1. PIV Data Model Testing Ketan Mehta [email_address] March 3, 2006

3. PIV Test Environment PIV Client Application Programming Interface PIV Card Command Calls Card Reader Driver Card Reader PIV Card Application PIV Data Model PIV Card Command Interface PIV MIDDLEWARE (SP 800-73) Host PC Smart Card Reader PIV CARD (FIPS 201, SP 800-73, SP 800-76, SP 800-78) Test Toolkit Application

5. Inputs Process Outputs Derived Test Requirements & Test Assertions Lab Testing: Conformance to SP 800-73 NIST Test Guidance — SP 800-85 Lab Activity SP 800-85A PIV Test Methodology PIV Data Model Testing* Agency Activity** SP 800-85B * Conformance to FIPS 201, SP 800-76, and SP 800-78 ** The process is currently being defined FIPS 201 SP 800-73 SP 800-76 SP 800-78 Test Results NPIVP Certificate Self-certification

9. Enrollment Process Face Templating Fingerprint Templating CBEFF Header Generation PIV-Specific Enrollment Procedures Verification Process Fingerprint Matching Documentation (Fingerprint and Facial Acquisition, Equipment, Procedures) - Quality dependent on the MINEX04 test results - External to PIV testing Tested through SP 800-85B - Dependent on the policy requirements and procedural steps - External to PIV Testing Integrated PIV Biometrics Process Format Validation Human Inspection Performance Tests SP 800-85B – Biometric Data Conformance

10. Test Toolkit Application Card Reader Driver Card Reader PIV Card Application PIV Card Command Interface Agency / System Integrator Smart Card Reader Data Under Test Certificate Profile Conformance Algorithm Conformance Signature Conformance PIV Card SP 800-85B – PIV PKI Testing PIV Data Model