Personal Identity Verification (PIV) is a common credentialing and standard background investigation process required by Homeland Security Presidential Directive 12 (HSPD-12). A PIV card is a United States Federal smart card that contains the necessary data for the cardholder to be granted to Federal facilities and information systems and assure appropriate levels of security for all applicable Federal applications.
The criteria for PIV cards was established by Federal Information Processing Standard (FIPS) 201, which was formally entitled Personal Identity Verification of Federal Employees and Contractors. FIPS 201 was developed to satisfy the requirements of HSPD 12, which requires a common identification standard for all Federal employees and contractors.
FIPS 201, which is intended to be a living document, specifies the interface and data elements of the PIV card, the technical acquisition and formatting requirements for biometric data on the smart card and acceptable cryptographic algorithms and key sizes.
There are different types of PIV badges which reflect various agencies. The following are some of the different types:
- FIPS: Federal Information Processing Standard
- TWIC: Transportation Worker Identification Credential
- FRAC: First Responder Authentication Credential
- CAC: Common Access Card (Department of Defense)
- PIV-I: Personal Identity Verification Interoperable (non-Federal employees and government contractors)
- CIV: Commercial Identity Verification
PIV | PIV-I | CIV | |
---|---|---|---|
Technology | |||
Card data model | Must follow SP 800-73 | Must follow SP 800-73 | “Follows” SP 800-73 (recommended) |
Current primary credential number | FASC-N (requires Federal agency code) | UUID (no Federal agency code required) | UUID (recommended) (no Federal agency code required) |
Object identifiers | Federal Bridge | Federal Bridge | Organization Internet Assigned Number Authority (IANA) (if exists) |
Types of Federation and Levels of Assurance | |||
Trustworthiness | Trusted identity, credential and suitability | Trusted basic identity and credential but not suitability | Trusted credential only within the issuing organization. |
Trust among organizations | Federal Bridge | Clustered through Federal Bridge | Clustered alone |
Origin | |||
Organization | NIST | Federal CIO Council | Smart Card Alliance Access Control Council |
Defining documents | FIPS 201, SP 800-73 and other related NIST publications | Personal Identity Verification Interoperability for Non-Federal Issuers FICAM PIV-I FAQ | The Commercial Identity Verification (CIV) Credential–Leveraging FIPS 201 and the PIV Specifications |
Motivation | HSPD-12 | Interoperable credential for organizations doing business with the government and for first responders | Commercial credential that could take advantage of the PIV infrastructure |
Markets | |||
Organizations that may issue and/or use the credential | Federal agencies | Federal agencies Federal contractors Commercial organizations doing business with the Federal government State and local governments Critical infrastructure providers First responder organizations Commercial organizations who are part of an industry initiative and require an interoperable, trusted credential |
Commercial organizations seeking a credential for use for their employees, subcontractors, non-employee visitors and customers Federal agencies who accept credentials with medium hardware assurance |
Comparison chart courtesy of Smart Card Alliance: http://www.smartcardalliance.org/
Related Products
Related Articles
SecuGen Releases Hamster Pro 30, FBI-Certified Fingerprint Reader for Mobile ID FAP 30
Santa Clara, Calif. (May 16, 2022) - SecuGen, world leader in optical fingerprint technology, is pleased to announce the immediate availability of the Hamster Pro 30 fingerprint reader and U30 OEM sensor. The new contact fingerprint reader and sensor from
FEITIAN achieved the FIDO Biometric Component Certification
Beijing, China and Santa Clara, CA — April 29, 2021 — FEITIAN has been qualified to be the first security key and smart card vendor to achieve the FIDO Biometric Component Certification. This is mandatory to qualify for FIDO
Juniper Systems Limited Introduces New Mesa 3 Smart Card Reader for High-Security Industries
BIRMINGHAM, United Kingdom, Feb. 24, 2021 -- Juniper Systems Limited announces its new Mesa® 3 Smart Card Reader. This military-grade, CAC/PIV-compatible smart card reader (SCR) integrates with Juniper’s Mesa 3 Rugged Tablet, providing the ultimate two-tier authentication solution for data protection in
Iris ID Mobile Platform Supports TWIC Credentials
Cranbury, N.J.– Nov. 10, 2020 – Iris ID, a leading provider of iris recognition technology, today announced the compatibility of its iCAM M300 handheld, multi-modal biometric reader and the MozaicID iCAM M300 Smartcard Software Credential Application. This application enables the
FBI Certifies SecuGen Hamster Pro 30 and U30 Fingerprint Readers Meet Image Quality Specifications for PIV and FAP 30
SANTA CLARA, Calif., Sept. 28, 2020 — SecuGen, world leader in optical fingerprint technology, is proud to announce that the newly developed and soon to be released Hamster Pro™ 30 fingerprint reader and U30 OEM sensor have been certified
Suprema ID to Showcase BioMini Slim 2S, a standalone FAP20 fingerprint scanner at SDW 2018
Seoul, Korea, June 26, 2018 – Suprema ID., a leading global provider of biometrics and ID solutions, today announced that the company will showcase its ground-breaking fingerprint authentication scanner featuring ultra-slim sensor and wireless technology at SDW 2018 in London