accredited under the Cryptographic and Security Testing (CST) Laboratory Accreditation Program (LAP) established by the National Voluntary Laboratory Accreditation Program (NVLAP) and have extended their scope of accreditation under CST LAP to include the PIV Test Methods.

Source: https://csrc.nist.gov/projects/nist-personal-identity-verification-program

Thales PIV Solutions

Thales’s IDPrime PIV  card is a FIPS 140-2 and FIPS 201 standards-based card for government agencies, state and local government organizations to issue users credentials that the federal government can trust. The same card can be used for either a CIV or PIV-I-based deployment depending on company policies and use requirements. IDPrime PIV cards deliver high levels of security for identity management, interoperability and trust with federal agencies and departments as well as serving as a form of passwordless authentication.

SafeNet eToken Fusion NFC PIV

  • Support FIDO and PKI use cases
  • Available in USB-C
  • Streamlined login with NFC
  • FIDO2.1 certified
  • Help in complying with U.S. regulation:
    • Trade Agreement Act (TAA) compliant
    • FIPS 140-3 certification in progress
    • Personal Identity Verification (PIV) compliant
  • Made in France, Europe