IDPrime PIV (Personal Identity Verification) card

• Based on strong multi-factor PKI authentication, IDPrime PIV cards provide strong proof of cardholder identity that
  meets US Federal Government standards
• Digitally authenticates users identity for main information systems
• Identifies users' for a variety of physical access systems
• Digitally signs and encrypts eDocuments, email and files
• Works with Federal Government PIV-based IT infrastructures, and new and legacy physical access control systems
• Biometric fingerprint and iris delivers highest level of identity assurance

PIV card technology features a dual interface microprocessor chip for use with contact and contactless smart card readers, making it easily adaptable for a wide range of use cases, including physical access authentication. IDPrime PIV cards are certified FIPS 140-2, FIPS 201-2 and GSA APL Overall Security level: 2.

Most US Federal Government employees and subcontractors have a PIV card. Driven by the issuance of Homeland Security Presidential Directive 12 (HSPD-12) in 2004, the U.S. federal government has invested significant effort and resources in implementing robust, interoperable credentialing processes and technologies. The resulting standard, FIPS 201, Personal Identity Verification (PIV) for Federal employees and contractors, provides a framework of the policies, processes, and technology required to establish a strong, comprehensive identity credentialing program.

Government Contractors and Critical Infrastructure Organizations.

Implementing PIV-I identity credentialing and security systems helps enterprises, including those involved with the nation’s critical infrastructure, to significantly upgrade the security of their information systems and networks.
In addition, the fact that PIV-I credentials are trusted and interoperable with the federal government makes it much more efficient and secure for contractors to exchange information securely with their government clients. It also creates opportunities to improve business processes, such as digitally signing and encrypting contracts or specifications.

State and local governments can leverage the federal PIV program by using PIV-I as the basis for their identity
credentialing and information system security. Many point to the PIV standard as a way to achieve a more holistic
approach to issuing identity credentials and improving their own business processes and information systems
security. More than 16 states are currently planning or implementing some form of PIV-I or CIV (Commercial
Identity Verification) strategy. PIV-I credentials are being used in regional and national interoperability exercises
sponsored by the Federal Emergency Management Agency (FEMA) for First Responder Access Cards (FRAC). These
credentials, typically issued by state and local governments, identify emergency responders for secure access to remote
networks to pilot operations and access to Federal systems.

Technical Specifications

Memory IDPrime PIV 2.1 card is based on a Java Card platform (TOP DL v2.1) with 144 KB EEPROM memory and the PIV
2.1 applet loaded on the Java Card platform

Certifications FIPS 140-2, FIPS 201-2 and GSA APL Overall Security level: 2

• Roles, Services, and Authentication: Level 3
• Physical Security: Level 3
• EMI/EMC: Level 3
• Design Assurance: Level 3 SCP01 and SCP02 supported with scripting according to
  GP2.1.1 Amendment A SCP03 supported according to GP2.2
•  Amendment D ECC (256, 384 ) Asymmetric algorithms supported and FIPS certified
• Cryptographic algorithms Hash
  SHA-1; SHA-256, SHA-384, SHA-512
  Symmetric
  AES (128-, 192-, 256-bit)
  Asymmetric
  ECC (256-, 384-bit), RSA (1024-, 2048-bit) using an on-card security controller with key pair
  generation and Deterministic Random Bit Generator (DRBG)
• ISO specification compliance
  -ISO 7816 contact interface (T=0 ; T=1)
  -ISO 14443 contactless interface compatible with NFC (T=CL)
  - IU high coercivity magnetic stripe (optional)
• Other features
• Global PIN and local PIN
• Fingerprint and iris biometric containers
• Up to 20 Key archiving containers