Qualified Products List

Applications and products that have undergone lab testing to confirm that they process identity credentials correctly

Think of a digital identity as a key. It’s not good enough to standardize a key alone – locks must be standardized, too, so that the key works correctly within it. To carry on the analogy, a screwdriver or a different key, shouldn’t open the lock. It is essential to know only the right key will open the lock. The QPL tests locks and keys to make sure they work together properly to achieve security, interoperability, and convenience.

Certified Credential Providers Comparison

Certified Credential Providers
Use Cases Ways to Use Your Digital Identity	Authentication	No
	Digital Signature	Yes
	Encryption	No
Human Assurance Digital Identities for People	Medium Hardware	Yes
	Medium Software	No
	Basic Hardware	No
	Basic Software	Yes
Device Assurance Digital Identities for Devices	Device Hardware	No
Device Assurance Digital Identities for Devices	Device Software	No
Organization Assurance Digital Identities for Organizations	Group Basic Hardware	No
	Group Basic Software	No
	Group Medium Hardware	No
	Group Medium Software	No
Advanced Credential Support Criteria that increase interoperability and compliance	Hardware Token	No
	RSS Support	Yes
	OCSP Support	Yes
Regulatory Compliance Criteria which satisfy regulatory requirements	EU Qualified	Yes
	21 CFR Part 11*	Yes
	21 CFR Part 1311 (EPCS)**	Yes
		See More

21 CFR Part 11* :

*See Industry Guidance to help organizations interpret 21 CFR Part 11 to help achieve compliance.

21 CFR Part 1311 (EPCS)** :

**Certified Credential Providers certified under this track offer certificates that meet the requirements defined in 21 CFR Part 1311.105(a)(2). Use the Certificate Checker Tool to see if the certificate you currently have meets EPCS requirements.

About the QPL

Learn More about the QPL

About DirectTrust Identity

Learn More