The .gov means it’s official.
Federal Government websites often end in .gov or .mil. Before sharing sensitive information, make sure you’re on a Federal Government site.

The site is secure.
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

Access Management - Authentication

Description: Verify that a claimed identity is genuine based on valid credentials.

Laws, Policies and Guidance related to Access Management - Authentication

6 USC 1523
E.O. 13467
OMB Circular A-130
Springer Memo
Credentialing Standards Memo 2020
M-19-03
M-22-09
NISTIR 8335
Mitigating Cloud Vulnerabilities
NISTIR 7966
Transition to Multi-factor Authentication
FICAM Architecture
PACS 101
PIV 101
NIST SP 800-63B
NIST SP 800-116
NIST SP 800-205
NIST SP 800-162
NIST SP 800-171
Risk Management Process for Federal Facilities
NISTIR 8344
Selecting Secure MFA
FACILITY ACCESS CONTROL
M-21-04
Cloud Identity Playbook

Looking for U.S. government information and services?

Visit USA.gov

This site is a collaboration between GSA and the Federal CIO Council. It is managed by the Identity Assurance and Trusted Access Division in the GSA Office of Government-wide Policy.

Edit this page