Publications – Physical Access

• A Comparison of PIV, PIV-I and CIV Credentials

This brief was developed by the Smart Card Alliance Access Control Council to provide an easy-to-use comparison of Personal Identity Verification (PIV), PIV-Interoperable (PIV-I) and Commercial Identity Verification (CIV) credentials.

• The Commercial Identity Verification (CIV) Credential–Leveraging FIPS 201 and the PIV Specifications

This white paper was developed by the Smart Card Alliance Physical Access Council to provide guidance on how enterprises can take advantage of FIPS 201 and the PIV credential specifications to implement a standards-based commercial identity credentialing program. The white paper defines the Commercial Identity Verification (CIV) credential as a credential that uses the same technology and data model as the PIV-I credential.

• FICAM in Brief: A Smart Card Alliance Summary of the Federal Identity, Credential, and Access Management (FICAM) Roadmap and Implementation Guidance

The Smart Card Alliance Identity Council and Physical Access Council developed the summary of the Federal Identity, Credential, and Access Management (FICAM) Roadmap and Implementation Guidance to highlight key concepts and to make it more accessible to its target audiences. In developing and publishing the summary, the Smart Card Alliance hopes to expand the audience reading the document and promote its concepts broadly through the identity, credential and access management industry. The summary includes the FICAM segment architecture, as-is and target use cases, and roadmap and initiatives for Federal implementation of the FICAM architecture.

• FIPS 201 and Physical Access Control: An Overview of the Impact of FIPS 201 on Federal Physical Access Control Systems

This Physical Access Council white paper provides a roadmap to the key specifications that agencies need to consider in implementing FIPS 201-compliant physical access control systems and provides an overview of the key open questions where work is still being done on standards definition and implementation guidance.

• FIPS 201 PIV II Card Use with Physical Access Control Systems: Recommendations to Optimize Transaction Time and User Experience

The Smart Card Alliance Physical Access Council developed this white paper to discuss factors that impact PIV II card transaction performance in PACS applications and provide recommendations on data encoding, user training and installation that can improve the user experience and reduce PIV II card PACS transaction time.

• GSA Physical Access Control System Guide

GSA published this guide with contributions from Secure Technology Alliance Access Control Council resources and members.  The guide presents the concepts related to Federal Identity, Credential, and Access Management-compliant PACS.

• Guide Specification for Architects and Engineers for Smart Card-based PACS Cards and Readers for Non-government PACS

This resource was developed by the Smart Card Alliance Access Control Council to provide a tool for architects, engineers, consultants, integrators, manufacturers and end users to incorporate smart card-based physical access control cards and readers into specifications. The resource includes a specification that can be “cut and pasted” into a bid specification.

• Identity on a Mobile Device

The Identity Council webinar series recordings provide the groundwork for understanding how to establish and use a mobile identity credential through real-world use cases that are relevant to multiple industry sectors.

• Industry Recommendations for Implementing PIV Credentials with Physical Access Control Systems: A Quick Guide to Implementing Essential NIST SP 800-116 R1 Requirements

This guide was developed by the Secure Technology Alliance Access Control Council to identify the essentials for a successful deployment of a physical access control system (PACS) that complies with Federal Information Processing Standard (FIPS) 201 and provide a streamlined, practical, layman’s version of the National Institute of Standards and Technology (NIST) Special Publication (SP) 800-116 R1.

• Mobile Devices and Identity Applications

This brief was developed by the Smart Card Alliance Identity Council to present the vision of the secure use of mobile devices for identity applications and to describe different use cases for current and NFC-enabled mobile devices.

• Mobile Identity Authentication

This white paper was developed by the Secure Technology Alliance Mobile Council to provide an overview of mobile ID authentication, to highlight use cases that rely on secure user credentials stored on a mobile device, and to provide some perspectives on how emerging technologies and standards are addressing the growing need for mobile ID authentication. Use cases highlighted include access control, payments, government-to-consumer services, and corporate applications.

• NFC Non-Payments Use Cases

The Smart Card Alliance Mobile and NFC Council developed this white paper to provide an educational resource that highlights the different NFC non-payments use cases, describes commercial and pilot use case implementations, and discusses security and implementation considerations.  The white paper discusses use cases for marketing (loyalty, coupons and offers), identity and access (hospitality check-in, boarding passes, physical access control, automotive and healthcare), ticketing (transit and event) and gaming.

• Personal Identity Verification Interoperability (PIV-I) for Non-Federal Issuers: Trusted Identities for Citizens across States, Counties, Cities and Businesses

This white paper was developed by the Smart Card Alliance Physical Access Council and Identity Council to describe the benefits of FIPS 201, PIV standards and PIV-I framework for state and local governments to enable interoperability and trust across different government issuers for a wide variety of identity credentialing programs. The white paper discusses policy, process and technology considerations related to the implementation of state and local government identity credentialing initiatives. The white paper summarizes important aspects of the current state of policy, process and technology and identifies opportunities to support additional work to further improve each through the use of the PIV-I framework and the PIV standard.

• PIV Card/Reader Challenges with Physical Access Control Systems: A Field Troubleshooting Guide

This guidance document was developed by the Smart Card Alliance Access Control Council and Identity Council to help users diagnose the cause of any PIV card/reader issues with physical access control systems and provide troubleshooting guidance to quickly identify corrective actions.

• PIV-Interoperable Credential Case Studies

This white paper was developed by the Smart Card Alliance Identity Council to document the benefits of using PIV-interoperable credentials for enterprises and to provide implementation case studies of enterprises that are issuing or planning to issue PIV-I credentials.

• Smart Cards and Biometrics

This white paper was developed by the Smart Card Alliance Physical Access Council to describe the benefits of combining smart cards and biometrics to enable strong verification and authentication of an individual’s identity. The white paper provides an overview of biometrics technology, discusses how it’s used for identification and verification, and describes the benefits of using smart cards and biometrics to enable strong verification and authentication of the cardholder’s identity. The white paper includes eight case study examples of identity verification systems that combine smart cards and biometrics, including the Singapore Immigration Automated Clearance System, the Canadian Airport Restricted Area Identification Card, Amsterdam Schiphol Airport workforce ID card, the University of Arizona Keyless Access Security System, the FIPS 201 Personal Identity Verification (PIV) card, the U.S. Department of Defense Common Access Card (CAC), the U.S. Transportation Worker Identification Credential (TWIC), and the electronic passport.

• Smart Card Alliance Commentary: OMB Circular A-130 – Managing Information as a Strategic Resource

The Smart Card Alliance Access Control Council developed this position paper to highlight the impact of the OMB Circular A-130 Managing Information as a Strategic Resource 2016 update on the access control industry and on government agencies procuring and implementing access control systems.

• Strong Authentication Using Smart Card Technology for Logical Access

This white paper was developed by the Smart Card Alliance Access Control Council to discuss the benefits of using smart card technology for strong authentication for logical access.

• Temporary Identity Credentials for Federal Agency Physical Access Control Systems (PACS)

The Secure Technology Alliance Access Control Council developed this white paper to recommend an approach for implementing temporary identity credentials for physical PACS in federal agencies

• TWIC® Card/Reader Use with Physical Access Control Systems: A Field Troubleshooting Guide

The Secure Technology Alliance Access Control Council to help users diagnose the cause of TWIC card/reader issues with physical access control systems and provide troubleshooting guidance to quickly identify corrective actions.

• Using FIPS 201 and the PIV Card for the Corporate Enterprise

The Smart Card Alliance Identity Council and Physical Access Council developed this white paper to provide an overview of FIPS 201 for corporate enterprise executives and to describe the benefits of using FIPS 201 as the foundation for enterprise identity management programs.

• Using Mobile Devices for Physical Access Control

The Secure Technology Alliance Access Control Council and Identity Council developed this white paper to discuss how mobile devices can be used for physical access control.  The white paper includes an overview of technology, trust frameworks, assurance levels and use cases.