This Standard sets out an authentication protocol suitable for use in physical and logical access control systems based on ICCs and related systems which support the standards based AES, RSA and SHA ciphers.

This Standard specifies PLAID and its implementation in sufficient detail to allow any two or more implementations to be interoperable. It does not address how implementations share cryptographic keys, access control system credential record structures and biometric template formats.

NOTES:

1 Appendix A provides information for implementers on Test Vectors.

2 Appendices B to J provide informative commentary for implementers and will assist developers, architects and security evaluators.

(a) Appendix B: Implementation under ISO/IEC 24727.

(b) Appendix C: Reference implementation.

(c) Appendix D: Functional specification.

(d) Appendix E: ID-Leakage considerations.

(e) Appendix F: Suggested key lengths and algorithms.

(f) Appendix G: Keyset management.

(g) Appendix H: Operational mode management.

(h) Appendix I: PLAID security features.

(i) Appendix J: Comparison of PLAID to ISO/IEC 9798 authentication mechanisms.