HID 923PPPTEK0033T pivCLASS RKCL40 Contact/Contactless Smart Card Reader with LCD Display

HID Global pivCLASS® Government Solutions enable facilities to upgrade their existing physical access control system (PACS) to FIPS 201 compliance.

The pivCLASS R10, R15, R40 readers and their prox enabled versions deliver the "Controlled" assurance level (as defined in NIST SP 800-116) when used with the pivCLASS Authentication Module (PAM) to perform the following single factor authentication modes: CHUID + VIS Authentication – The pivCLASS system tests the signature on the PIV Card Holder Unique Identifier (CHUID) data object. The CHUID signature check ensures the card is authentic (it came from a valid issuer) and has integrity (it has not been altered).

Because the CHUID is a “free read” and will be transmitted unencrypted to any reader, it could be possible for perpetrators to capture a PIV card's CHUID and create a counterfeit card. However, the pivCLASS signature check secures against this threat and identifies cards that have been counterfeited or altered.

CAK Authentication – pivCLASS readers work with the pivCLASS Authentication Module to perform a PKI challenge-response in addition to a signature check to validate the card authentication key (CAK). The challenge-response test ensures the public key in the card authentication certificate is bound to the private key on the card. pivCLASS CAK authentication secures against cards that have been counterfeited, altered, copied or cloned. pivCLASS readers are guaranteed to meet stringent specifications for operation, reliability and interoperability with other Genuine HID™ products.

Features

• Part of an integrated solution from a single, trusted provider – Enables FIPS 201 compliance per NIST SP 800-116 guidelines and the TWIC Reader Specification
• Contactless reader solution for "Controlled" security areas – Meets NIST's "Controlled" security area assurance level requirements with a single-factor authentication mode: CHUID + VIS or CAK
• Supports multiple card types – PIV, PIV-I, CAC, CIV (a.k.a., PIV-C), TWIC and FRAC, as well as iCLASS® and HID Prox® cards for easy, phased transitions from legacy technology to new PKI-enabled smart cards
• Architected for maximum security and affordability. pivCLASS utilizes the pivCLASS® Authentication Module to perform the cryptographic functionality and to pass Wiegand-formatted data to the PACS controller. Locating the critical security operations within the secure perimeter, rather than on the attack side of the door, increases security and reader affordability.
• Up to two pivCLASS readers can connect to a pivCLASS Authentication Module via four-wire RS-485 communication to the reader, typically enabling facilities to re-use much of their existing wiring
• Available in mullion, mini-mullion and wall switch form factors designed to mount and cover single-gang switch boxes.
• Available with either a pigtail or terminal strip wiring termination.
• Each of these readers can also be ordered with Prox support

Downloads

HID Global pivCLASS® Government Solutions enable facilities to upgrade their existing physical access control system (PACS) to FIPS 201 compliance.

The pivCLASS R10, R15, R40 readers and their prox enabled versions deliver the "Controlled" assurance level (as defined in NIST SP 800-116) when used with the pivCLASS Authentication Module (PAM) to perform the following single factor authentication modes: CHUID + VIS Authentication – The pivCLASS system tests the signature on the PIV Card Holder Unique Identifier (CHUID) data object. The CHUID signature check ensures the card is authentic (it came from a valid issuer) and has integrity (it has not been altered).

Because the CHUID is a “free read” and will be transmitted unencrypted to any reader, it could be possible for perpetrators to capture a PIV card's CHUID and create a counterfeit card. However, the pivCLASS signature check secures against this threat and identifies cards that have been counterfeited or altered.

CAK Authentication – pivCLASS readers work with the pivCLASS Authentication Module to perform a PKI challenge-response in addition to a signature check to validate the card authentication key (CAK). The challenge-response test ensures the public key in the card authentication certificate is bound to the private key on the card. pivCLASS CAK authentication secures against cards that have been counterfeited, altered, copied or cloned. pivCLASS readers are guaranteed to meet stringent specifications for operation, reliability and interoperability with other Genuine HID™ products.

Features

• Part of an integrated solution from a single, trusted provider – Enables FIPS 201 compliance per NIST SP 800-116 guidelines and the TWIC Reader Specification
• Contactless reader solution for "Controlled" security areas – Meets NIST's "Controlled" security area assurance level requirements with a single-factor authentication mode: CHUID + VIS or CAK
• Supports multiple card types – PIV, PIV-I, CAC, CIV (a.k.a., PIV-C), TWIC and FRAC, as well as iCLASS® and HID Prox® cards for easy, phased transitions from legacy technology to new PKI-enabled smart cards
• Architected for maximum security and affordability. pivCLASS utilizes the pivCLASS® Authentication Module to perform the cryptographic functionality and to pass Wiegand-formatted data to the PACS controller. Locating the critical security operations within the secure perimeter, rather than on the attack side of the door, increases security and reader affordability.
• Up to two pivCLASS readers can connect to a pivCLASS Authentication Module via four-wire RS-485 communication to the reader, typically enabling facilities to re-use much of their existing wiring
• Available in mullion, mini-mullion and wall switch form factors designed to mount and cover single-gang switch boxes.
• Available with either a pigtail or terminal strip wiring termination.
• Each of these readers can also be ordered with Prox support

Downloads