Ketan Mehta mehta_ketan@nist.gov March 3, 2006 PIV Data Model Testing Ketan Mehta mehta_ketan@nist.gov March 3, 2006.

Slides:



Advertisements
Similar presentations
Cerner Presentation to S&I esMD Workgroup – Industry Scan
Advertisements

1 ABCs of PKI TAG Presentation 18 th May 2004 Paul Butler.
International Workshop on Usability and Biometrics: NIST Welcome
Card and Reader Overview Gerald Smith Sr. Consultant ID Technology Partners.
Match On Card Technology and its use for PKI Mgr. Miroslav Valeš Sales Manager Eastern Europe May 9, 2001 CATE 2001 Security and Protection.
FIPS 201 Framework: Special Pubs ,76,78 Jim Dray HSPD-12 Workshop May 4/5, 2005.
Mobile Devices in the DoD
12 November 2002Digital Identity Forum – London Biometrics and ID Bill Perry Independent Consultant Phone:
Securing e Government Public Key Infrastructure
PKE PP Mike Henry Jean Petty Entrust CygnaCom Santosh Chokhani.
15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.
1 1 A Synopsis of Federal Information Processing Standard (FIPS) 201 for Personal Identity Verification (PIV) of Federal Employees and Contractors Presentation.
Personal Identity Verification Program
Identity Assurance at Virginia Tech CSG January 13, 2010 Mary Dunker
FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.
“Personal Identity Verification (PIV) of Federal Employees and Contractors” October 27, 2005 Homeland Security Presidential Directive 12 (HSPD-12)
Department of Labor HSPD-12
Cryptography Usage in TWIC (Draft v4 8Dec06)
Morpho Introduction  40 years of focused world-class experience  World’s largest install base  Most industries & toughest environments  Consistently.
NIST Special Publication Biometric Data Specification for Personal Identity Verification March 3, 2006 Update.
Federal Information Processing Standard (FIPS) 201, Personal Identity Verification for Federal Employees and Contractors Tim Polk May.
EDUCAUSE Fed/Higher ED PKI Coordination Meeting
PIV Data Model Testing Ketan Mehta March 3, 2006.
November 1, 2006Sarah Wahl / Graduate Student UCCS1 Public Key Infrastructure By Sarah Wahl.
CN1276 Server Kemtis Kunanuraksapong MSIS with Distinction MCTS, MCDST, MCP, A+
NASA Personal Identity Verification (PIV) NASA Personal Identity Verification (PIV) High Level System Overview Tice F. DeYoung, PhD 14th Fed/Ed Workshop.
NVLAP Overview and Accreditation Process March 2006.
Chapter 10: Authentication Guide to Computer Network Security.
Biometric Access Control in TWIC Read Hardware and Card Application Specification Roger Roehr.
Securing Data at the Application Layer Planning Authenticity and Integrity of Transmitted Data Planning Encryption of Transmitted Data.
Introduction to Secure Messaging The Open Group Messaging Forum April 30, 2003.
Special Publication : Interfaces for Personal Identity Verification Jim Dray NIST NPIVP Workshop March 3, 2006.
Certificates and FIPS 201 Tim Polk March 3, 2006.
Business and Systems Aligned. Business Empowered. TM Federal Identity Management Handbook May 5, 2005.
HSPD-12 Identity Management Initiative Carol Bales Senior Policy Analyst United States Office of Management and Budget North American Day 2006.
28 th International Traffic Records Forum Biometrics/SmartCard Workshop 28 th International Traffic Records Forum August 4, 2002 Orlando, Florida.
1 ISO/IEC JTC1/SC37 Standards A presentation of the family of biometric standards October 2008.
PRESENTATION ON BIOMETRICS
1 Federal Identity Management Initiatives Federal Identity Management Initatives David Temoshok Director, Identity Policy and Management GSA Office of.
Visual Signature Profile OASIS - DSS-X Session 2.
Certification and Validation Process NPIVP Workshop - March 03, 2006.
Technical Devices for Security Management Kathryn Hockman COSC 481.
The Federal Information Processing Standards (FIPS) Encryption Suite Sean Smith COSC
Bruno Struif, GMD-TKT 1 SmartCard-Technik German Digital Signature Card and Office Identity Card and PKCS #15 Bruno Struif GMD German National Research.
The Federal E-Authentication Initiative David Temoshok Director, Identity Policy GSA Office of Governmentwide Policy February 12, 2004 The E-Authentication.
1 NPIVP Workshop March 3, 2006 Red Auditorium, NIST, Gaithersburg PIV Test Guidelines Revisions Dr. R. Chandramouli (Mouli) (Director NPIVP)
Introduction to Input Devices. Input Devices Units that gather information and transform that information into a series of electronic signals for the.
TAG Presentation 18th May 2004 Paul Butler
Digital Image Processing Project
Trust Anchor Management Problem Statement
TAG Presentation 18th May 2004 Paul Butler
e-Health Platform End 2 End encryption
Network Security Unit-IV
Personal Identity Verification Program
Chapter 5: The Art of Ensuring Integrity
Instructor Materials Chapter 5: The Art of Ensuring Integrity
کاربرد گواهی الکترونیکی در سیستمهای کاربردی (امضای دیجیتال)
2. Authentication & Message Authentication
Databases.
EDUCAUSE Fed/Higher ED PKI Coordination Meeting
Technical Approach Chris Louden Enspier
E-Authentication: What Technologies Are Effective?
Biometric technology.
Instructor Materials Chapter 5: The Art of Ensuring Integrity
Hybrid Finger print recognition
NASA Personal Identity Verification (PIV) High Level System Overview Tice F. DeYoung, PhD 14th Fed/Ed Workshop December 14, 2006.
Milan Zoric Centre for Testing and Interoperability ETSI
Instructor Materials Chapter 5: Ensuring Integrity
Digital Signature Standard (DSS)
Tim Polk, NIST PKI Program Manager March 2000
Presentation transcript:

Ketan Mehta mehta_ketan@nist.gov March 3, 2006 PIV Data Model Testing Ketan Mehta mehta_ketan@nist.gov March 3, 2006

Agenda PIV Test Environment Test Methodology Test Areas Schedule

PIV Test Environment Host PC Smart Card Reader PIV Client Application Programming Interface PIV Card Command Calls Card Reader Driver Card Reader PIV Card Application PIV Data Model PIV Card Command Interface PIV MIDDLEWARE (SP 800-73) Host PC Smart Card Reader PIV CARD (FIPS 201, SP 800-73, SP 800-76, SP 800-78) Test Toolkit Application

Agenda PIV Test Environment Test Methodology Test Areas Schedule

Derived Test Requirements PIV Test Methodology Inputs Process Outputs FIPS 201 Derived Test Requirements & Test Assertions SP 800-73 Test Results SP 800-76 SP 800-78 NIST Test Guidance — SP 800-85 NPIVP Certificate Lab Testing: Conformance to SP 800-73 PIV Data Model Testing* Self-certification Lab Activity SP 800-85A Agency Activity** SP 800-85B * Conformance to FIPS 201, SP 800-76, and SP 800-78 ** The process is currently being defined

Agenda PIV Test Environment Test Methodology Test Areas Schedule

Test Areas CHUID Data Object Security Object Biometric Data Object PKI Keys and Certificates Note that all test requirements are designed to: - Validate the format of PIV data - Validate values in the fields - Validate computation such as signatures or data comparison

SP 800-85B – PIV Biometrics Testing Test Toolkit Application PIV MIDDLEWARE PIV Client Application Programming Interface Agency / System Integrator PIV Card Command Calls Card Reader Driver Data Under Test Smart Card Reader Finger print stored for FBI Transmission Finger print stored for PIV Enrollment Finger print minutiae for PIV Card Facial Image for PIV Card Card Reader PIV Card Application PIV Card Command Interface PIV CARD (SP 800-73 Conformant) PIV Data Model

SP 800-85B – Biometric Data Conformance Enrollment Process Face Templating Fingerprint Templating CBEFF Header Generation PIV-Specific Enrollment Procedures Verification Process Fingerprint Matching Integrated PIV Biometrics Process Documentation (Fingerprint and Facial Acquisition, Equipment, Procedures) Format Validation Human Inspection Performance Tests Tested through SP 800-85B - Dependent on the policy requirements and procedural steps - External to PIV Testing - Quality dependent on the MINEX04 test results - External to PIV testing

SP 800-85B – PIV PKI Testing Agency / System Integrator Test Toolkit Application Agency / System Integrator Card Reader Driver Smart Card Reader Card Reader PIV Card Application PIV Card Command Interface PIV Card PIV Data Model Signature Conformance Data Under Test Algorithm Conformance Certificate Profile Conformance

SP 800-85B — Cryptographic Objects Conformance …Signature Conformance Validate signatures on all signed PIV objects Validate signature block format on all signed PIV objects Validate encoding of Cryptographic Message Syntax external digital signature Validate values in certain fields of the signature block Validate algorithms employed are in agreement with SP 800-78 Values are consistent with other data objects on the PIV Card

Validate the presence of CRL and OCSP URLs SP 800-85B — Cryptographic Objects Conformance …Certificate Conformance Validate the presence of CRL and OCSP URLs Validate NACI indicator field

SP 800-85B — BER-TLV Format Conformance The tags and lengths in various data objects should conform to specifications in Appendix A of SP 800-73.

Tentative Schedule Draft SP 800-85B – April 3rd Final SP 800-85B – April 28th

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.