Skip to navigation

Features and functionality of the CoreStreet FIPS-201 F5 solution

  • Validates PIV, TWIC, FRAC, and CAC (legacy, NG, EP) cards without requiring replacement or modification of the PACS
  • Validates cards at controlled, limited, or exclusion assurance levels as defined in SP 800-116 - supports all authentication mechanisms (e.g., CHUID, PKI, CHUID+Bio, PKI+Bio)
  • Validates TWIC cards at the 4 authentication modes defined in the TWIC reader specs
  • Checks status to deny access for revoked cards (OCSP/CRL or TWIC Hotlist)
  • Performs certificate path discovery and validation to a trusted authority (SCVP) in the Government certified PKI bridge infrastructure to validate inter-agency/inter-company trust for contractors, visitors, etc.
  • Captures and stores PKI certificates the first time a card is read for periodic path and status validation - no separate enrollment step required
  • Captures and stores the TWIC Private Key (TPK) the first time a card is read (on the contact interface) to support contactless-only biometric authentication - no separate enrollment step required
  • Supports a range of commercially available card readers for validation at the required assurance level(s) - contact and contactless card-only, card+PIN, card+bio, card+PIN+bio
  • Re-uses existing reader wiring for serial connection to supported readers - no network connection required at the reader
  • Functions offline if communication with the CoreStreet FIPS-201 F5 Management Station is interrupted
  • Firmware updates pushed from the CoreStreet FIPS-201 F5 Management Station to all CoreStreet FIPS-201 F5 Modules

Back