Standards body plans to update government smart cards

The National Institute of Standards and Technology (NIST) plans to release an updated version of its interoperability specifications for government smart cards, a senior NIST computer scientist said Tuesday.

"Historically, there has not been much interoperability in the smart card world," Jim Dray, principal scientist for NIST's Government Smart Card program, said during in information security conference sponsored by the MIS Training Institute.

Dray said lack of interoperability has been a stumbling block for many federal agencies that have sought to deploy smart cards as an access control and information security tool. He explained that smart cards manufactured by different vendors often require different types of software and card readers, making it difficult for agencies to link different brands of smart card systems. "You sort of end up getting tied to one vendor's card," Dray said.

Recognizing an industry-wide trend toward smart-card interoperability, NIST released its first government-wide smart card interoperability specifications (GSC-IS) in 2000 and created a Government Smart Card Interagency Advisory Board.

Dray said NIST published an updated version of those specifications last June, and plans to update them again later this year as GSC-IS version 2.1. The newest specifications will align with other international smart card standards, such as those being developed by the European Union's Global Interoperability Framework (GIF).

"Version 2.1 will be the federal government's bridge to the formal standards world," Dray said, adding that the Interoperability Advisory Board was recently restructured to focus less on contracting issues, and more on "what it really takes to get government-wide deployment of smart-card technologies."

Steve Cooper, chief information officer of the Homeland Security Department, has agreed to chair that advisory board, according to Dray.

Dray said the newest government smart card specifications will address biometric applications, as well as "contactless" cards, which can be read from a distance through radio frequency communications.

Many federal agencies are interested in using smart cards for fast, efficient physical access control, "so they're pushing very hard to get a contactless [smart card] technology into the interoperability specifications," Dray said.

Stay up-to-date with federal news alerts and analysis — Sign up for GovExec's email newsletters.
Close [ x ] More from GovExec

Thank you for subscribing to newsletters from
We think these reports might interest you:

  • Going Agile:Revolutionizing Federal Digital Services Delivery

    Here’s one indication that times have changed: Harriet Tubman is going to be the next face of the twenty dollar bill. Another sign of change? The way in which the federal government arrived at that decision.

  • Cyber Risk Report: Cybercrime Trends from 2016

    In our first half 2016 cyber trends report, SurfWatch Labs threat intelligence analysts noted one key theme – the interconnected nature of cybercrime – and the second half of the year saw organizations continuing to struggle with that reality. The number of potential cyber threats, the pool of already compromised information, and the ease of finding increasingly sophisticated cybercriminal tools continued to snowball throughout the year.

  • Featured Content from RSA Conference: Dissed by NIST

    Learn more about the latest draft of the U.S. National Institute of Standards and Technology guidance document on authentication and lifecycle management.

  • GBC Issue Brief: The Future of 9-1-1

    A Look Into the Next Generation of Emergency Services

  • GBC Survey Report: Securing the Perimeters

    A candid survey on cybersecurity in state and local governments

  • The New IP: Moving Government Agencies Toward the Network of The Future

    Federal IT managers are looking to modernize legacy network infrastructures that are taxed by growing demands from mobile devices, video, vast amounts of data, and more. This issue brief discusses the federal government network landscape, as well as market, financial force drivers for network modernization.

  • eBook: State & Local Cybersecurity

    CenturyLink is committed to helping state and local governments meet their cybersecurity challenges. Towards that end, CenturyLink commissioned a study from the Government Business Council that looked at the perceptions, attitudes and experiences of state and local leaders around the cybersecurity issue. The results were surprising in a number of ways. Learn more about their findings and the ways in which state and local governments can combat cybersecurity threats with this eBook.


When you download a report, your information may be shared with the underwriters of that document.