Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

NIST Personal Identity Verification Program

REMOVED Products List: PIV Card Application

The following products have been placed on the Removed Products List because they do not conform to the requirements of FIPS 201-2 effective since 9/05/14 or  to the requirements of FIPS 140-2.

 

All questions regarding the implementation and/or use of any PIV Card Application located on the validation list should first be directed to the vendor.

Cert # Product Name Vendor Issue Date/ Update Date FIPS
140-2 validation certificate # and date
Product Details Removed Reason
1 PIV End Point Java Card Applet (Version: v1.08[1], v.1.09[2]) for Oberthur ID-One Cosmo 64 v5 Smart Card
 
Oberthur Technologies 4/11/2006 [1]
6/12/2007 [2]
668:
5/02/06 [1]
7/27/07 [2]

 

Retired RNG

2 SafesITe FIPS 201 applet, Version 1.20 on Gemalto GemCombi'Xpresso R4 E72 PK Card
  
Gemalto Corp. 4/20/2006 691 
07/20/06

 

Retired RNG

3 PIV Application on Hitachi MULTOS Smart Card, Hardware Version: AE45X1, Firmware Version 1.0 Hitachi, Ltd. 5/26/2006 732 
01/25/07

Optional SP 800-73-1 PIV Data Object/Features Implemented:* 
1) Card Holder Printed Information
2) X.509 Certificate for PIV Key Management

Not Compliant with FIPS 201-2
4 SETECS Inc.'s OneCARDTM PIV-II Java Card Applet (Version 1.2) on Gemalto GemCombi Xpresso R4 E72 PK card SETECS Inc. 6/6/2006 705 
09/20/06
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication 

Not Compliant with FIPS 201-2

5 StepNexus PIV Application v4.2.1 on Keycorp MULTOS 64K Smart Card Keycorp Limited 7/31/2006 1055
11/25/2008

Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication 
 

Not Compliant with FIPS 201-2

6 PIV card application version 19 on SafeNet Smart Card 400 (72K) SCCOS version 3.0 SafeNet Inc. 9/05/2006 823
8/22/2007

Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management 
 

Not Compliant with FIPS 201-2

7 ActivIdentity PIV End-Point Applet(Versions: 2.6.2.6 [1], 2.6.2.A1[2] and 2.6.2.A2[3])
on 
Oberthur ID-One Cosmo 64 v5 [880] and Oberthur ID-One Cosmo 64 v5 Extended PIV [962]
 
ActivIdentity Inc. 10/20/2006 [1] 09/20/2007 [2] 05/08/2008 [3]

 

 

880:
11/30/2007 [1]
12/18/2007 [2]
04/24/2008 [3]
 
962
06/12/2008 [2] 06/23/2008 [3]

Special Note: 
Optional key 9B (PIV card application administration key) is not supported (Ref: SP 800-73). As a result, support for following APDUs cannot be verified: (a) PUT DATA (b) GENERATE ASYMMETRIC KEY PAIR.

Retired RNG

8 PIV Applet version 01 on 
J-IDMark 64 PIV 
 
Sagem Orga Inc. 11/11/2006 774
5/17/07

 

 

Retired RNG

9 CardLogix Credentsys-J PIV applet Version 2.3.0.8
on Atmel 72KB EEPROM (AT90SC12872RCFT) smart card
 
CardLogix, Corporation. 08/23/2007 917
2/13/2008

 

 

Retired RNG

10 ActivIdentity PIV End-Point Applet (Versions: 2.6.2.6 [1], 2.6.2.7, [2] and 
 

 

ActivIdentity Inc. 12/06/2007 [1]
05/08/2008 [2] 
 
963 
06/24/2008 [1]
07/09/2008 [2]

 

 

Optional SP 800-73-2 Features Supported - on [3] only : 
6) Discovery Object

Special Note for [1], [2], [3]: 
Optional key 9B (PIV card application administration key) is not supported (Ref: SP 800-73). As a result, support for following APDUs cannot be verified: (a) PUT DATA (b) GENERATE ASYMMETRIC KEY PAIR.

Retired RNG

10 2.6.2.9 [3])on Gemalto SafesITe TOP DM GX4 Card ActivIdentity Inc. 12/10/2011 [3]  pending [3]

Optional SP 800-73-1 PIV Data Object/Features Implemented on [3]: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication

Optional SP 800-73-2 Features Supported - on [3] only : 
6) Discovery Object

Special Note for [3]: 
Optional key 9B (PIV card application administration key) is not supported (Ref: SP 800-73). As a result, support for following APDUs cannot be verified: (a) PUT DATA (b) GENERATE ASYMMETRIC KEY PAIR.
 

Missing FIPS 140-2 Validation

11 TecSec PIV Applet version 1.01 JCT (contact) on TecSec PIV Eagle Card - Contact [1] and TecSec PIV Applet version 1.0 JCL (contactless) on TecSec PIV Eagle Card -Contactless [2] TecSec, Inc. Atmel, CPI Card Group, and Athena Smartcard 12/21/2007 [1]
12/21/2007 [2]
1120 [1]
1118 [2]

 

Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management 
5) X.509 Certificate for Card Authentication 
 

Not Compliant with FIPS 201-2

12 Athena PIV Applet Version 1.0 on Athena IDProtect Duo PIV
 
Athena Smartcard Inc. 04/21/2008 991
08/15/2008

 

Retired RNG

13 SafesITe FIPS 201 Applet version 1.20 on SafesITe PIV TPC DL FIPS GX4 ( P5CD144)
 
Gemalto Corp. 6/11/2008 1044
10/15/2008

 

Retired RNG

14

ActivIdentity PIV End-Point Applet Version 2.6.2B.4 on Gemalto TOP DL GX4 Card 

LEGACY implementation. See RNG Sunset Announcement for details.

ActivIdentity Inc.

06/01/2008

1085 
02/03/2009

Special Note: Optional key 9B (PIV card application administration key) is not supported (Ref: SP 800-73). As a result, support for following APDUs cannot be verified: (a) PUT DATA (b) GENERATE ASYMMETRIC KEY PAIR. 

Retired RNG

15

ActivIdentity PIV End-Point Applet Version 2.6.2B.4 on Oberthur ID-One Cosmo 128 v5.5 D

LEGACY implementation. See RNG Sunset Announcement for details.

1145 06/24/2009

   

  Special Note: Optional key 9B (PIV card application administration key) is not supported (Ref: SP 800-73). As a result, support for following APDUs cannot be verified: (a) PUT DATA (b) GENERATE ASYMMETRIC KEY PAIR.

Retired RNG
16 ActivIdentity PIV End-Point Applet Version 2.6.2.A2 on Giesecke and Devrient Sm@rtCafé Expert 3.2 ActivIdentity Inc. 10/29/2008 pending

Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication 

Special Note: 
Optional key 9B (PIV card application administration key) is not supported (Ref: SP 800-73). As a result, support for following APDUs cannot be verified: (a) PUT DATA (b) GENERATE ASYMMETRIC KEY PAIR.
 

Missing FIPS 140-2 Validation

17

ActivIdentity PIV End-Point Extended Applet Version 2.6.2B.4 on Giesecke and Devrient Sm@rtCafé Expert 3.2

LEGACY implementation. See RNG Sunset Announcement for details.

ActivIdentity Inc.

04/09/2009

1239 
12/07/2009

 

Retired RNG
18 ID-One PIV Applet Suite Version 2.3.2-a on ID-One PIV (Type A)


 

6/23/2009: original validation for SP 800-73-2 conformance with a FIPS 140-2 validation # 1414  09/28/10

06/11/10: name change to ID-One PIV Applet Suite V 2.3.2 on ID-One PIV (Type A)

1/27/2011: updated validation for SP 800-73-3 conformance as ID-One PIV Applet Suite Version 2.3.2-a (Type A)

3/17/2011 moved "ID-One PIV Applet Suite version 2.3.2-a (Type A) "to be listed in certificate #25

Oberthur Technologies 1/27/11 1414
02/10/2011

Optional SP 800-73-2 Features Supported:
6) Discovery Object
7) Verification with Global PIN

Optional SP 800-73-3 Features Supported:
8) Key History Object with up to 20 on-card retired private Key Management keys and 
9) up to 10 on-card retired X.509 Certificates for Key Managment that are also available off-card and 
10) up to 10 additional off-card retired X.509 Certificates for Key Management
11) Cardholder Iris Image

Retired RNG

19 ID-One PIV Applet Suite Version 2.3.2-a on ID-One PIV (Type B)


 

6/23/2009: original validation for SP 800-73-2 conformance with a FIPS 140-2 validation # 1416   10/06/10

06/11/10: name change to ID-One PIV Applet Suite V 2.3.2 on ID-One PIV (Type B)

1/27/2011: updated validation for SP 800-73-3 conformance as ID-One PIV Applet Suite Version 2.3.2-a (Type B)

3/17/2011 moved "ID-One PIV Applet Suite version 2.3.2-a (Type B)" to be listed in certificate #26

Oberthur Technologies 1/27/11 1416
02/10/2011

Optional SP 800-73-2 Features Supported:
7) Verification with Global PIN

Optional SP 800-73-3 Features Supported:
8) Key History Object with up to 20 on-card retired private Key Management keys and 
9) up to 10 on-card retired X.509 Certificates for Key Managment that are also available off-card and 
10) up to 10 additional off-card retired X.509 Certificates for Key Management
11) Cardholder Iris Image

Retired RNG

20 Athena PIV Applet Version 2.0 on Athena IDProtect Duo PIV Athena Smartcard Inc. 8/13/2010 1487
01/28/2011

Optional SP 800-73-2 Features Supported:
5) Discovery Object
6) Verification with Global PIN

 

Retired RNG

21 TecSec PIV Applet version 1.06 on TecSec Eagle PIV Card Contact [1] and on TecSec Eagle PIV Card Contactless [2] TecSec, Inc. 9/17/2010 [1] pending
[2] pending

Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management 
5) X.509 Certificate for Card Authentication

Optional SP 800-73-2 Features Supported:
6) Discovery Object
7) Verification with Global PIN
 

Missing FIPS 140-2 Validation
 

22

Gemalto Protiva PIV Applet v1.55 on Protiva TOP DL Card

LEGACY implementation. See RNG Sunset Announcement for details. 

Gemalto Corp.

01/14/2011

1573 
7/15/11

1044 
6/09/11

 

Optional SP 800-73-2 Features Supported:6) Discovery Object7) Verification with the Global PIN

Retired RNG

23

Gemalto Protiva PIV Applet v1.55 on Protiva TOP DM Card

LEGACY implementation. See RNG Sunset Announcement for details. 

Gemalto Corp.

01/14/2011

691
06/09/11

 

Optional SP 800-73-2 Features Supported:6) Discovery Object7) Verification with the Global PIN

 
24 Gemalto Protiva PIV Applet v1.55 on Protiva TOP WM Card Gemalto Corp. 01/14/2011 691 
06/09/11

Optional SP 800-73-2 Features Supported:
6) Discovery Object
7) Verification with the Global PIN

Retired RNG

25

ID-One PIV Applet Suite Version 2.3.2-a on ID-One PIV (Type A)

LEGACY implementation. See RNG Sunset Announcement for details. 

Oberthur Technologies

1/27/11

1414 
02/10/2011

 

Optional SP 800-73-2 Features Supported:6) Discovery Object7) Verification with Global PIN

Optional SP 800-73-3 Features Supported:8) Key History Object with up to 20 on-card retired private Key Management keys and 9) up to 20 on-card retired X.509 Certificates for Key Managment that are also available off-card 10) Cardholder Iris Image

 
Retired RNG
26 ID-One PIV Applet Suite Version 2.3.2-a on ID-One PIV (Type B) Oberthur Technologies 1/27/11 1416
02/10/2011

Optional SP 800-73-2 Features Supported:
6) Discovery Object
7) Verification with Global PIN

Optional SP 800-73-3 Features Supported:
8) Key History Object with up to 20 on-card retired private Key Management keys and 
9) up to 20 on-card retired X.509 Certificates for Key Managment that are also available off-card 
10) Cardholder Iris Image 
 

Retired RNG

27

Gemalto Protiva PIV Applet v1.55 on Protiva TOP DL v2 Card

 

5/4/11: original validation for SP 800-73-2 conformance with a FIPS 140-2 validation pending
10/04/11: updated validation for SP 800-73-3 conformance.  

LEGACY implementation. See RNG Sunset Announcement for details. 

Gemalto Corp.

10/4/11

1690 
03/09/12

 

Optional SP 800-73-2 Features Supported:6) Discovery Object7) Verification with Global PIN

Optional SP 800-73-3 Features Supported:8) Key History Object with up to 20 on-card retired private Key Management keys and 9) up to 10 on-card retired X.509 Certificates for Key Managment that are also available off-card and 10) up to 10 additional off-card retired X.509 Certificates for Key Managment11) Cardholder Iris Image  

Retired RNG
28 Gemalto Protiva PIV Applet v1.55 on Protiva TOP WL v2 Card

 

5/4/11: original validation for SP 800-73-2 conformance with FIPS 140-2 validation pending

10/04/11: updated validation for SP 800-73-3 conformance.

 

Gemalto Corp. 5/4/2011 1690
03/09/12

Optional SP 800-73-2 Features Supported:
6) Discovery Object
7) Verification with Global PIN

 

Optional SP 800-73-3 Features Supported:
8) Key History Object with up to 20 on-card retired private Key Management keys and 
9) up to 10 on-card retired X.509 Certificates for Key Managment that are also available off-card and 
10) up to 10 additional off-card retired X.509 Certificates for Key Managment
 

Retired RNG

29 HID Global Digital Identity PIV Extended Applet 2.7.1 on NXP JCOP 2.4.2 HID Global 02/10/12 1793 
8/28/12

Optional SP 800-73-2 Features Supported:
6) Discovery Object

Optional SP 800-73-3 Features Supported:
7) Key History Object with up to 20 on-card retired private Key Management keys and 
8) up to 20 on-card retired X.509 Certificates for Key Managment 
9) Cardholder Iris Image 
 

 

Retired RNG

30

Gemalto Protiva PIV Applet v2.00  on Protiva TOP DL v2 Card and on Protiva TOP WL v2 Card

LEGACY implementation. See RNG Sunset Announcement for details. 

Gemalto Corp.

02/10/12

1843 
11/29/12

 

Optional SP 800-73-2 Features Supported:6) Discovery Object7) Verification with Global PIN

Optional SP 800-73-3 Features Supported:8) Key History Object with up to 20 on-card retired private Key Management keys and 9) up to 20 on-card retired X.509 Certificates for Key Managment that are also available off-card and 10) Cardholder Iris Image  

Retired RNG

31

Athena PIV Applet v3.0 on Athena IDProtect Duo Card with PIV

Athena Smartcard, Inc

04/16/12

1764 8/23/12

Optional SP 800-73-2 Features Supported:6) Discovery Object7) Verification with Global PIN

Optional SP 800-73-3 Features Supported:8) Key History Object with up to 20 on-card retired private Key Management keys and 9) up to 20 on-card retired X.509 Certificates for Key Managment that are also available off-card and 10) Cardholder Iris Image 

Retired Key Wrapping

32

SafeNet PIV Applet Version 3.0 on SafeNet eToken 4300

SafeNet, Inc.

04/16/12

1800 12/06/12

Optional SP 800-73-2 Features Supported:6) Discovery Object7) Verification with Global PIN

Optional SP 800-73-3 Features Supported:8) Key History Object with up to 20 on-card retired private Key Management keys and 9) up to 20 on-card retired X.509 Certificates for Key Managment that are also available off-card and 10) Cardholder Iris Image  

Retired Key Wrapping
33 Entrust IdentityGuard PIV Applet Version 1.0.1 patch 172799 on Entrust IdentityGuard PIV Credential Entrust 04/16/12 1882
02/08/13

Optional SP 800-73-2 Features Supported:
6) Discovery Object
7) Verification with Global PIN

Optional SP 800-73-3 Features Supported:
8) Key History Object with up to 20 on-card retired private Key Management keys and 
9) up to 20 on-card retired X.509 Certificates for Key Managment and 
10) Cardholder Iris Image 
 

Retired RNG

34 ActivIdentity Digital Identity PIV End‐Point Applet Version 2.7 on Gemalto Protiva TOP DL v2 ActivIdentity Inc. 6/11/12

 

2055
12/5/2013

Optional SP 800-73-2 Features Supported:
6) Discovery Object
7) Verification with Global PIN

Optional SP 800-73-3 Features Supported:
8) Key History Object with up to 15 on-card retired private Key Management keys and 
9) up to 15 on-card retired X.509 Certificates for Key Managment that are also available off-card and 
10) Cardholder Iris Image 
 

Retired RNG

35 TecSec PIV Applet Version 1.007 on TecSec Armored Card v2. TecSec, Inc. 10/11/12

#1992 - 08/19/13

 #1986 - 08/09/13

Optional SP 800-73-2 Features Supported:6) Discovery Object7) Verification with Global PIN

Optional SP 800-73-3 Features Supported:8) Key History Object with up to 20 on-card retired private Key Management keys and 9) up to 20 on-card retired X.509 Certificates for Key Managment that are also available off-card and 10) Cardholder Iris Image  

Sunset (past 5 years)

36

ID-One PIV Applet Suite Version 2.3.4 on ID-One PIV (Type A)

LEGACY implementation. See RNG Sunset Announcement for details. 

 

Oberthur Technologies.

02/15/2013

 

1414 
02/23/2013

Optional SP 800-73-2 Features Supported:6) Discovery Object7) Verification with Global PIN

Optional SP 800-73-3 Features Supported:8) Key History Object with up to 20 on-card retired private Key Management keys and 9) up to 20 on-card retired X.509 Certificates for Key Managment that are also available off-card and 10) Cardholder Iris Image  

Retired RNG
 

 

Created May 24, 2016, Updated December 02, 2019