Federal Records Management

AC 33.2015

August 12, 2015

MEMORANDUM TO FEDERAL AGENCY CONTACTS: Release of NARA Bulletin 2015-03, Guidance on Managing Digital Identity Authentication Records

We are pleased to announce the issuance of NARA Bulletin 2015-03 Guidance on Managing Digital Identity Authentication Records.

This Bulletin provides guidance for agencies on managing digital identity authentication related transactional records, such as digital certificates and Public Key Infrastructure (PKI) files, created or used in the course of agency business. It supersedes selected NARA’s records management guidance for PKI digital signature authenticated and secured transaction records.

This Bulletin will not interfere with agencies’ ability to use digital identity authentication measures that meet their business needs. Agencies must remove any digital identity authentication measures, such as passwords or encryption, from permanent records before transfer to NARA. NARA will coordinate the secure transfer of records to NARA with encryption that can be removed upon arrival in NARA.

Chief Records Officer
for the U.S. Government