PIV Card TAGs used throughout NIST PIV card edge implementations.

Namespace: CardWerk.SmartCard.CardModule.PIV
Assembly: CardWerk.SmartCard.CardModule.PIV (in CardWerk.SmartCard.CardModule.PIV.dll)

Members
  Member name Description
ACCESS_CONTROL_RULE_TABLE Part of card capability data (17 byte fixed).
AGENCY_CARD_SERIAL_NUMBER agency card serial number tag used in PRINTED information
APPLICATIONS_CARD_URL Part of card capability data (128 byte variable).
AUTHENTICATION_TEMPLATE Tag for dynamic authentication template; Used in General Authenticate
AUTH_KEY_MAP CHUID authentication key map; optional i.e length can be zero. Part of CHUID data
BIOMETRIC_DATA Indicates biometric data (Fingerprint, iris, mugshot)
BUFFER_LENGTH Buffer length
CAPABILITY_CONTAINER_VERSION_NUMBER Part of card capability data (1 byte fixed).
CAPABILITY_GRAMMAR_VERSION_NUMBER Part of card capability data (1 byte fixed).
CAPABILITY_TUPLES Part of card capability data (0 byte).
CARD_APDUS Part of card capability data (0 byte).
CARD_IDENTIFIER Card identifier Part of card capability data (21 bytes fixed).
CERTIFICATE Certificate data. Note that the TAG 0x70 on-card data is encrypted. Therefore data can only be used for X509 related tasks after decryption.
CERTIFICATE_INFO TAG 0x70 reflecting certificate info. 1 byte fixed length
CONTAINER_DATA Container data such as CHUID, X509 certificate. Note that when writing container data in a chain, it is mandatory to make both, CONTAINER_DATA tag and CONTAINER_ID tag with their respective length fields as part of the first CLA=0x10. This way you ensure that the card allocates the space correctly and knows when the chain should end i.e how much data has to follow in subsequent data fields.
CONTAINER_ID BER-TLV container ID
DUNS DUNS
EMPLOYEE_AFFILIATION employee affiliation tag used in PRINTED information
EMPLOYEE_AFFILIATION_LINE2 employee affiliation line 2 tag used in PRINTED information This is a depreceated item.
ERROR_DETECTION_CODE CHUID error detection; optional i.e. tag||zero might not be present. Part of CHUID data, capability data. (0 byte)
EXPIRATION_DATE expiration date tag used in PRINTED information This is a depreceated item.
EXP_DATE CHUID expiration date - part of CHUID data
EXTENDED_APPLICATION_CARD_URL Part of card capability data (48 byte fixed, optional).
FASCN FASCN - part of CHUID data
FINGERPRINT Fingerprint 1 and 2 (recommended length 4000 byte).
GUID GUID a/k/a card UUID - part of CHUID data
IMAGE_IRIS Images for Iris (recommended length 7100 byte).
IMAGE_VISUAL Image for visual verification (mugshot) (recommended length 12704 byte).
ISSUER_ASYM_SIG CHUID issuer's asymetric signature. Part of CHUID data.
ISSUER_IDENTIFICATION issuer identification tag used in PRINTED information
KEY_WITH_OFFCARD_CERT Keys with off-card certificates. Part of Key history object.
KEY_WITH_ONCARD_CERT Keys with on-card certsificates. Part of Key history object.
MAPPING_DG2CONTAINERID Mapping from DG to container ID. Found in Security object container
MSCUID Optional tag for PIV on-card certificates. Variable length up to 38 bytes.
NAME card holder name tag used in PRINTED information
NEXT_CCC Part of card capability data (0 byte).
OFFCARD_CERT_URL Part of key history object data (118 byte variable).
ORGANIZATION_AFFILIATIOIN organization affiliation (line 1) tag used in PRINTED information
ORGANIZATION_AFFILIATIOIN_LINE2 organization affiliation (line 2) tag used in PRINTED information
ORG_ID Organization Identifier
PIV_AID PIV application ID. Part of discovery object.
PKCS_15 Part of card capability data (1 byte fixed).
REDIRECTION_TAG Part of card capability data (0 byte).
REGISTERED_DATA_MODEL_NUMBER Part of card capability data (1 byte fixed).
SECURITY_OBJECT Security object storedin mandatory Security Object Container
SECURITY_OBJECT_BUFFER Part of card capability data (48 byte, optional).
STATUS_TUPLES Part of card capability data (0 byte).
URL URL tag
UUID Cardholder UUID - part of CHUID data mandatory since SP 800-73-4, 2015
See Also