Enabling Contactless Use of PIV Tokens With VCI Support

Virtual Contact Interface (VCI) is a secure messaging protocol defined by the PIV standard. It enables full contactless use of PIV cards and keys, which would otherwise provide access to only a limited set of features. A secure contactless session between the token and the computer is established using the token’s pairing code.

Supported VCI-compatible PIV cards:

  • Idemia ID-One Cosmo v8.1 with PIV 2.4.1

  • Idemia ID-One Cosmo v8.2 with PIV 2.4.2

Pairing Code

A token’s pairing code is an 8-digit number used to establish a secure messaging session between the card or key and the computer. It is not as confidential as a PIN and may be printed on the card or included in a PIN letter.

If the code is unknown, it can be retrieved from the token in the ActivClient Console via the contact interface. PIN authentication is required.

Establishing Contactless Communication With the Token

  1. Open the ActivClient Console.

  2. Place the token on a contactless reader.

  3. In the Devices view, click Enter Pairing Code on the token's tile.

  4. Enter the pairing code.

    If you don't know the code, see Retrieve Pairing Code.

  5. ActivClient will cache the code, allowing the token to be used in contactless mode for the duration of the session — even if you remove and reinsert it.