MULTI-APPLICATION

Cosmo CARDS

The ID-One™ Cosmo range is based on Oberthur Technologies' latest open platform offer.
Implementing Java Card™ and GlobalPlatform industry standards and featuring on-board applications,
it has been specifcally designed for identity and government market needs. ID-One™ Cosmo is the
ideal solution for most identity markets: national ID cards, driving licences, vehicle registration cards,
health cards or employee ID cards.

The ID-One Cosmo family is based on the concept of an open operating system for smart cards. Since its creation, the ID-One Cosmo
product range has been developed to follow the evolution of Java™ technology in order to match issuers' business and security
requirements. Complying with Java Card™ and GlobalPlatform specifications, ID-One Cosmo offers the benefits of an open, secure,
interoperable and standard environment for multi-application smart cards. ID-One Cosmo offers
a range of cards from 16Kb to 128Kb EEPROM, with contact, contactless, dual, USB or hybrid
technology.
The most recent cryptographic mechanisms have been implemented, such as 3DES, AES, RSA
up to 2048 bits and elliptic curves up to 521 bits.
In addition, and to fulfull the requirement of the identity market for plastics and printing features,
Oberthur Technologies offers long-life plastics such as PET-F and Polycarbonate; high security
printing, overlays and laminates.
Already, more than 25 million ID-One Cosmo Java Card operating systems have been ordered
around the world. It is the natural choice for government, health and employee ID cards.

Implementation examples
■ Moroccan national ID card
■ Personal Identity Verifcation (PIV) card for US Federal employees
& contractors with FIPS201 certification
■ Electronic passports for the Kingdoms of Belgium and Thailand
■ Italian National Services Card for public administration

info@oberthur.com | www.oberthur.com
On-card applications proven by the MINEX II evaluation dedicated to the biometric Match-
on-Card and conducted by the NIST (National Institute of Standards
Oberthur Technologies offers several applications for use in a PKI and Technology).
infrastructure and which employ the most advanced cryptogra-
phic algorithms. Privacy, integrity and non-repudiation are safely Cerification
managed for:
The highest security standards and certificates available:
■ Electronic qualified signature
■ Authentication (user, role, device) ■ Common Criteria EAL4+/EAL5+
■ Identification ■ FIPS 140-2 level 3 certified cards
■ Encryption/decryption ■ FIPS 201 compliant for the PIV cards
■ Secure Data storage Development Kit
Biometry A development kit is available to help enhance familiarity with the
ID-One Cosmo implements a biometric Match-On-Card algorithm card. The kit also assists in the design, development, testing and
for storing and verifying digital fingerprints inside the card. To ensure debugging of applications running on the card. The kit includes an
powerful and reinforced security, the matching algorithm is embed- on-card debugger to help developers fine-tune applications while
ded inside the card, providing quick verification (1 to 1 comparison) they are running in their target environment. Training sessions are
and security (the original fingerprint remains in the smart card). available to help software developers.

Based on the ISO19794-2 Fingerprint minutiæ template, the accu-

racy, speed of verification and interoperability have been successfully
**
on

** e B
ts)
rsi

)
EC A k rat bits
EC ey g leng U*

AE DE man (bi

4+
ve

n* uit
DE ffie- key or
PD

AL
(
Le sion

tio S
e
Ex rd A form

*
at
th

S/ He siz

pl **
ro AP rd
da SA

t
RS A k th A

aE
B 3 T =1

ian
-D ey or

om ***
m ne

In ric -Ca
er

en N
lat

l
L
44 /T

tio eri
ve
SA ge
=C

Iv

II c ity
m
RS ng

m ih
alP

n
e
14 T=0

Le

M pe I
t
ey

ith
l
P

ex il
i

om -O
-D en

m w

fic r

M n
a

in rab
rti n C
ob

S* S

2
or

co nt

Bi atch
N

M ed

0-
16

Gl

alg

re plia

a
ce mo
IO

14
Ca

et
**
nd
78

3
n/

Di
RS

sh

m
ax

PS
te

A
pe

va

te
O

o
US

Co

Co
EC

Ha
VE

Bi
IS

IS

Ja
O

FI

ID-One Cosmo Entry v3.6 � 2.0.1' 2.1.1 1536 � � SHA-1

16k - 24k free EEPROM v7.0 � � 2.1.1 2.2.2 � 2048 � � 521 � � � SHA-1 up to 512 � Ongoing Ongoing � � �

v3.6 � 2.0.1' 2.1.1 1536 � � SHA-1

ID-One Cosmo Basic
v5.2.1 � � 2.1.1 2.2 2048 � � SHA-1 � �
32k - 40k free EEPROM
v7.0 � � 2.1.1 2.2.2 � 2048 � � 521 � � � SHA-1 up to 512 � Ongoing Ongoing � � �

ID-One Cosmo Standard v5.4 � � � 2.1.1 2.2.1 2048 � � 191 � � SHA-1, SHA-256 � � � �
64k - 80k free EEPROM v7.0 � � � 2.1.1 2.2.2 � 2048 � � 521 � � � SHA-1 up to 512 � Ongoing Ongoing � � �

ID-One Cosmo Large v5.5 � � 2.1.1 2.2.2 � 2048 � � 384 � � � SHA-1 up to 512 � � � � �
128k + free EEPROM v7.0 � � 2.1.1 2.2.2 � 2048 � � 521 � � � SHA-1 up to 512 � Ongoing Ongoing � � �

* Extended Length APDU support as defined by ISO 7816 & Java Card 2.2.2 ** Elliptic Curves DSA GFp algorithm
*** AES key sizes 128/192/256 bits **** Suite B is a set of cryptographic algorithms promulgated by the National Security Agency
***** Fingerprint ISO 19794-2 compact size minutiæ format http://fingerprint.nist.gov/minexII/

Oberthur Technologies respects the environment.

The number of printed brochures produced by the company has been significantly reduced to save paper.
Printed documents are produced on FSC-certified paper using aqueous inks to reduce environmental impact.
Electronic documentation can be downloaded in PDF format here:
http://downloadservice.oberthurcs.com/
©2008 Oberthur Technologies. All rights reserved. Specifications and information subject to change without notice. The products described in this document are subject to continuous development and improvement.
ID-One is a trademark of Oberthur Technologies. All other trademarks and service marks referred to herein, whether registered or not in specific countries, are the property of their respective owners.
Printed in France, XII 2008. Version 2 Revision 1.

info@oberthur.com | www.oberthur.com