Module Name
IDProtect Duo with PIV
Historical Reason
Moved to historical list in accordance with SP800-131A Revision 1 Transition (AES/TDES key wrapping)
Security Level Exceptions
- Cryptographic Module Specification: Level 3
- Roles, Services, and Authentication: Level 3
- Physical Security: Level 3
- EMI/EMC: Level 3
- Design Assurance: Level 3
Description
IDProtect is a Cryptographic Module based on the Athena OS755 Java Card smart card operating system with 80KB of EEPROM. IDProtect is compliant with the latest Java Card 2.2.2 and GlobalPlatform 2.1.1 specifications and is validated to FIPS 140-2 Level 2. IDProtect supports FIPS approved DRBG, SHA-1 and all SHA-2, TDES, AES, RSA, ECDSA and ECC CDC and RSA and ECC key generation. IDProtect exposes PKI and Biometric APIs and is designed for high performance government and enterprise smart card applications.
Approved Algorithms
AES |
Cert. #1655 |
CVL |
Cert. #2 |
CVL |
Certs. #218 and #222 |
DRBG |
Cert. #98 |
ECDSA |
Cert. #214 |
RSA |
Cert. #824 |
SHS |
Cert. #1465 |
Triple-DES |
Cert. #1088 |
Triple-DES MAC |
Triple-DES Cert. #1088, vendor affirmed |
Other Algorithms
HW RNG; AES-CMAC (non-compliant); AES (Cert. #1655, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength)
Hardware Versions
Inside Secure AT90SC28880RCFV Rev. G
Firmware Versions
Athena IDProtect 010E.1245.0002 with PIV Applet 3.0