Trust Services
This page is for agencies to view the PKI service providers for government (PIV) and some business (B2G) credentials.
The services provided rely upon a level of trust to be established with the U.S. Government. This trust is managed through legal agreements; technology agreements; and regular auditing of the services, procedures, and practices. These agreements and audits are managed by the Federal Public Key Infrastructure (FPKI) Policy Authority.
For a list of all possible Certification Authorities in the FPKI, please review the FPKI Graph:
- Federal PKI Graph – Includes government agencies and commercial entities that may operate their own services.
* The GSA Trust Framework Solutions (TFS) initiative of certifying non-PKI business and consumer identity and credentials has been deprecated. For questions, please contact icam@gsa.gov.
Overview
Providers offer services related to identity proofing and credentialing of persons. These provider services specifically include issuing and managing person identity credentials for government employee and affiliate’s PIV and Common Access Card (CAC) credentials.
We’ve categorized the service providers given below by type of credential and what population is served:
- Government Credentials – Covers the FPKI Shared Service Providers (SSPs) that provide PKI services for the government PIV, CAC, and similar credentialing services
- Business Credentials – Covers PIV-Interoperable (PIV-I) and other PKI certificates
Government Credentials
These organizations operate as Federal PKI Shared Service Providers (SSPs) for federal agencies. All organizations operate Certification Authorities, are audited, and have and maintain a FISMA Authorization To Operate (ATO). To request a copy of a specific system’s ATO, please contact fpki@gsa.gov.
All of the Certification Authorities operated by these Federal PKI SSPs issue certificates for government employees and affiliated persons, including for PIV credentials.
Information on publicly trusted device certificates used for TLS (HTTPS) on the internet, recommendations on government configurations, and which PKI providers/Certification Authorities to use can be found at this HTTPS guidance website.
Organization | Customer Service | Tech Support |
Department of the Treasury | Daniel Wood
(202) 622-5144 |
Joe Gribble
(304) 480-7608 |
DigiCert Federal Shared Service Provider | Carly Backlund
(801) 770-1773 carly.backlund@digicert.com |
Tammy Green
(801) 441-7104 tammy.green@digicert.com |
Entrust Federal Shared Service Provider | Patrick Garritty
(703) 901-1388 |
support@entrustdatacard.com |
VerizonFederal Shared Service Provider | Russ Weiser
(801) 631-1685 |
Russ Weiser
(801) 631-1685 |
WidePoint Federal Shared Service Provider | Jason Holloway, Caroline Godfrey
(800) 816-5548 WCSC-Info@ORC.com |
Jim Manchester
(800) 816-5548 PKIPolicy@ORC.com |
Business Credentials
These organizations operate services for persons who are affiliated with a business, State, Local, Tribal, Territorial, or non-profit. These are used by a business person to digitally sign documents with the U.S. Government as a business representative or to authenticate to a small number of government applications.
For each, we identify whether the services include:
- PIV-I credentials
- Business-to-government digital signatures
Person PKI credentials issued by these services may be accepted by U.S. Government applications if the service and the demographics and technology in use (PKI) are appropriate for the mission.
Organization | Customer Service | Tech Support | Type of Person Identity Credentials |
Carillon Information Security | Marc St-Jacques
(844) 754-7484 x125 |
Marc St-Jacques
(844) 754-7484 x125 |
PIV-I Credentials |
DigiCert | Carly Backlund
(801) 770-1773 carly.backlund@digicert.com |
Tammy Green
(801) 441-7104 tammy.green@digicert.com |
Other PKI Credentials |
Entrust | Patrick Garritty
(703) 901-1388 |
support@entrustdatacard.com | PIV-I Credentials
Other PKI Credentials |
Exostar | info@exostar.com | (703) 793-7800 | Other PKI Credentials |
Foundation for Trusted Identity (FTI) | Customer Service Desk
(210) 703-1650 info@fti.org |
Sam Dibrell, Jr.
(210) 704-1650 |
PIV-I Credentials |
IdenTrust | IdenTrust Customer Support
Support@IdenTrust.com (800) 748-5360 |
IdenTrust Customer Support
Support@IdenTrust.com (800) 748-5360 |
PIV-I Credentials
Other PKI Credentials |
NextgenID | Dario Berini
(703) 929-5543 |
Keith Sheridan
(703) 615-1697 |
PIV-I Credentials
Other PKI Credentials |
Fortior Solutions | Tony Schroeder
(503) 924-5338 |
David Byrum
(503) 924-5236 |
PIV-I Credentials |
WidePoint | Jason Holloway, Caroline Godfrey
(800) 816-5548 WCSC-Info@ORC.com |
Jim Manchester
(800) 816-5548 PKIPolicy@ORC.com |
PIV-I Credentials
Other PKI Credentials |
Non-Government PKI Trust Framework
The FPKI Policy Authority reviews the PKI trust frameworks of a small number of non-government organizations to determine whether the policies, processes, legal agreements, privacy protections, security controls, and audit requirements are comparable with the U.S. Government Federal PKI requirements. If comparable, the organizations that manage their communities’ rules act as a PKI bridge..
These organizations do not manage identities or credentials for their community directly. Services that are certified and audited by these organizations provide federated PKI identity and credentials. These services are listed above in the Business credentials section.
Each PKI Trust Framework is identified by the primary communities served. To apply to be a certified PKI Trust Framework, please contact us with a government cross-mission business case.
PKI Bridges | Customer Service | Tech Support | Community |
CertiPath | Judith Spencer
(301) 974-4227 |
support@certipath.com
(855) 758-0075 |
Aerospace and Defense
International |
SAFE Identity | Eboni Akins
(703) 705-2920 |
info@makeidentitysafe.com
(703) 705-2920 |
Healthcare
International |
STRAC | Eric Epley
(210) 233-5850 |
Ryan Ahlfors
(210) 233-5850 |
State and Local |
TSCP, Inc. | Shauna Russell
(202) 769-9114 |
Steve Race
(703) 980-8915 |
Aerospace and Defense
International |
Page Reviewed/Updated: January 15, 2021