Member Login

Publications – Logical Access

• Boeing Profile
  This profile describes Boeing’s implementation of a smart-card-based employee identification card, called SecureBadge. Download profile. View all profiles.

• The Commercial Identity Verification (CIV) Credential–Leveraging FIPS 201 and the PIV Specifications
  This white paper was developed by the Smart Card Alliance Physical Access Council to provide guidance on how enterprises can take advantage of FIPS 201 and the PIV credential specifications to implement a standards-based commercial identity credentialing program. The white paper defines the Commercial Identity Verification (CIV) credential as a credential that uses the same technology and data model as the PIV-I credential. Download white paper. View executive summary.

• Emergency Response Official Credentials: An Approach to Attain Trust in Credentials across Multiple Jurisdictions for Disaster Response and Recovery
  The Smart Card Alliance Identity Council and Physical Access Council developed this white paper to describe the benefits of using FIPS 201-based smart cards for ERO credentials and present credential use cases that support both emergency response and daily use. Download white paper. View full executive summary.

• FICAM in Brief: A Smart Card Alliance Summary of the Federal Identity, Credential, and Access Management (FICAM) Roadmap and Implementation Guidance
  The Smart Card Alliance Identity Council and Physical Access Council developed the summary of the Federal Identity, Credential, and Access Management (FICAM) Roadmap and Implementation Guidance to highlight key concepts and to make it more accessible to its target audiences. In developing and publishing the summary, the Smart Card Alliance hopes to expand the audience reading the document and promote its concepts broadly through the identity, credential and access management industry. The summary includes the FICAM segment architecture, as-is and target use cases, and roadmap and initiatives for Federal implementation of the FICAM architecture. Download the summary. View executive summary.

• Logical Access Security: The Role of Smart Cards in Strong Authentication
  This report describes the trends in implementing secure logical access. Written for decision makers in enterprises and government agencies, the report discusses current issues with logical access, reviews alternative approaches for authentication and presents key considerations that organizations should take into account when implementing stronger authentication for logical access. The benefits of using smart cards for logical access are presented, along with key business case factors that should be considered when deciding to invest in new technology for strong authentication. The report also describes the support provided for smart cards by the Microsoft Windows and Linux operating systems. Download report. View full executive summary.

• Microsoft Profile
  This profile describes Microsoft’s 2002 deployment of a smart card employee identity system that manages both physical access and remote logical access to company networks. Download profile. View all profiles.

• NSTIC Frequently Asked Questions
  This FAQ was developed by the Smart Card Alliance to answer questions about the National Strategy for Trusted Identities in Cyberspace (NSTIC). Download FAQ. View FAQ.

• Personal Identity Verification Interoperability (PIV-I) for Non-Federal Issuers: Trusted Identities for Citizens across States, Counties, Cities and Businesses. This white paper was developed by the Smart Card Alliance Physical Access Council and Identity Council to describe the benefits of FIPS 201, PIV standards and PIV-I framework for state and local governments to enable interoperability and trust across different government issuers for a wide variety of identity credentialing programs. The white paper discusses policy, process and technology considerations related to the implementation of state and local government identity credentialing initiatives. The white paper summarizes important aspects of the current state of policy, process and technology and identifies opportunities to support additional work to further improve each through the use of the PIV-I framework and the PIV standard. Download white paper. View executive summary.

• Rabobank Profile
  This profile describes Rabobank’s deployment of PKI-based smart cards to employees for logical access. Download profile. View all profiles.

• Remote Administration Software Attacks on Systems Using Public Key Security with and without Smart Cards
  Public key technology is increasingly used to protect against a wide range of potential security attacks on data and data transmissions. Remote administration tools are becoming increasingly popular for centralized administration and troubleshooting, but they carry a considerable potential for bypassing security systems. This white paper investigates the impact that smart cards can have on preventing remote administration software attacks. Download white paper. View full executive summary.

• Secure Identification Systems: Building a Chain of Trust
  This report discusses the importance of a robust chain of trust for secure ID systems. Developed for decision makers, the report summarizes why today’s ID systems are vulnerable, what makes an identification system secure, and what factors need to be considered in developing a secure ID system’s chain of trust. It defines the components of a secure ID system and discusses key considerations for enrollment, issuance, usage and implementation. The report describes how a robust chain of trust can be implemented to authenticate an individual’s identity and ensure the validity of the ID and credential once the ID has been issued and is in use. It describes the role smart cards play in the chain of trust, discusses smart card implementation considerations, and summarizes how smart cards can help to address the key vulnerabilities of current ID systems. Download report. View full executive summary.

• Shell Group Profile
  This profile describes Shell Group’s deployment of PKI-based smart cards to employees for logical access. Download profile. View all profiles.

• Sun Microsystems JavaBadge Profile
  This profile describes Sun Microsystems’ deployment of smart card-based JavaBadge to employees. Download profile. View all profiles.

• The Top 10 Hot Identity Topics
  This white paper was developed by the Smart Card Alliance Identity Council to provide a high-level discussion of the top 10 challenges associated with current identity systems. This paper covers a range of topics and offers perspectives on how the most critical identity issues can be addressed with policy, process, and technology solutions. Download report. View full executive summary.

• U.S. Department of Defense Common Access Card (CAC) Profile)
  This profile describes the background and origins of the U.S. Department of Defense Common Access Card (CAC). Download profile. View all profiles.

• Using FIPS 201 and the PIV Card for the Corporate Enterprise
  The Smart Card Alliance Identity Council and Physical Access Council developed this white paper to provide an overview of FIPS 201 for corporate enterprise executives and to describe the benefits of using FIPS 201 as the foundation for enterprise identity management programs. Download white paper. View full executive summary.

• Using Smart Cards for Secure Physical Access
  This report provides a primer for understanding physical access control systems that use a smart ID card for personal identification. Designed as an educational overview for decision makers and security planners, the report describes physical access system architecture and components, provides guidance on key implementation considerations, describes smart card technologies used for physical and logical access, discusses migration considerations in moving from legacy physical access systems to smart card-based systems and showcases other applications that can be combined with a smart card-based secure physical access system. Download report. View full executive summary.