Publications – Standards
The Smart Card Alliance Mobile and NFC Council developed this primer to provide an educational resource on Bluetooth low energy, describing what it is, how it’s used, how it fits with other mobile technologies, and what security aspects should be considered for BLE-enabled applications.
- The Commercial Identity Verification (CIV) Credential–Leveraging FIPS 201 and the PIV Specifications
This white paper was developed by the Smart Card Alliance Physical Access Council to provide guidance on how enterprises can take advantage of FIPS 201 and the PIV credential specifications to implement a standards-based commercial identity credentialing program. The white paper defines the Commercial Identity Verification (CIV) credential as a credential that uses the same technology and data model as the PIV-I credential.
This brief was developed by the Smart Card Alliance Access Control Council to provide an easy-to-use comparison of Personal Identity Verification (PIV), PIV-Interoperable (PIV-I) and Commercial Identity Verification (CIV) credentials.
Version 1.1 of the Workgroup for Electronic Data Interchange’s (WEDI) Health Identification Card Implementation Guide includes Integrated Circuit Cards (ICC), commonly known as smart cards, as an appropriate card type. For organizations considering upgrading their member identity cards to smart cards, this document serves as a supplement to the WEDI Health Identification Card Implementation Guide. It provides WEDI-compliant smart card designs and includes a discussion of the features and benefits of smart ID cards for healthcare providers and payers.
This white paper was developed by the Secure Technology Alliance Payments Council to propose a framework for supporting open payment for electric vehicle charging when ISO 15118 is implemented.
This white paper was developed by the Secure Technology Alliance Payments Council to provide a primer on the EMVCo Payment Account Reference (PAR), document expected use cases for the PAR and describe the impact of PAR implementation on key payments ecosystem stakeholders.
The Smart Card Alliance and EMVCo hosted a two-part webinar series to review the status of payment specifications and tokenization. The first webinar discussed progress made by the U.S. market in adopting EMV chip payments, contactless mobile payments and payment tokenization and described the evolution of EMVCo’s scope from the original EMV Chip Specification to now include card and terminal type approval, interoperability, contactless, mobile, next generation payment, and the specifications for payment tokenization and 3D Secure 2.0. The second webinar provided a deep dive into payment tokenization, covering how tokenization provides a layer security approach for payments and what EMVCo’s current payment tokenization activities and priorities are.
- FIPS 201 and Physical Access Control: An Overview of the Impact of FIPS 201 on Federal Physical Access Control Systems
This Physical Access Council white paper provides a roadmap to the key specifications that agencies need to consider in implementing FIPS 201-compliant physical access control systems and provides an overview of the key open questions where work is still being done on standards definition and implementation guidance.
- FIPS 201 PIV II Card Use with Physical Access Control Systems: Recommendations to Optimize Transaction Time and User Experience
The Smart Card Alliance Physical Access Council developed this white paper to discuss factors that impact PIV II card transaction performance in PACS applications and provide recommendations on data encoding, user training and installation that can improve the user experience and reduce PIV II card PACS transaction time.
- Guide Specification for Architects and Engineers for Smart Card-based PACS Cards and Readers for Non-government PACS
This resource was developed by the Smart Card Alliance Access Control Council to provide a tool for architects, engineers, consultants, integrators, manufacturers and end users to incorporate smart card-based physical access control cards and readers into specifications. The resource includes a specification that can be “cut and pasted” into a bid specification.
The Smart Card Alliance Mobile and NFC Council developed this white paper to provide an educational resource on host card emulation (HCE), describing what it is, how it’s used, how it compares with the secure element (SE)-based card emulation approach, what key considerations are for payment applications, and what security aspects should be considered for HCE-enabled applications.
The Smart Card Alliance Mobile and NFC Council hosted this webinar to describe Host Card Emulation (HCE), discuss security approaches that can be used to mitigate HCE-related risks and describe real-world HCE implementations.
- Industry Recommendations for Implementing PIV Credentials with Physical Access Control Systems: A Quick Guide to Implementing Essential NIST SP 800-116 R1 Requirements
This guide was developed by the Secure Technology Alliance Access Control Council to identify the essentials for a successful deployment of a physical access control system (PACS) that complies with Federal Information Processing Standard (FIPS) 201 and provide a streamlined, practical, layman’s version of the National Institute of Standards and Technology (NIST) Special Publication (SP) 800-116 R1.
The Smart Card Alliance Mobile and NFC Council developed a reference guide to mobile/NFC standards and an interactive PowerPoint tool to educate industry stakeholders broadly on the standards, specifications and certification requirements for the NFC ecosystem. The resources list standards and specifications that are relevant when deploying different NFC applications.
- Personal Identity Verification Interoperability (PIV-I) for Non-Federal Issuers: Trusted Identities for Citizens across States, Counties, Cities and Businesses.
This white paper was developed by the Smart Card Alliance Physical Access Council and Identity Council to describe the benefits of FIPS 201, PIV standards and PIV-I framework for state and local governments to enable interoperability and trust across different government issuers for a wide variety of identity credentialing programs. The white paper discusses policy, process and technology considerations related to the implementation of state and local government identity credentialing initiatives. The white paper summarizes important aspects of the current state of policy, process and technology and identifies opportunities to support additional work to further improve each through the use of the PIV-I framework and the PIV standard.
This guidance document was developed by the Smart Card Alliance Access Control Council and Identity Council to help users diagnose the cause of any PIV card/reader issues with physical access control systems and provide troubleshooting guidance to quickly identify corrective actions.
This white paper was developed by the Smart Card Alliance Identity Council to document the benefits of using PIV-interoperable credentials for enterprises and to provide implementation case studies of enterprises that are issuing or planning to issue PIV-I credentials.
The Smart Card Alliance Identity Council developed this white paper to describe the role of smart card technology in implementations of the FIDO protocols.
The Smart Card Alliance Identity Council developed this white paper to describe the benefits of combining smart card technology and strong credentials within the National Strategy for Trusted Identities in Cyberspace (NSTIC).
The Smart Card Alliance Identity Council, Mobile and NFC Council and Access Control Council developed this white paper to provide guidance to U.S. Government policy makers and technologists on the key technical, business and policy considerations for supporting the Personal Identity Verification (PIV) application and credentials on mobile devices using the UICC.
The Smart Card Alliance Identity Council and Physical Access Council developed this white paper to provide an overview of FIPS 201 for corporate enterprise executives and to describe the benefits of using FIPS 201 as the foundation for enterprise identity management programs.
This white paper was developed by the Smart Card Alliance Contactless and Mobile Payments Council Security Work Group to provide an overview of the security features available with contactless and contact smart cards and describe how the security features might apply or be important to different applications.