ActivID CMS Compliance with Specifications and Standards

Smart Card Operating System

• Java™ Cards

Smart Card Reader architecture    

• PC/SC (Personal Computer/Smart Cards)

Public Key mechanisms

• 1024-bit/2048-bit/3072-bit RSA

• Issuing CAs (Certificate Authority) with RSA keys up to 4096-bit

• X.509 Certificates (version 3)

Public Key Cryptography (PKI)

• PKCS#7 (Public Key Cryptography Standard)

• PKCS#10

• PKCS#11

• PKCS#12

• Microsoft CAPI (CryptoAPI) version 2.0

• TLS (Transport Layer Security) 1.2

• S/MIME (Secure/Multipurpose Internet Mail Extensions)

Symmetric Key Cryptography (SKI)

• 3DES (Triple DES)

• ANSI X9.9

Credential Encryption

• AES (Advanced Encryption Standard)

U.S. Government

• FIPS (Federal Information Processing Standards) 201-2 Specifications

• National Institute of Standards and Technology (NIST) Special Publication 800-73-3 and 800-73-4

• US Government Smart Card-Interoperability Specifications (GSC-IS) 2.1 (NIST IR 6887)

• GSA Basic Services Interface (BSI) version 2.1

Secure Card Management

• GlobalPlatform versions 2.0.1, 2.1.1 and 2.2 Amendment D (for SCP03)

Mobile App Certificate Issuance

• Simple Certificate Enrollment Protocol (SCEP)

Biometrics

• ANSI 378

Product Accessibility

• Section 508-compliant (ActivID CMS User Portal only)

User Management

• LDAP Lightweight Directory Access Protocol version 3.0

Virtual Smart Card

• Generic Identity Device Specification (GIDS) V2.0.

Open Authentication (OATH)

• HOTP (HMAC Hash-Based Message Authentication Code-based One-Time Password) Credential Profile

• TOTP (Time-based One-Time Password) Credential Profile

• OCRA (Challenge-Response-based One-Time Password) Credential Profile

FIDO U2F, FIDO2 CTAP PIN management

• Open Standard from the FIDO The part of a batch order that represents a request that a card be issued. The issuance request contains the cardholder data necessary to personalize and print the card. alliance

• Enables passwordless, secure, and fast log in to websites and apps