| Standard | FIPS 140-3 |
|---|---|
| Overall level | 2 |
| Module type | Hardware |
| Embodiment | Single Chip |
| Status | Active |
| Sunset date | 6/8/2030 |
| Caveat | None |
| Vendor | IDEMIA |
| Algorithm | ACVP Cert |
|---|---|
| AES-CBC | A4945 |
| AES-CMAC | A4945 |
| AES-ECB | A4945 |
| Counter DRBG | A4945 |
| ECDSA KeyGen (FIPS186-4) | A4945 |
| ECDSA KeyVer (FIPS186-4) | A4945 |
| ECDSA SigGen (FIPS186-4) | A4945 |
| ECDSA SigVer (FIPS186-4) | A4945 |
| HMAC-SHA-1 | A4945 |
| HMAC-SHA2-256 | A4945 |
| HMAC-SHA2-512 | A4945 |
| KAS-ECC CDH-Component (CVL) | A4945 |
| KAS-ECC Sp800-56Ar3 | A4945 |
| KDF SP800-108 | A4945 |
| RSA Decryption Primitive Sp800-56Br2 (CVL) | A4945 |
| RSA KeyGen (FIPS186-4) | A4945 |
| RSA SigGen (FIPS186-4) | A4945 |
| RSA Signature Primitive (CVL) | A4945 |
| RSA SigVer (FIPS186-4) | A4945 |
| SHA-1 | A4945 |
| SHA2-224 | A4945 |
| SHA2-256 | A4945 |
| SHA2-384 | A4945 |
| SHA2-512 | A4945 |
| Requirement area | Level |
|---|---|
| Cryptographic Module Specification | 2 |
| Cryptographic Module Interfaces | 3 |
| Roles, Services, and Authentication | 4 |
| Software/Firmware Security | 5 |
| Operational Environment | 6 |
| Physical Security | 7 |
| Self-Tests | 1 |
| Life-Cycle Assurance | 1 |
| Mitigation of Other Attacks | 1 |
flowchart LR
%% Deterministic review-risk graph for ID-One PIV 243 in NPIVP & CIV Configurations
%% Review prompts and evidence gaps, NOT vulnerability findings.
subgraph CMVP["CMVP-disclosed clues"]
C2["[high] Firmware update / recovery<br/>/ rollback services<br/><i>Manage SD Keys and PIV Global Reference Data<br/>Manage SD Data<br/>Personaliz e PIV Data (Cleartext )</i>"]
C3["[high] Unauthenticated /<br/>self-test / status service<br/>surface<br/><i>NPIVP (612431XX00)<br/>CIV+ FIPS (612432XX10)<br/>AES-ECB</i>"]
C5["[low] Protocol / secure-channel<br/>references (may be KDF<br/>names, not a live channel)<br/><i>HTTPS<br/>no library/version identified</i>"]
C6["[low] Operating system / runtime<br/>referenced (boundary<br/>membership not asserted)<br/><i>operating system<br/>application</i>"]
end
subgraph Inference["Derived inference"]
I2["Trusted code is reachable<br/>through update and<br/>recovery paths."]
I3["Some services may process<br/>input before, or without,<br/>operator authentication."]
I5["Possible only, a protocol<br/>is referenced, but whether<br/>it is a live channel or<br/>only a KDF/algorithm name<br/>is unconfirmed."]
I6["Possible only, a<br/>runtime/OS is referenced,<br/>but its membership in the<br/>cryptographic boundary is<br/>not established."]
end
subgraph Risk["Reviewer question"]
R2["Are update images<br/>authenticated before<br/>parsing, and are<br/>downgrade/rollback paths<br/>constrained?"]
R3["Can unauthenticated<br/>services leak state,<br/>consume resources, or<br/>transition security state?"]
R5["If a live TLS/SSH/IKE<br/>channel exists, could<br/>library CVEs apply, or is<br/>this only a<br/>KDF/documentation name?"]
R6["If the OS/runtime is<br/>in-boundary, could its<br/>CVEs be hidden by<br/>firmware-only versioning?"]
end
subgraph Evidence["Evidence needed to close"]
E2["update image format ·<br/>signature-before-parse<br/>proof · anti-rollback /<br/>downgrade policy"]
E3["pre-auth reachability<br/>matrix · rate limits and<br/>output redaction ·<br/>abuse-case tests"]
E5["confirm the disclosure<br/>itself (keyword hit,<br/>context unverified) ·<br/>library identity and<br/>version ·<br/>certificate-validation<br/>behaviour · protocol-CVE<br/>disposition"]
E6["confirm the disclosure<br/>itself (keyword hit,<br/>context unverified) ·<br/>runtime identity and<br/>config · kernel/runtime<br/>hardening profile ·<br/>patch/backport manifest"]
end
C2 --> I2 --> R2 --> E2
C3 --> I3 --> R3 --> E3
C5 --> I5 --> R5 --> E5
C6 --> I6 --> R6 --> E6
classDef clue fill:#eef3f9,stroke:#6f7f91,color:#1f3a5f;
classDef infer fill:#fff7e6,stroke:#b98500,color:#6b4e00;
classDef risk fill:#fbe9e9,stroke:#b02a2a,color:#7a1f1f;
classDef evidence fill:#e6f4ea,stroke:#1e7d34,color:#14532d;
class C2,C3,C5,C6 clue;
class I2,I3,I5,I6 infer;
class R2,R3,R5,R6 risk;
class E2,E3,E5,E6 evidence;flowchart LR
%% Deterministic clue tier for ID-One PIV 243 in NPIVP & CIV Configurations
%% confidence: high = structured record field; medium = structured but soft; low (dashed) = bare keyword hit, context unverified
subgraph CMVP["CMVP-disclosed clues (deterministic)"]
C2["[high] Firmware update / recovery / rollback services<br/><i>Manage SD Keys and PIV Global Reference Data<br/>Manage SD Data<br/>Personaliz e PIV Data (Cleartext )</i><br/>src: securityPolicy.services"]
C3["[high] Unauthenticated / self-test / status service surface<br/><i>NPIVP (612431XX00)<br/>CIV+ FIPS (612432XX10)<br/>AES-ECB</i><br/>src: securityPolicy.services"]
C5["[low] Protocol / secure-channel references (may be KDF names, not a live channel)<br/><i>HTTPS<br/>no library/version identified</i><br/>src: text:keyword"]
C6["[low] Operating system / runtime referenced (boundary membership not asserted)<br/><i>operating system<br/>application</i><br/>src: text:keyword"]
end
classDef clueHigh fill:#eef3f9,stroke:#2f6fb0,stroke-width:2px,color:#1f3a5f;
classDef clueMedium fill:#eef3f9,stroke:#6f7f91,color:#1f3a5f;
classDef clueLow fill:#f7f7f7,stroke:#999,stroke-dasharray:4 4,color:#444;
class C2,C3 clueHigh;
class C5,C6 clueLow;IDEMIA ID-One PIV 243 in NPIVP & CIV Configurations Document Version 1.3 Last update: 2025-05-14 Prepared by: atsec information security corporation
Austin, TX 78759 www.atsec.com © 2025 IDEMIA / atsec information security.
ID-One PIV 243 Table of Contents © 2025 IDEMIA / atsec information security.
ID-One PIV 243 © 2025 IDEMIA / atsec information security.
ID-One PIV 243 List of Tables List of Figures © 2025 IDEMIA / atsec information security.
| Name | ISO Section | Requirement | Level |
|---|---|---|---|
| 1 | 1 | General | 2 |
| 2 | 2 | Cryptographic module specification | 2 |
| 3 | 3 | Cryptographic module interfaces | 2 |
| 4 | 4 | Roles, services, and authentication | 3 |
| 5 | 5 | Software/Firmware security | 2 |
| 6 | 6 | Operational environment | N/A |
| 7 | 7 | Physical security | 3 |
| 8 | 8 | Non-invasive security | N/A |
| 9 | 9 | Sensitive security parameter management | 2 |
| 10 | 10 | Self-tests | 3 |
| 11 | 11 | Life-cycle assurance | 3 |
| 12 | 12 | Mitigation of other attacks | 3 |
| Overall Level | Overall Level | 2 |
This document defines the Security Policy for the ID-One PIV 243 cryptographic module from IDEMIA when configured by IDEMIA in FIPS 140-3 Level 2 mode of operation, and hereafter denoted the module. The module, validated to FIPS 140-3 overall Security Level 2, is a single chip module implementing the Global Platform operational environment, with Card Manager and ID-One PIV 243 Applet.
The FIPS 140-3 security levels for the module are as follows: N/A N/A Table 1: Security Levels © 2025 IDEMIA / atsec information security.
Purpose and Use: The ID-One PIV 243 in NPIVP & CIV Configurations module implements cryptographic services for the Global Platform operational environment, with Card Manager and ID-One PIV Applet. Module Type: Hardware Module Embodiment: SingleChip Cryptographic Boundary: The module is designed to be embedded into a plastic card body, with a contact plate and/or contactless antenna connections, or in a USB token or other standard IC packaging, such as SOIC, QFN or MicroSD. The physical form of the module is depicted in Figure 1 below. The cryptographic boundary of the module is the surface and edges of the die and associated bond pads for the module's interfaces, shown as circles in the figure. See Table 12: Ports and Interfaces for the function of each interface. Figure 1: Depiction of Physical Form © 2025 IDEMIA / atsec information security.
ID-One PIV 243 Figure 2: Block Diagram Section 4 describes applet functionality in greater detail. The JavaCard and Global Platform APIs are internal interfaces available only to applets. Only applet services are available at the card edge (the interfaces that cross the cryptographic boundary). In the figure above, the Security Domain Verifier prevents loading an unauthorized (unsigned) code package into the module and does not provide separate services. The POST application provides on-demand execution of the conditional Cryptographic Algorithms Self-Test (CAST) and the MSFT PNP application provides identification of the associated minidriver when the module is used within a Microsoft Windows Environment. All code is executed from ROM and NVM. The chip family provides accelerators for AES, RSA, ECC, CRC and an SP800-90B ESV. The communications options for contact and contactless configurations are present in the physical circuitry of all members of the processor family but are selectively enabled during module manufacturing. © 2025 IDEMIA / atsec information security.
| Name | Model | Hardware Version | Firmware Version | Processor | Features |
|---|---|---|---|---|---|
| Cosmo X FIPS | Cosmo X FIPS | 09A4D1 | 418424 (612431XX00, 612432XX00, 612432XX10) | 32-bit Arm® | Contact-Only, Contactless-Only or Dual Interface |
| Name | Description | Indicator | Type |
|---|---|---|---|
| NPIVP (612431XX00) | The NPIVP (NIST Personal Identity Verification Program) configuration is FIPS 201-3 compliant and designed to be used by US Federal Agencies for PIV and PIV-I Cards. | The indicator of mode of operations of a given ID-One PIV instance can be retrieved at any time using the READ BINARY command (PIV Info Unauthenticated service) on its Elementary file (EF) with SFI=01. The module will return "Running in FIPS140-3 Level 2 Mode of Operations" in ASCII | Approved |
| CIV FIPS (612432XX00) | The CIV FIPS is the configuration for Commercial | The indicator of mode of operations of a given ID-One PIV | Approved |
Tested Module Identification
There are no components within the cryptographic boundary excluded from the FIPS 140-3 requirements.
Modes List and Description: © 2025 IDEMIA / atsec information security.
| Name | Description | Role Access | Input |
|---|---|---|---|
| CIV+ FIPS (612432XX10) | Approved | The CIV+ configuration is the CIV configuration with an additional instance of the ID- One PIV® applet, called "eStickers", for additional data and keys outside of HSPD#12 interoperability requirements specified by FIPS 201. | The indicator of mode of operations of a given ID-One PIV instance can be retrieved at any time using the READ BINARY command (PIV Info Unauthenticated service) on its Elementary file (EF) with SFI=01. The module will return "Running in FIPS140-3 Level 2 Mode of Operations" in ASCII |
| Name | CAVP Cert | Properties | Reference |
|---|---|---|---|
| AES-CBC | A4945 | Direction - Decrypt, Encrypt Key Length - 128, 192, 256 | SP 800-38A |
| AES-CMAC | A4945 | Direction - Generation Key Length - 192, 256 | SP 800-38B |
| AES-ECB | A4945 | Direction - Decrypt, Encrypt Key Length - 128, 192, 256 | SP 800-38A |
| Counter DRBG | A4945 | Prediction Resistance - No Mode - AES-256 Derivation Function Enabled - Yes | SP 800-90A Rev. 1 |
| ECDSA KeyGen (FIPS186-4) | A4945 | Curve - P-224, P-256, P-384, P-521 Secret Generation Mode - Testing Candidates | FIPS 186-4 |
| ECDSA KeyVer (FIPS186-4) | A4945 | Curve - P-224, P-256, P-384, P-521 | FIPS 186-4 |
| ECDSA SigGen (FIPS186-4) | A4945 | Component - No, Yes Curve - P-224, P-256, P-384, P-521 Hash Algorithm - SHA2-224, SHA2- 256, SHA2-384, SHA2-512 | FIPS 186-4 |
| ECDSA SigVer (FIPS186-4) | A4945 | Component - No, Yes Curve - P-224, P-256, P-384, P-521 Hash Algorithm - SHA2-224, SHA2- 256, SHA2-384, SHA2-512 | FIPS 186-4 |
| HMAC-SHA-1 | A4945 | Key Length - Key Length: 8-1016 Increment 8 | FIPS 198-1 |
| HMAC-SHA2-256 | A4945 | Key Length - Key Length: 8-1016 Increment 8 | FIPS 198-1 |
| HMAC-SHA2-512 | A4945 | Key Length - Key Length: 8-1016 Increment 8 | FIPS 198-1 |
| KAS-ECC CDH-Component (CVL) | A4945 | Function - Key Pair Generation Curve - P-256, P-384, P-521 | SP 800-56A Rev. 3 |
| KAS-ECC Sp800-56Ar3 | A4945 | Domain Parameter Generation Methods - P-256, P-384, P-521 Function - Key Pair Generation Scheme - onePassDh - KAS Role - Responder KDF Methods - oneStepKdf - Key Length - 1024 | SP 800-56A Rev. 3 |
| KDF SP800-108 | A4945 | KDF Mode - Counter Supported Lengths - Supported Lengths: 64, 256 | SP 800-108 Rev. 1 |
| RSA Decryption Primitive Sp800-56Br2 (CVL) | A4945 | SP 800-56B Rev. 2 | |
| RSA KeyGen (FIPS186-4) | A4945 | Key Generation Mode - B.3.6 Modulo - 2048, 3072, 4096 | FIPS 186-4 |
| RSA SigGen (FIPS186-4) | A4945 | Signature Type - PKCSPSS Modulo - 2048, 3072, 4096 | FIPS 186-4 |
| RSA Signature Primitive (CVL) | A4945 | Private Key Format - crt | FIPS 186-4 |
| RSA SigVer (FIPS186-4) | A4945 | Signature Type - PKCSPSS Modulo - 1024, 2048, 3072, 4096 | FIPS 186-4 |
| SHA-1 | A4945 | Message Length - Message Length: 0-65536 Increment 8 Large Message Sizes - 1 | FIPS 180-4 |
| SHA2-224 | A4945 | Message Length - Message Length: 0-65536 Increment 8 Large Message Sizes - 1 | FIPS 180-4 |
| SHA2-256 | A4945 | Message Length - Message Length: 0-65536 Increment 8 Large Message Sizes - 1 | FIPS 180-4 |
| SHA2-384 | A4945 | Message Length - Message Length: 0-65536 Increment 8 Large Message Sizes - 1 | FIPS 180-4 |
| SHA2-512 | A4945 | Message Length - Message Length: 0-65536 Increment 8 Large Message Sizes - 1 | FIPS 180-4 |
Table 3: Modes List and Description The mode of operation is defined by IDEMIA during manufacturing and cannot be changed. The module does not allow the changing of modes after manufacturing.
Approved Algorithms: The module only implements approved algorithms and does not implement any non-approved algorithms. Therefore, the module only has approved mode of operation. © 2025 IDEMIA / atsec information security.
ID-One PIV 243 © 2025 IDEMIA / atsec information security.
| Name | Properties | ||
|---|---|---|---|
| CKG | HMAC:112 to 1016 bits AES keys:128, 192, 256 bit keys Generated by:CTR DRBG | ID-One Cosmo X FIPS | SP800-133r2 |
ID-One PIV 243 Table 4: Approved Algorithms Vendor-Affirmed Algorithms: Table 5: Vendor-Affirmed Algorithms Non-Approved, Allowed Algorithms: N/A for this module. © 2025 IDEMIA / atsec information security.
| Name | Description | Approved Functions | Type | Properties | |
|---|---|---|---|---|---|
| RSADP | RSA decryption primitive | RSA decryption primitive with 1024-bit modulus allowed per iG 2.4.A | |||
| AES-ECB | Symmetric encryption and Decryption | AES-ECB: (A4945) | BC-UnAuth | Key Size:128, 192, 256 bits Key Strength:128, 192, 256 bits | |
| AES-CBC | Symmetric encryption and Decryption | AES-CBC: (A4945) | BC-UnAuth | Key Size:128, 192, 256 bits Key Strength:128, 192, 256 bits | |
| AES-CMAC | Message Authentication Code | AES-CMAC: (A4945) | MAC | Key Size:128, 192, 256 bits Key Strength:128, 192, 256 bits | |
| CTR DRBG | CTR_DRBG using AES-256 | Counter DRBG: (A4945) | DRBG | Derivation Function:Enabled Prediction Resistance:No Key Size:256 bits Key Strength:256 bits | |
| ECDSA keyGen | ECDSA key generation using Testing Candidates | ECDSA KeyGen (FIPS186- 4): (A4945) | AsymKeyPair -KeyGen CKG | Curves:P-224, P- 256, P-384, P-521 Strength:112, 128, 192, 256 bits | |
| ECDSA keyVer | ECDSA key verification | ECDSA KeyVer (FIPS186- 4): (A4945) | AsymKeyPair -KeyVer | Curves:P-224, P- 256, P-384, P-521 Strength:112, 128, 192, 256 bits |
| Name | Description | Approved Functions | Type | Properties | |
|---|---|---|---|---|---|
| RSADP | RSA decryption primitive | RSA decryption primitive with 1024-bit modulus allowed per iG 2.4.A | |||
| AES-ECB | Symmetric encryption and Decryption | AES-ECB: (A4945) | BC-UnAuth | Key Size:128, 192, 256 bits Key Strength:128, 192, 256 bits | |
| AES-CBC | Symmetric encryption and Decryption | AES-CBC: (A4945) | BC-UnAuth | Key Size:128, 192, 256 bits Key Strength:128, 192, 256 bits | |
| AES-CMAC | Message Authentication Code | AES-CMAC: (A4945) | MAC | Key Size:128, 192, 256 bits Key Strength:128, 192, 256 bits | |
| CTR DRBG | CTR_DRBG using AES-256 | Counter DRBG: (A4945) | DRBG | Derivation Function:Enabled Prediction Resistance:No Key Size:256 bits Key Strength:256 bits | |
| ECDSA keyGen | ECDSA key generation using Testing Candidates | ECDSA KeyGen (FIPS186- 4): (A4945) | AsymKeyPair -KeyGen CKG | Curves:P-224, P- 256, P-384, P-521 Strength:112, 128, 192, 256 bits | |
| ECDSA keyVer | ECDSA key verification | ECDSA KeyVer (FIPS186- 4): (A4945) | AsymKeyPair -KeyVer | Curves:P-224, P- 256, P-384, P-521 Strength:112, 128, 192, 256 bits | |
| ECDSA sigGen | ECDSA Digital Signature Generation | ECDSA SigGen (FIPS186- 4): (A4945) | DigSig- SigGen | Message Digest:SHA2-224, SHA2-256, SHA2- 384, SHA2-512 Curves:P-224, P- 256, P-384, P-521 Strength:112, 128, 192, 256 bits | |
| ECDSA sigGen component | ECDSA Digital Signature Generation Component | ECDSA SigGen (FIPS186- 4): (A4945) | DigSig- SigGen | Curves:P-224, P- 256, P-384, P-521 Strength:112, 128, 192, 256 bits | |
| ECDSA sigVer | ECDSA Digital Signature Verification | ECDSA SigVer (FIPS186- 4): (A4945) | DigSig- SigVer | Message Digest:SHA2-224 Curves:P-224, P- 256, P-384, P-521 Strength:112, 128, 192, 256 bits | |
| KAS-ECC | ECDH Key Agreement Scheme | KAS-ECC Sp800- 56Ar3: (A4945) | KAS-Full | Scheme:onePassD h KDF Method:oneStepKd f Curves:P-256, P- 384, P-521 Strength:128, 192, 256 bits | |
| KAS-ECC CDH Component | ECDH Component | KAS-ECC CDH- Component : (A4945) | KAS-SSC | Curves:P-224, P- 256, P-384, P-521 Strength:112, 128, 192, 256 bits | |
| RSA keyGen | RSA Key Generation | RSA KeyGen (FIPS186- 4): (A4945) | AsymKeyPair -KeyGen CKG | Generation Method:A.1.6 Probable Primes with conditions based on Auxiliary Probable Primes Key Size:2048, 3072, 4096 bits Key Strength:112, 128, 150 bits | |
| RSA sigGen | RSA Digital Signature Generation | RSA SigGen (FIPS186- 4): (A4945) | DigSig- SigGen | Scheme:PSS Key Size:2048, 3072, 4096 bits Key Strength:Strength: 112, 128, 150 bits | |
| RSA sigPrim | RSA Digital Signature Generation primitive | RSA Signature Primitive: (A4945) | DigSig- SigGen | Key Size:2048, 3072, 4096 bits Key Strength:112, 128, 150 bits | |
| RSA sigVer | RSA Digital Signature Verification | RSA SigVer (FIPS186- 4): (A4945) | DigSig- SigVer | Scheme:PSS using SHA2-256 Key Size:2048 bits Key Strength:112 bits | |
| RSA Decryption Primitive | RSA decryption primitive | RSA Decryption Primitive Sp800- 56Br2: (A4945) RSADP: () | KTS-Wrap | Key Size:2048, 3072, 4096 bits Key Strength:112, 128, 150 bits Key Size (RSADP):1024 bits with no security claim | |
| HMAC | Message Authentication Code using HMAC with SHA | HMAC-SHA- 1: (A4945) HMAC- SHA2-256: (A4945) HMAC- SHA2-512: (A4945) | MAC | Key Size:112 to 1016 bits Key Strength:112 to 1016 bits | |
| KBKDF SP 800-108 | Key Based Key Derivation with Counter | KDF SP800- 108: (A4945) | KBKDF | Fixed Data Order:Middle Fixed Data Key Size:128, 192, 256 bits Key Strength:128, 192, 256 bits | |
| SHA | Message Digest Generation using SHA-1, SHA2-224, | SHA-1: (A4945) SHA2-224: | SHA | ||
| SHA2-256, SHA2- 384, SHA2-512 | SHA2-256, SHA2- 384, SHA2-512 | (A4945) SHA2-256: (A4945) SHA2-384: (A4945) SHA2-512: (A4945) | |||
| KTS (AES + HMAC) key wrapping/unwrappin g | Symmetric key wrapping/unwrappin g | AES-CBC: (A4945) AES-CMAC: (A4945) AES-ECB: (A4945) | KTS-Wrap | Key Size:128, 192, 256 bits Key Strength:128, 192, 256 bits |
ID-One PIV 243 Non-Approved, Allowed Algorithms with No Security Claimed: Table 6: Non-Approved, Allowed Algorithms with No Security Claimed Non-Approved, Not Allowed Algorithms: N/A for this module.
s (FIPS1864): (A4945) (FIPS1864): (A4945) © 2025 IDEMIA / atsec information security.
ID-One PIV 243 s DigSigSigGen (FIPS1864): (A4945) DigSigSigGen (FIPS1864): (A4945) DigSigSigVer (FIPS1864): (A4945) h f Sp80056Ar3: CDHComponent (FIPS1864): (A4945) © 2025 IDEMIA / atsec information security.
ID-One PIV 243 s DigSigSigGen (FIPS1864): (A4945) DigSigSigGen DigSigSigVer (FIPS1864): (A4945) Sp80056Br2: HMACSHA2-256: HMACSHA2-512: KDF SP800108: © 2025 IDEMIA / atsec information security.
ID-One PIV 243 g g s Table 7: Security Function Implementations
Compliance to SP 800-56ARev3 assurances For KAS-ECC, the module satisfies IG D.F Scenario 2 path (2) (i.e., tested compliance with One Pass DH key agreement schemes followed by the derivation of the key as shown in Section 5.8 of SP 800-56Arev3). The key derivation function complies to SP 800-56C rev2 (i.e., One-Step KDF). Furthermore, the module obtained the appropriate assurances, as required in Sections 5.6.2 of SP 800-56A rev3.
5.6.2.1.1 Owner Assurance of Correct Generation: The module performs key generation for
ephemeral keys. Using the key generation algorithm validated by the CAVP (ECDSA KeyGen Cert. #A4945). For static keys, a trusted third party (TTP) generates the key pair and securely enters the module using SP800-38F key wrapping (AES + CMAC). The module will perform a pairwise consistency check upon generating ECDH keys.
5.6.2.1.2 Owner Assurance of Private-Key Validity: For ephemeral key pair, the module provides
the assurance since the module generates it. For static key pairs, after receiving the key pair, the module performs a separate check to determine that the private key is in the correct interval.
5.6.2.1.3 Owner Assurance of Public-Key Validity: For both static and ephemeral key pairs, the
module performs a full public-key validation as a separate process from the key-pair generation process.
5.6.2.1.4 Owner Assurance of Pair-wise Consistency: The module performs a pair-wise
consistency test when the module generates ephemeral key pairs and when static key-pairs are entered into the module.
5.6.2.1.5 Owner Assurance of Possession of the Private Key: For ephemeral key pairs, The owner
generates the key pair as specified in Section 5.6.1 and for ephemeral key pairs, the module performs a pair-wise consistency test when the key pairs are entered. © 2025 IDEMIA / atsec information security.
5.6.2.2.1 Recipient’s assurance Static Public-Key Validity: The module makes used of approved
EC curves listed in SP800-140D and performs a successful full public-key validation of the received public key i.e., ECC Full Public-Key Validation Routine specified in SP800-56A rev3 section 5.6.2.3.3.
5.6.2.2.2 Recipient Assurance of Ephemeral Public-Key Validity: Not applicable. The module
generates ephemeral keys and does not ever receive them.
5.6.2.2.3 Recipient’s assurance of owner’s possession of private key can be met via the use of a
Trusted Third party that requires the key confirmation procedure. Both of which are handled by the entity outside of the module that requested the ECDH Key Agreement service from the module. That is, such checks are out of the module's scope.
5.6.2.2.4 Recipient Assurance of the Owner’s Possession of an Ephemeral Private Key: Not
applicable. The module generates ephemeral keys and does not ever receive them.
The module performs the required public key validation before initiating the handshake following
Compliance to SP 800-56BRev3 assurances For KTS RSA, the tester verified the implementation satisfies IG D.G by employing an approved RSA-based key transport scheme as specified in SP 800-56Brev2. The following summary of assurances, as defined in Sections 5 and 6 of SP 800-56Brev2: Section 5.1 – The module uses an approved hash function (SHS, Cert. #A4945) for mask generation during RSA-OEAP encryption. Section 5.2 and Section 5.6 – N/A, The module does not implement key confirmation. Section 5.3 - The module uses an approved random bit generator (CTR_DRBG, Cert. #A4945) when generating random values. Section 5.4 and Section 5.5 – N/A, The module does not implement a key agreement scheme (i.e., KAS1). For addition assurances found in its Section 6 (specifically SP800-56Brev2 Section 6.4 Required Assurances):
| Name | Type | Strength | Operational Environment | Conditioning Component | |
|---|---|---|---|---|---|
| Infineon SLC37 32-bit Security Controller V11 Entropy Source | Physical | 32-bit blocks which can be concatenated | SLC37 32-bit Security Controller V11 | 13.376- bits per 32-bit block | non-vetted conditioning function |
| Cert | Vendor Name | |
|---|---|---|
| Number | ||
| E107 | Infineon Technologies AG |
ID-One PIV 243 Only after the above assurances are successfully met, shall the entity use the peer's public key to perform the RSA key wrapping (encapsulation) service of the module."
Table 8: Entropy Certificates Table 9: Entropy Sources RNG Information: The module implements an approved SP 800-90Ar1 Deterministic Random Bit Generator in the form of CTR_DRBG. The DRBG seed is generated from the SP 800-90B
The module implements key generation services for RSA, ECDSA, EC Diffie-Hellman, and AES keys in compliance to SP800-133rev2 Cryptographic Key Generation (CKG, vendor affirmed).
The module provides an approved SP800-56Arev3 EC Diffie-Hellman Key Agreement Scheme that is fully compliant with IG D.F scenario 2 path (2). The module provides an approved SP800-38F Key Transport that is fully compliant to IG D.G i.e., employing an approved key-wrapping technique using a “combination” method: AES-CBC together with an approved authentication method AES-CMAC.
The GP Secure Channel Protocol '03' establishment provides mutual authentication service as well as establishment of a secure channel to protect confidentiality and integrity of the transmitted data. The PIV Secure Messaging protocol defined in SP800-73-4 and ANSI 504-1 establishes a secure channel to protect confidentiality and integrity of transmitted information and allows the off-card entity initiating the PIV Secure Messaging to authenticate the module. Unlike GP Secure Channel, the PIV Secure Messaging does not allow the module to authenticate the off-card entity. © 2025 IDEMIA / atsec information security.
ID-One PIV 243 The PIV Secure Messaging protocol conforms to SP800-56A for the establishment of a shared secret and key derivation for session keys. © 2025 IDEMIA / atsec information security.
| Name | Physical Port | Logical Interface | Data That Passes |
|---|---|---|---|
| RST [ISO 7816: Reset] Not available in contactless-only configurations | RST [ISO 7816: Reset] Not available in contactless-only configurations | Control Input | None |
| CLK [ISO 7816: Clock] Not available in contactless-only configurations | CLK [ISO 7816: Clock] Not available in contactless-only configurations | Control Input | None |
| I/O [ISO 7816: Input/Output] Not available in contactless-only configurations | I/O [ISO 7816: Input/Output] Not available in contactless-only configurations | Data Input Data Output Control Input Status Output | APDU Command data field; ATR and APDU Response data field; APDU Header (CLA INS P1-P2); Status Word SW1-SW2 |
| LA, LB [ISO 1443: Antenna] (Not available in contact-only configurations) | LA, LB [ISO 1443: Antenna] (Not available in contact-only configurations) | Data Input Data Output Control Input Status Output | APDU Command data field; ATR and APDU Response data field; APDU Header (CLA INS P1-P2); Status Word SW1-SW2 |
| Vcc, GND [ISO 7816: Supply voltage] (Not available in contactless-only configurations) | Vcc, GND [ISO 7816: Supply voltage] (Not available in contactless-only configurations) | Power | None |
Table 10: Ports and Interfaces The module does not implement any control output interface.
The module does not implement a trusted channel. The control interface is inhibited while in the error state without any exceptions. © 2025 IDEMIA / atsec information security.
| Name | Description | Strength | ||
|---|---|---|---|---|
| GP Secure Channel Protocol Authentication | Provides authentication for the CO role | 1/(2^128) | AES-CMAC (A4945) | 9/(2^128) |
| PIV Symmetric Key Authentication | Provides authentication for the PIV Application Administrator | 1/(2^128) | AES-ECB (A4945) | 9/(2^128) |
| PIV Secret Value Authentication | Provides authentication for the user | 1/((10^6)(11^2)) or 1/((94^6)(95^6)) | PIN Input | 15/((10^6)(11^2)) or 15/((94^6)(95^6)) |
| BIO Authentication | Biometric person authentication On-Card- Comparison (OCC) | See section 4.1 | Biometric authentication using facial, fingerprint, or iris. | See section 4.1 |
On-CardComparison Table 11: Authentication Methods The SD-DAK and SD-DMK keys are used to derive the SC-ENC and SC-C-MAC keys, respectively. The off-card entity participating in the mutual authentication sent a 64-bit challenge to the Smart Card together with the key set version to use. The Smart Card together with the key set version to use. generates its own challenge and computes a 64-bit cryptogram with SC-C-MAC key and both challenges. The Smart Card cryptogram and challenge are sent to the off-card entity which checks the Smart Card cryptogram and creates its own 64-bit cryptogram with both challenges. A 64-bit message authentication code (MAC) is also computed on the command containing the off-card entity cryptogram with AES-CMAC and SC-C-MAC key, the MAC is concatenated to the command, and the command is sent to the Smart Card. The Smart Card checks the message authentication code and compares the received cryptogram to the calculated cryptogram. If all of this succeeds, the two participants are mutually authenticated (the external entity is authenticated to the Module in the CO role). The probability that a random attempt will succeed using this authentication method is:
ID-One PIV 243 The module enforces a “slowdown mechanism” that increases the response time between two authentications attempts following a failed authentication, such that no more than nine (9) attempts are possible in a one-minute period. The probability that a random attempt will succeed over a one-minute interval is:
| Name | Description | Role Access | Csps Accessed | Approved Functions | Indicator | Type | Input | Output | |
|---|---|---|---|---|---|---|---|---|---|
| Crypto Officer | CO | Identity | GP Secure Channel Protocol Authentication | ||||||
| PIV Application Administrator | Administrator | Identity | PIV Symmetric Key Authentication PIV Secret Value Authentication | ||||||
| User | User | Identity | PIV Symmetric Key Authentication PIV Secret Value Authentication BIO Authentication | ||||||
| Reset (Show Version) | Power cycle or reset the module. Module version information returned in the card Answer to reset (ATR) | Unauthenti cated | None | N/A | N/A | Module ATR (Contact) or ATS (Contactless) that contains configuration information | |||
| Select | Select an application instance. | Unauthenti cated | None | N/A | AID of Applicatio n to Select. | Successful execution status | |||
| Run Self- Tests | Run all pre- operational and | Unauthenti cated | AES-ECB CTR DRBG ECDSA sigGen | N/A | 'FFFFFFFFF F' Applicatio | Successful execution status |
ID-One PIV 243 determined by the user (or six (6) to sixteen (16) if the module was configured during production to support 16-byte PINs). The minimum length of the PIN is 6 bytes and the maximum 8 or 16 bytes depending on configuration. The worst-case scenario permitted by the module is a minimum length of six (6) characters with the Numeric in ASCII character set and a maximum length of eight (8) characters. The character space for the first six (6) bytes in this scenario is 10 (the values ‘30’ through ‘39’ are permitted) and in the last two (2) characters is 11 (the values ‘30’ through ‘39’ and ‘FF’ are permitted). The probability that a random attempt will succeed using this authentication method is:
15 per modality (Fingerprints, Iris, Facial) so the probability that a random attempt will succeed
over a one-minute interval is:
© 2025 IDEMIA / atsec information security.
| Name | Description | Role Access | Csps Accessed | Approved Functions | Indicator | Type | Input | Output | |
|---|---|---|---|---|---|---|---|---|---|
| PIV Application Administrator | Administrator | Identity | PIV Symmetric Key Authentication PIV Secret Value Authentication | ||||||
| User | User | Identity | PIV Symmetric Key Authentication PIV Secret Value Authentication BIO Authentication | ||||||
| Reset (Show Version) | Power cycle or reset the module. Module version information returned in the card Answer to reset (ATR) | Unauthenti cated | None | N/A | N/A | Module ATR (Contact) or ATS (Contactless) that contains configuration information | |||
| Select | Select an application instance. | Unauthenti cated | None | N/A | AID of Applicatio n to Select. | Successful execution status | |||
| Run Self- Tests | Run all pre- operational and | Unauthenti cated | AES-ECB CTR DRBG ECDSA sigGen | N/A | 'FFFFFFFFF F' Applicatio | Successful execution status |
ID-One PIV 243 Table 12: Roles The module does not include a maintenance role. The module clears previous authentications on power cycle.
The following convention is used to specify access rights to SSPs:
| Name | Description | Role Access | Csps Accessed | Approved Functions | Input | Output |
|---|---|---|---|---|---|---|
| Get DRBG | N/A | Retrieve random numbers. | Unauthenti cated - OS-DRBG- SEED: G,E - OS-DRBG- STATE: G,E | CTR DRBG | Number of bytes or DRBG to retrieve. Up to 252 bytes (2040 bits) of DRBG per command | Requested number of bytes from the DRBG generator |
| Open PIV Secure Messagin g | N/A | Establish a PIV Secure Messaging (SM) communica tions channel. | Unauthenti cated - OS-DRBG- SEED: G,E - OS-DRBG- STATE: G,E - SM-C- MAC: G,E - SM-R- MAC: G,E - SM-CFRM: G,E - PIV-SM- PUB: R - PIV-SM: E - SM-ENC: E | AES-CBC AES-CMAC KAS-ECC | ECC keys | Secure messaging communicatio n channel established |
| Open Global Platform Secure Channel | N/A | Establish a Global Platform Secure Communica tions Channel (SC) with Mutual | Crypto Officer - OS-DRBG- SEED: G,E - OS-DRBG- STATE: G,E - SC-ENC: G,E - SC-C-MAC: G,E - SC-R-MAC: | AES-ECB AES-CMAC KBKDF SP 800- 108 | AES Keys | GP Secure Channel established |
| Authenticat ion. | Authenticat ion. | G,E - SD-DAK: E - SD-DMK: E - SD-DEK: E | ||||
| Get Data (Cleartext ) | N/A | Retrieve from the Module data objects transmitted over a plaintext channel. | Unauthenti cated | None | Tag of the Data Object to Retrieve. | Data Object Retrieved and Successful execution status |
| Get Data (SM) | N/A | Retrieve from the Module data objects transmitted with PIV Secure Messaging. | Unauthenti cated | None | Tag of the Data Object to Retrieve for which the AC are satisfied | Data Object Retrieved and Successful execution status |
| Get Data (SC) | N/A | Retrieve from the Module data objects transmitted through a Global Platform Secure Channel. | Unauthenti cated | None | Tag of the Data Object to Retrieve for which the AC are satisfied | Data Object Retrieved and Successful execution status |
| Get Data with Attestatio n using RSA (Cleartext ) | N/A | Retrieve from the Module data objects together with its attestation value. Transmitte | Unauthenti cated | None | Tag of the Data Object to retrieve for which the AC are satisfied | Data Object retrieved followed by its attestation and Successful execution status. |
| Get Data with Attestatio n using RSA (SM) | N/A | Retrieve from the Module data objects together with its attestation value. Transmitte d with PIV Secure Messaging. Compliant with IG 4.1.A. | Unauthenti cated | None | Tag of the Data Object to retrieve for which the AC are satisfied | Data Object retrieved followed by its attestation and Successful execution status. |
| Get Data with Attestatio n with RSA (SC) | N/A | Retrieve from the Module data objects together with its attestation value. Transmitte d through a Global Platform Secure Channel. Compliant with IG 4.1.A. | Unauthenti cated | None | Tag of the Data Object to retrieve for which the AC are satisfied | Data Object retrieved followed by its attestation and Successful execution status. |
| Get Data with Attestatio n Using | N/A | Retrieve from the Module data, | Unauthenti cated | None | Tag of the Data Object to retrieve | Data Object retrieved followed by its attestation and |
| ECDSA (Cleartext ) | together with its attestation value. Transmitte d over a plaintext channel. Compliant with IG 4.1.A. | for which the AC are satisfied | Successful execution status. | |||
| Get Data with Attestatio n using ECDSA signature (SM) | N/A | Retrieve from the Module data objects together with its attestation value. Transmitte d with PIV Secure Messaging. Compliant with IG 4.1.A. | Unauthenti cated | None | Tag of the Data Object to retrieve for which the AC are satisfied | Data Object retrieved followed by its attestation and Successful execution status. |
| Get Data with Attestatio n using ECDSA (SC) | N/A | Retrieve from the Module data objects together with its attestation value. Transmitte d through a Global Platform Secure Channel. Compliant | Unauthenti cated | None | Tag of the Data Object to retrieve for which the AC are satisfied | Data Object retrieved followed by its attestation and Successful execution status. |
| Card Validation using RSA Card Authentic ation Key (CAK) 9E (Cleartext ) | N/A | Validate the card with its asymmetric Card Authenticat ion Key 9E, in accordance with SP800- 73-4. Transmitte d over a plaintext channel. Compliant with IG 4.1A. | Unauthenti cated | None | challenge data, algorithm, Key) | Authentication cryptogram computed by the module and Successful execution status |
| Card Validation using RSA Card Authentic ation Key (CAK) 9E (SM) | N/A | Validate the card with its asymmetric Card Authenticat ion Key 9E, in accordance with SP800- 73-4. Transmitte d with PIV Secure Messaging. Compliant with IG 4.1A. | Unauthenti cated | None | Authentica tion material (Authentic ation challenge, algorithm, Key) | Authentication cryptogram computed by the module and Successful execution status |
| Card Validation using RSA Card Authentic ation Key | N/A | Validate the card with its asymmetric Card Authenticat | Unauthenti cated | None | Authentica tion material (Authentic ation challenge, | Authentication cryptogram computed by the module and Successful |
| (CAK) 9E (SC) | ion Key 9E, in accordance with SP800- 73-4. Transmitte d through a Global Platform Secure Channel. Compliant with IG 4.1A. | algorithm, Key) | execution status | |||
| Card Validation using ECC Card Authentic ation Key (CAK) 9E (Cleartext ) | N/A | Validate the card with its asymmetric Card Authenticat ion Key 9E, in accordance with SP800- 73-4. Transmitte d over a plaintext channel. Compliant with IG 4.1A. | Unauthenti cated | None | challenge data, algorithm | Authentication cryptogram computed by the module and Successful execution status |
| Card Validation using ECC Card Authentic ation Key (CAK) 9E (SM) | N/A | Validate the card with its asymmetric Card Authenticat ion Key 9E, in accordance with SP800- 73-4. Transmitte d with PIV | Unauthenti cated | None | Authentica tion material (Authentic ation challenge, algorithm, Key) | Authentication cryptogram computed by the module and Successful execution status |
| Card Validation using ECC Card Authentic ation Key (CAK) 9E (SC) | N/A | Validate the card with its asymmetric Card Authenticat ion Key 9E, in accordance with SP800- 73-4. Transmitte d through a Global Platform Secure Channel. Compliant with IG 4.1A. | Unauthenti cated | None | Authentica tion material (Authentic ation challenge, algorithm, Key) | Authentication cryptogram computed by the module and Successful execution status |
| Authentic ation with RSA PIV Authentic ation Key 9A (Cleartext ) | N/A | Validate the card module with its PIV Authenticat ion Key 9A, in accordance with SP800- 73-4. Transmitte d over a plaintext channel. | User - PIV-AUTH (including intermediat e values): E | RSA sigPrim | Authentica tion material (Authentic ation challenge, algorithm, Key) | Authentication cryptogram computed by the module and Successful execution status |
| Authentic ation with RSA PIV Authentic | N/A | Validate the card module with its PIV Authenticat | User - PIV-AUTH (including | RSA sigPrim | Authentica tion material (Authentic ation | Authentication cryptogram computed by the module and Successful |
| ation Key 9A (SM) | ion Key 9A, in accordance with SP800- 73-4. Transmitte d with PIV Secure Messaging. | intermediat e values): E | challenge, algorithm, Key) | execution status | ||
| Authentic ation with RSA PIV Authentic ation Key 9A (SC) | N/A | Authenticat e with PIV Authenticat ion Key 9A, in accordance with SP800- 73-4. Transmitte d through a Global Platform Secure Channel. | User - PIV-AUTH (including intermediat e values): E | RSA sigPrim | Authentica tion material (Authentic ation challenge, algorithm, Key) | Authentication cryptogram computed by the module and Successful execution status |
| Authentic ation with ECC PIV Authentic ation Key 9A (Cleartext ) | N/A | Authenticat e with PIV Authenticat ion Key 9A, in accordance with SP800- 73-4. Transmitte d over a plaintext channel. | User - PIV-AUTH (including intermediat e values): E | ECDSA sigGen component | Authentica tion material (Authentic ation challenge, algorithm, Key) | Authentication cryptogram computed by the module and Successful execution status |
| Authentic ation with ECC PIV Authentic ation Key 9A (SM) | N/A | Authenticat e with PIV Authenticat ion Key 9A, in accordance with SP800- 73-4. Transmitte | User - PIV-AUTH (including intermediat e values): E | ECDSA sigGen component | Authentica tion material (Authentic ation challenge, algorithm, Key) | Authentication cryptogram computed by the module and Successful execution status |
| Authentic ation with ECC PIV Authentic ation Key 9A (SC) | N/A | Authenticat e with PIV Authenticat ion Key 9A, in accordance with SP800- 73-4. Transmitte d through a Global Platform Secure Channel. | User - PIV-AUTH (including intermediat e values): E | ECDSA sigGen component | Authentica tion material (Authentic ation challenge, algorithm, Key) | Authentication cryptogram computed by the module and Successful execution status |
| Digital Signature with RSA PIV Digital Signature Key 9C (Cleartext ) | N/A | Sign an externally generated hash with PIV Digital Signature 9C in accordance with SP800- 73-4. Transmitte d over a plaintext channel. | User - PIV-DS (including intermediat e values): E | RSA sigPrim | Algorithm, Hash Value, Key | Digital Signature |
| Digital Signature with RSA PIV Digital Signature Key 9C (SM) | N/A | Sign an externally generated hash with PIV Digital Signature 9C in accordance with SP800- 73-4. Transmitte d with PIV | User - PIV-DS (including intermediat e values): E | RSA sigPrim | Algorithm, Hash Value, Key | Digital Signature |
| Digital Signature with RSA PIV Digital Signature Key 9C (SC) | N/A | Sign an externally generated hash with PIV Digital Signature 9C in accordance with SP800- 73-4. Transmitte d through a Global Platform Secure Channel. | User - PIV-DS (including intermediat e values): E | RSA sigPrim | Algorithm, Hash Value, Key | Digital Signature |
| Digital Signature with ECC PIV Digital Signature Key 9C (Cleartext ) | N/A | Sign an externally generated hash with PIV Digital Signature 9C in accordance with SP800- 73-4. Transmitte d over a plaintext channel. | User - PIV-DS (including intermediat e values): E | ECDSA sigGen component | Algorithm, Hash Value, Key | Digital Signature |
| Digital Signature with ECC PIV Digital Signature Key 9C (SM) | N/A | Sign an externally generated hash with PIV Digital Signature 9C in accordance with SP800- 73-4. Transmitte d with PIV | User - PIV-DS (including intermediat e values): E | ECDSA sigGen component | Algorithm, Hash Value, Key | Digital Signature |
| Digital Signature with ECC PIV Digital Signature Key 9C (SC) | N/A | Sign an externally generated hash with PIV Digital Signature 9C in accordance with SP800- 73-4. Transmitte d through a Global Platform Secure Channel. | User - PIV-DS (including intermediat e values): E | ECDSA sigGen component | Algorithm, Hash Value, Key | Digital Signature |
| Full Digital Signature (RSA PSS) (Cleartext ) | N/A | RSA PSS Signature with full message hashing performed within the module. Transmitte d over a plaintext channel. | User - DS-HASH (including intermediat e values): E | RSA sigGen SHA | Algorithm, Message, Keys | Digital Signature |
| Full Digital Signature (RSA PSS) (SM) | N/A | RSA PSS Signature with full message hashing performed within the module. Transmitte d with PIV Secure Messaging. | User - DS-HASH (including intermediat e values): E | RSA sigGen SHA | Algorithm, Message, Keys | Digital Signature |
| Full Digital Signature (RSA PSS) (SC) | N/A | RSA PSS Signature with full message hashing performed within the module. Transmitte d through a Global Platform Secure Channel. | User - DS-HASH (including intermediat e values): E | RSA sigGen SHA | Algorithm, Message, Keys | Digital Signature |
| Full Digital Signature (ECDSA) (Cleartext ) | N/A | ECDSA Signature with full message hashing performed within the module. Transmitte d over a plaintext channel. | User - DS-HASH (including intermediat e values): E | ECDSA sigGen SHA | Algorithm, Message, Keys | Digital Signature |
| Full Digital Signature (ECDSA) (SM) | N/A | ECDSA Signature with full message hashing performed within the module. Transmitte d with PIV Secure Messaging. | User - DS-HASH (including intermediat e values): E | ECDSA sigGen SHA | Algorithm, Message, Keys | Digital Signature |
| Full Digital Signature (ECDSA) (SC) | N/A | ECDSA Signature with full message hashing | User - DS-HASH (including intermediat e values): E | ECDSA sigGen SHA | Algorithm, Message, Keys | Digital Signature |
| System Key Services with PIV Key Managem ent Keys (RSA) (Cleartext ) | N/A | Decrypt a key or generate a shared secret using the module Key Manageme nt Keys, in accordance with SP800- 73-4. Transmitte d over a plaintext channel. Key decryption is the use of SP800- 56B Section 7.1.2 RSADP key decryption primitive. | User - PIV-KMK (including intermediat e values): E | RSA Decryption Primitive | Algorithm, RSA Wrapped System Key | Unwrapped key. The unwrapped key is for the outside system and is not used by the module. |
| System Key Services with PIV Key Managem ent Keys (RSA) (SM) | N/A | Decrypt a key or generate a shared secret using the module Key Manageme nt Keys, in accordance with SP800- | User - PIV-KMK (including intermediat e values): E | RSA Decryption Primitive | Algorithm, RSA Wrapped System Key | Unwrapped key. The unwrapped key is for the outside system and is not used by the module. |
ID-One PIV 243 n N/A - OS-DRBGSEED: G,E - OS-DRBGSTATE: G,E g N/A - OS-DRBGSEED: G,E - OS-DRBGSTATE: G,E - SM-RMAC: G,E G,E - PIV-SMPUB: R N/A - OS-DRBGSEED: G,E - OS-DRBGSTATE: G,E G,E G,E © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n G,E ) N/A N/A N/A ) N/A © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n 4.1.A. 4.1.A. N/A 4.1.A. N/A N/A © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n ) 4.1.A. 4.1.A. N/A N/A © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n 4.1.A. ) with SP80073-4. N/A with SP80073-4. N/A N/A © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n with SP80073-4. ) with SP80073-4. with SP80073-4. N/A N/A © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n with SP80073-4. N/A ) with SP80073-4. N/A N/A © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n with SP80073-4. with SP80073-4. ) N/A with SP80073-4. N/A with SP80073-4. N/A © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n with SP80073-4. N/A ) with SP80073-4. N/A with SP80073-4. N/A © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n with SP80073-4. N/A ) with SP80073-4. N/A with SP80073-4. N/A © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n with SP80073-4. N/A ) N/A N/A © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n N/A ) N/A N/A N/A © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n ) with SP80073-4. 7.1.2 N/A N/A © 2025 IDEMIA / atsec information security.
| Name | Description | Security Function | Use | Input | Output | Access |
|---|---|---|---|---|---|---|
| System Key Services with PIV Key Managem ent Keys (RSA) (SC) | N/A | RSA Decryption Primitive | Decrypt a key or generate a shared secret using the module Key Manageme nt Keys, in accordance with SP800- 73-4. Transmitte d through a Global Platform Secure Channel. Key decryption is the use of SP800- 56B Section 7.1.2 RSADP key decryption primitive. | Algorithm, RSA Wrapped System Key | Unwrapped key. The unwrapped key is for the outside system and is not used by the module. | User - PIV-KMK (including intermediat e values): E |
| System Key Services with PIV | N/A | KAS-ECC CDH Component | Decrypt a key or generate a shared | Algorithm, ECC Public key | Unwrapped Shared Secret. The unwrapped | User - PIV-KMK (including |
ID-One PIV 243 n 7.1.2 with SP80073-4. 7.1.2 N/A N/A © 2025 IDEMIA / atsec information security.
| Name | Description | Csps Accessed | Input | Output | ||
|---|---|---|---|---|---|---|
| Key Managem ent Keys (ECDH) (Cleartext ) | secret using the module Key Manageme nt Keys, in accordance with SP800- 73-4. Transmitte d over a plaintext channel. Shared secret generation is the use of SP800- 56A Section 5.7.1.2. | intermediat e values): E | shared secret is for the outside system and is not used by the module. | |||
| System Key Services with PIV Key Managem ent Keys (ECDH) (SM) | Decrypt a key or generate a shared secret using the module Key Manageme nt Keys, in accordance with SP800- 73-4. Transmitte d with PIV Secure Messaging. Shared secret generation is the use of SP800- 56A Section 5.7.1.2. | User - PIV-KMK (including intermediat e values): E | Algorithm, ECC Public key | Unwrapped Shared Secret. The unwrapped shared secret is for the outside system and is not used by the module. | N/A | KAS-ECC CDH Component |
| System Key Services with PIV Key Managem ent Keys (ECDH) (SC) | Decrypt a key or generate a shared secret using the module Key Manageme nt Keys, in accordance with SP800- 73-4. Transmitte d through a Global Platform Secure Channel. Shared secret generation is the use of SP800- 56A Section 5.7.1.2. | User - PIV-KMK (including intermediat e values): E | Algorithm, ECC Public key | Unwrapped Shared Secret. The unwrapped shared secret is for the outside system and is not used by the module. | N/A | KAS-ECC CDH Component |
| Card Validation using Symmetri c Card Authentic ation Key (Cleartext ) | Authenticat e the module with its Symmetric Card Authenticat ion Key, in accordance with SP800- 73-4. Transmitte d over a plaintext channel. Compliant with IG 4.1A. | Unauthenti cated | Authentica tion material (Authentic ation challenge, algorithm, Key) | Authentication cryptogram computed by the module and Successful execution status | N/A | None |
| Card Validation using Symmetri c Card Authentic ation Key (SM) | Authenticat e the module with its Symmetric Card Authenticat ion Key, in accordance with SP800- 73-4. Transmitte d with PIV Secure Messaging. Compliant with IG 4.1A. | Unauthenti cated | Authentica tion material (Authentic ation challenge, algorithm, Key) | Authentication cryptogram computed by the module and Successful execution status | N/A | None |
| Card Validation using Symmetri c Card Authentic ation Key (SC) | Authenticat e the module with its Symmetric Card Authenticat ion Key, in accordance with SP800- 73-4. Transmitte d through a Global Platform Secure Channel. Compliant with IG 4.1A. | Unauthenti cated | Authentica tion material (Authentic ation challenge, algorithm, Key) | Authentication cryptogram computed by the module and Successful execution status | N/A | None |
| External Authentic ation with PIV Admin Key | External Authenticat ion of AA role to the module using PIV | PIV Application Administrat or - | Authentica tion material (Authentic ation Cryptogra | Authentication Challenge,Suc cessful execution status | N/A | AES-ECB |
| (Cleartext ) | Admin Key in accordance with SP800- 73-4. Transmitte d over a plaintext channel. | ADMIN_KEY : E | m, algorithm, Key) | |||
| External Authentic ation with PIV Admin Key (SM) | External Authenticat ion of AA role to the module using PIV Admin Key in accordance with SP800- 73-4. Transmitte d with PIV Secure Messaging. | PIV Application Administrat or - ADMIN_KEY : E | Authentica tion material (Authentic ation Cryptogra m, algorithm, Key) | Authentication Challenge,Suc cessful execution status | N/A | AES-ECB |
| External Authentic ation with PIV Admin Key (SC) | External Authenticat ion of AA role to the module using PIV Admin Key in accordance with SP800- 73-4. Transmitte d through a Global Platform Secure Channel. | PIV Application Administrat or - ADMIN_KEY : E | Authentica tion material (Authentic ation Cryptogra m, algorithm, Key) | Authentication Challenge,Suc cessful execution status | N/A | AES-ECB |
| Mutual Authentic ation with | Mutual Authenticat ion of AA | PIV Application Administrat | Authentica tion material | Authentication cryptogram computed by | N/A | AES-ECB |
| PIV Admin Key (Cleartext ) | role to the module using PIV Admin Key in accordance with SP800- 73-4. Transmitte d over a plaintext channel. | or - ADMIN_KEY : E | (Authentic ation Cryptogra m, algorithm, Key, Authentica tion challenge) | the module, Authentication Challenge,Suc cessful execution status | ||
| Mutual Authentic ation with PIV Admin Key (SM) | Mutual Authenticat ion of AA role to the module using PIV Admin Key in accordance with SP800- 73-4. Transmitte d with PIV Secure Messaging. | PIV Application Administrat or - ADMIN_KEY : E | Authentica tion material (Authentic ation Cryptogra m, algorithm, Key, Authentica tion challenge) | Authentication cryptogram computed by the module, Authentication Challenge,Suc cessful execution status | N/A | AES-ECB |
| Mutual Authentic ation with PIV Admin Key (SC) | Mutual Authenticat ion of AA role to the module using PIV Admin Key in accordance with SP800- 73-4. Transmitte d through a Global Platform Secure Channel. | PIV Application Administrat or - ADMIN_KEY : E | Authentica tion material (Authentic ation Cryptogra m, algorithm, Key, Authentica tion challenge) | Authentication cryptogram computed by the module, Authentication Challenge,Suc cessful execution status | N/A | AES-ECB |
| Mutual Authentic ation with Mutual Authentic ation Key (Cleartext ) | Mutual authenticati on between the module and an Administrat or Key. Transmitte d over a plaintext channel. | PIV Application Administrat or - MUTUAL- AUTH: E | Authentica tion Cryptogra m, algorithm, Admin Key) | Authentication cryptogram computed by the module, Authentication Challenge,Suc cessful execution status | N/A | AES-ECB |
| Mutual Authentic ation with Mutual Authentic ation Key (SM) | Mutual authenticati on between the module and an Administrat or Key. Transmitte d with PIV Secure Messaging. | PIV Application Administrat or - MUTUAL- AUTH: E | Authentica tion Cryptogra m, algorithm, Admin Key) | Authentication cryptogram computed by the module, Authentication Challenge,Suc cessful execution status | N/A | AES-ECB |
| Mutual Authentic ation with Mutual Authentic ation Key (SC) | Mutual authenticati on between the module and an Administrat or Key. Transmitte d through a Global Platform Secure Channel. | PIV Application Administrat or - MUTUAL- AUTH: E | Authentica tion Cryptogra m, algorithm, Admin Key) | Authentication cryptogram computed by the module, Authentication Challenge,Suc cessful execution status | N/A | AES-ECB |
| Global Platform Lock / Unlock | Temporarily lock & unlock the full module or one of its applications using Global | Crypto Officer - SC-ENC: E - SC-C-MAC: E - SC-R-MAC: E | Global Platform card life cycle status to set, and AID of the application | Successful execution status | N/A | AES-CBC AES-CMAC |
| Module Terminati on | Set the card life cycle status to TERMINATE D. All the CSPs are zeroized when the life cycle status is set to TERMINATE D | Crypto Officer - SC-ENC: E,Z - SC-C-MAC: E,Z - SC-R-MAC: E,Z - OS-DRBG- SEED: Z - OS-DRBG- STATE: Z - SD-DAK: Z - SD-DMK: Z - SD-DEK: Z - DAP-AES: Z - PIV-SM: Z - SM-ENC: Z - SM-C- MAC: Z - SM-R- MAC: Z - SM-CFRM: Z - PIN: Z - OCC- Fingerprints : Z - OCC- Facial: Z - OCC-Iris: Z - PUK: Z - ADMIN_PIN: Z - ADMIN_KEY : Z - PIV-AUTH | N/A | Successful execution status | N/A | AES-CBC AES-CMAC |
ID-One PIV 243 n ) with SP80073-4. 5.7.1.2. with SP80073-4. 5.7.1.2. N/A © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n with SP80073-4. 5.7.1.2. N/A ) with SP80073-4. N/A © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n with SP80073-4. N/A with SP80073-4. N/A N/A © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n ) with SP80073-4. with SP80073-4. N/A m, :E with SP80073-4. N/A m, :E N/A m, :E © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n ) with SP80073-4. with SP80073-4. with SP80073-4. m, N/A m, :E N/A m, :E :E © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n ) N/A m, - MUTUALAUTH: E N/A m, - MUTUALAUTH: E N/A m, - MUTUALAUTH: E N/A E E © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n N/A N/A E,Z E,Z E,Z - OS-DRBGSEED: Z - OS-DRBGSTATE: Z Z Z - SM-RMAC: Z Z - OCCFingerprints :Z - OCCFacial: Z Z Z :Z D © 2025 IDEMIA / atsec information security.
| Name | Csps Accessed | Descriptio | Indica | Security |
|---|---|---|---|---|
| n | Access | n | tor | Functions |
ID-One PIV 243 n - MUTUALAUTH: Z - SAMCMAC: Z Z - SAM-KDFENC: Z - TOTPSHA1: Z - TOTPSHA256: Z - TOTPSHA512: Z - PIV-SMPUB: Z - PIV-AUTHPUB - PIV-DSPUB © 2025 IDEMIA / atsec information security.
| Name | Description | Csps Accessed | Approved Functions | Indicator | Input | Output |
|---|---|---|---|---|---|---|
| Load FW with RSA DAP | Load and install application packages (FW). | Crypto Officer - DAP-PUB (including intermediat e values): E | AES-CBC AES-CMAC RSA sigVer | N/A | Signed Packages (FW) | Successful execution status |
| Load FW with AES DAP | Load and install application packages (FW). | Crypto Officer - DAP-AES: E | AES-CBC AES-CMAC | N/A | Signed Packages (FW) | Successful execution status |
| Manage SD Keys and PIV Global Reference Data | Update SD keys and reset PIV Global Reference Data (PINs & BIO with an ID in the Global ID Range). | Crypto Officer - DAP-PUB (including intermediat e values): W,E - SC-ENC: E - SC-C-MAC: E - SC-R-MAC: E - SD-DAK: W - SD-DMK: W - SD-DEK: W - DAP-AES: W - PIN: W - PUK: W - ADMIN_PIN: | AES-CBC AES-CMAC | N/A | SD keys or PIV Global Reference Data | Successful execution status |
| Manage SD Data | Create or update Security Domain (SD) data. | Crypto Officer - SD-DEK: E - SC-ENC: E - SC-C-MAC: E - SC-R-MAC: E | AES-CBC AES-CMAC | N/A | SD Data | Successful execution status |
| Show Status | Retrieve the identificatio n and status of all applications present in the module | Crypto Officer - SC-ENC: E - SC-C-MAC: E - SC-R-MAC: E | AES-CBC AES-CMAC | N/A | Level of details to retrieve | Requested application status and Successful execution status |
| Global Platform DELETE APPLICATI ON | Remove an application and all its data and keys from the module. | Crypto Officer - PIN: Z - OCC- Fingerprints : Z - OCC- Facial: Z - OCC-Iris: Z - PUK: Z - ADMIN_PIN: Z - ADMIN_KEY : Z - PIV-AUTH (including intermediat | AES-CBC AES-CMAC | N/A | AID of the application to remove | Successful execution status |
ID-One PIV 243 n - DS-HASHPUB N/A N/A E N/A W,E E E W W W W © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n W - OCCFingerprints :W - OCCFacial: W W N/A E E N/A E E N/A - OCCFingerprints :Z - OCCFacial: Z Z Z :Z © 2025 IDEMIA / atsec information security.
| Name | Csps Accessed | Descriptio | Indica | Security |
|---|---|---|---|---|
| n | Access | n | tor | Functions |
ID-One PIV 243 n - MUTUALAUTH: Z - SAMCMAC: Z - SM-RMAC: Z Z - TOTPSHA1: Z - TOTPSHA256: Z - TOTPSHA512: Z - PIV-SMPUB: Z - PIV-AUTHPUB - PIV-DSPUB - PIV-KMKPUB © 2025 IDEMIA / atsec information security.
| Name | Description | Csps Accessed | Approved Functions | Indicator | Input | Output |
|---|---|---|---|---|---|---|
| Personaliz e PIV Data (Cleartext ) | Write data into the PIV application. Transmitte d over a plaintext channel. | PIV Application Administrat or - SC-ENC: Z - SC-C-MAC: Z - SC-R-MAC: Z | None | N/A | Data Object or Elementar y file to update. | Successful execution status |
| Personaliz e PIV Data (SM) | Write data into the PIV application. Transmitte d with PIV Secure Messaging. | PIV Application Administrat or - SM-ENC: E,Z - SM-C- MAC: E,Z - SM-R- MAC: E,Z | None | N/A | Data Object or Elementar y file to update. | Successful execution status |
| Personaliz e PIV Data (SC) | Write data into the PIV application. Transmitte d through a Global Platform Secure Channel. | PIV Application Administrat or - SD-DEK: E - SC-ENC: E - SC-C-MAC: E - SC-R-MAC: E | None | N/A | Data Object or Elementar y file to update. | Successful execution status |
| Manage PIV Local Reference Data (Cleartext ) | Personalize authenticati on datum or local biometric data for OCC (i.e. | Crypto Officer - SC-ENC: Z - SC-C-MAC: Z - SC-R-MAC: Z | AES-CBC AES-CMAC | N/A | Local authentica tion datum or biometric | Successful execution status |
| with an ID in the local ID range). Transmitte d over a plaintext channel. | with an ID in the local ID range). Transmitte d over a plaintext channel. | - PIN: W - PUK: W - ADMIN_PIN: W - OCC- Fingerprints : W,Z | data for OCC | |||
| Manage PIV Local Reference Data (SM) | Personalize authenticati on datum or local biometric data for OCC (i.e. with an ID in the local ID range). Transmitte d with PIV Secure Messaging. | Crypto Officer - SM-ENC: E,Z - SM-C- MAC: E,Z - SM-R- MAC: E,Z - PIN: W - PUK: W - ADMIN_PIN: W - OCC- Fingerprints : W,Z | AES-CBC AES-CMAC | N/A | Local authentica tion datum or biometric data for OCC | Successful execution status |
| Manage PIV Local Reference Data (SC) | Personalize authenticati on datum or local biometric data for OCC (i.e. with an ID in the local ID range). Transmitte d through a Global Platform Secure Channel. | Crypto Officer - SD-DEK: E - SC-ENC: E - SC-C-MAC: E - SC-R-MAC: E - PIN: W - PUK: W - ADMIN_PIN: W - OCC- Fingerprints : W,Z | AES-CBC AES-CMAC | N/A | Local authentica tion datum or biometric data for OCC | Successful execution status |
| On-Board- Key- Generatio n (CKG) - | Generate Asymmetric Key pair (RSA) | PIV Application Administrat or | RSA keyGen RSA sigPrim RSA sigVer | N/A | CKG parameter s (algorithm, | Public Key generated, Successful |
| RSA (Cleartext ) | inside the module, and export the public key value. Not supported for PIV Key Manageme nt Keys. Transmitte d over a plaintext channel. | - SC-ENC: Z - SC-C-MAC: Z - SC-R-MAC: Z - PIV-AUTH (including intermediat e values): G - PIV-AUTH- PUB (including intermediat e values): G - PIV-DS (including intermediat e values): G - PIV-DS- PUB (including intermediat e values): G - PIV-SM: G - PIV-SM- PUB: G - DS-HASH (including intermediat e values): G - DS-HASH- PUB (including intermediat e values): G | key size, Key ID) | execution status | ||
| On-Board- Key- Generatio n (CKG) - RSA (SM) | Generate Asymmetric Key pair (RSA) inside the module, and export the public key value. Not supported | PIV Application Administrat or - SM-ENC: E,Z - SM-C- MAC: E,Z - SM-R- MAC: E,Z - PIV-AUTH | RSA keyGen RSA sigPrim RSA sigVer | N/A | CKG parameter s (algorithm, key size, Key ID) | Public Key generated, Successful execution status |
ID-One PIV 243 n - DS-HASHPUB ) N/A Z Z N/A E,Z - SM-RMAC: E,Z N/A E E ) N/A Z Z © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n W - OCCFingerprints : W,Z N/A E,Z - SM-RMAC: E,Z W - OCCFingerprints : W,Z N/A E E W - OCCFingerprints : W,Z On-BoardKeyGeneratio N/A s © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n ) On-BoardKeyGeneratio N/A s Z Z - PIV-AUTHPUB - PIV-DSPUB - PIV-SMPUB: G - DS-HASHPUB E,Z - SM-CMAC: E,Z - SM-RMAC: E,Z © 2025 IDEMIA / atsec information security.
| Name | Description | Csps Accessed | Approved Functions | Access | Input | Output |
|---|---|---|---|---|---|---|
| On-Board- Key- Generatio n (CKG) - RSA (SC) | N/A | Generate Asymmetric Key pair (RSA) inside the module, and export the public key value. Not supported for PIV Key Manageme nt Keys. Transmitte d through a Global | RSA keyGen RSA sigPrim RSA sigVer | PIV Application Administrat or - SD-DEK: E - SC-ENC: E - SC-C-MAC: E - SC-R-MAC: E - PIV-AUTH (including intermediat e values): G - PIV-AUTH- PUB (including | CKG parameter s (algorithm, key size, Key ID) | Public Key generated, Successful execution status |
| Platform Secure Channel. | Platform Secure Channel. | intermediat e values): G - PIV-DS (including intermediat e values): G - PIV-DS- PUB (including intermediat e values): G - PIV-SM: G - PIV-SM- PUB: G - DS-HASH (including intermediat e values): G - DS-HASH- PUB (including intermediat e values): G | ||||
| On-Board- Key- Generatio n (CKG) - ECC (Cleartext ) | N/A | Generate Asymmetric Key pair (ECC) inside the module, and export the public key value. Not supported for PIV Key Manageme nt Keys. Transmitte d over a plaintext channel. | ECDSA keyGen ECDSA sigGen component ECDSA sigVer ECDSA keyVer | PIV Application Administrat or - SC-ENC: Z - SC-C-MAC: Z - SC-R-MAC: Z - PIV-AUTH (including intermediat e values): G - PIV-AUTH- PUB (including intermediat e values): G - PIV-DS (including intermediat e values): G - PIV-DS- | CKG parameter s (algorithm, key size, Key ID) | Public Key generated, Successful execution status |
| On-Board- Key- Generatio n (CKG) - ECC (SM) | N/A | Generate Asymmetric Key pair (ECC) inside the module, and export the public key value. Not supported for PIV Key Manageme nt Keys. Transmitte d with PIV Secure Messaging. | ECDSA keyGen ECDSA sigGen component ECDSA sigVer ECDSA keyVer | PIV Application Administrat or - SM-ENC: E,Z - SM-C- MAC: E,Z - SM-R- MAC: E,Z - PIV-AUTH (including intermediat e values): G - PIV-AUTH- PUB (including intermediat e values): G - PIV-DS (including intermediat e values): G - PIV-DS- PUB (including intermediat e values): G - PIV-SM: G - PIV-SM- | CKG parameter s (algorithm, key size, Key ID) | Public Key generated, Successful execution status |
| On-Board- Key- Generatio n (CKG) - ECC (SC) | N/A | Generate Asymmetric Key pair (ECC) inside the module, and export the public key value. Not supported for PIV Key Manageme nt Keys. Transmitte d through a Global Platform Secure Channel. | ECDSA keyGen ECDSA sigGen component ECDSA sigVer ECDSA keyVer | PIV Application Administrat or - SD-DEK: E - SC-ENC: E - SC-C-MAC: E - SC-R-MAC: E - PIV-AUTH (including intermediat e values): G - PIV-AUTH- PUB (including intermediat e values): G - PIV-DS (including intermediat e values): G - PIV-DS- PUB (including intermediat e values): G - PIV-SM: G - PIV-SM- PUB: G - DS-HASH (including intermediat e values): G - DS-HASH- | CKG parameter s (algorithm, key size, Key ID) | Public Key generated, Successful execution status |
| PIV Put Key (SM) | N/A | Secure inject PIV Application keys. Transmitte d with PIV Secure Messaging. | AES-CBC AES-CMAC KTS (AES + HMAC) key wrapping/unwr apping | Crypto Officer - SM-ENC: E,Z - SM-C- MAC: E,Z - SM-R- MAC: E,Z - ADMIN_KEY : W,Z - PIV-AUTH (including intermediat e values): W,Z - PIV-AUTH- PUB (including intermediat e values): W,Z - PIV-DS (including intermediat e values): W,Z - PIV-DS- PUB (including intermediat e values): W,Z - PIV-KMK (including intermediat e values): W,Z - PIV-KMK- PUB (including intermediat | Algorithm & Encrypted Key value | Successful execution status |
ID-One PIV 243 n On-BoardKeyGeneratio - PIV-AUTHPUB - PIV-DSPUB - PIV-SMPUB: G - DS-HASHPUB N/A s E E - PIV-AUTHPUB © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n On-BoardKeyGeneratio ) - PIV-DSPUB - PIV-SMPUB: G - DS-HASHPUB N/A s Z Z - PIV-AUTHPUB © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n - PIV-SMPUB: G - DS-HASHPUB On-BoardKeyGeneratio N/A s E,Z - SM-CMAC: E,Z - SM-RMAC: E,Z - PIV-AUTHPUB - PIV-DSPUB © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n - DS-HASHPUB On-BoardKeyGeneratio N/A s E E - PIV-AUTHPUB - PIV-DSPUB - PIV-SMPUB: G © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n N/A & E,Z - SM-RMAC: E,Z : W,Z W,Z - PIV-AUTHPUB W,Z W,Z - PIV-DSPUB W,Z W,Z - PIV-KMKPUB © 2025 IDEMIA / atsec information security.
| Name | Csps Accessed | Descriptio | Indica | Security |
|---|---|---|---|---|
| n | Access | n | tor | Functions |
| n | Access | n | tor | Functions |
ID-One PIV 243 n W,Z W,Z - PIV-SMPUB: W,Z - MUTUALAUTH: W,Z W,Z - DS-HASHPUB W,Z - SAMCMAC: W,Z W,Z - SAM-KDFENC: W,Z W,Z - TOTPSHA1: W,Z - TOTPSHA256: W,Z - TOTPSHA512: W,Z E,Z - SM-RMAC: E,Z © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n : W,Z W,Z - PIV-AUTHPUB W,Z W,Z - PIV-DSPUB W,Z W,Z - PIV-KMKPUB W,Z W,Z - PIV-SMPUB: W,Z - MUTUALAUTH: W,Z W,Z - DS-HASHPUB © 2025 IDEMIA / atsec information security.
| Name | Description | Csps Accessed | Approved Functions | Indicator | Input | Output |
|---|---|---|---|---|---|---|
| PIV Put Key (SC) | Secure inject PIV Application keys. Transmitte d through a Global Platform Secure Channel. | Crypto Officer - SD-DEK: E - SC-ENC: E - SC-C-MAC: E - SC-R-MAC: E - ADMIN_KEY : W,Z - PIV-AUTH (including intermediat e values): W,Z - PIV-AUTH- PUB (including intermediat e values): W,Z - PIV-DS (including intermediat e values): | AES-ECB AES-CMAC KTS (AES + HMAC) key wrapping/unwr apping | N/A | Algorithm & Encrypted Key value | Successful execution status |
ID-One PIV 243 n W,Z - SAMCMAC: W,Z W,Z - SAM-KDFENC: W,Z W,Z - TOTPSHA1: W,Z - TOTPSHA256: W,Z - TOTPSHA512: W,Z N/A & E E : W,Z W,Z - PIV-AUTHPUB W,Z © 2025 IDEMIA / atsec information security.
| Name | Csps Accessed | Descriptio | Indica | Security |
|---|---|---|---|---|
| n | Access | n | tor | Functions |
| n | Access | n | tor | Functions |
ID-One PIV 243 n W,Z - PIV-DSPUB W,Z W,Z - PIV-KMKPUB W,Z W,Z - PIV-SMPUB: W,Z - MUTUALAUTH: W,Z W,Z - DS-HASHPUB W,Z - SAMCMAC: W,Z W,Z - SAM-KDFENC: W,Z W,Z - TOTPSHA1: W,Z - TOTPSHA256: © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n W,Z - TOTPSHA512: W,Z E E : W,Z W,Z - PIV-AUTHPUB W,Z W,Z - PIV-DSPUB W,Z W,Z - PIV-KMKPUB © 2025 IDEMIA / atsec information security.
| Name | Description | Csps Accessed | Approved Functions | Indicator | Input | Output |
|---|---|---|---|---|---|---|
| Verify Reference Data (Cleartext ) | Send authenticati on datum (PINs or BIO) for verification. Transmitte d over an | PIV Application Administrat or - PUK: E - ADMIN_PIN: E User - PIN: E | None | N/A | Authentica tion Data | Successful execution status |
| unprotecte d channel. | unprotecte d channel. | - OCC- Fingerprints : E - OCC- Facial: E - OCC-Iris: E | ||||
| Verify Reference Data (SM) | Send authenticati on datum (PINs or BIO) for verification. Transmitte d with a PIV Secure Messaging. | PIV Application Administrat or - PUK: E - ADMIN_PIN: E User - PIN: E - OCC- Fingerprints : E - OCC- Facial: E - OCC-Iris: E | None | N/A | Authentica tion Data | Successful execution status |
| Verify Reference Data (SC) | Send authenticati on datum (PINs or BIO) for verification. Transmitte d through a Global Platform Secure Channel. | PIV Application Administrat or - PUK: E - ADMIN_PIN: E User - PIN: E - OCC- Fingerprints : E - OCC- Facial: E - OCC-Iris: E | None | N/A | Authentica tion Data | Successful execution status |
| Un-verify Reference Data (Cleartext ) | Clear the verification status of previously verified reference | PIV Application Administrat or - PUK: E - | None | N/A | Authentica tion Data | Successful execution status |
ID-One PIV 243 n W,Z W,Z - PIV-SMPUB: W,Z - MUTUALAUTH: W,Z W,Z - DS-HASHPUB W,Z - SAMCMAC: W,Z W,Z - SAM-KDFENC: W,Z W,Z - TOTPSHA1: W,Z - TOTPSHA256: W,Z - TOTPSHA512: W,Z ) N/A E © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n - OCCFingerprints :E - OCCFacial: E N/A E - OCCFingerprints :E - OCCFacial: E N/A E - OCCFingerprints :E - OCCFacial: E ) N/A © 2025 IDEMIA / atsec information security.
| Name | Description | Role Access | Approved Functions | Access | Input | Output |
|---|---|---|---|---|---|---|
| Un-verify Reference Data (SM) | N/A | PIV Application Administrat or - PUK: E - ADMIN_PIN: E User - PIN: E - OCC- Fingerprints : E - OCC- Facial: E - OCC-Iris: E | None | Clear the verification status of previously verified reference data (PINs or BIO). Following execution of this service, a new Verify Reference Data shall be called to set its status to "verified" and unlock the associated Access | Authentica tion Data | Successful execution status |
| Un-verify Reference Data (SC) | N/A | PIV Application Administrat or - PUK: E - ADMIN_PIN: E User - PIN: E - OCC- Fingerprints : E - OCC- Facial: E - OCC-Iris: E | None | Clear the verification status of previously verified reference data (PINs or BIO). Following execution of this service, a new Verify Reference Data shall be called to set its status to "verified" and unlock the associated Access Condition (AC). Transmitte d through a Global Platform Secure Channel. | Authentica tion Data | Successful execution status |
| SAM computati on (SM) | N/A | User - SAM- CMAC: E - SAM-KDF: E - SAM-KDF- ENC: E | AES-CBC AES-CMAC | Use the PIV card as a SAM to compute CMAC, KDF or authenticati on | Diversifica tion data | AES-CMAC value, or KDF or Authentication Cryptogram depending on the SAM Key being used |
| cryptogram to unlock a target card. Transmitte d with PIV Secure Messaging. | cryptogram to unlock a target card. Transmitte d with PIV Secure Messaging. | (SAM-CMAC, SAM-KDF, SAM-KDF-ENC) | ||||
| SAM computati on (SC) | N/A | User - SAM- CMAC: E - SAM-KDF: E - SAM-KDF- ENC: E | AES-CBC AES-CMAC | Use the PIV card as a SAM to compute CMAC, KDF or authenticati on cryptogram to unlock a target card. Transmitte d through a Global Platform Secure Channel. | Diversifica tion data | AES-CMAC value, or KDF or Authentication Cryptogram depending on the SAM Key being used (SAM-CMAC, SAM-KDF, SAM-KDF-ENC) |
| One-Time- Password Generatio n (HOTP) | N/A | User - HOTP: E | HMAC | Compute an HMAC- Based One Time Password (HOTP) | N/A for HOTP (the counter is managed by the module) | HMAC-Based One-time Password (HOTP) value computed as per RFC 4226 |
| One-Time- Password Generatio n (TOTP) | N/A | User - TOTP- SHA1: E - TOTP- SHA256: E - TOTP- SHA512: E | SHA | Compute a One Time Password (TOTP) | time stamp | Time-based One-time Password (TOTP) algorithm specified in RFC 6238 |
ID-One PIV 243 n E - OCCFingerprints :E - OCCFacial: E N/A E - OCCFingerprints :E - OCCFacial: E © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n N/A E - OCCFingerprints :E - OCCFacial: E N/A - SAMCMAC: E E - SAM-KDFENC: E © 2025 IDEMIA / atsec information security.
ID-One PIV 243 n N/A - SAMCMAC: E E - SAM-KDFENC: E One-TimePassword N/A One-TimePassword N/A - TOTPSHA1: E - TOTPSHA256: E - TOTPSHA512: E Table 13: Approved Services The module supports unauthenticated services which perform cryptographic operations yet do not claim any security provided by the module but instead serve to identify the module to an external entity for attestation services. Item '1b' in IG 4.1.A "Additional Comments" section provides a list of rationales for which exemption can be claimed. These are: © 2025 IDEMIA / atsec information security.
ID-One PIV 243 a) the referenced algorithms and services do not create, disclose, modify, substitute, access, or make use of the module’s CSPs, and PSPs are not modified or substituted; or b) that the referenced algorithms and services do not affect the security of the module, or the security of the information being protected by the module. The module implements PIV card validation and attestation services that use symmetric keys and asymmetric private keys purely to provide the module's cryptographic identity to an external entity. The use of cryptographic challenge-response schemes with symmetric keys use of asymmetric signature verification schemes to validate private keys embedded within the module are not claimed to provide protection of data but rather only serve to confirm the module's identity to an external entity. For this, the module provides a signed message using its device specific private key contained within. In addition, - The message being signed is predefined i.e., not a user defined message that can be offered as service to the caller. - This attestation specific key cannot be reused for any other purpose. - The signature generation operation is performed during boot time before any User has a chance to interact with the module. So, the service is not handling or protecting any user data. Based on above facts it is clear that the referenced algorithms (SHA, AES-ECB, ECDSA and RSA) and services (signature generation, message digest) do not affect the security of the module, or the security of the information being protected by the module. Therefore, the module complies to exception '1b' in additional comment of IG 4.1.A.
The module includes a firmware load process (Manage Content service) to support necessary updates. New firmware versions within the scope of this validation must be validated through the FIPS 140-3 CMVP. Any other firmware loaded into this module is out of the scope of this validation and requires a separate FIPS 140-3 validation. When new firmware is loaded into the module using the "Load FW with RSA DAP" and "Load FW with AES DAP" services, the Module verifies the SHA-256 digest computed over the all firmware, and the AES-CMAC authentication code computed with SD-SMAC on each block of the firmware and the SHA-256 digest. In addition to the previous method, the firmware load process verifies an RSA PSS signature computed with DAP-PUB or an AES-CMAC authentication code computed with DAP-AES key on the firmware SHA-256 digest. © 2025 IDEMIA / atsec information security.
The module performs an integrity test over the executable firmware loaded in non-volatile memory (NVM) (i.e. Javacard Packages) and over the ROM Code (i.e. Operating System). The integrity test uses a 16-bit CRC. The module does not provide any services via the HMI, SFMI, HFMI, or HSMI interface that allow the operator to examine the executable code.
The pre-operational integrity test can be performed on demand by power cycling or resetting the module. The module may perform conditional cryptographic algorithm self-tests on demand through the "Context" service. © 2025 IDEMIA / atsec information security.
Type of Operational Environment: Limited The module is classified as a single chip hardware module running on limited modifiable firmware, the requirements of this section are not applicable. © 2025 IDEMIA / atsec information security.
| Mechanism | Inspection | Inspection Guidance | |
|---|---|---|---|
| Frequency | |||
| Hard tamper-evident coating | Determined by the operator | Observe the coating surroundings of the chip for any signs of damage |
| Temp/Voltage Type | Temperature or Voltage | EFP | Result | |
|---|---|---|---|---|
| or | ||||
| EFT | ||||
| LowTemperature | -25C | EFP | Module stops all operations and shuts down | |
| HighTemperature | 112C | EFP | Module stops all operations and shuts down | |
| LowVoltage | 1.5V | EFP | Module stops all operations and shuts down | |
| HighVoltage | 6.6V | EFP | Module stops all operations and shuts down |
| Temperature | Temperature | |
|---|---|---|
| Type | ||
| LowTemperature | -25°C | |
| HighTemperature | 115°C |
Table 14: Mechanisms and Actions Required Table 15: EFP/EFT Information
Table 16: Hardness Testing Temperatures © 2025 IDEMIA / atsec information security.
This module implements non-invasive security techniques that are not listed in SP800-140F. These techniques are mentioned in Section 12. © 2025 IDEMIA / atsec information security.
| Name | Type | Description |
|---|---|---|
| RAM | Dynamic | Volatile Memory |
| NVM | Static | Non-volatile Memory (FLASH) |
| Name | Approved Functions | Type | From | To | ||
|---|---|---|---|---|---|---|
| PIV Secure Messaging (SM) [Import] | AES-CBC | Encrypted | Outside entity | NVM | Manual | Electronic |
| PIV Secure Messaging (SM) [Export] | AES-CBC | Encrypted | NVM | Outside entity | Manual | Electronic |
| Global Platform Secure Channel (SC) [Import] | AES-CBC | Encrypted | Outside entity | NVM | Manual | Electronic |
| Global Platform Secure Channel (SC) [Export] | AES-CBC | Encrypted | NVM | Outside entity | Manual | Electronic |
| Plaintext [Import] | Plaintext | Outside Enttity | RAM | Manual | Electronic | |
| Plaintext [Export] (PSPs Only) | Plaintext | RAM | Outside entity | Manual | Electronic |
Table 18: SSP Input-Output Methods © 2025 IDEMIA / atsec information security.
| Zeroization | Description | Rationale | Operator Initiation | |
|---|---|---|---|---|
| Method | ||||
| Global Platform TERMINATED STATE | Securely zeroizes all stored SSPs within the module. Zeroisation operation takes less than 1 second to erase all plaintext SSPs | All stored keys zeroized | By setting the module in the GLOBAL PLATFORM TERMINATED STATE | |
| Global Platform DELETE KEY | Securely zeroizes global platform keys | Key values are zeroized, this is also followed by garbage collection to clear any values in memory | Global Platform DELETE KEY Command. | |
| Global Platform DELETE APPLICATION | Remove an application and all its data and keys from the module | Key values are zeroized, this is also followed by garbage collection to clear any values in memory | Global Platform DELETE APPLICATION Command. | |
| PIV PUT KEY | Zeroizes all buffers held by the key object | Values in memory cleared | PIV PUT KEY Command. | |
| M_CLEAR_APDU | Zeroizes the APDU buffer memory which is used as temporary memory buffer | Values in memory cleared | Automatically upon completing the processing of a service | |
| SELECT Context | Clears global platform session keys from memory | Values in memory cleared | SELECT Context Command. | |
| New key generation | Overwrites the previous key with a newly generated value. | Previous key overwritten | Automatically upon generation of a new key | |
| Error handling | Secure messaging keys are zeroized once an error occurs | Values in memory cleared | Automatically upon error detection | |
| Module Reset | Power cycles the module | The module resets clearing the contents of SSPs stored in RAM memory | By invoking Module Reset service, or by removing power from the module |
Table 19: SSP Zeroization Methods © 2025 IDEMIA / atsec information security.
| Name | Type | Description | Strength | Generation | Establishment | Storage | Zeroization | Use | Related SSPs | ||
|---|---|---|---|---|---|---|---|---|---|---|---|
| OS-DRBG- SEED | CSP - CSP | Entropy input and nonce provided by the NDRNG, used to seed the Approved DRBG | 256 - 256 | CTR DRBG | |||||||
| OS-DRBG- STATE | CSP - CSP | The current AES-128 CTR_DRBG Internal State (V, Key) | 128 - 128 | CTR DRBG | CTR DRBG | ||||||
| SD-DAK | CSP - CSP | Security Domain Data Authentication Key (DAK) used to generate SC- ENC | 256 - 256 | AES-CMAC KBKDF SP 800-108 | |||||||
| SD-DMK | CSP - CSP | Security Domain Data MAC Key (DMK) used to generate SC-C- MAC/SC-R-MAC | 256 - 256 | AES-CMAC KBKDF SP 800-108 | |||||||
| SD-DEK | CSP - CSP | Security Domain Data Encryption Key (DEK) used to decrypt CSPs | 256 - 256 | AES-CBC | |||||||
| SC-ENC | CSP - CSP | Session key used to encrypt / decrypt Secure Channel (SC) data once Mutual Authentication is successful | 256 - 256 | KBKDF SP 800-108 | AES-CBC | ||||||
| SC-C-MAC | CSP - CSP | Session key used to verify inbound (Command) Secure Channel (SC) data integrity | 256 - 256 | KBKDF SP 800-108 | AES-CMAC | ||||||
| SC-R-MAC | CSP - CSP | Session key used to verify outbound (Response) Secure Channel (SC) data integrity | 256 - 256 | KBKDF SP 800-108 | AES-CMAC | ||||||
| DAP-AES | CSP - CSP | Data Authentication Pattern AES Key. New firmware signature verification key | 256 - 256 | AES-CMAC | |||||||
| PIV-SM | CSP - CSP | PIV Secure Messaging Key Establishment Key as described in SP800-73-4 and ANSI 504-1 | P-256, P- 384, P- 521 - 128, 192, 256 | ECDSA keyGen | KAS-ECC | ||||||
| SM-ENC | CSP - CSP | PIV Secure Messaging Key Establishment Key as described in SP800-73-4 and ANSI 504-1 | 128, 256 - 128, 256 | KAS-ECC | AES-CBC | ||||||
| SM-C-MAC | CSP - CSP | Session key used to encrypt / decrypt Secure Messaging (SM) Data | 128, 256 - 128, 256 | KAS-ECC | AES-CMAC | ||||||
| SM-R-MAC | CSP - CSP | Session key used to verify data integrity of inbound (Command) Secure Messaging (SM) | 128, 256 - 128, 256 | KAS-ECC | AES-CMAC | ||||||
| SM-CFRM | CSP - CSP | Secure Messaging (SM) session key confirmation key | 128, 256 - 128, 256 | KAS-ECC | AES-CMAC | ||||||
| PIN | CSP - CSP | Card Holder Verification datum: Authentication datum (PIN or Password) used to verify the Card Holder (User) | Variable length up to 8 or 16 bytes - Variable length up to 8 or 16 bytes | ||||||||
| OCC- Fingerprints | CSP - CSP | Fingerprints Biometric Data extracted from the user to verify its identity | N/A - N/A | ||||||||
| OCC-Facial | CSP - CSP | Facial Image Biometric Data extracted from the user to verify its identity | N/A - N/A | ||||||||
| OCC-Iris | CSP - CSP | Facial Image Biometric Data extracted from the user to verify its identity | N/A - N/A | ||||||||
| PUK | CSP - CSP | PIN Unblocking Code used by the PIV Application Administrator to reset the PIN | 64 bits or 128 bits - 64 bits or 128 bits | ||||||||
| ADMIN_PIN | CSP - CSP | Authentication datum (PIN or Password) used to verify the PIV Application Administrator | 64 bits or 128 bits - 64 bits or 128 bits | ||||||||
| ADMIN_KEY | CSP - CSP | PIV Application Administrative Key used to authenticate the PIV Application Administrator | 128, 192, 256 - 128, 192, 256 | AES-ECB | |||||||
| PIV-AUTH (including intermediat e values) | CSP - CSP | PIV Authentication Key (9A) used to Authenticate the PIV application in the module.Intende d to be used with either RSASP1 or ECDSA primitive | RSA: 2048, 3072, 4096; ECDSA P- 224, P- 256, P- 384, P- 521 - RSA: 112, 128, 150; ECDSA: 112, 128, 192, 256 | ECDSA keyGen RSA keyGen | ECDSA sigGen componen t RSA sigPrim | ||||||
| PIV-DS (including intermediat e values) | CSP - CSP | PIV Digital Signature Key (9C).as described in SP800-78-4. Intended to be used with either | RSA: 2048, 3072, 4096; ECDSA P- 224, P- 256, P- | ECDSA keyGen RSA keyGen | ECDSA sigGen componen t RSA sigPrim | ||||||
| RSASP1or ECC DSA Primitive | RSASP1or ECC DSA Primitive | 384, P- 521 - RSA: 112, 128, 150; ECDSA: 112, 128, 192, 256 | |||||||||
| PIV-KMK (including intermediat e values) | CSP - CSP | PIV Key Management Keys (9D) and Retired Key Management Keys ('82'to '95').as described in SP800-78-4. Intended to be used with either RSADP or ECC DH | RSA: 1024, 2048, 3072, 4096; ECDSA P- 224, P- 256, P- 384, P- 521 - RSA: 80, 112, 128, 150; ECDSA: 112, 128, 192, 256 | KAS-ECC CDH Componen t RSA Decryption Primitive | |||||||
| MUTUAL- AUTH | CSP - CSP | Mutual Authentication Key. Key type is identical to SP800-78-4 Symmetric Card Authentication Key (9E), except that the key is used to enforce mutual authentication access control rules | 128, 192, 256 - 128, 192, 256 | AES-ECB | |||||||
| DS-HASH (including intermediat e values) | CSP - CSP | Digital Signature key with built-in Hash (SHA2- 224, SHA2-256, | RSA: 2048, 3072, 4096; ECDSA P- | ECDSA keyGen RSA keyGen | ECDSA sigVer RSA sigVer | ||||||
| SHA2-384 & SHA2-512), and RSA PSS or ECDSA | SHA2-384 & SHA2-512), and RSA PSS or ECDSA | 224, P- 256, P- 384, P- 521 - RSA: 112, 128, 150; ECDSA: 112, 128, 192, 256 | |||||||||
| SAM-CMAC | CSP - CSP | Symmetric key for generic CMAC computation | 128, 192, 256 - 128, 192, 256 | AES-CMAC | |||||||
| SAM-KDF | CSP - CSP | Symmetric Master Key used to execute the AES CMAC KDF Counter Mode derivation algorithm (as per NIST SP800- 108) and retrieve the diversified key value of a target card (SAM functionality) | 128, 192, 256 - 128, 192, 256 | KBKDF SP 800-108 | |||||||
| SAM-KDF- ENC | CSP - CSP | Symmetric Master Key used for Administrator to unlock a child PIV card | 128, 192, 256 - 128, 192, 256 | AES-CMAC | |||||||
| HOTP | CSP - CSP | HMAC-Based One-time Password (HOTP) algorithm | 160 - 160 | HMAC | |||||||
| TOTP-SHA1 | CSP - CSP | Time-based One-time Password (TOTP) algorithm specified in RFC 6238 | 160 - 160 | SHA | |||||||
| TOTP- SHA256 | CSP - CSP | Time-based One-time Password (TOTP) algorithm specified in RFC 6238 | 256 - 256 | SHA | |||||||
| TOTP- SHA512 | CSP - CSP | Time-based One-time Password (TOTP) algorithm specified in RFC 6238 | 512 - 512 | SHA | |||||||
| DAP-PUB (including intermediat e values) | PSP - PSP | RSA 2048 new firmware signature verification key. | 2048 - 112 | RSA sigVer | |||||||
| PIV-SM-PUB | PSP - PSP | The public key component used by the PIV Secure Message protocol. A superset of key types specified by SP800-78-4 is supported: P- 256, P-384 and P-521 curves. | P-256, P- 384, P- 521 - 128, 192, 256 | KAS-ECC | |||||||
| PIV-AUTH- PUB (including intermediat e values) | PSP - PSP | Public Component of PIV Authentication Key | RSA: 2048, 3072, 4096; ECDSA P- 224, P- 256, P- 384, P- 521 - RSA: 112, 128, 150; ECDSA: 112, 128, 192, 256 | ECDSA keyGen RSA keyGen | ECDSA sigVer RSA sigVer | ||||||
| PIV-DS-PUB (including intermediat e values) | PSP - PSP | Public Component of PIV Digital Signature Key | RSA: 2048, 3072, 4096; ECDSA P- 224, P- 256, P- 384, P- 521 - RSA: 112, 128, 150; ECDSA: 112, 128, 192, 256 | ECDSA keyGen RSA keyGen | ECDSA sigVer RSA sigVer | ||||||
| PIV-KMK- PUB (including intermediat e values) | PSP - PSP | Public Component of PIV Key Management Keys | RSA: 2048, 3072, 4096; ECDSA P- 224, P- 256, P- 384, P- 521 - RSA: 112, 128, 150; ECDSA: | KAS-ECC CDH Componen t RSA Decryption Primitive | |||||||
| DS-HASH- PUB (including intermediat e values) | PSP - PSP | Public Component of Digital Signature key with built-in HashPublic Component of Digital Signature key with built-in Hash | RSA: 2048, 3072, 4096; ECDSA P- 224, P- 256, P- 384, P- 521 - RSA: 112, 128, 150; ECDSA: 112, 128, 192, 256 | ECDSA keyGen RSA keyGen | ECDSA sigVer RSA sigVer | ||||||
| OS-DRBG- SEED | RAM:Plaintext | Module Reset | Until zeroized | OS-DRBG- STATE:Derives | |||||||
| OS-DRBG- STATE | RAM:Plaintext | Module Reset | Until zeroized | OS-DRBG- SEED:Derived From | |||||||
| SD-DAK | NVM:Obfuscated | Global Platform TERMINATED STATE | Until zeroized | SC- ENC:Derives | PIV Secure Messaging (SM) [Import] Global Platform Secure Channel (SC) [Import] |
The table below summarizes the Sensitive Security Parameters (SSPs) that are used by the cryptographic services implemented in the module. h y OS-DRBGSEED OS-DRBGSTATE © 2025 IDEMIA / atsec information security.
ID-One PIV 243 h y © 2025 IDEMIA / atsec information security.
ID-One PIV 243 h y OCCFingerprints N/A - N/A N/A - N/A N/A - N/A © 2025 IDEMIA / atsec information security.
ID-One PIV 243 h y ECDSA P224, P256, P384, P521 RSA: t ECDSA P224, P256, Pt © 2025 IDEMIA / atsec information security.
ID-One PIV 243 h y ECDSA P224, P256, P384, P521 RSA: 80, t MUTUALAUTH © 2025 IDEMIA / atsec information security.
ID-One PIV 243 h y 224, P256, P384, P521 RSA: SAM-KDFENC © 2025 IDEMIA / atsec information security.
ID-One PIV 243 h y TOTPSHA256 TOTPSHA512 © 2025 IDEMIA / atsec information security.
ID-One PIV 243 h y PIV-AUTHPUB ECDSA P224, P256, P384, P521 RSA: ECDSA P224, P256, P384, P521 RSA: PIV-KMKPUB ECDSA P224, P256, P384, P521 RSA: t © 2025 IDEMIA / atsec information security.
| Name | Type | Description | Strength | Generation | Storage | Zeroization | Use | Related SSPs | ||
|---|---|---|---|---|---|---|---|---|---|---|
| DS-HASH- PUB (including intermediat e values) | PSP - PSP | Public Component of Digital Signature key with built-in HashPublic Component of Digital Signature key with built-in Hash | RSA: 2048, 3072, 4096; ECDSA P- 224, P- 256, P- 384, P- 521 - RSA: 112, 128, 150; ECDSA: 112, 128, 192, 256 | ECDSA keyGen RSA keyGen | ECDSA sigVer RSA sigVer | |||||
| OS-DRBG- SEED | RAM:Plaintext | Module Reset | Until zeroized | OS-DRBG- STATE:Derives | ||||||
| OS-DRBG- STATE | RAM:Plaintext | Module Reset | Until zeroized | OS-DRBG- SEED:Derived From | ||||||
| SD-DAK | NVM:Obfuscated | Global Platform TERMINATED STATE | Until zeroized | SC- ENC:Derives | PIV Secure Messaging (SM) [Import] Global Platform Secure Channel (SC) [Import] | |||||
| SD-DMK | NVM:Obfuscated | Global Platform TERMINATED STATE | Until zeroized | SC-C- MAC:Derives SC-R- MAC:Derives | PIV Secure Messaging (SM) [Import] Global Platform Secure Channel (SC) [Import] | |||||
| SD-DEK | NVM:Obfuscated | SELECT Context Module Reset | Until zeroized | PIV Secure Messaging (SM) [Import] Global Platform Secure Channel (SC) [Import] | ||||||
| SC-ENC | RAM:Plaintext | SELECT Context Module Reset | Until Secure Channel closed | SD- DAK:Derived From | ||||||
| SC-C-MAC | RAM:Plaintext | SELECT Context Module Reset | Until Secure Channel closed | SD- DMK:Derived From | ||||||
| SC-R-MAC | RAM:Plaintext | SELECT Context Module Reset | Until Secure Channel closed | SD- DMK:Derived From | ||||||
| DAP-AES | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE KEY | Until zeroized | PIV Secure Messaging (SM) [Import] Global Platform Secure Channel (SC) [Import] | ||||||
| PIV-SM | NVM:Obfuscated | Global Platform TERMINATED | Until zeroized | SM- ENC:Derives | PIV Secure Messaging |
ID-One PIV 243 h y DS-HASHPUB ECDSA P224, P256, P384, P521 RSA: Table 20: SSP Table 1 The following table continues to summarize the Sensitive Security Parameters (SSPs) that are used by the cryptographic services implemented in the module. OS-DRBGSEED OS-DRBGSTATE SCENC:Derives © 2025 IDEMIA / atsec information security.
ID-One PIV 243 SMENC:Derives © 2025 IDEMIA / atsec information security.
| Name | Storage | Zeroization | Use | Import Export | |
|---|---|---|---|---|---|
| SM-ENC | RAM:Plaintext | New key generation Error handling Module Reset | PIV- SM:Derived From | Until Secure Messaging closed | |
| SM-C-MAC | RAM:Plaintext | New key generation Error handling Module Reset | PIV- SM:Derived From | Until Secure Messaging closed | |
| SM-R-MAC | RAM:Plaintext | New key generation Error handling Module Reset | PIV- SM:Derived From | Until Secure Messaging closed | |
| SM-CFRM | RAM:Plaintext | M_CLEAR_APDU Error handling Module Reset | PIV-SM:Used With | Automatically zeroized by the module once the SM is established. | |
| PIN | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION | PIV Secure Messaging (SM) [Import] Global Platform Secure Channel (SC) [Import] | Until changed or zeroized | |
| OCC- Fingerprints | NVM:Obfuscated | Global Platform TERMINATED STATE | PIV Secure Messaging (SM) | Until changed or zeroized | |
| [Import] Global Platform Secure Channel (SC) [Import] Plaintext [Import] | Global Platform DELETE APPLICATION | [Import] Global Platform Secure Channel (SC) [Import] Plaintext [Import] | |||
| OCC-Facial | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION | PIV Secure Messaging (SM) [Import] Global Platform Secure Channel (SC) [Import] Plaintext [Import] | Until changed or zeroized | |
| OCC-Iris | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION | PIV Secure Messaging (SM) [Import] Global Platform Secure Channel (SC) [Import] Plaintext [Import] | Until changed or zeroized | |
| PUK | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION | PIV Secure Messaging (SM) [Import] Global Platform Secure Channel (SC) [Import] | Until changed or zeroized | |
| ADMIN_PIN | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION | PIV Secure Messaging (SM) [Import] Global Platform Secure Channel (SC) [Import] Plaintext [Import] | Until changed or zeroized | |
| ADMIN_KEY | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION PIV PUT KEY | PIV Secure Messaging (SM) [Import] Global Platform Secure Channel (SC) [Import] Plaintext [Import] | Until changed or zeroized | |
| PIV-AUTH (including intermediate values) | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION PIV PUT KEY New key generation | PIV-AUTH-PUB (including intermediate values):Paired With | PIV Secure Messaging (SM) [Import] Global Platform Secure Channel (SC) [Import] Plaintext [Import] | Until changed or zeroized |
| PIV-DS (including intermediate values) | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION PIV PUT KEY | PIV-DS-PUB (including intermediate values):Paired With | PIV Secure Messaging (SM) [Import] Global Platform Secure | Until changed or zeroized |
| Channel (SC) [Import] Plaintext [Import] | New key generation | Channel (SC) [Import] Plaintext [Import] | |||
| PIV-KMK (including intermediate values) | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION PIV PUT KEY New key generation | PIV-KMK-PUB (including intermediate values):Paired With | PIV Secure Messaging (SM) [Import] Global Platform Secure Channel (SC) [Import] Plaintext [Import] | Until changed or zeroized |
| MUTUAL- AUTH | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION PIV PUT KEY | PIV Secure Messaging (SM) [Import] Global Platform Secure Channel (SC) [Import] Plaintext [Import] | Until changed or zeroized | |
| DS-HASH (including intermediate values) | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION PIV PUT KEY | DS-HASH-PUB (including intermediate values):Paired With | PIV Secure Messaging (SM) [Import] Global Platform Secure Channel (SC) [Import] Plaintext [Import] | Until changed or zeroized |
| SAM-CMAC | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION PIV PUT KEY | PIV Secure Messaging (SM) [Import] Global Platform Secure Channel (SC) [Import] | Until changed or zeroized | |
| SAM-KDF | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION PIV PUT KEY | PIV Secure Messaging (SM) [Import] Global Platform Secure Channel (SC) [Import] | Until changed or zeroized | |
| SAM-KDF- ENC | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION PIV PUT KEY | PIV Secure Messaging (SM) [Import] Global Platform Secure Channel (SC) [Import] | Until changed or zeroized | |
| HOTP | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION PIV PUT KEY | PIV Secure Messaging (SM) [Import] Global Platform Secure Channel (SC) [Import] | Until changed or zeroized | |
| TOTP-SHA1 | NVM:Obfuscated | Global Platform TERMINATED | PIV Secure Messaging | Until changed or zeroized | |
| (SM) [Import] Global Platform Secure Channel (SC) [Import] | STATE Global Platform DELETE APPLICATION PIV PUT KEY | (SM) [Import] Global Platform Secure Channel (SC) [Import] | |||
| TOTP- SHA256 | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION PIV PUT KEY | PIV Secure Messaging (SM) [Import] Global Platform Secure Channel (SC) [Import] | Until changed or zeroized | |
| TOTP- SHA512 | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION PIV PUT KEY | PIV Secure Messaging (SM) [Import] Global Platform Secure Channel (SC) [Import] | Until changed or zeroized | |
| DAP-PUB (including intermediate values) | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION PIV PUT KEY | PIV Secure Messaging (SM) [Import] PIV Secure Messaging (SM) [Export] Global Platform Secure Channel (SC) [Import] Global Platform | Until changed or zeroized | |
| PIV-SM-PUB | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION PIV PUT KEY | PIV-SM:Paired With | PIV Secure Messaging (SM) [Import] PIV Secure Messaging (SM) [Export] Global Platform Secure Channel (SC) [Import] Global Platform Secure Channel (SC) [Export] Plaintext [Export] (PSPs Only) | Until changed or zeroized |
| PIV-AUTH- PUB (including intermediate values) | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION PIV PUT KEY | PIV-AUTH (including intermediate values):Paired With | PIV Secure Messaging (SM) [Import] PIV Secure Messaging (SM) [Export] Global Platform Secure Channel (SC) | Until changed or zeroized |
| PIV-DS-PUB (including intermediate values) | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION PIV PUT KEY | PIV-DS (including intermediate values):Paired With | PIV Secure Messaging (SM) [Import] PIV Secure Messaging (SM) [Export] Global Platform Secure Channel (SC) [Import] Global Platform Secure Channel (SC) [Export] Plaintext [Export] (PSPs Only) | Until changed or zeroized |
| PIV-KMK-PUB (including intermediate values) | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION PIV PUT KEY | PIV-KMK (including intermediate values):Paired With | PIV Secure Messaging (SM) [Import] PIV Secure Messaging (SM) [Export] Global Platform | Until changed or zeroized |
| DS-HASH- PUB (including intermediate values) | NVM:Obfuscated | Global Platform TERMINATED STATE Global Platform DELETE APPLICATION PIV PUT KEY | DS-HASH (including intermediate values):Paired With | PIV Secure Messaging (SM) [Import] PIV Secure Messaging (SM) [Export] Global Platform Secure Channel (SC) [Import] Global Platform Secure Channel (SC) [Export] Plaintext [Export] (PSPs Only) | Until changed or zeroized |
ID-One PIV 243 SMCFRM:Used PIVSM:Derived PIVSM:Derived PIVSM:Derived OCCFingerprints © 2025 IDEMIA / atsec information security.
ID-One PIV 243 © 2025 IDEMIA / atsec information security.
ID-One PIV 243 © 2025 IDEMIA / atsec information security.
ID-One PIV 243 MUTUALAUTH © 2025 IDEMIA / atsec information security.
ID-One PIV 243 SAM-KDFENC © 2025 IDEMIA / atsec information security.
ID-One PIV 243 TOTPSHA256 TOTPSHA512 © 2025 IDEMIA / atsec information security.
ID-One PIV 243 PIV-AUTHPUB © 2025 IDEMIA / atsec information security.
ID-One PIV 243 © 2025 IDEMIA / atsec information security.
ID-One PIV 243 DS-HASHPUB Table 21: SSP Table 2 © 2025 IDEMIA / atsec information security.
| Name | Algorithm Or Test | Test Method | Test Type | Details | Test Properties | Indicator | Conditions |
|---|---|---|---|---|---|---|---|
| CRC (ROM) | CRC (ROM) | EDC | SW/FW Integrity | Performed over all ROM code | 16-bit CRC | 1 | |
| CRC (NVM) | CRC (NVM) | EDC | SW/FW Integrity | Performed over all executable code in NVM | 16-bit CRC | 1 | |
| CRC | CRC | KAT | CAST | CAST performed prior to use of algorithm for | 16-bit CRC | 1 | Device power-on or reset |
| Name | Algorithm Or Test | Test Method | Test Type | Details | Test Properties | Indicator | Conditions |
|---|---|---|---|---|---|---|---|
| CRC (ROM) | CRC (ROM) | EDC | SW/FW Integrity | Performed over all ROM code | 16-bit CRC | 1 | |
| CRC (NVM) | CRC (NVM) | EDC | SW/FW Integrity | Performed over all executable code in NVM | 16-bit CRC | 1 | |
| CRC | CRC | KAT | CAST | CAST performed prior to use of algorithm for | 16-bit CRC | 1 | Device power-on or reset |
| AES-ECB (A4945) | AES-ECB (A4945) | KAT | CAST | Decrypt | 128-bit key | 1 | Boot Up or "Context" service |
| KDF SP800- 108 (A4945) | KDF SP800- 108 (A4945) | KAT | CAST | Key Derivation | CTR mode KDF using AES-CMAC with 128-bit key | 1 | Boot Up or "Context" service |
| Counter DRBG (A4945) | Counter DRBG (A4945) | KAT | CAST | Instantiate, Generate, Reseed | 256-bit key | 1 | Boot Up or "Context" service |
| ECDSA KeyGen (FIPS186-4) (A4945) | ECDSA KeyGen (FIPS186-4) (A4945) | PCT | PCT | Sign/Verify | signature generation followed by signature verification using curve P-256 | 1 | On ECDSA Key Generation |
| ECDSA SigGen (FIPS186-4) (A4945) | ECDSA SigGen (FIPS186-4) (A4945) | KAT | CAST | Sign generation comparison | ECDSA Signature Generation using curve P-256 | 1 | First Use or "Context" service |
| ECDSA SigVer (FIPS186-4) (A4945) | ECDSA SigVer (FIPS186-4) (A4945) | KAT | CAST | Sign verification comparison | ECDSA Signature Generation using curve P-256 | 1 | First Use or "Context" service |
| KAS-ECC Sp800- 56Ar3 (A4945) | KAS-ECC Sp800- 56Ar3 (A4945) | KAT | CAST | KAS comparison | KAS-ECC using curve P-256 followed by One- step KDF | 1 | First Use or "Context" service |
| HMAC- SHA2-256 (A4945) | HMAC- SHA2-256 (A4945) | KAT | CAST | HMAC | 128-bit key | 1 | Boot Up or "Context" service |
| SHA2-256 (A4945) | SHA2-256 (A4945) | KAT | CAST | SHA2 | N/A | 1 | Boot Up or "Context" service |
| SHA2-512 (A4945) | SHA2-512 (A4945) | KAT | CAST | SHA2 | N/A | 1 | Boot Up or "Context" service |
| RSA KeyGen (FIPS186-4) (A4945) | RSA KeyGen (FIPS186-4) (A4945) | PCT | PCT | Sign/Verify | signature generation followed by signature verification using 2048-bit key | 1 | On RSA Key Generation |
| RSA SigGen (FIPS186-4) (A4945) | RSA SigGen (FIPS186-4) (A4945) | KAT | CAST | Sign | Signature Generation using PKCS1-PSS with 2048-bit key | 1 | Boot Up or "Context" service |
| RSA SigVer (FIPS186-4) (A4945) | RSA SigVer (FIPS186-4) (A4945) | KAT | CAST | Verify | Signature Verification using PKCS1-PSS with 2048-bit key | 1 | First Use or "Context" service |
| RSA SigVer (FIPS186-4) SW/FW Load test | RSA SigVer (FIPS186-4) SW/FW Load test | CAST | SW/FW Load | Using RSA signature | Signature Verification using PKCS1-PSS with 2048-bit key | 1 | Firmware integrity test |
| AES-CMAC (A4945) | AES-CMAC (A4945) | Integrity Test | SW/FW Load | Using CMAC | AES-CMAC message authentication code using 128 bit key | 1 | Firmware integrity test |
| SHA2-256 (A4945) | SHA2-256 (A4945) | Integrity Test | SW/FW Load | Message Digest | SHA-256 performed over loaded firmware | 1 | Firmware integrity test |
The module performs the following self-tests: pre-operational firmware integrity test, conditional cryptographic algorithm test, conditional firmware load test and conditional pair-wise consistency The module does not support any of the following self-tests: Pre-operational Self-tests - preoperational bypass nor pre-operational critical functions test, conditional manual entry test, conditional bypass test, nor conditional critical functions test. Determination of pass or fail of each self-test is made by the module, without external controls, externally provided input test vectors, expected output results, or operator intervention. The module can also perform preoperational self-tests on demand for all pre-operational selftests by power cycling the module or by calling the “Run Self-Tests” service.
The module performs pre-operational firmware integrity test automatically as a first action at power on. The module first performs a CAST on the cryptographic algorithm test used to perform the approved integrity technique. The module will enter the error state if the either the conditional CAST or integrity test fails or proceed to test the conditional CASTs listed in Table 25 if both passes. Table 22: Pre-Operational Self-Tests
The module performs conditional CAST prior to the algorithm’s first use. The module performs Conditional Pair-wise Consistency Tests upon generating RSA, ECDSA or ECDH asymmetric key pairs. The test is implemented by calculating a signature on predetermined data and subsequently performing a verification of the signature. If the signature cannot be verified, the generated key-pair is discarded. The module performs a conditional firmware load test when the module loads new firmware. © 2025 IDEMIA / atsec information security.
ID-One PIV 243 Sp80056Ar3 HMACSHA2-256 N/A © 2025 IDEMIA / atsec information security.
ID-One PIV 243 N/A Table 23: Conditional Self-Tests
The module has the capability to perform the pre-operational and conditional self-tests periodically. This may occur after a predefined number of -minutes passes, or, depending on the factory configuration, after invoking a predefined number of commands (APDUs). The default configuration triggers a Periodic Self-Tests every 2 weeks of uninterrupted power. That time can be adjusted by the Application Administrator from 1 to 32767 minutes. © 2025 IDEMIA / atsec information security.
| Name | Algorithm Or Test | Test Method | Test Type | Period | Periodic Method |
|---|---|---|---|---|---|
| CRC (ROM) | CRC (ROM) | EDC | SW/FW Integrity | Every 1 to 32767 min / After invoking 1 to 32767 APDUs | Time / Counter |
| CRC (NVM) | CRC (NVM) | EDC | SW/FW Integrity | Every 1 to 32767 min / After invoking 1 to 32767 APDUs | Time / Counter |
| CRC | CRC | KAT | CAST | Every 1 to 32767 min / After invoking 1 to 32767 APDUs | Time / Counter |
| AES-ECB (A4945) | AES-ECB (A4945) | KAT | CAST | Every 1 to 32767 min / After invoking 1 to 32767 APDUs | Time / Counter |
| KDF SP800-108 (A4945) | KDF SP800-108 (A4945) | KAT | CAST | Every 1 to 32767 min / After invoking 1 to 32767 APDUs | Time / Counter |
| Counter DRBG (A4945) | Counter DRBG (A4945) | KAT | CAST | Every 1 to 32767 min / After invoking 1 to 32767 APDUs | Time / Counter |
| ECDSA KeyGen (FIPS186-4) (A4945) | ECDSA KeyGen (FIPS186-4) (A4945) | PCT | PCT | Every 1 to 32767 min / After invoking 1 to 32767 APDUs | Time / Counter |
| ECDSA SigGen (FIPS186-4) (A4945) | ECDSA SigGen (FIPS186-4) (A4945) | KAT | CAST | Every 1 to 32767 min / After invoking 1 to 32767 APDUs | Time / Counter |
| ECDSA SigVer (FIPS186-4) (A4945) | ECDSA SigVer (FIPS186-4) (A4945) | KAT | CAST | Every 1 to 32767 min / After invoking 1 to 32767 APDUs | Time / Counter |
| KAS-ECC Sp800- 56Ar3 (A4945) | KAS-ECC Sp800- 56Ar3 (A4945) | KAT | CAST | Every 1 to 32767 min / After invoking 1 to 32767 APDUs | Time / Counter |
| HMAC-SHA2-256 (A4945) | HMAC-SHA2-256 (A4945) | KAT | CAST | Every 1 to 32767 min / After invoking 1 to 32767 APDUs | Time / Counter |
| SHA2-256 (A4945) | SHA2-256 (A4945) | KAT | CAST | Every 1 to 32767 min / After invoking 1 to 32767 APDUs | Time / Counter |
| SHA2-512 (A4945) | SHA2-512 (A4945) | KAT | CAST | Every 1 to 32767 min / After invoking 1 to 32767 APDUs | Time / Counter |
| RSA KeyGen (FIPS186-4) (A4945) | RSA KeyGen (FIPS186-4) (A4945) | PCT | PCT | Every 1 to 32767 min / After invoking 1 to 32767 APDUs | Time / Counter |
| RSA SigGen (FIPS186-4) (A4945) | RSA SigGen (FIPS186-4) (A4945) | KAT | CAST | Every 1 to 32767 min / After invoking 1 to 32767 APDUs | Time / Counter |
| RSA SigVer (FIPS186-4) (A4945) | RSA SigVer (FIPS186-4) (A4945) | KAT | CAST | Every 1 to 32767 min / After invoking 1 to 32767 APDUs | Time / Counter |
| RSA SigVer (FIPS186-4) SW/FW Load test | RSA SigVer (FIPS186-4) SW/FW Load test | CAST | SW/FW Load | Upon loading of new firmware | N/A |
| AES-CMAC (A4945) | AES-CMAC (A4945) | Integrity Test | SW/FW Load | Upon loading of new firmware | N/A |
| SHA2-256 (A4945) | SHA2-256 (A4945) | Integrity Test | SW/FW Load | Upon loading of new firmware | N/A |
ID-One PIV 243 Table 24: Pre-Operational Periodic Information © 2025 IDEMIA / atsec information security.
ID-One PIV 243 N/A N/A © 2025 IDEMIA / atsec information security.
| Name | Description | Role Access | Indicator | |
|---|---|---|---|---|
| Kill Card State | No further communication is possible with the module until the module is reset. | Pre-operational firmware integrity test fail any conditional self-test failure other than PCT | An error code is provided through the status interface | Resetting the module |
| BAD APDU | Entered when an incorrectly formatted or unknown command is received. | The module outputs a status word indicating the error condition and returns to the Idle state, clearing the error. This state includes Manage Content service firmware load attempts that fail the firmware load test; i.e., an attempt to load new firmware that fails the firmware load test will result in rejection of the command, and the new firmware will not be accepted by the module. | An error code is provided through the status interface | Recovers automatically after reporting the error |
ID-One PIV 243 N/A Table 25: Conditional Periodic Information
zone called the “Kill Card Zone” records the reason for the failure. All cryptographic functions are inhibited while the module is in an error state. The table below describes the error states in detail: Table 26: Error States © 2025 IDEMIA / atsec information security.
The module must have been initialized, within IDEMIA factory, to run in FIPS 140-3 level 2 mode of operation (e.g., NPIVP, CIV, etc.).
After manufacturing, the module is locked by a PIN Activation Code. The PIN Activation Code allows the card holder to set his or her own PIN value upon getting possession of the card. The PIN Activation Code can only be used as an authentication value for the initialization of the PIV PIN. The card holder's PIV PIN is then used for card activation.
The module does not implement an administrator guidance.
The module does not implement a non-administrator guidance.
The module enforces the following security rules:
The module lifecycle service can be used to set the module's status to TERMINATED. All SSPs will be zeroized upon module reset. © 2025 IDEMIA / atsec information security.
The Module implements defenses against:
The Kill Card function logs the detected attack type in a table. The table has a preset limit; when the limit is reached, the module initiates card termination, including overwrite of the CSPs, and the module is no longer operable. © 2025 IDEMIA / atsec information security.
ID-One PIV 243 References ANS X9.632001 Public Key Cryptography for the Financial Services Industry, Key Agreement and Key Transport Using Elliptic Curve Cryptography 2001 https://webstore.ansi.org/standards/ascx9/ansix9632001 ANSI X9.62 Public Key Cryptography for the Financial Services Industry: The Elliptic Curve Digital Signature Algorithm (ECDSA) September 1999 https://webstore.ansi.org/standards/ascx9/ansix9621998 ANSI 504-1 Information Technology - Generic Identity Command Set - Part 1: Card Application Command Set - Amendment 1 May 2016 https://webstore.ansi.org/standards/incits/incits5042013am12016 FIPS 140-3 FIPS PUB 140-3 - Security Requirements for Cryptographic Modules November 2023 https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.140-3.pdf FIPS 140-3 IG Implementation Guidance for FIPS PUB 140-3 and the Cryptographic Module Validation Program https://csrc.nist.gov/Projects/cryptographic-module-validation-program/fips140-3-ig-announcements FIPS 180-4 Secure Hash Standard (SHS) March 2012 https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf FIPS 186-4 Digital Signature Standard (DSS) July 2013 https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-5.pdf FIPS 197 Advanced Encryption Standard November 2001 https://csrc.nist.gov/publications/fips/fips197/fips-197.pdf FIPS 198-1 The Keyed Hash Message Authentication Code (HMAC) July 2008 https://csrc.nist.gov/publications/fips/fips198-1/FIPS-198-1_final.pdf © 2025 IDEMIA / atsec information security.
ID-One PIV 243 FIPS 201-3 Personal Identity Verification (PIV) of Federal Employees and Contractors January 2022 https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.201-3.pdf FIPS 202 SHA-3 Standard: Permutation-Based Hash and Extendable-Output Functions August 2015 https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.202.pdf GPC_SPE_014 GlobalPlatform Card Technology Secure Channel Protocol '03' Card Specification v2.2
ID-One PIV 243 SP 800-38A Recommendation for Block Cipher Modes of Operation Methods and Techniques December 2001 https://csrc.nist.gov/publications/nistpubs/800-38a/sp800-38a.pdf SP 800-38B Recommendation for Block Cipher Modes of Operation: The CMAC Mode for Authentication May 2005 https://csrc.nist.gov/publications/nistpubs/800-38B/SP_800-38B.pdf SP 800-38F Recommendation for Block Cipher Modes of Operation: Methods for Key Wrapping December 2012 https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-38F.pdf SP 800-56Ar3 Recommendation for Pair-Wise Key Establishment Schemes Using Discrete Logarithm Cryptography April 2018 https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-56Ar3.pdf SP800-56B Rev2 Recommendation for Pair-Wise Key Establishment Using Integer Factorization Cryptography March 2019 https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-56Br2.pdf SP 800-56Cr2 Recommendation for Key-Derivation Methods in Key-Establishment Schemes August 2020 https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-56Cr2.pdf SP 800-73-4 Interfaces for Personal Identity Verification
ID-One PIV 243 SP 800-85A-4 PIV Card Application and Middleware Interface Test Guidelines (SP 800-73-4 Compliance) April 2016 https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-85A-4.pdf SP 800-90Ar1 Recommendation for Random Number Generation Using Deterministic Random Bit Generators June 2015 https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90Ar1.pdf SP 800-90B Recommendation for the Entropy Sources Used for Random Bit Generation January 2018 https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90B.pdf SP 800-108r1 NIST Special Publication 800-108 - Recommendation for Key Derivation Using Pseudorandom Functions August 2022 https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-108r1.pdf SP 800-131Ar2 Transitioning the Use of Cryptographic Algorithms and Key Lengths March 2019 https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-131Ar2.pdf SP 800-133r2 Recommendation for Cryptographic Key Generation June 2020 https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-133r2.pdf SP 800-140Br1 CMVP Security Policy Requirements October 2022 https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800140Br1.2pd.pdf © 2025 IDEMIA / atsec information security.