Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

PIV Card Application and Middleware Interface Test Guidelines (SP 800-73-4 compliance)



David Cooper, Hildegard Ferraiolo, Ramaswamy Chandramouli, Jason Mohler


NIST Special Publication (SP) 800-73 contains the technical specifications to interface with the smart card to retrieve and use the Personal Identity Verification (PIV) identity credentials. This document, SP 800-85A, contains the test assertions and test procedures for testing smart card middleware as well as the card application. The tests reflect the design goals of interoperability and PIV Card functions. [Supersedes SP 800-85A-2 (July 2010):]
Special Publication (NIST SP) - 800-85A-4
Report Number


application programming interface (API), authentication, card command interface, derived test requirements (DTR), FIPS 201, identity credential, middleware, Personal Identity Verification (PIV), smart cards, test assertions


Cooper, D. , Ferraiolo, H. , Chandramouli, R. and Mohler, J. (2016), PIV Card Application and Middleware Interface Test Guidelines (SP 800-73-4 compliance), Special Publication (NIST SP), National Institute of Standards and Technology, Gaithersburg, MD, [online],, (Accessed April 24, 2024)
Created April 12, 2016, Updated October 14, 2021