In response to the unprecedented level of cyber attacks aimed at compromising government IT infrastructure, the Federal Government has introduced new security standards called the NIST SP 800-171, to begin December 31, 2017. In particular, section 3.5, “Identification and Authentication,” represents one of the most substantial changes that will affect the greatest number contractors. A simple username and password will no longer suffice to authenticate an individual’s identity. The new standard requires multifactor authentication including something you have (a credential), something you know (a PIN) and something you are (biometrics).
This paper explores how the PIV-I credential with multifactor authentication can enable federal contractors to achieve compliance.
Key Takeaways:
- NIST SP 800-171 and why compliance is critical to federal government contractors, especially those that work with the Department of Defense
- Leveraging PIV-I credentialing with multifactor authentication as a defense against cyberattacks
- How PIV-I enables non-federal organizations to achieve security compliance.