Certificate 1416 - ID-One PIV (Type B)
intCertNum 1416
strVendorName Oberthur Technologies
strURL http://www.oberthur.com
strAddress1 4250 Pleasant Valley Road
strAddress2
strAddress3
strCity Chantilly
strStateProv VA
strPostalCode 20151-1221
strCountry 20151-1221
strContact Christophe Goyet
strEmail c.goyet@oberthur.com
strPhone 703-263-0100
strFax 703-263-0503
strContact2
strEmail2
strFax2
strPhone2
intCertNum 1416
strModuleName ID-One PIV (Type B)
strPartNumber Hardware Versions: P/Ns BF [1, 2] and C0 [3, 4];
Firmware Versions: 0801 (with op-codes (071621 and 070534) [1], (071621 and 071891) [2], (071631 and 070544) [3] or (071631 and 071901) [4]) with ID-One PIV Applet Suite V2.3.2 [*] or V2.3.2-a [**]
memModuleNotes When operated in FIPS mode with the fingerprint authentication mechanism parameters configured as indicated in the Security Policy Section 8.1
str140Version 140-2
_sp_ Security Policy   [pdf][html][txt]
_cert_ Certificate   [pdf][txt]
strPURL
strModuleType Hardware
strValidationDate 10/06/2010;11/24/2010;12/21/2010;02/10/2011;07/05/2011;10/04/2011;02/06/2014
intOverallLevel 2
memIndividualLevelNotes -Roles, Services, and Authentication: Level 3;-Physical Security: Level 3;-EMI/EMC: Level 3;-Design Assurance: Level 3
strFIPSAlgorithms Triple-DES (Cert. #770);
Triple-DES MAC (Triple-DES Cert. #770, vendor affirmed);
AES (Cert. #978);
RNG (Cert. #555);
RSA (Cert. #471);
ECDSA (Cert. #120);
SHS (Cert. #949);
CVL (Cert. #4);
CVL (Certs. #216 and #221)
strOtherAlgorithms Triple-DES (Triple-DES Cert. #770, key wrapping;
key establishment methodology provides 80 bits of encryption strength;
non-compliant);
AES (AES Cert. #978, key wrapping;
key establishment methodology provides 128 bits of encryption strength);
AES MAC (AES Cert. #978;
non-compliant);
RSA (key wrapping;
key establishment methodology provides 112 bits of encryption strength)
strConfiguration Single-chip
memModuleDescription This new generation PIV Card addresses current & future needs of both Federal and Corporate customers with built-in support for all the cryptographic algorithms defined in SP800-78-2 including TDEA, AES, RSA, ECDSA, & ECDH with all possible key sizes as well as key history for over 20 retired decryption keys. It offers Identity proofing (storage of personal data), User authentication, Card authentication, digital signature, encryption, & secure post issuance management in the PIV system. Its fingerprint match-on-card has been validated in the MINEX II PIV Biometric interoperability program.
intModuleCount 1
memAdditionalNotes 11/24/10: Removed the posted Security Policy and Certificate - Updates are required. Removed reference to Cryptographic Key Management Section as it meets Level 2 and removed Operational Environment Section reference as this section is NA.
12/21/10 Posted new Security Policy and Certificate.
2/10/11: Replaced Version 2.3.2 with 2.3.2-a and updated Security Policy.
07/05/11: Readded PIV Applet V2.3.2 and PIV Application #26; updated Security Policy.
10/04/11: Replaced ECDH with CVL #4 and updated Security Policy.
02/06/14: Added CVL (Certs. #216 and #221)
strFirstValidtionDate 10/06/10 00:00:00
strLabName InfoGard
strValidationYear 2010