pivCLASS注册和认证系统

pivCLASS™Enrollment andAuthentication System READERS, AUTHENTICATION MODULE ANDMANAGEMENT SYSTEM DRIVING PHYSICAL ACCESSSYSTEMS TO COMPLY WITH SP 800-116 PRELIMINARY SYSTEMINFORMATION ƒReaders supporting seamless migration– CAK and PIV authentication with readerssupporting iCLASS®, SIO-Enabled (SE), US Government PIV, PIV-I, CIV, TWIC, FRAC,HID Prox/Indala 125 kHz and magstripe credentials.ƒAffordable upgrades– Upgrade existing physical access control systems to FIPS 201and SP800-116 without the need to rip and replace existing equipment.ƒFull enrollment and authentication– Enables verification of inter-agency andenterprise trust while operating within a full range of authentication levels. The pivCLASS™Enrollment and AuthenticationSystem provides government agencies andcommercial enterprises the capability to meetthe demand for converged physical and logicalsecurity as required by HSPD-12. The pivCLASSfamily of products allows government agenciesto use Personal Identity Verification (PIV)identity cards to provide strong PKI-basedvalidation at the time of enrollment andphysical access transactions. ƒadopt the FASC-N or GUID/UUID as uniqueuser identifiers; andƒuse strong PKI-based validation atenrollment and time-of access. Solution Architecture pivCLASS Authentication Modules are installedbetween most existing PACS panel and apivCLASS reader. Readers are selected basedon assurance level requirements, includingcard revocations and trusted issuers data.Contactless or contact readers provide low andmedium assurance level areas and full biometricreaders with PIN pad for high assuranceareas. Each pivCLASS Authentication Modulesupports one or two pivCLASS readers. PIV-based physical access control systems(PACS) can be accomplished without the needfor wholesale rip and replacement of existingequipment. Instead it requires less costlymodifications, including the need for agencies to: ƒinstall PIV compatible card readers;ƒadd the ability for the PACS to read andinterpret data on the PIV card; All Authentication Modules are managed bythe pivCLASS Validation Server for centralizedcontrol of assurance level settings anddistribution of validation. hidglobal.com ƒUses strong PKI based validation at enrollment and time-of access.ƒValidation Server manages multiple downstream to authenticationmodules.ƒEnables the enrollment of PIV credentials into system for real-timePKI authentication at the door.ƒVarious reader options provide CAK-only (contactless), PIV(contact), LCD, keypad, biometric and magstripe.ƒSupport for various non-government credential technologies formigration and temporary badge use, including iCLASS,SIO-Enabled (SE), HID Prox, Indala Prox and magstripe.ƒAssists in adoption of the FASC-N or GUID/UUID as unique useridentifiers. SYSTEM FEATURES: ƒSupport for extensive list of government credentials andauthentication mechanisms.ƒStandards-based inter-agency and inter-company path discoveryand validation (OCSP/ SCVP).ƒSupplies a variety of authentication levels using various readermodels and associated functionality.ƒEnables re-use of existing wiring for serial connection tosupported readers.ƒFunctions offline if communication with the Validation Server isinterrupted. SPECIFICATIONS An ASSA ABLOY Group brand © 2011 HID Global Corporation. All rights reserved. HID,the HID logo, pivCLASS, and iCLASS are trademarks orregistered trademarks of HID Global in the U.S. and/orother countries. All other trademarks, service marks, andproduct or service names are trademarks or registeredtrademarks of their respective owners.2011-09-08-pacs-pivclass-enrollment-ds-en North America: +1 949 732 2000Toll Free: 1 800 237 7769Europe, Middle East, Africa: +49 6123 791 0Asia Pacific: +852 3160 9800Latin America: +52 477 779 1492 hidglobal.com