Featured Research

from universities, journals, and other organizations

Standards For Identity Credentials And Authentication Systems Described

Date:
September 9, 2009
Source:
National Institute of Standards and Technology (NIST)
Summary:
Two publications from NIST describe new capabilities for authentication systems using smart cards or other personal security devices.

Two publications from the National Institute of Standards and Technology (NIST) describe new capabilities for authentication systems using smart cards or other personal security devices within and outside federal government applications. A report describes a NIST-led international standard, ISO/IEC 24727, which defines a general-purpose identity application programming interface (API). The other is a draft publication on refinements to the Personal Identity Verification (PIV) specification.

NIST is responsible for developing specifications for PIV cards required for the government under Homeland Security Presidential Directive 12. These smart cards have embedded chips that hold information and biometric data such as specific types of patterns in fingerprints called "minutiae" along with a unique identifying number. The goal is to develop methods that allow each worker to have a PIV card that works with PIV equipment at all government agencies and with all card-reader equipment regardless of the manufacturer.

Because there is growing interest in using secure identity credentials like PIV cards for multiple applications beyond the federal workplace, NIST provided its smart card research expertise in the development of an international standard—ISO/IEC 24727 – Identification cards – Integrated circuit card programming interfaces—that provides a set of authentication protocols and services common to identity management frameworks.

The new NIST report, Use of ISO/IEC 24727 is an introduction to that standard. It describes the standard's general-purpose identity application programming interface, the "Service Access Layer Interface for Identity (SALII)", which allows cards and readers to communicate and operate with applications seamlessly. The report also describes a proof-of-concept experiment demonstrating that existing PIV cards and readers can work interoperably with ISO/IEC 24727. The applications tested included logging on to Windows or Linux systems, signing and encrypting email, and performing Web authentications.

NIST Interagency Report 7611 Use of ISO/IEC 24727 may be downloaded at http://csrc.nist.gov/publications/nistir/ir7611/nistir7611_use-of-isoiec24727.pdf.

NIST researchers also are involved in improving PIV components and providing guidelines that the private sector and municipalities can use with a similar smart ID card. They have drafted an update to an earlier publication that contains the technical specifications for interfacing with the PIV card to retrieve and use identity credentials.

Special Publication 800-73-3, Interfaces for Personal Identity Verification, provides specifications for PIV-Interoperable and PIV-Compatible cards issued by non-federal issuers, which may be used with the federal PIV system. It also provides specifications designed to ease implementation, facilitate interoperability and ensure performance of PIV applications in the federal workplace. The new publication specifies a PIV data model, card edge interface and application programming interface.

The draft version of NIST SP 800-73-3 is open for public comment through Sept. 13, 2009. The document is available online at http://csrc.nist.gov/publications/PubsDrafts.html#800-73-3. Comments should be addressed to .gov with "Comments on Public Draft SP 800-73-3" in the subject line.


Story Source:

The above story is based on materials provided by National Institute of Standards and Technology (NIST). Note: Materials may be edited for content and length.


Cite This Page:

National Institute of Standards and Technology (NIST). "Standards For Identity Credentials And Authentication Systems Described." ScienceDaily. ScienceDaily, 9 September 2009. <www.sciencedaily.com/releases/2009/09/090909111630.htm>.
National Institute of Standards and Technology (NIST). (2009, September 9). Standards For Identity Credentials And Authentication Systems Described. ScienceDaily. Retrieved October 21, 2014 from www.sciencedaily.com/releases/2009/09/090909111630.htm
National Institute of Standards and Technology (NIST). "Standards For Identity Credentials And Authentication Systems Described." ScienceDaily. www.sciencedaily.com/releases/2009/09/090909111630.htm (accessed October 21, 2014).

Share This



More Matter & Energy News

Tuesday, October 21, 2014

Featured Research

from universities, journals, and other organizations


Featured Videos

from AP, Reuters, AFP, and other news services

Thanks, Marty McFly! Hoverboards Could Be Coming In 2015

Thanks, Marty McFly! Hoverboards Could Be Coming In 2015

Newsy (Oct. 21, 2014) If you've ever watched "Back to the Future Part II" and wanted to get your hands on a hoverboard, well, you might soon be in luck. Video provided by Newsy
Powered by NewsLook.com
Robots to Fly Planes Where Humans Can't

Robots to Fly Planes Where Humans Can't

Reuters - Innovations Video Online (Oct. 21, 2014) Researchers in South Korea are developing a robotic pilot that could potentially replace humans in the cockpit. Unlike drones and autopilot programs which are configured for specific aircraft, the robots' humanoid design will allow it to fly any type of plane with no additional sensors. Ben Gruber reports. Video provided by Reuters
Powered by NewsLook.com
Graphene Paint Offers Rust-Free Future

Graphene Paint Offers Rust-Free Future

Reuters - Innovations Video Online (Oct. 21, 2014) British scientists have developed a prototype graphene paint that can make coatings which are resistant to liquids, gases, and chemicals. The team says the paint could have a variety of uses, from stopping ships rusting to keeping food fresher for longer. Jim Drury reports. Video provided by Reuters
Powered by NewsLook.com
Portable Breathalyzer Gets You Home Safely

Portable Breathalyzer Gets You Home Safely

Buzz60 (Oct. 21, 2014) Breeze, a portable breathalyzer, gets you home safely by instantly showing your blood alcohol content, and with one tap, lets you call an Uber, a cab or a friend from your contact list to pick you up. Sean Dowling (@SeanDowlingTV) has the details. Video provided by Buzz60
Powered by NewsLook.com

Search ScienceDaily

Number of stories in archives: 140,361

Find with keyword(s):
Enter a keyword or phrase to search ScienceDaily for related topics and research stories.

Save/Print:
Share:

Breaking News:

Strange & Offbeat Stories


Space & Time

Matter & Energy

Computers & Math

In Other News

... from NewsDaily.com

Science News

Health News

Environment News

Technology News



Save/Print:
Share:

Free Subscriptions


Get the latest science news with ScienceDaily's free email newsletters, updated daily and weekly. Or view hourly updated newsfeeds in your RSS reader:

Get Social & Mobile


Keep up to date with the latest news from ScienceDaily via social networks and mobile apps:

Have Feedback?


Tell us what you think of ScienceDaily -- we welcome both positive and negative comments. Have any problems using the site? Questions?
Mobile: iPhone Android Web
Follow: Facebook Twitter Google+
Subscribe: RSS Feeds Email Newsletters
Latest Headlines Health & Medicine Mind & Brain Space & Time Matter & Energy Computers & Math Plants & Animals Earth & Climate Fossils & Ruins