Derived Credential Issuance and Lifecycle Management
The Unifyia Platform offers a cutting-edge solution for issuing and managing Derived PIV and Derived FIDO credentials, following the guidelines set forth in NIST SP 800-157 Rev. 1. This platform ensures secure, efficient, and compliant identity management for federal employees, contractors, and trusted partners, enabling seamless integration with existing PIV credentials.
Derived Credential Model for DPIV & DFIDO
This model services issuers that already have existing legacy PIV systems and want to deploy modern credentials.
What are Derived Credentials?
Derived PIV Credentials
Derived PIV (DPIV) credentials are digital certificates derived from an existing Primary PIV credential. They provide secure, flexible authentication for mobile devices and other use cases where the original PIV card may not be practical.
Derived FIDO Credentials
Derived FIDO (DFIDO) credentials extend the security of FIDO authentication to environments that require a connection to existing PIV credentials, ensuring compatibility and strong security for a variety of devices and applications.
Why Choose Unifyia for Derived Credentials?
The Unifyia Platform offers a comprehensive, secure, and compliant solution for managing derived credentials. Whether you're issuing DPIV or DFIDO credentials, Unifyia provides the tools you need to manage the entire lifecycle efficiently. With mobile-friendly features, flexible enrollment options, and rigorous compliance with NIST guidelines, Unifyia ensures that your organization can confidently navigate the complexities of modern identity management.
Derived Credential Issuance
Seamless Integration with Existing PIV Credentials
The Unifyia Platform streamlines the issuance of derived credentials by leveraging the status of existing PIV credentials. This ensures that derived credentials are securely linked to the original PIV, maintaining the integrity and trustworthiness of the authentication process.
Flexible Enrollment Options
The platform supports various enrollment methods, including in-person verification and remote issuance, allowing organizations to choose the most appropriate method based on their operational needs.
Comprehensive Verification Process
Unifyia ensures that all derived credentials undergo a thorough verification process, including document authentication, identity proofing, and biometric data capture. This process adheres to the stringent requirements outlined in NIST SP 800-157 Rev. 1, guaranteeing that only authorized users receive derived credentials.
Mobile-Friendly Credential Management
Derived PIV and DFIDO credentials can be issued directly to mobile devices, providing users with secure, on-the-go access to systems and applications. The platform integrates seamlessly with mobile authenticators, including Unifyia ID Wallet, ensuring convenience and security.
Lifecycle Management of Derived Credentials
Certificate Renewal and Maintenance
The Unifyia Platform offers robust tools for managing the lifecycle of derived credentials, including the renewal of digital certificates before they expire. This ensures continuous, uninterrupted access for users while maintaining the security of the credentials.
Credential Suspension and Reactivation
In case of a security incident or other concerns, derived credentials can be suspended or reactivated as needed. The platform provides administrators with the flexibility to manage these actions quickly and securely, minimizing the risk of unauthorized access.
Credential Revocation
Should a derived credential need to be revoked, the Unifyia Platform enables prompt and secure revocation, ensuring that compromised or obsolete credentials are removed from circulation, in line with NIST SP 800-157 Rev. 1 guidelines.
PIN and Security Management
Users can manage their PINs associated with derived credentials, including resetting or changing them securely through the platform. The platform also supports advanced security features such as PUK (Personal Unblocking Key) management, further enhancing the security of derived credentials.
Incident Reporting and Management
The platform includes comprehensive tools for reporting and managing incidents related to derived credentials, such as loss or theft. These tools allow organizations to quickly respond to and mitigate security risks, ensuring the ongoing integrity of their identity management processes.
Compliance with NIST SP 800-157 Rev. 1
The Unifyia Platform offers a comprehensive, secure, and compliant solution for managing derived credentials. Whether you're issuing DPIV or DFIDO credentials, Unifyia provides the tools you need to manage the entire lifecycle efficiently. With mobile-friendly features, flexible enrollment options, and rigorous compliance with NIST guidelines, Unifyia ensures that your organization can confidently navigate the complexities of modern identity management.