If you have something to share on this subject, please get your comments in
(see below).

Regards,
Barbara McGowin

-----Original Message-----
From: compsecpubs@... [mailto:compsecpubs@...] On Behalf Of
Patrick O'Reilly
Sent: Wednesday, April 02, 2008 9:50 AM
To: Multiple recipients of list
Subject: Release of NIST Draft Special Publication 800-116


Draft Special Publication 800-116, A Recommendation for the Use of
PIV Credentials in Physical Access Control Systems

The National Institute of Standards and Technology (NIST) is pleased
to announce a draft publication SP 800-116, A Recommendation for the
Use of PIV Credentials in Physical Access Control Systems. This draft
provides best practice guidelines for integrating the PIV Card with
the physical access control systems (PACS) that authenticate the
cardholders in Federal facilities. This draft includes
recommendations for increasing the use of asymmetric key architecture
and credential validation. Federal agencies and private organizations
as well as individuals are invited to review the draft document and
submit comments using the comment template form provided on the
website. Comments should be submitted to PIV_comments@... with
"Comments on Public Draft SP 800-116" in the subject line. The
comment period closes at 5:00 EST (US and Canada) on May 12, 2008.

URL to draft:
http://csrc.nist.gov/publications/PubsDrafts.html#SP-800-116



For those of you that are interested in IPv6:
NIST Advanced Network Technologies Division has released DRAFT NIST
Special Publication 500-267, A Profile for IPv6

NIST Advanced Network Technologies Division has released NIST Special
Publication 500-267, A Profile for IPv6 in the U.S. Government -
Version 1.0 (PDF), which is now available for public comment. This
document is not part of the 800 Series Computer Security Division
Publications developed specifically for standards and guidelines,
including minimum requirements, for providing adequate information
security for all federal agency operations and assets as stated in
the Federal Information Security Management Act. Rather, the goal of
the profile, and associated proposed testing program, is to provide
the technical basis upon which long term USG IPv6 adoption plans and
policies can be based. It should be noted that the profile is not
intended to be applicable to near term uses (e.g., June 2008
requirements described in M-05-22
(http://www.whitehouse.gov/omb/memoranda/fy2005/m05-22.pdf). Instead,
as a forward looking strategic plan, the profiles recommendations are
targeted for 2010 and beyond.

URL to draft: http://www.antd.nist.gov/usgv6/usgv6-v1-draft2.pdf
Comments or questions can be sent to: sp500-267-comments@...