Presentation is loading. Please wait.

Presentation is loading. Please wait.

PIV Data Model Testing Ketan Mehta March 3, 2006.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "PIV Data Model Testing Ketan Mehta March 3, 2006."— Presentation transcript:

1 PIV Data Model Testing Ketan Mehta mehta_ketan@nist.gov March 3, 2006

2 Agenda PIV Test Environment Test Methodology Test Areas Schedule

3 PIV Client Application Programming Interface PIV Card Command Calls Card Reader Driver Card Reader PIV Card Application PIV Data Model PIV Card Command Interface PIV MIDDLEWARE (SP 800-73) Host PC Smart Card Reader PIV CARD (FIPS 201, SP 800-73, SP 800-76, SP 800-78) Test Toolkit Application PIV Test Environment

4 Agenda Test Methodology Test Areas Schedule

5 InputsProcessOutputs FIPS 201 SP 800-73 SP 800-76 SP 800-78 Derived Test Requirements & Test Assertions Lab Testing: Conformance to SP 800-73 NIST Test Guidance — SP 800-85 Lab Activity SP 800-85A Test Results NPIVP Certificate PIV Test Methodology PIV Data Model Testing* Agency Activity** SP 800-85B Self-certification * Conformance to FIPS 201, SP 800-76, and SP 800-78 ** The process is currently being defined

6 Agenda PIV Test Environment Test Methodology Test Areas Schedule

7 Test Areas CHUID Data Object Security Object Biometric Data Object PKI Keys and Certificates Note that all test requirements are designed to: - Validate the format of PIV data - Validate values in the fields - Validate computation such as signatures or data comparison

8 PIV Client Application Programming Interface PIV Card Command Calls Card Reader Driver Card Reader PIV Card Application PIV Data Model PIV Card Command Interface PIV MIDDLEWARE Agency / System Integrator Smart Card Reader PIV CARD (SP 800-73 Conformant) Test Toolkit Application  Finger print stored for FBI Transmission  Finger print stored for PIV Enrollment  Finger print minutiae for PIV Card  Facial Image for PIV Card Data Under Test SP 800-85B – PIV Biometrics Testing

9 Enrollment Process Face Templating Fingerprint Templating CBEFF Header Generation PIV-Specific Enrollment Procedures Verification Process Fingerprint Matching Verification Process Fingerprint Matching Documentation (Fingerprint and Facial Acquisition, Equipment, Procedures) - Quality dependent on the MINEX04 test results - External to PIV testing Tested through SP 800-85B - Dependent on the policy requirements and procedural steps - External to PIV Testing Integrated PIV Biometrics Process Format Validation Human Inspection Performance Tests SP 800-85B – Biometric Data Conformance

10 Test Toolkit Application Card Reader Driver Card Reader PIV Card Application PIV Data Model PIV Card Command Interface Agency / System Integrator Smart Card Reader Data Under Test Certificate Profile Conformance Algorithm Conformance Signature Conformance PIV Card SP 800-85B – PIV PKI Testing

11 Validate signatures on all signed PIV objects Validate signature block format on all signed PIV objects o Validate encoding of Cryptographic Message Syntax external digital signature Validate values in certain fields of the signature block o Validate algorithms employed are in agreement with SP 800-78 o Values are consistent with other data objects on the PIV Card SP 800-85B — Cryptographic Objects Conformance …Signature Conformance

12 Validate the presence of CRL and OCSP URLs Validate NACI indicator field SP 800-85B — Cryptographic Objects Conformance …Certificate Conformance

13 The tags and lengths in various data objects should conform to specifications in Appendix A of SP 800-73. SP 800-85B — BER-TLV Format Conformance

14 Tentative Schedule Draft SP 800-85B – April 3rd Final SP 800-85B – April 28th

Download ppt "PIV Data Model Testing Ketan Mehta March 3, 2006."

Similar presentations

For Joe Broghamer Philip S. Lee May 5, 2005 Implementing PIV Specifications HSPD-12 Workshop.

For Joe Broghamer Philip S. Lee May 5, 2005 Implementing PIV Specifications HSPD-12 Workshop.
Cerner Presentation to S&I esMD Workgroup – Industry Scan

Cerner Presentation to S&I esMD Workgroup – Industry Scan
1 ABCs of PKI TAG Presentation 18 th May 2004 Paul Butler.

1 ABCs of PKI TAG Presentation 18 th May 2004 Paul Butler.
Technical Report PKI for Machine Readable Travel Documents offering ICC read-only access TAG_15 Montreal, 2004-05-18 Tom Kinneging.

Technical Report PKI for Machine Readable Travel Documents offering ICC read-only access TAG_15 Montreal, Tom Kinneging.
International Workshop on Usability and Biometrics: NIST Welcome

International Workshop on Usability and Biometrics: NIST Welcome
Card and Reader Overview Gerald Smith Sr. Consultant ID Technology Partners.

Card and Reader Overview Gerald Smith Sr. Consultant ID Technology Partners.
Match On Card Technology and its use for PKI Mgr. Miroslav Valeš Sales Manager Eastern Europe May 9, 2001 CATE 2001 Security and Protection.

Match On Card Technology and its use for PKI Mgr. Miroslav Valeš Sales Manager Eastern Europe May 9, 2001 CATE 2001 Security and Protection.
FIPS 201 Framework: Special Pubs 800-73,76,78 Jim Dray HSPD-12 Workshop May 4/5, 2005.

FIPS 201 Framework: Special Pubs ,76,78 Jim Dray HSPD-12 Workshop May 4/5, 2005.
Mobile Devices in the DoD

Mobile Devices in the DoD
12 November 2002Digital Identity Forum – London Biometrics and ID Bill Perry Independent Consultant Phone: 077 8683 6764.

12 November 2002Digital Identity Forum – London Biometrics and ID Bill Perry Independent Consultant Phone:
Securing e Government Public Key Infrastructure

Securing e Government Public Key Infrastructure
PKE PP Mike Henry Jean Petty Entrust CygnaCom Santosh Chokhani.

PKE PP Mike Henry Jean Petty Entrust CygnaCom Santosh Chokhani.
15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.

15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.
1 1 A Synopsis of Federal Information Processing Standard (FIPS) 201 for Personal Identity Verification (PIV) of Federal Employees and Contractors Presentation.

1 1 A Synopsis of Federal Information Processing Standard (FIPS) 201 for Personal Identity Verification (PIV) of Federal Employees and Contractors Presentation.
Personal Identity Verification Program

Personal Identity Verification Program
Identity Assurance at Virginia Tech CSG January 13, 2010 Mary Dunker

Identity Assurance at Virginia Tech CSG January 13, 2010 Mary Dunker
FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.

FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.
“Personal Identity Verification (PIV) of Federal Employees and Contractors” October 27, 2005 Homeland Security Presidential Directive 12 (HSPD-12)

“Personal Identity Verification (PIV) of Federal Employees and Contractors” October 27, 2005 Homeland Security Presidential Directive 12 (HSPD-12)
Department of Labor HSPD-12

Department of Labor HSPD-12
Cryptography Usage in TWIC (Draft v4 8Dec06)

Cryptography Usage in TWIC (Draft v4 8Dec06)

Similar presentations

Ads by Google