Purebred is the derived credential issuance system for DoD providing certificates that allow users to access DoD PK-enabled sites from their mobile devices. The Purebred mobile apps enable users to securely obtain certificates for use on mobile platforms including Apple iOS, Android, Windows UWP, and YubiKey.
The certificates are called “derived credentials” because the user’s identity is verified electronically by demonstrating possession and usage of their CAC rather than via traditional identity proofing processes such as an in-person documents check. Before a device can obtain derived credentials from the Purebred system, a Purebred Agent must enroll the device with the Purebred system and obtain a DoD PKI-issued device certificate that is used to secure communications between the Purebred system and the device.
Purebred Agent is a trusted role within the PKI with mobile-device-targeted privileges similar to a Local Registration Authority (RA). Device administrators must be trained and nominated for the role as described in the Purebred Agent Nomination Directions.
21 Feb 2019 21 Feb 2019This guide covers Purebred Agent frequently asked questions. (PDF Download) Date: 2/13/2019 | Size: 245 KB
30 Nov 2018"The Purebred Registration application for iOS is a component of the Purebred system that facilitates the issuance of derived PKI credentials to people who have been issued a Common Access Card (CAC). This document provides a privacy policy for use of the app in conjunction with the overall derived credential issuance system."
20 Oct 2020This brief provides Purebred’s goals, fundamentals, status, workflows, and technical details on its background.
30 Nov 2018 21 Feb 2019The DoD Cyber Exchange is sponsored by
Defense Information Systems Agency (DISA)
You are accessing a U.S. Government (USG) Information System (IS) that is provided for USG-authorized use only.
By using this IS (which includes any device attached to this IS), you consent to the following conditions:
· The USG routinely intercepts and monitors communications on this IS for purposes including, but not limited to, penetration testing, COMSEC monitoring, network operations and defense, personnel misconduct (PM), law enforcement (LE), and counterintelligence (CI) investigations.
· At any time, the USG may inspect and seize data stored on this IS.
· Communications using, or data stored on, this IS are not private, are subject to routine monitoring, interception, and search, and may be disclosed or used for any USG authorized purpose.
· This IS includes security measures (e.g., authentication and access controls) to protect USG interests – not for your personal benefit or privacy.
Notwithstanding the above, using this IS does not constitute consent to PM, LE or CI investigative searching or monitoring of the content of privileged communications, or work product, related to personal representation or services by attorneys, psychotherapists, or clergy, and their assistants. Such communications and work product are private and confidential. See User Agreement for details.