Title :
Security extensions of Windows environment based on FIPS 201 (PIV) smart card
Author :
Abbasi, Abdul Ghafoor ; Muftic, Sead ; Mumtaz, Shahzad Ahmed
Author_Institution :
Sch. of Inf. Commun. & Technol., R. Inst. of Technol., Stockholm, Sweden
Abstract :
This paper describes security extensions of various Windows components based on usage of FIPS 201 (PIV) smart cards. Compared to some other similar solutions, this system has two significant advantages: first, smart cards are based on FIPS 201 standard and not on some proprietary technology; second, smart card security extensions represent an integrated solution, so the same card is used for security of several Microsoft products. Furthermore, our smart card system uses FIPS 201 applet and middleware with smart card APIs, so it can also be used by other developers to extend their own applications with smart card functions in a Windows environment. We support the following security features with smart cards: start-up authentication (based on PIN and/or fingerprint), certificate-based domain authentication, strong authentication, and protection of local resources. We also integrated our middleware and smart cards with MS Outlook and MS Internet Explorer.
Keywords :
application program interfaces; security of data; smart cards; FIPS 201 applet; FIPS 201 smart cards; Windows components; certificate-based domain authentication; middleware; security extensions; smart card API; start-up authentication; strong authentication; Authentication; Cryptography; Middleware; Protocols; Servers; Smart cards;
Conference_Titel :
Internet Security (WorldCIS), 2011 World Congress on
Conference_Location :
London
Print_ISBN :
978-1-4244-8879-7
Electronic_ISBN :
978-0-9564263-7-6
