PIV
IdentityPersonal Identity Verification -- US federal smart card standard (NIST SP 800-73) for employee identification.
PIV -- Personal Identity Verification
Personal Identity Verification (PIVPIVIdentityUS federal identity card standard.Click to view →) is the US federal standard for smart card-based employee identification, defined by FIPS 201 and the technical specification NIST SP 800-73. PIV cards are issued to federal employees and contractors, providing multi-factor authentication for physical access to government buildings and logical access to computer systems and networks.
Card Architecture
A PIV card is a JavaCard or equivalent smart card carrying multiple X.509 certificates, RSA or ECC key pairs, and optional biometric templates (fingerprint minutiae and facial image). The card contains four mandatory certificates: PIV Authentication (for system login), Digital Signature (for signing emails and documents), Key Management (for encrypting communications), and Card Authentication (for contactless physical access). The PIV applet is identified by a standardized AID and responds to a defined set of APDU commands.
Authentication Methods
PIV supports multiple authentication mechanisms at different assurance levels. The card authentication key (9E) enables contactless tap-in access via ISO 14443 without requiring a PIN. The PIV authentication key (9A) requires PIN entry for network login, providing two-factor security (something you have + something you know). The optional on-card fingerprint matching provides three-factor authentication. FIPS 140 Level 2 certified cryptographic modules on the card ensure key operations meet federal security requirements.
Ecosystem and Interoperability
PIV is closely related to the CAC (Common Access Card) used by the Department of Defense. The PIV-I (PIV-Interoperable) specification extends PIV-compatible credentials to state, local, and commercial organizations. Smart card middleware such as OpenSC and vendor-specific PKCS#11 modules enable PIV cards to work with standard operating system login, VPN clients, and web browsers. The emerging PIV-D initiative supports derived credentials on mobile devices, bridging traditional contact-based smart card authentication to modern mobile platforms.
Related Content
Smart Card Fundamentals
Getting Started…Examples MIFARE Classic, SLE 4442 EMV chip, ePassport, PIV How Communication Works When a contact card is inserted,…
Contact vs Contactless vs Dual-Interface
Getting Started…terminal uses contact for certain operations), PIV logical-access cards, CAC military credentials.…
Smart Card Reader Setup Guide
Getting Started…Typical Use Cases Contact (T=0/T=1) ISO 7816-3 PKI tokens, PIV cards, JavaCard dev Contactless (13.56 MHz) ISO 14443 /…
PKI on Smart Cards
Standards & Protocols…on smart card hardware is the foundation of government PIV cards, NATO CAC cards, corporate badge access, and…
Common Criteria for Smart Cards
Security…AVA_VAN.5 (high attack potential) National ID, CAC, PIV EAL6 Semiformally verified design Formal policy model…
TEE vs Secure Element
Security…/ eSIM N/A Yes — eUICC GSMA SESP, separate die Enterprise PIV No Yes NIST SP 800-73, FIPS 201 GlobalPlatform and TEE API…
Post-Quantum Cryptography for Smart Cards
Security…|| ML-KEM_shared_secret) For smart card PIV and CAC cards, the transition path is: Phase 1 (now) :…
Smart Card Readers and Middleware
Programming…use OpenSC PKCS#11, minidriver Linux, macOS, Windows PIV, OpenPGP, eID cards Windows minidriver CNG (Cryptography…
Pertanyaan yang Sering Diajukan
The smart card glossary is a comprehensive reference of technical terms, acronyms, and concepts used in smart card technology. It covers protocols (APDU, T=0, T=1), security (Common Criteria, EAL, HSM), hardware (SE, EEPROM, contact pad), and applications (EMV, ePassport, eSIM). It serves developers, product managers, and engineers.
Yes. SmartCardFYI provides glossary definitions in 15 languages including English, Korean, Japanese, Chinese, Spanish, Portuguese, Hindi, Arabic, French, Russian, German, Turkish, Vietnamese, Indonesian, and Thai.