Architecture Working Group Documents
05.26.2012- Version 1.0.1
XML Namespace Directive for Federal ICAM Working Groups
12.14.2006 - Version 1.0.1
HSPD-12 Shared Component Infrastructure Trust Model
12.04.2006 - Version 0.1.6
HSPD-12 Shared Component Architecture
11.12.2006 - Version 1.0.0
HSPD-12 Shared Component Infrastructure Technical Interoperability Model
11.08.2006 - Version 1.0.0
HSPD-12 Shared Component Infrastructure Interface Specification Common Elements
11.08.2006 - Version 1.0.0
Agency to System Infrastructure Provider Interface Specification
11.08.2006 - Version 1.0.0
Enrollment Service Provider to System Infrastructure Provider Interface Specification
08.02.2006 - Version 0.0.5
HSPD-12 Fingerprint Process Considerations & Research
04.20.2006
HSPD-12 Implementation Architectural Concept
Federal PKI Management Authority Documents
05.15.2012
FPKI Audit Review Letter
02.28.2012
Federal PKI Management Authority Fiscal Year 2011 Public Key Infrastructure Lead Auditor's Compliance Report
01.25.2012
Criteria and Methodology for Cross-Certification with the U.S. Federal Bridge Certification Authority (FBCA) or Citizen and Commerce Class Common Certification Authority (C4CA)
08.2011
Performance and Usage for the FPKIMA Platform Management Services
08.09.2011 - Version 1.0.0
Community Interoperability Test Environment (CITE) Participation Guidance
07.2011
Performance and Usage for the FPKIMA Platform Management Services
01.04.2011 - Security Accreditation Decision Letter (Authorization to Operate for 3 years)
Trust Infrastructure (also known as the Federal Public Key Infrastructure Architecture)
10.28.2009
Auditor Letter of Compliance, Compliance Audit Requirements
02.2007
Implementation Guidance for Relying Parties Using the Common Policy Root
03.03.2006
E-Mail Exchange Demo Document
10.2005
FPKI Architecture Technical Overview
03.03.2005
GSA Technical Supplement in support of OMB issued memorandum M-05-05
03.30.2004
Bridge-Enabling Web Servers
03.30.2004
PD-VAL Functional Requirements
PD-VAL Tiers
Validation Presentations
Federal PKI Policy Authority Documents
05.01.2012
Version 1.0.6 FPKI Certification Applicant Requirements
04.10.2012
Version 2.0.0 FPKI Compliance Audit Requirements
03.26.2012 - Version 4.1 Redacted
X.509 Certification Practice Statement (CPS) For The E-Governance Certification Authorities (EGCA)
03.26.2012 - Version 4.1 Redacted
FPKI CPS - X.509 Certification Practice Statement (CPS) For the Federal Bridge and Common Policy
02.21.2012
Version 1.0 FPKI Community Incident Management Process
01.04.2012
Version 1.0.0 FPKI Concept of Operations
12.13.2011
Shared Service Provider Repository Service Requirements
12.09.2011 - Version 2.25
X.509 Certificate Policy For The Federal Bridge Certification Authority (FBCA)
12.09.2011 - Version 1.17
X.509 Certificate Policy For The U.S. Federal PKI Common Policy Framework
12.06.2011
FPKI Security Controls Profile Briefing
09.20.2011 - Version 2.2
Federal PKI Policy Authority Charter for Operations
09.12.2011 - Version 1.2
By-Laws and Operational Procedures and Practices of the Federal PKI Policy Authority
09.09.2011 - Version 2.0
X.509 Certificate Policy for the E-Governance Certification Authorities
05.23.2011
Memorandum of Agreement (MOA) Template
05.21.2011 - Version 1.0
SHA-256 Transition Lessons Learned
04.18.2011 - Version 1.0
FPKI Security Controls Profile of Special Publication 800-53, Security Controls for PKI Systems
04.18.2011 - Version 1.0
FPKI Security Controls Profile of Special Publication 800-53A, Assessment Guidance for Security Controls in PKI Systems
03.08.2011
Personal Identity Verification Interoperable (PIV-I) Certification Process
01.18.2011 - Version 1.0
Federal PKI Community Transition to SHA-256 FAQ
10.06.2010
PIV-I Non Federal Issuers (NFI) PKI Application Template
08.25.2010 - Version 2.2
Citizen and Commerce Class Common Certificate Policy
07.14.2010
Cross Certification Application Template, Application for Cross Certification
04.23.2010
X.509 Certificate and CRL Extensions Profile for PIV-I Cards
03.16.2010 - Version 1.0.0
Triennial Compliance Audit Requirements Guidance
01.29.2010 - Version 1.0.0
The Realized Value of the Federal Public Key Infrastructure (FPKI)
11.20.2009
Version 1.0.0 SSL Inspection and Mutual TLS White Paper
10.28.2009
Auditor Letter of Compliance, Compliance Audit Requirements
07.16.2009
FBCA Supplementary Antecedent, In-Person Definition
06.15.2009
FBCA Commercial PKI Shared Service Provider Application Template
10.22.2008
Criteria Methodology for Cross-Certification with the U.S. Federal Bridge Certification Authority (FBCA) or Citizen and Commerce Class Common Certification Authority (C4CA)
12.07.2007
Implementing HSPD-12 using Legacy PKI Certificates
09.06.2007
Findings and Recommendations of the Industry/Government FPKI Think Tank
08.31.2007
FPKIPA Memorandum - Reuse of PKI Compliance Audit Results in Federal IT Systems Security Reviews and Certification and Accreditation Reviews
08.2007 - Version 1.0
FPKI Audit Working Group: NIST SP 800-53 Moderate Controls Comparison to FBCA CP Mapping Summary
08.06.2007
Illinois crosses the bridge (By William Jackson, Government Computer News)
06.06.2007 - Version 1.0.0
White Paper titled "Rich Attribute Exchange with PKI Certificates"
06.05.2007
Illinois leads nation in using "digital signatures" to speed services
03.2007
Agency Best Practices for Device Certificates
11.14.2006 - Policy Memo, Version 1.0
Reformatting Entity CP's into RFC 3647 Format
09.12.2006
Medium Hardware Policy for Federal Agencies
10.12.2005
Federal PKI X.509 Certificate and CRL Extensions Profile
03.11.2005
PKI Transaction Records Management Guidance
12.2003
The U.S. Federal PKI and the Federal Bridge Certification Authority
02.03.2003
White Paper titled "On the Reliability of Authentication of Identity"
10.08.2002 - Version 2.5
DRAFT Federal PKI Directory Profile
09.28.2001
FBCA Product Interoperability Guidelines
06.2000
The Evolving Federal Public Key Infrastructure
Government Smart Card Interagency Advisory Board Documents
03.2007 - Version 2.6
DoD Next Generation CAC Implementation Guide
08.14.2006 - Version 1.0
Framework for Inter-Agency Authentication of Federal PIV
04.21.2006
Army CAC/PKI Training Guide
03.21.2006 - Release 3.0
DoD CAC Middleware Requirements
03.01.2006
FIPS-201 Product/Service Approval Process Integration with Acquisition Strategy
02.2006
Sample Privacy Documents for Agency Implementation of HSPD12
12.20.2005 - Version 2.3
Technical Implementation Guidance: Smart Card Enabled Physical Access Control Systems
12.16.2005
Common Handheld RFI
12.05.2005
Understanding Biometric Technology IBIA
10.2005
Evaluation of NIST SP 800-73 End State Reference Implementation
09.28.2005 - Generic Draft for agencies to select from as needed
Background Information for Privacy Act System of Records Notice, HSPD-12
09.01.2005
National Capital Region First Responder Partnership Initiative
09.2005
Required IV&V Testing of the Common Access Card
08.16.2005
NSTC Subcommittee on Biometrics Frequently Asked Questions
08.2005
DoD Key & Card Management 101
07.2005
DoD Common Access Card (CAC) Issuance Process
ICAM Documents
05.24.2012 - Version 2.0.2
Personal Identity Verification in Enterprise Physical Access Control Systems DRAFT (PDF)
01.23.2012 - Version 1.0
BAE v2.0 Overview (PDF)
01.23.2012 - Version 1.0
BAE v2.0 Governance (PDF)
01.23.2012 - Version 1.0
SAML 2.0 Identifier and Protocol Profiles for BAE v2.0 (PDF)
01.23.2012 - Version 1.0
SAML 2.0 Metadata Profile for BAE v2.0 (PDF)
12.16.2011 - Version 1.0.2
Security Assertion Markup Language (SAML) 2.0 Web Browser Single Sign-on (SSO) Profile
12.08.11 Version 2
Federal Identity Credential and Access Management (FICAM) Roadmap and Implementation Guidance, Version 2 (7MB)
10.31.11 - Modernizing Federal Logical Access Control Systems (LACS) Brochure
Modernizing Federal Logical Access Control Systems (LACS)
09.21.11 - Modernizing Federal Physical Access Control Systems (PACS) Brochure
Modernizing Federal Physical Access Control Systems (PACS)
10.06.11 - Memorandum For Chief Information Officers Of Executive Departments And Agencies
Requirements for Accepting Externally-Issued Identity Credentials
09.19.2011 - Version 1.0
Trust Framework Provider Assessment Package Application
06.29.2011 - Version 1.0
Federal ICAM Privacy Guidance for Trust Framework Assessors and Auditors
06.28.2011 - Version 1.0.0
Federated Physical Access Control System (PACS) Guidance
05.21.2011 - Version 1.0
SHA-256 Transition Lessons Learned
03.08.2011 - Version 1.0
Personal Identity Verification Interoperability (PIV-I) Certification Process
02.22.2011, Version 1.1
PIV-I Test Plan is currently being revised. Please check back later.
02.03.2011 - OMB Memorandum M-11-11
Continued Implementation of HSPD-12 - Policy for a Common Identification Standard for Federal Employees and Contractors
01.18.2011 - Version 1.0
Federal PKI Community Transition to SHA-256 Frequently Asked Questions (FAQ)
12.2010 - NIST Special Publication 800-78-3
Cryptographic Algorithms and Key Sizes for Personal Identification Verification
07.2010 - Version 1.1
Personal Identity Verification (PIV) Interoperability For Non-Federal Issuers
06.28.2010 - Version 1.0
Federal Identity, Credential, and Access Management (FICAM) Personal Identity Verification Interoperable (PIV-I) Frequently Asked Questions (FAQ)
02.2010 - NIST Special Publication 800-73-3 Interfaces for PIV (4 Parts)
End Point PIV Card Application Namespace, Data Model & Representation (Part 1), PIV Card Application Card Command Interface (Part 2), PIV Client Application Programming Interface (Part 3), PIV Transitional Interfaces & Data Model Specification (Part 4)
01.29.2010
The Realized Value of the Federal Public Key Infrastructure (FPKI)
11.10.2009 - Version 1
Federal Identity, Credential, and Access Management (FICAM) Roadmap and Implementation Guidance
11.2009
Identity, Credential, and Access Management (ICAM) Roadmap Snapshot
09.04.2009
Federal ICAM Trust Framework Provider Adoption Process for Levels of Assurance 1, 2, Non-PKI 3
07.08.2009
Federal ICAM Identity Scheme Adoption Process
11.21.2008 - GSA Memorandum
Federal Child Care Center Workers Facility Access Credentialing
11.2008 - NIST Special Publication 800-116
A Recommendation for the Use of PIV Credentials in Physical Access Control Systems
06.2008 - NIST Special Publication 800-79-1
Guidelines for the Accreditation of Personal Identity Verification Card Issuers
05.2008
Fingerprint Exception Handling Guidelines
12.06.2006 - GSA Memorandum
Recognition of Certification and Accreditation of Certified PKI Shared Service Providers across Agency Boundaries
06.30.2006 - OMB Memorandum M-06-18
Acquisition of Products and Services for Implementation of HSPD-12
04.2006 - NIST Special Publication 800-63 Version 1.0.2
Electronic Authentication Guideline
03.2006 - FIPS PUB 201-1
Personal Identity Verification (PIV) of Federal Employees and Contractors
08.10.2005 - GSA Memorandum
Acquisitions of Products and Services for Implementation of HSPD-12
08.05.2005 - OMB Memorandum M-05-24
Implementation of HSPD-12 Policy for a Common Identification Standard for Federal Employees and Contractors
03.03.2005
GSA Technical Supplement in support of OMB issued memorandum M-05-05
03.2005 - Version 2.0.0
Password/PIN Entropy Tool
12.20.2004 - OMB Memorandum M-05-05
Electronic Signatures: How to Mitigate the Risk of Commercial Managed Services