Ready to improve network connectivity? Watch this webinar to learn how SD-WANs and a one-click instant connect tool can boost provisions, deployment, and management of your cloud connection.
Solved
MiniSD card as smartcard?
Posted on 2009-05-02
I've never used smartcard technology but i'm interested in learning more. I have a CA in my microsoft domain and I was wondering if I am able to put my user certificate on a MiniSD card so I can use that to login on my workstation. If I understand correctly, the only thing that defines a smartcard is a certificate assigned to the user. Since the computers have MiniSD card readers is this possible and is it as simple as putting my certificate on the MiniSD card?
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
1 Comment
Pretty much. Smartcards are, well, smarter than that though, they actually carry out the cryptographic operations for you, and all would involve installing drivers for the appropriate APIs (PKCS #11 and #15 are applicable to smartcards) which, if you were rolling your own solution, you would need to write yourself.
the task isn't undoable - in fact, there is a perfectly good PKCS #11 "soft token" provider as part of the mozilla project which can be bent into service - but you would be looking at getting a skilled programmer to turn that into a windows service for you that read from the sd card the pkcs #15 store and did the cryptographic operations for you (I am not aware of any such service prewritten, but if anyone has one, I would be more than happy to be corrected). It would probably be faster/easier to write your own gina (there are sample implementations available) that checks the card for a user certificate, verifies it, extracts the user name, and then prompts for the domain password as normal.
the task isn't undoable - in fact, there is a perfectly good PKCS #11 "soft token" provider as part of the mozilla project which can be bent into service - but you would be looking at getting a skilled programmer to turn that into a windows service for you that read from the sd card the pkcs #15 store and did the cryptographic operations for you (I am not aware of any such service prewritten, but if anyone has one, I would be more than happy to be corrected). It would probably be faster/easier to write your own gina (there are sample implementations available) that checks the card for a user certificate, verifies it, extracts the user name, and then prompts for the domain password as normal.
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
The well known Cerber ransomware continues to spread this summer through spear phishing email campaigns targeting enterprises. Learn how it easily bypasses traditional defenses - and what you can do to protect your data.
Will you be ready when the clock on GDPR compliance runs out? Is GDPR even something you need to worry about? Find out more about the upcoming regulation changes and download our comprehensive GDPR checklist today !
- Encryption
- Network Security
- VPN
- Security
- IT Administration
- WatchGuard, *regulations
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message.
In the To field, type your recipient's fax number @efaxsend.com.
You can even send a secure international fax — just include t…
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…
- Document Management
- Printers and Scanners
- Document Imaging
- Software-Other
- Images and Photos
- Adobe Acrobat, Photos / Graphics Software, Security, OCR, *PDF
Suggested Courses
Course of the Month7 days, 3 hours left to enroll
704 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.