10 November, 2009
Codebench Inc., a provider of TWIC/HSPD-12/FIPS-201 authentication software, announced that its Server-based Certificate Verification Protocol client is now listed on the General Services Administration Approved Product List (APL).
The use of Server-based Certificate Verification Protocol as part of a FIPS 201-compliant physical access control solution improves the credential validation process by simplifying the certificate path discovery between the client and multiple certificate validation authorities.
This is especially important in a situation where PIV cards from multiple agencies need to be validated at a variety of different facilities.
Codebench’s PIVCheck software suite is an card validation and PACS registration solution for HSPD-12 compliance. Its desktop and mobile clients verify PIV, TWIC, Next Gen CAC, and CAC, matching the cardholder’s stored biometric against a live sample, and validating the card’s digital certificates. For all FIPS 201 credentials, the CHUID signature is verified and the card is authenticated using PKI or CAK authentication protocol.