Written on August 25, 2015
One of the IT security efforts that the GOVERNMENT OF THE UNITED STATES ;) has been really pushing recently is the use of smartcards. I had to go to an office and get my picture taken and the entire surface of both hands printed when I got my PIV Card (basically a smartcard with some identity objects: http://csrc.nist.gov/groups/SNS/piv/standards.html).
Turns out you can install the pkcs15-tool package, run
pkcs15-tool -D on a US Government PIV Card and see some data:
Data object 'Cardholder Fingerprints' applicationName: Cardholder Fingerprints applicationOID: 2.16.8220.127.116.11.18.104.22.168 Path: 6010 Auth ID: 01 Data object 'Printed Information' applicationName: Printed Information applicationOID: 2.16.822.214.171.124.126.96.36.199 Path: 3001 Auth ID: 01 Data object 'Cardholder Facial Image' applicationName: Cardholder Facial Image applicationOID: 2.16.8188.8.131.52.184.108.40.206 Path: 6030 Auth ID: 01
And this interesting bit:
Data object 'Cardholder Iris Image' applicationName: Cardholder Iris Image applicationOID: 2.16.8220.127.116.11.18.104.22.168 Path: 1015 Data object read failed: File not found
Good thing it’s empty - I don’t remember giving that to them. Creepy.