Module Name
PKI BLADE Applet and Protiva PIV DL Card
Historical Reason
RNG SP800-131A Revision 1 Transition
Caveat
When operated in FIPS mode with the fingerprint authentication mechanism parameters configured as indicated in the Security Policy Section 12
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Physical Security: Level 3
- EMI/EMC: Level 3
- Design Assurance: Level 3
Description
The PKI/BLADE applet is based on ISO 7816 and GSC-IS commands interface. The applet is designed to be loaded on any Java card compliant with JavaCard v2.2.1 and Global Platform v2.1.1 specifications including PIV certified Java cards. It is designed to provide services for PKI based logical access applications and to provide strong two factor authentication using passwords and fingerprints biometrics.
Approved Algorithms
CVL |
Cert. #214 |
RNG |
Cert. #450 |
RSA |
Cert. #372 |
SHS |
Cert. #786 |
Triple-DES |
Cert. #678 |
Triple-DES MAC |
Triple-DES Cert. #678, vendor affirmed |
Other Algorithms
Triple-DES (Cert. #678, key wrapping; key establishment methodology provides 100 bits of encryption strength)
Hardware Versions
P/N P5CD144 Version A1047808
Firmware Versions
EI08-M1004069, Softmask V01, PIV Applet V1.55 and PKI BLADE Applet V1.2