special publication 800 73 73 special publication 800
play

Special Publication 800- -73: 73: Special Publication 800 - PowerPoint PPT Presentation

May 11, 2023 •349 likes •541 views

Special Publication 800- -73: 73: Special Publication 800 Interfaces for Personal Identity Interfaces for Personal Identity Verification Verification Jim Dray PIV Implementers Workshop June 27, 2005 SP800- -73 Structure 73 Structure

  1. Special Publication 800- -73: 73: Special Publication 800 Interfaces for Personal Identity Interfaces for Personal Identity Verification Verification Jim Dray PIV Implementer’s Workshop June 27, 2005

  2. SP800- -73 Structure 73 Structure SP800 • Part 1: Architectural model • Part 2: Transition specification • Part 3: Endpoint specification

  3. Part 1 Part 1 • Migration issues o Part 2 provides an informative transition path for agencies with legacy card deployments o Part 3 is the mandatory endpoint specification • Common Data Model o Common to both Part 2 and Part 3 specifications

  4. Common Data Model Common Data Model • Mandatory elements: o card capability container o cardholder unique identifier (CHUID, ref PACS) o fingerprints (2) o security object • Optional elements: o printed information o facial image o digital signature certificate o key management certificate o card authentication certificate

  5. Part 2 (I) Part 2 (I) • Based on GSC-ISv2.1 (NISTIR 6887 2003) • Developed by the GSC Interagency Advisory Board • Basic Services Interface • 2-byte GSC-IS ‘object identifiers’ embedded in AID (PIX of RID) o container = card application • ‘Hard’ file system and VM card edges o No APDU mapping

  6. Part 2 (II) Part 2 (II) • Only a subset of GSC-IS APDUs are used • Differences from GSC-IS: o SELECT – CCC retrieval o VERIFY – PIN format o PRIVATE SIGN/DECRYPT- Chaining

  7. Part 3: Overview Part 3: Overview • Unified card edge • Technology neutral • Standards compliant • Standard PIV namespaces • Simple PIV card application specification to support FIPS 201 requirements

  8. Part 3: Functionality Part 3: Functionality • Read CHUID (physical access control) • Retrieve biometric objects (PIN protected) for off-card matching • Retrieve public key certificates • Challenge-response authentication (PKI) • Optional card authentication, key management, digital signature generation

  9. Part 3: Components Part 3: Components • Common Data Model • Client API • Card Interface • Security Model

  10. Part 3: Namespaces Part 3: Namespaces • PIV Registered Application Provider Identifier = ‘A0 00 00 03 08’ o PIX contains versioning information • OIDs at the client API o PIV arc of the Computer Security Object Register managed by NIST • BER-TLV at the card interface o Hardwired mapping to OIDs

  11. Part 3: Client API (I) Part 3: Client API (I) • Equivalent to GSC-IS BSI • Part 3 middleware is much simpler than GSC-IS due to elimination of APDU mapping mechanisms • GSC-IS manages the differences between cards below the client API. Part 3 makes all PIV cards functionally identical at the card interface, eliminating the need for this middleware management function.

  12. Part 3: Client API (II) Part 3: Client API (II) • pivConnect • pivPutData • pivDisconnect • pivGenerateKeyPr • pivSelectCardApp • pivLogIntoApp • pivGetData • pivLogoutOfApp • pivCrypt

  13. Part 3: Card Interface Part 3: Card Interface • SELECT • GENERAL AUTHENTICATE • GET DATA • VERIFY • PUT DATA • CHANGE • GENERATE REFERENCE ASYMMETRIC DATA KEY PAIR • RESET RETRY COUNTER

  14. Part 3: Security Model Part 3: Security Model • Access Control Rules o Access mode: Operation on a data object o Security condition: Boolean combination of security status indicators • Security status indicators are associated with each entity that can authenticate to the card • Can be global or local to the PIV application • Example: The cardholder’s PIN must be verified prior to reading a biometric object

  15. Part 3: Architectural Model Part 3: Architectural Model • Default application o May or may not be PIV application o Truncated AID may be used for selection • On-card format of data objects not specified o Format is only specified at the interface level o Objects are treated as ‘blobs’ to be parsed at application layer o Allows dynamic construction of objects

  16. PIV Card Management PIV Card Management • GSC-IAB Policy Group recommendation o No requirement for interoperability of card management systems across agencies o Common initial state for mandatory data objects • Some ‘credential initialization and administration’ hooks included • NIST is initiating a PIV card management study for informative purposes

  17. Summary Summary SP 800-73 Part 3 specifies a PIV card application that is straightforward to implement, technology neutral, and standards compliant. The PIV namespaces are internationally recognized and tightly managed by NIST to assure a high level of interoperability in the PIV domain. NIST has undertaken several activities to facilitate development of PIV products including publication of a reference implementation, creation of a PIV conformance test program, and a card management study.

  18. Contact Details Contact Details james.dray@nist.gov: GSC Chief Architect teresa.schwarzhoff@nist.gov: GSC Standards Program Manager william.barker@nist.gov: PIV Project Manager PIV Website: http://csrc.nist.gov/piv-project

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Green PLA nanocomposites designed with special end-use properties (PowerPoint Presentation)

Green PLA nanocomposites designed with special end-use properties (PowerPoint Presentation)

See discussions, stats, and author profiles for this publication at: https://www.researchgate.net/publication/266951909 Green PLA nanocomposites designed with special end-use properties (PowerPoint Presentation) Conference Paper May 2012

916 views • 37 slides
NIST Special Publication 800-137 Information Security Continuous Monitoring for Federal

NIST Special Publication 800-137 Information Security Continuous Monitoring for Federal

NIST Special Publication 800-137 Information Security Continuous Monitoring for Federal Information Systems and Organizations FISSEA 27 th Annual Conference Partners in Performance: Shaping the Future of Cybersecurity Awareness, Education, and

353 views • 31 slides
Instructive Feedback: Effects of a Presentation Variable Article in The Journal of Special

Instructive Feedback: Effects of a Presentation Variable Article in The Journal of Special

See discussions, stats, and author profiles for this publication at: https://www.researchgate.net/publication/249833577 Instructive Feedback: Effects of a Presentation Variable Article in The Journal of Special Education August 2003 DOI:

471 views • 12 slides
SPECIAL MOBILITY STRAND The European Commission support for the production of this publication

SPECIAL MOBILITY STRAND The European Commission support for the production of this publication

SPECIAL MOBILITY STRAND The European Commission support for the production of this publication does not constitute an endorsement of the contents which reflects the views only of the authors, and the Commission cannot be held responsible for any

585 views • 43 slides
SPECIAL MOBILITY STRAND The European Commission support for the production of this publication

SPECIAL MOBILITY STRAND The European Commission support for the production of this publication

SPECIAL MOBILITY STRAND The European Commission support for the production of this publication does not constitute an endorsement of the contents which reflects the views only of the authors, and the Commission cannot be held responsible for any

605 views • 60 slides
SPECIAL MOBILITY STRAND The European Commission support for the production of this publication

SPECIAL MOBILITY STRAND The European Commission support for the production of this publication

SPECIAL MOBILITY STRAND The European Commission support for the production of this publication does not constitute an endorsement of the contents which reflects the views only of the authors, and the Commission cannot be held responsible for any

642 views • 47 slides
government contracts special update A PUBLICATION OF VENABLE'S GOVERNMENT CONTRACTS TEAM March 12,

government contracts special update A PUBLICATION OF VENABLE'S GOVERNMENT CONTRACTS TEAM March 12,

government contracts special update A PUBLICATION OF VENABLE'S GOVERNMENT CONTRACTS TEAM March 12, 2009 AUTHORS President Obama Issues Memorandum to the Heads of Executive Departments and Paul Debolt

246 views • 3 slides
Special Publication 800-171 Protecting Controlled Unclassified Information in Nonfederal

Special Publication 800-171 Protecting Controlled Unclassified Information in Nonfederal

Special Publication 800-171 Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations Patricia Toth NIST MEP MEP Overview What is Information Security? Cyber- Personnel security Security

587 views • 29 slides
Will It Take Before We Act? Post-publication presentation of The Jakarta Post article Dr.

Will It Take Before We Act? Post-publication presentation of The Jakarta Post article Dr.

How Many AMR Deaths Will It Take Before We Act? Post-publication presentation of The Jakarta Post article Dr. Widjaja Lukito, Sp.GK, Ph.D Special Advisor to Minister of Health (2006-2009) Secretary to a Member of the Advisory Council of

535 views • 16 slides
EMA/EU-FDA Activity Update Vada A. Perkins HL7 SPL(R7) Publication HL7 SPL(R7) Publication:

EMA/EU-FDA Activity Update Vada A. Perkins HL7 SPL(R7) Publication HL7 SPL(R7) Publication:

EMA/EU-FDA Activity Update Vada A. Perkins HL7 SPL(R7) Publication HL7 SPL(R7) Publication: To be submitted by this Friday (ballot approved) SPL Release 7 as the data exchange format to support ISO IDMP Technical Specifications. The

472 views • 23 slides
special government contracts update A PUBLICATION OF VENABLE'S GOVERNMENT CONTRACTS GROUP

special government contracts update A PUBLICATION OF VENABLE'S GOVERNMENT CONTRACTS GROUP

special government contracts update A PUBLICATION OF VENABLE'S GOVERNMENT CONTRACTS GROUP Department of Justice Updated Guidance on Department of Justice Updated Guidance on AUTHORS Seeking Waivers of Attorney-Client Privilege Seeking Waivers

333 views • 4 slides
Clinical data Publication W ebinar Presented by Documents Access & Publication Service 23

Clinical data Publication W ebinar Presented by Documents Access & Publication Service 23

Clinical data Publication W ebinar Presented by Documents Access & Publication Service 23 March 2017 An agency of the European Union Clinical Data Publication (CDP) Guidance Introduction, scope, definitions External guidance on the

487 views • 19 slides
Authorship & Publication August 4, 2009 Authorship Publication Authorship Each author

Authorship & Publication August 4, 2009 Authorship Publication Authorship Each author

Authorship Publication Authorship & Publication August 4, 2009 Authorship Publication Authorship Each author should have made substantial contribution to research Each author should have participated sufficiently in the

306 views • 3 slides
Clinical data Publication W ebinar Presented by Documents Access & Publication Service 29

Clinical data Publication W ebinar Presented by Documents Access & Publication Service 29

Clinical data Publication W ebinar Presented by Documents Access & Publication Service 29 June 2017 An agency of the European Union EMA update on the guidance and related initiatives Currents status and upcom ing subm issions Follow

178 views • 16 slides
SPECIAL MOBILITY STRAND THE IMPORTANCE OF CONCRETE DURABILITY IN RC STRUCTURES ERION LUGA, PhD

SPECIAL MOBILITY STRAND THE IMPORTANCE OF CONCRETE DURABILITY IN RC STRUCTURES ERION LUGA, PhD

SPECIAL MOBILITY STRAND THE IMPORTANCE OF CONCRETE DURABILITY IN RC STRUCTURES ERION LUGA, PhD NOVI SAD 05.03.2019 Epoka University Department of Civil Engineering The European Commission support for the production of this publication does not

828 views • 60 slides
update A PUBLICATION OF VENABLE'S GOVERNMENT CONTRACTS TEAM February 2009 AUTHORS

update A PUBLICATION OF VENABLE'S GOVERNMENT CONTRACTS TEAM February 2009 AUTHORS

government contracts special update A PUBLICATION OF VENABLE'S GOVERNMENT CONTRACTS TEAM February 2009 AUTHORS GSA PROPOSES SEVERAL SIGNIFICANT CHANGES TO ITS FEDERAL SUPPLY Terry L. Elling

447 views • 5 slides
New England External Transaction Tool (NEXTT) Changes required for the new web services

New England External Transaction Tool (NEXTT) Changes required for the new web services

Disclaimer for Customer Training: ISO New England (ISO) provides training June 5, 2019 to enhance participant and stakeholder understanding. Not all issues and WebEx Broadcast requirements are addressed by the training. Consult the effective

551 views • 52 slides
Footloose: A Case for Physical Footloose: A Case for Physical Eventual Consistency and Eventual

Footloose: A Case for Physical Footloose: A Case for Physical Eventual Consistency and Eventual

Footloose: A Case for Physical Footloose: A Case for Physical Eventual Consistency and Eventual Consistency and Selective Conflict Resolution Selective Conflict Resolution Justin Mazzola Mazzola Paluska Paluska Justin David Saff Saff, Tom

498 views • 22 slides
Transportation Commission January 16, 2018 Public Comment Period 3 min per speaker. Agenda Item

Transportation Commission January 16, 2018 Public Comment Period 3 min per speaker. Agenda Item

Transportation Commission January 16, 2018 Public Comment Period 3 min per speaker. Agenda Item # 1 COMMI SSI ON MI NUTES: October 17, 2018 Meeting Agenda Item # 2 Updates to Receive Agenda Item # 3 Commission Updates Agenda Item # 4

686 views • 17 slides
INTERFACE Presented by Brian Begley www.encloud9.com Dynamics 365 Cloud Customer

INTERFACE Presented by Brian Begley www.encloud9.com Dynamics 365 Cloud Customer

DYNAMICS 365 UNIFIED INTERFACE Presented by Brian Begley www.encloud9.com Dynamics 365 Cloud Customer Relationship Management Silver 2014 - present 12 years experience working with small to mid sized businesses to modernize sales,

356 views • 10 slides
Project Plan Video Review Slack Integration The Capstone Experience Team TechSmith Neil Xu

Project Plan Video Review Slack Integration The Capstone Experience Team TechSmith Neil Xu

Project Plan Video Review Slack Integration The Capstone Experience Team TechSmith Neil Xu Conner Bean Nick Gilreath Noah Hirvela Tommie Henderson Department of Computer Science and Engineering Michigan State University Fall 2018 From

298 views • 14 slides
Chapter 2 Applications and Layered Architectures Protocols, Services & Layering Layers,

Chapter 2 Applications and Layered Architectures Protocols, Services & Layering Layers,

Chapter 2 Applications and Layered Architectures Protocols, Services & Layering Layers, Services & Protocols l The overall communications process between two or more machines connected across one or more networks is very complex l

1.32k views • 91 slides
Cross-layer Stack Design Framework in OMNeT++ OMNeT++ Community Summit Doanalp Ergen

Cross-layer Stack Design Framework in OMNeT++ OMNeT++ Community Summit Doanalp Ergen

Cross-layer Stack Design Framework in OMNeT++ OMNeT++ Community Summit Doanalp Ergen Wireless Systems, Networks and Cybersecurity Laboratory Department of Computer Engineering Middle East Technical University Ankara Turkey September 6,

229 views • 18 slides
26 August 2015 Purpose of Access Regulation Create com petitive environm ent Level playing

26 August 2015 Purpose of Access Regulation Create com petitive environm ent Level playing

I TU-MCMC I NTERNATI ONAL TRAI NI NG PROGRAM Regulating I nterconnection and Access 26 August 2015 Purpose of Access Regulation Create com petitive environm ent Level playing field am ong large and sm all operators Minim ise

131 views • 12 slides

More recommend