[フレーム]
You are viewing this page in an unauthorized frame window.

This is a potential security issue, you are being redirected to https://csrc.nist.gov.

You have JavaScript disabled. This site requires JavaScript to be enabled for complete site functionality.

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

    Publications

NIST SP 800-73-5

Interfaces for Personal Identity Verification: Part 2 – PIV Card Application Card Command Interface

Documentation Topics

Date Published: July 2024

Supersedes: SP 800-73-4 (02/12/2016)

Author(s)

Hildegard Ferraiolo (NIST), Ketan Mehta (NIST), Salvatore Francomacaro (NIST), Ramaswamy Chandramouli (NIST), Sarbari Gupta (Electrosoft Services)

Abstract

FIPS 201 defines the requirements and characteristics of government-wide interoperable identity credentials. It specifies that these identity credentials must be stored on a smart card and that additional common identity credentials, known as derived PIV credentials, may be issued by a federal department or agency and used when a PIV Card is not practical. This document contains the technical specifications to interface with the smart card to retrieve and use the PIV identity credentials. The specifications reflect the design goals of interoperability and PIV Card functions. The goals are addressed by specifying a PIV data model, card edge interface, and application programming interface. Moreover, this document enumerates requirements for the options and branches in international integrated circuit card standards [ISO7816]. The specifications go further by constraining interpretations of the normative standards to ease implementation, facilitate interoperability, and ensure performance in a manner tailored for PIV applications.

FIPS 201 defines the requirements and characteristics of government-wide interoperable identity credentials. It specifies that these identity credentials must be stored on a smart card and that additional common identity credentials, known as derived PIV credentials, may be issued by a federal... See full abstract

FIPS 201 defines the requirements and characteristics of government-wide interoperable identity credentials. It specifies that these identity credentials must be stored on a smart card and that additional common identity credentials, known as derived PIV credentials, may be issued by a federal department or agency and used when a PIV Card is not practical. This document contains the technical specifications to interface with the smart card to retrieve and use the PIV identity credentials. The specifications reflect the design goals of interoperability and PIV Card functions. The goals are addressed by specifying a PIV data model, card edge interface, and application programming interface. Moreover, this document enumerates requirements for the options and branches in international integrated circuit card standards [ISO7816]. The specifications go further by constraining interpretations of the normative standards to ease implementation, facilitate interoperability, and ensure performance in a manner tailored for PIV applications.


Hide full abstract

Keywords

authentication; FIPS 201; identity credential; logical access control; on-card biometric comparison; Personal Identity Verification (PIV); physical access control; smart cards; secure messaging
Control Families

None selected

Documentation

Publication:
https://doi.org/10.6028/NIST.SP.800-73pt2-5
Download URL

Supplemental Material:
None available

Publication Parts:
SP 800-73-5
SP 800-73-5

Related NIST Publications:
FIPS 201-3

Document History:
09/27/23: SP 800-73-5 (Draft)
07/15/24: SP 800-73-5 (Final)

Topics

Security and Privacy

Personal Identity Verification

Technologies

smart cards

Laws and Regulations

Homeland Security Presidential Directive 12

AltStyle によって変換されたページ (->オリジナル) /