Skip to main content
closeup of man holding phone

A complete solution for NIST 800-157

Our popular Derived PIV/CAC credential solution enables true mobility for government organizations by providing secure, anywhere-anytime access to applications, work files and systems. Our complete offering includes deployment, user enrollment and credential management. It aligns with NIST SP 800-157 for compliance with the HSPD12/FIPS 201-2 Personal Identity Verification (PIV) requirements.

Features

plug icon
Integration with EMM Platforms

The Entrust derived PIV credential solution is fully integrated with leading EMM platforms.

tools icon
Self-Service Capabilities

A unique self-service module enables anywhere-anytime onboarding and credential management.

certificate icon
Trust from Bound Identities

The mobile smart credential is encoded with the same certificate types and use the same communication language used on the physical PIV smart cards.

phone pin icon
PIN Unlock, Reset via SMS

PIN unblock and reset features are easily self-managed through our self-service module or directly on the user's mobile device.

The Derived Credential Enrollment Process

Entrust Identity Enterprise can be configured for several different Derived PIV Credential activation methods, including:

  • QR code with password displayed
  • QR code with password via encrypted email
  • Email with password displayed
  • Email with password via encrypted email

These activation options provide secure workflows for generating and activating Derived PIV Credentials.

Use Cases & Authentication Methods

Derived credentials are leveraged to increase security in two ways. An advantage of our mobile smart credential application is that both methods of access can be easily configured and are enhanced through partnerships we maintain with other leaders in the mobile device industry.

  1. Enabling access to certificate-enabled mobile applications for authentication directly though the mobile device — removing the need for username and password
  2. Using the derived credential to provide logical access to a traditional workstation or laptop; similar to how a PIV smartcard is used for SCLO

Identity Portfolio

product grid image
(formerly IntelliTrust)
Identity as a Service

High assurance cloud-based workforce and consumer authentication. Credential-based access including passwordless authentication with unified SSO.

enterprise
(formerly IdentityGuard)
Identity Enterprise

High assurance workforce and consumer authentication. Credential-based authentication including physical smart card issuance. On-premises solution.

essential
(formerly SMS PASSCODE)
Identity Essentials

Best-in-class MFA and VPN protection for Windows-based workforces.

Our identity portfolio capabilities:

Authenticate

Streamline the onboarding of diverse users and devices with a wide range of technologies.

Authorize

Ensure both strong security and exceptional user experiences with these best-in-class technologies.

Transact and Manage

Continuously protect against advanced threats with technology from behavior analytics to fraud detection.

The identity portfolio suited to your authentication needs

Consumer

Digital Onboarding

Offer customers a liberating mobile onboarding experience.

Learn More
Consumer Banking

Attract and retain customers with best-in-class mobile and online banking services.

Learn More
Customer Portals

Give customers frictionless access to your portals—and build a great brand experience.

Learn More
CIAM Integration

Our portfolio integrates seamlessly with your Customer Identity Access Management (CIAM) strategies.

Learn More
Meet PSD2 Regulations

We have the trusted identity tools you need to help you be successful and in compliance.

Learn More