If you do not need a DoD-approved certificate, IdenTrust offers IdenTrust Global Common Certificates (IGC) that are cross-certified with the U.S. Federal Bridge Certification Authority (FBCA), enabling trust and interoperability with a wide range of systems and applications. Each individual IGC certificate includes both a certificate for authentication/digital signing and a certificate for encryption. The certificate pair enables a wide range of uses such as:

  • Authentication to networks and applications
  • Digitally signing Microsoft® Office, Adobe® and other types of documents
  • Digitally signing email and online transactions
  • Encrypting email and documents

IGC Medium Hardware certificates map to a U.S. FBCA Medium Hardware Assurance Level and are inclusive of LOA4 identity proofing. Certificate delivery is via your browser to a FIPS 140-2 Level 2 or higher cryptographic device (either a smart card or a USB Token which is obtained from IdenTrust when purchasing an IGC certificate). This certificate is “portable” meaning that it can be used on any computer where the utilities drivers have been installed. This IGC certificate can be purchased with a validity period of 1, 2 or 3 years.

IGC certificates are available via a self-service model in which you order your IGC certificate directly from the IdenTrust website. As a part of the ordering process, you will need to have your identity vetted by a notary or Trusted Agent. (A Trusted Agent may be at either IdenTrust or a Registration Agent at your organization; IdenTrust can provide further information on these options.) In the self-service model, most customers will use a notary for identity vetting.

You may purchase your IGC Medium Hardware certificate here:

See the bottom of this web page for Hardware Options and Pricing.

Step-by-Step Process

*Hardware certificates must be retrieved using Internet Explorer. Once retrieved, you may use your hardware certificate with any application that supports standard x.509 certificates.

Hardware Options and Pricing

As part of the on-line registration process for hardware certificates, IdenTrust provides an option to select hardware. All hardware offered by IdenTrust in conjunction with Certificates is validated to FIPS 140-2 Level 2 or higher for cryptographic functions. Tokens and smart cards do no expire and may be used for an unlimited number of certificate renewals. Following are hardware options and pricing:


USB Token


Smart Card


Smart Card plus USB Card Reader

Hardware (Smart Cards or USB Tokens) may be purchased with Certificates as part of the purchase process. Purchase of hardware includes a one-time license for middleware and drivers necessary for the hardware to function.