News and Events

October 03, 2017

The National Cybersecurity Center of Excellence at the National Institute of Standards and Technology has released a draft cybersecurity guide on the authentication of mobile device users with personal identity verification credentials.

The draft, released Sept. 29, is the latest version of the NIST Cybersecurity Practice Guide Special Publication 1800-12 on “Derived Personal Identity Verification Credentials.” It aims to provide guidance on how to secure federal systems that do not currently require PIV credentials for access, such as mobile devices.

August 01, 2017

Route1 Inc., a world-leader in secure data protection technologies and user authentication for government and enterprise, today announced that its wholly-owned subsidiary Route1 Security Corporation is working with the National Cybersecurity Center of Excellence (NCCoE) in the National Cybersecurity Center of Excellence Derived Personal Identity Verification Credentials Building Block to develop practical, interoperable cybersecurity approaches that address the real-world needs of complex Information Technology (IT) systems.

June 19, 2017

NCCoE security engineer Bill Fisher will be presenting a session on NCCoE projects on June 19 from 9am to 12pm at the Cloud Identity Summit. Presentations will include overviews of the Mobile Application Single Sign-On project and the Multifactor Authentication for e-Commerce project. NCCoE security engineer Christopher Brown will present a deeper dive on the NCCoE's Derived PIV Credentials project on June 22 at 11:15am. The summit brings together the best of industry and enterprise presenters and experts to share insights and to synthesize new ideas. The summit will be held from June 19-22 at the Sheraton Grand...

May 09, 2017

NCCoE security engineer Chris Brown will present at a roundtable discussion at MobileIron Live on Wednesday, May 10 from 3:30p.m. to 5p.m. In this session, he will demonstrate how derived PIV credentials can be added to mobile devices for remote authentication to information technology systems in operational environments while meeting information security policy guidelines.

April 28, 2017

The effort to provide government workers who use mobile devices with personal identity verification credentials is picking up momentum, with programs in both the civilian and military sectors starting to deliver on earlier promises. NIST, for example, released guidelines for derived PIV credentials nearly two years ago, basically an update to Special Publication 800-157, which describes ways to implement credentials on mobile devices. More recently, the Derived PIV Credentials Project  from NIST’s National Cybersecurity Center of Excellence (NCCoE) will build on SP 800-157 and describe practice...

April 19, 2017

MobileIron (MOBL), the security backbone for the digital enterprise, and Entrust Datacard, a leader of trusted identity and secure transaction technologies, today announced that their joint derived credentials solution, MobileIron Derived Credentials with Entrust IdentityGuard Mobile Smart Credential, will be included in an upcoming project by the National Institute of Standards and Technology's (NIST) National Cybersecurity Center of Excellence (NCCoE) on Derived Personal Identity Verification (PIV) Credentials.

February 09, 2017

The National Cybersecurity Center of Excellence (NCCoE), a part of the National Institute for Standards and Technology (NIST), will demonstrate its current projects in San Francisco Feb. 13-17 at the RSA Conference and Orlando Feb 19-23 at the Healthcare Information and Management Systems Society Annual Conference & Exhibition (HIMSS17).

Individuals and organizations interested in learning more about the NCCoE’s work and how they can participate are encouraged to visit the booth and attend the presentations and demonstrations listed below.

RSA Conference: February 13-17, 2017

October 11, 2016

The NCCoE is currently working on a project which aims to explore and implement commercial off-the-shelf solutions that demonstrate derived PIV credential issuance, lifecycle management, and usage. On October 12, 2016, the NCCOE will host a workshop to present the current direction of the Derived PIV Credentials project (including a high level architecture and current technology partners) and to understand stakeholders’ implementations, challenges, and desired usage.

June 05, 2016

Join government and security executives and industry leaders in Washington, D.C. for a one-day showcase featuring comprehensive coverage of efforts toward strong authentication technology in government identity programs. NCCoE Senior Security Engineer Bill Newhouse will participate in a panel session on Derived Credentials at 11am. 

May 08, 2016

Today GOTrust Technology Inc. (GO-Trust) announced it is collaborating with the National Cybersecurity Center of Excellence (NCCoE) on its Derived Personal Identity Verification (Derived PIV) Credentials project. The NCCoE brings together people from industry, government agencies, and academia to address cybersecurity challenges of national importance. The NCCoE collaborates with industry to identify the nation’s most pressing cybersecurity issues, generates a detailed technical description of each issue, and works with technology vendors to develop a standards-based example solution to address those issues.

August 13, 2015

Today's Federal Register contains notices inviting technology vendors to collaborate with the NCCoE on three new projects to provide mobile device security, attribute based access control, and derived personal identity verification (PIV) credentials for mobile devices. Commercially available and open source products will be the modules in end-to-end example solutions to these challenges. All collaborators will enter into a Cooperative Research and Development Agreement (CRADA; see an example) with NIST in order to participate in a consortium for each build team. The projects will result in NIST Cybersecurity Practice Guides that show organizations how they can adopt these or similar capabilities.