Credentialing requirements planning
Customers have different credentialing needs that are founded on business and security requirements. The following questionnaire helps to understand the credentialing needs of the customer. This information will be used to design the appropriate credentialing solution.
Credential needs questionnaire
Focus area | Question | Comment/Answer |
Issuance Model (PIV, PIV-I, CIV) | Is your organization issuing credentials to comply with PIV-I requirements? Or is this is corporate initiative. | |
Biometrics | Do biometrics need to be captured? Photo, Fingerprint, IRIS | |
Identity document capture | Do identity documents need to be captured at the time of enrollment? | |
Encryption | Will the credential be used to encrypt data? Will key escrow be required? | |
Physical Access | Will the credential be used for physical access control to open physical doors or locks | |
Physical Access | What PACS technologies (Prox, Seos, Iclass…) | |
Physical Access | Are different PACS technologies used within your environment? For example, so facilities use Prox while others user Seos?) | |
Physical Access | Are different PACS technologies used within your environment? For example, so facilities use Prox while others user Seos?) | |
Certificate Authority | Certificate Authority: Do you currently have an in house CA for certificate services? Or is a Shared Service Provider CA used? | |
Automated access control | Does the system need to automatically provision credential status information to rely on access control systems? | |
Visitor Management | Will the system be integrated with the visitor management capabilities? | |
Derived Token types | Will your organization require additional authentication tokens types for authentication where a PIV credential is not feasible? If yes, what kind of token? USB Virtual Smart Card Mobile Phone Mobile Push Technology (MFA) | |
Printing | Do you need to user's biographic (photo, name) on the credential? |