The default PIVKey security model is compatible with the Microsoft Smart Card Minidriver Specification. It has also been designed to support typical enterprise scenarios, such as user provisioning, and contactless access.
The following are differences with the US Government security model.
|User Key Generation||Requires User PIN|
|User Certificate Loading||Requires User PIN|
|Contactless Access||Allowed for all certificates|
|Card Authentication Cert||Requires user PIN|