giesecke & devrient’s fips 201 - piv solution presentation · pdf filefips 201 - piv...

Giesecke & Devrient’sFIPS 201 - PIV SolutionPresentation

NIST PIV Implementation WorkshopJune 28, 2005

Won J. Jun

Presentation Agenda

G&D Corporate Information G&D’s Perspective on FIPS 201 – PIV G&D’s PIV Solution

The Complete SolutionCardsSoftwareServicesRoadmap

Questions

G&D Corporate Information

The Giesecke & Devrient Group of Companies:

Founded 1852

Consolidated group revenue $ 1.5 billion($730M from Card Solutions)

Workforce 7,337

Privately-held, profitable, and growing organization

G&D Corporate Information

Business Unit 2

BanknotesSecurity PaperProduct SecurityBrand Protection

Business Unit 1 Business Unit 2 Business Unit 4Business Unit 3

Currency AutomationBanknote ProcessingSystems

Smart Cards forPayment, Industryand Government

Systems and Solutionsfor security in E-Government,E-Business, Telecommuni-cations, ID Systems

System Banknotes System Cards

G&D’s Main Business UnitsCard Systems and Solutions

Banknotes and Currency Printing and Processing

G&D’s Perspective on PIV

G&D’s Commitment:Qualifying a new smart card OSTesting and validationWorking with industry partners

Merits of FIPS 201Leveling of the playing fieldBuilding on previous initiatives

Dar Robinson

Contactless Technology IssuesCurrent contactless implemen-tations are not compliant to PIV IIrequirementsHybrid vs. Dual-interface

Challenges ahead: evolving requirements

Business ConcernsBusiness case and major investmentsCommitment from the Government to purchase“If we build it, they will come?”

“Field of Dreams”

G&D’s PIV Solution: a Complete Solution

SecurityApplicationsSecurity

Applications

Single Sign OnSSOSingle Sign On

Secure WLANVPNSecure WLAN

File- / FolderEncryptionFile- / Folder

EncryptionHard disk

EncryptionHard diskEncryption

SecureEmail

SSL/SMime

SecureEmail

SSL/SMime

CAMS (Card and Appl. Mgmt)

AETAET Bell IDBell ID IntercedeIntercede TrustmanagerTrustmanager

IdentitymanagementIdentity

managementSingle Point of User AdministrationSingle Point of User Administration

Card / TokenCard / TokenStarcos

2.3/2.4/2.5/3.0Starcos2.3/2.4/2.5/3.0

Sm@rtCafèExpert

32k / 64k FIPSJava Cards

Sm@rtCafèExpert

32k / 64k FIPSJava Cards

Starkey 100USB TokenStarkey 100

USB Token

StarSign BioTokenStarSign Bio

StarSignMemoryToken

Card ReaderCard Reader PCSC-Compliant Devices (e.g., Omnikey, SCM )PCSC-Compliant Devices (e.g., Omnikey, SCM )

Standard InterfacesStandard

InterfacesMiddleware (PKCS#11 / CSP / APDU)Middleware (PKCS#11 / CSP / APDU)

Card Body /Security FeaturesCard Body /

Security FeaturesContact CAC/PIV compliant Card BodyContact CAC/PIV compliant Card Body Contactless CAC/PIV compliant Card BodyContactless CAC/PIV compliant Card Body

G&D’s PIV Solution: Sm@rtCafé® Expert FIPS 64

Sm@rtCafé® Expert 64 combines the benefits of innovative developments on one platform

Cost efficiency

Decision security

Future-proof

Investment protection

Flexibility

Technological leadership

Features:16-bit microcontroller68 KByte EEPROM (64KB avail.)Java Card™2.2Global Platform 2.0.1‘Logical channels2048-bit RSA key generationDSA key generationEnhanced garbage collection

HW random number generatorFIPS 140-2 Level 3 validation with card managerFIPS 140-2 Level 2 validation with DOD CACApplets v.2Delegated managementDAP VerificationSecurity domainsGSC-IS v2.1

G&D’s PIV Solution: Sm@rtCafé® Expert 3.x

The Java Card™ solution for maximum flexibility.

Sm@rtCafé® Expert 3.0 available now: Java Card™ 2.2.1 Global Platform 2.1.1 Dual interface (ISO 14443 Type A) Highest-level security Capacity of up to 64 KB EEPROM Multiple security domains Delegated management

Compatible with any PIV-compliant applets and middlewareG&D’s PIV Demonstration Package (Q3/05)FIPS 140-2 validation

Development and testingCompliance testing by labReview by NIST CMVP

FIPS 201 validation

G&D’s PIV Solution: Software

ConsultingServices

Infra-structure

• Strategic goal• Needs Analysis• Regulatory

environment• Business case• Time & Budget• Pre-Pilot

• IT & Mgmttraining

• Standards andlegacy systems

• Applicationsdefinition

• Hardware andsoftware selectionand upgrades

• implementation• Technology and

partner selection• Definition of

processes

• Smart cardmanufacturing

• Applicationdevelopment

• Customisation• Integration into

existing infra-structure

• Applicationdeployment &integration

• Process roll-out• Real-time and

post-pilot analysis

• Outsourcedservices

• Training (users)

• Upgrade

PKIProducts

Smart CardServices

Rollout Support

BusinessConsultancies

IT Integrators

Trust Centers

G&D’s PIV Solution: Services

G&D’s PIV Solution: RoadmapPIV – I

CompliantProducts

PIV – IICompliantProducts(Gen. 1)

PIV – IICompliantProducts(Gen. 2)

Cards Sm@rtCaféExpert FIPS

MifareDESFire

Sm@rtCaféExpert FIPS

Sm@rtCaféExpert 3.0

Sm@rtCaféExpert 3.x

Applets CAC Applets PIV Appletv.1.0

PIV Appletv.2.0

Availability Now 2005 2006

Questions

Won J. JunProject ManagerIndustry and GovernmentGiesecke & Devrient

Tel.: 703-480-2145won.jun@gdai.com

http://www.gdai.com

Contact Information

giesecke & devrient’s fips 201 - piv solution presentation · pdf filefips 201 - piv...

Documents

piv disputes 2012

piv ais bcn

derived personal identity verifciation (piv)...

fips 201 update - csrc · saml assertion assertion oidc id...

tomographic piv

charles wilson patrick grother -...

piv look catalunya

federal information processing standard (fips) 201 … pub...

piv deuterostomos

piv enlace

personal identity verification (piv) implementation...

fips 201-1, personal identity verification (piv)

fips 201-2 and nist special publications update · fips...

proceedings of 3rd international workshop on piv, santa...

the bread / piv

req# requirement source section title fips 201-1: personal...

flowmaster piv

transition series readers t-500-piv, t-520-piv, t-525-piv...

piv applications

10 ea piv stereoscopic piv educational slide show