Documente Academic
Documente Profesional
Documente Cultură
multi-application architecture by securely loading applications pre or post-issuance using widely available load tools. IDPass 80 also offers IDL (ISO 18013), ICAO, IAS ECC applications on board. Additionally NIST PIV and payment applications could be added to further expand the possible uses of the card.
Techncial Highlights
80k EEPROM ISO 7816 ISO 14443 Type B Java Card 2.2.2 GlobalPlatform 2.1.1 OS FIPS 140-2 Security Domain support Memory management Transmission Protocols DES and 3DES RSA ECC AES SHA-1 SHA-2 (256, 318 and 512) MS-CAPI/CNG PKCS# 1,7, 10 and 11 X.509 Middleware Windows, LINUX and Mac Support Microsoft ILM support (Optional) PKI, IDL (ISO 18013), ICAO and IAS ECC on card PIV and payment (Optional) Biometric Match-On-Card Application (Optional)
IDPass 80 PKI (01032010)
IDPass 80 PKI
Technical Specification
Silicon Hardware features
Enhanced 8/16-bit CPU core with 16 Mbytes linear addressable memory 80 Kbytes of User EEPROM 30-year data retention at 25 C Enhanced crypto-processor for public key cryptography Hardware security enhanced DES accelerator Three 8-bit timers with watchdog and interrupt capability 3 V and 5 V supply voltage ranges External clock frequency up to 10 MHz CPU clock frequency up to 29 MHz Power-saving Standby state Contact assignment compatible with ISO/IEC 7816-3 standards Asynchronous receiver transmitter (IART) for high speed serial data support (ISO/IEC 78163 and EMV compliant) ESD protection greater then 6 kV (HBM) for contact pads and 4 kV for contactless pads
Operating system certification: OS FIPS 140-2 CAVP and CMVP in progress Designed in accordance with CommonCriteria principles
Signal and Transmission protocols supported: ISO/IEC 7816-3 and ISO/IEC 7816-4 PC/SC architecture compliant T=0 (default) T=1 T=CL PPS speed enhancement
PKI support: Microsoft Crypto API (CAPI) Microsoft Crypto API : Next Generation (CNG) Microsoft ILM (optional) PKCS# 1, 7, 10 and 11 (PKCS#15 optional) X.509 version 3
Global Platform functionality supported: Life cycle management Security domains (including DAP verification, Delegated Management and Supplementary Security Domains) Secure channel protocols (SCP 01, 02 and 03 supported) Supplementary Logical Channels
PKI Middleware support: Microsoft certified Cryptographic Service Provider (CSP) or Minidriver. Certified minidriver available through Windows Update. LINUX and Mac OSX PKCS#11 libraries available (OSX > 10.4) Microsoft Outlook, Internet Explorer as well as Windows 7, Vista, XP, 2000/2003/2008/2008 R2 Server Smart Card Logon VPN Remote Terminal Services Biometric match-on-card support (optional)
Operating system security: Key and PIN value encryption in stored memory Key and PIN object integrity check in stored memory Key and PIN erasure on card termination
Silicon Contactless features Complies with ISO/IEC 14443 type B standards 13.56 MHz carrier frequency RF frame up to 512 bytes RFUART (RF universal asynchronous receiver transmitter) up to 848 Kbits/s 0.5 Kbytes dedicated RFUART RAM BPSK - NRZ load modulation (card-to-reader) 8 to 14% amplitude modulation reception (reader to card) as minimum range Enhanced RF performance provided by CPU clock frequency up to 29 MHz coupled with clock frequency divider
Support Applications (partial list): Windows Smart Card Logon, Outlook and Outlook Express mail signing and encryption (S/MIME), Microsoft VPN, IIS SSL, OpenSSL, Run as Microsoft CA root certificate storage, Adobe Acrobat, Checkpoint VPN, Cisco VPN, Citrix, Lotus Notes, Novell, PGP, Netscape, Firefox, Mozilla, SSH
Supported cryptography functions: AES (Key lengths: 128, 192, 256 bits) DES and 3DES RSA (key lengths: up to 2048 bits) RSACRT (key lengths: up to 2048 bits) RSA on-card key generation (Key length: 512 to 2048 bits in 32 bit increments) ECC FP
On-card applications:
Active shield Monitoring of environmental parameters Protection mechanisms against faults AIS-31 class P2 compliant true random number generator (TRNG) ISO 3309 CRC calculation block Memory protection unit (MPU) Unique serial number on each die
SHA-1
JC API key lengths supported: 128, 160, 192 Application key lengths supported: 256, 384, 521 JC API key lengths supported: 128, 160, 192 Application key lengths supported: 256, 384, 512 Key lengths supported: 256, 384 and 521
PKI IDL (ISO 18013 compliant) ICAO (BAC, AA, EAC, LDS, PACE, SAC) IAS ECC
Asia
1-14-16, Motoyokoyama-cho Hachioji-shi Tokyo, 192-0063 Tel: +81-426-60-7555 Fax: +81-426-60-7106
North America
20380 Town Center Lane Suite 240 Cupertino, CA 95014 Tel: +1 866 359 2273 Fax: +1 408 608 1818
CL. Padre Jess Ordoez, 5 Westpoint 4 Redheughs Rigg 1-B, 28002, Edinburgh EH12 9DQ Madrid, Spain Tel: +44 131 208 1202 Tel: +34 9 1564 4651 Fax: +44 131 777 8150 Fax: +34 9 1564 4651 www.athena-scs.com
sales@athena-scs.com