Certifications
Homeland Security Presidential Directive (HSPD) 12
HSPD-12 was issued by President George W. Bush and endorsed by President Barack Obama. HSPD-12 provides a Policy for a Common Identification Standard for Federal Employees and Contractors. There are wide variations in the quality and security of identification used to gain access to secure facilities where there is potential for terrorist attacks. In order to eliminate these variations, U.S. policy is to enhance security, increase Government efficiency, reduce identity fraud, and protect personal privacy by establishing a mandatory, Government-wide standard for secure and reliable forms of identification issued by the Federal Government to its employees and contractors (including contractor employees). This directive mandates a federal standard for secure and reliable forms of identification.
Federal Information Processing Standards Publication (FIPS PUB) 201
FIPS 201 is a United States federal government standard that specifies Personal Identity Verification (PIV) requirements for Federal employees and contractors.
In response to HSPD-12, the NIST Computer Security Division initiated a new program for improving the identification and authentication of Federal employees and contractors for access to Federal facilities and information systems. FIPS 201 was developed to satisfy the technical requirements of HSPD-12, approved by the Secretary of Commerce, and issued on February 25, 2005.
FIPS 201 together with NIST SP 800-78 (Cryptographic Algorithms and Key Sizes for PIV) are required for U.S. Federal Agencies, but do not apply to US National Security systems.
The Government Smart Card Interagency Advisory Board has indicated that to comply with FIPS 201 PIV II, US government agencies should use smart card technology.
Underwriters Laboratory (UL-2050)
The United States Department of Defense developed a set of standards and guidelines for securing its classified material, information, and equipment to be developed, stored, or maintained by a government contractor. The standards are called the National Industrial Security Program Operating Manual or NISPOM. Underwriters Laboratories developed a set of standards that met and often surpass the standards laid out in the NISPOM. The result was Underwriters Laboratories 2050 or UL2050. Security companies, by virtue of its certification as a UL Issuer of 2050 Certificates, is authorized to consult, construct, inspect, monitor and certify a secure classified information facility (SCIF) within a specified radius of about a four-hour response time, or 200 miles. SEI is an issuer of UL 2050 certificates for intrusion detection systems.
The Smart Card Alliance Certified System Engineer ICAM PACS (CSEIP)
The Smart Card Alliance Certified System Engineer ICAM PACS (CSEIP) training and certification program provides advanced training for systems engineers on how to set-up and test E-PACS to align with government-wide specifications. This GSA-approved training program will provide the training and certification required for E-PACS engineers employed by commercial organizations that are looking to bid on GSA procurement agreements for access control systems. To ensure that procurements of approved E-PACS for GSA managed facilities are installed properly, GSA requires that all billable work performed on such systems be done using certified system engineers.