PIV Data Model Test Guidelines

Chandramouli, Ramaswamy; Ferraiolo, Hildegard; Mehta, Ketan; Mohler, Jason; Ly, Lam; Hollenbaugh, Gregory

July 19, 2023: URLs for CSRC publication details pages have changed. Legacy URLs should automatically redirect to the new URLs. However, links to the actual publications have NOT changed (e.g., DOIs and PDFs on nvlpubs.nist.gov). Please send inquiries to csrc-inquiry@nist.gov.

NIST SP 800-85B-4 (Initial Public Draft)

Further development of this draft has ceased (March 17, 2023).

PIV Data Model Test Guidelines

Documentation Topics

Date Published: August 2014
Comments Due: September 5, 2014 (public comment period is CLOSED)
Email Questions to: piv_comments@nist.gov

Planning Note (03/17/2023):

NIST has discontinued additional development of this document, which is provided here in its entirety for historical purposes.

See NIST SP 800-85B and the PIV project for more information.

Author(s)

Ramaswamy Chandramouli (NIST), Hildegard Ferraiolo (NIST), Ketan Mehta (NIST), Jason Mohler (Electrosoft Services), Lam Ly (Electrosoft Services), Gregory Hollenbaugh (Electrosoft Services)

Announcement

NIST has produced a revised version of NIST Special Publication (SP) 800-85B, PIV Data Model Conformance Test Guidelines. The revisions include additional tests necessary to test new features added to the PIV Data Model in SP 800-73-4 Part 1. This document, after a review and comment period, will be published as NIST SP 800-85B-4.

NOTE: NIST has made a one-time change in the revision number of SP 800-85B (skipping revision numbers 2 and 3) so we can align the current publication revision to SP 800-73-4.

Abstract

FIPS201 describes a variety of data model components as a part of the PIV logical credentials. Such components include biometric elements in the form of fingerprint information and facial imagery and security elements such as electronic keys, certificates, and signatures. FIPS201 incorporates by reference NIST Special Publication 800-73-4 (SP80073), which specifies elements related to the PIV card interface, NIST Special Publication 800-76, which specifies the biometric requirements, and NIST Special Publication 800-78, which specifies acceptable cryptographic algorithms and key sizes for PIV systems. A robust testing framework and guidelines to provide assurance that a particular component or system is compliant with FIPS201 and supporting standards should exist to build the necessary PIV infrastructure to support common unified processes and systems for government-wide use. NIST developed test guidelines in two parts. The first part addresses test requirements for the interface to the PIV card, which are provided in NIST Special Publication 800-85A. The second part provides test requirements for the PIV data model and is provided in this document. This document specifies the derived test requirements, and the detailed test assertions and conformance tests for testing the PIV data model.

Keywords

certificate conformance test; FIPS 201; identity credential; implementation under test (IUT); PIV data model; Personal Identity Verification (PIV); smart cards; biometrics; BER-TLV testing

Control Families

Assessment, Authorization and Monitoring; System and Services Acquisition; System and Information Integrity

Documentation

Publication:
Draft SP 800-85B-4 (pdf)

Supplemental Material:
Comment Template (xlsx)

Document History:
09/11/09: SP 800-85B-1 (Draft)
08/06/14: SP 800-85B-4 (Draft)

Topics

Security and Privacy

acquisition, Personal Identity Verification

Laws and Regulations

Homeland Security Presidential Directive 12