What are the primary requirements for an agency to implement FIPS 201?
The FIPS 201 requires issuance of identity credentials that consist of public key infrastructure (PKI) and biometrics technology on a smart card. The high-level requirements as specified in FIPS 201, in accordance with HSPD 12, are as follows: identify the facilities, systems, and other applications that will use the PIV standard; obtain the services of an accredited PIV card issuer; review and revise procedures for PIV card applicants to provide acceptable identity source documents (i.e., OPM I-9) and complete PIV card application; obtain services for capturing biometric information as specified in the FIPS 201; obtain PIV card readers with biometric readers as needed; procure cards, readers, and PKI services conforming to FIPS 201; enable applications to use the PIV card; and operate and maintain a PIV card authentication and personal identity verification system.
Related Questions
- What are the requirements for an EMS System, Agency, or Specialty Care Transport Program (SCTP) to implement Airway, Drug Assisted Intubation (Often referred to as RSI)?
- What is the States role in overseeing agency DBA compliance? Do they include reporting and recordkeeping requirements?
- What are the requirements for a private employment agency license?
