Security Center


for secure identity solutions product security is a top priority

security-center

Product Security

The HID Global Product Security Reporting Center is a secure and structured mechanism for reporting potential security issues with HID Global products, including those products under all of HID's primary brands: HID®, ActivIdentity®, EasyLobby®, FARGO® and LaserCard®.

Reports submitted through the Product Security Reporting Center are investigated, assessed, and validated within the framework of HID Global’s security response process and industry standard practices. The HID Global Security Response Team defines any appropriate actions which may be required to mitigate potential security issues and to keep customers informed.

Product Security Response

After receiving a product security report, the HID Global Security Response Team will issue an acknowledgement to the reporting party. Throughout the investigation process, the HID Global Security Response Team will communicate as required with reporting parties for purposes of confirming and validating the exact nature of the reported issue.


Report a Vulnerability

HID Global strongly recommends that all security vulnerability claims be sent to the HID Security Response Team via email at secure@hidglobal.com using the HID Security Response PGP key. Note: HID Global encourages the use of this key for all sensitive information.

Please report any potential or real security vulnerability claim with any HID Global product to the HID Security Response Team secure@hidglobal.com.

Important Information to Include in your E-Mail report

  • First and last name
  • Company name
  • Contact phone number (optional)
  • Preferred e-mail contact
  • General description of vulnerability
  • Product containing vulnerability (hardware & software verisons), part numbers
  • Tools, hardware and other configurations required to trigger the event
  • Any security or service pack updates applied
  • Document instructions to reproduce the event
  • Sample code, proof of concept or executable used to produce event
  • Definition of how the vulnerability will impact a user including how the attacker could breach security on-site

HID Security Response PGP key

HID's hexadecimal PGP fingerprint:

AE39 3014 69EA 965A 0F6C 84B8 F6AF E172 DE1F 54A6

Visit PGP's Global Directory to look up HID's Key or copy it below:

-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: PGP Desktop 10.1.0 (Build 860)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=s2aU
-----END PGP PUBLIC KEY BLOCK-----