FB pixel

NIST requests feedback on digital identity guidelines, including for behavioral biometrics and liveness



The National Institute of Standards and Technology has issued a call for comments on its digital identity guidelines contained in four documents.

The agency is seeking review and feedback on its Special Publication (SP) 800-63-3 Digital Identity Guidelines, SP 800-63A Enrollment and Identity Proofing, SP 800-63B Authentication and Lifecycle Management, and SP 800-63C Federation and Assertions, which collectively provide the controls and technical requirements for specified digital identity management assurance levels.

A note to reviewers provides specific topics NIST is seeking feedback on, including “Privacy enhancements and considerations for identity proofing, authentication, and federation, including new developments in techniques to limit linkability and observability for federation,” the continued use of SMS and PSTN as restricted authentication channels for out-of-band authenticators, and security and performance capabilities such as presentation attack detection or liveness checks for biometrics collection to support Identity Assurance Level 2 remote identity proofing. The use of behavioral characteristics and dynamic knowledge-based identity verification are also noted as topics on which NIST hopes to receive feedback.

The review is needed because of a policy memo from the Office of Management and Budget (OMB) directing federal agencies to boost their identity and access management capabilities and asking NIST to update its guidance, as well as changes to the NIST Cybersecurity Framework and Privacy Framework, and the OMB policy memoranda on COVID-19 response and mission continuity.

Comments are due by August 10, 2020.

The Slandala Company was recently approved for assessing compliance to NIST digital identity guidelines by the Kantara Initiative.

Article Topics

 |   |   |   |   |   |   | 

Latest Biometrics News


UN says law enforcement should not use biometrics to surveil protestors

Law enforcement agencies should not use biometric technology to categorize, profile or remotely identify individuals during protests, the United Nations…


How to explain the EUDI Wallet? Industry and citizens discuss Europe’s digital ID

The European Digital Identity (EUDI) Wallet is well on its way towards becoming a reality. To explain the major impact…


Decentralize face authentication for control, stronger protection: Youverse

The implementation method of biometric face authentication has become increasingly important in recent years due to the limitations of traditional…


Researchers develop display screens with biometric sensor capabilities

Traditional display screens like those built into smartphones require extra sensors for touch control, ambient light, and fingerprint sensing. These…


Meta, porn industry and Kansas governor weigh in on age verification

As Europe mulls how to restrict access to certain content for minors, Meta offers its own solution. Meanwhile, U.S. states…


As national U.S. data privacy law becomes more likely, critics emerge to point out flaws

The push for comprehensive privacy legislation in the U.S. is gaining momentum, as the proposed American Privacy Rights Act 2024…


Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Most Read From This Week

Featured Company

Biometrics Insight, Opinion

Digital ID In-Depth

Biometrics White Papers

Biometrics Events