Many organizations are implementing two-factor authentication solutions to increase network security. Two-factor authentication increases security by requiring something you have, a smart card or other device with a smart card chip, such as a USB token, and something you know, such as the personal identification number (PIN) for the smart card or USB token.
To use smart card authentication, an organization must deploy the related hardware and software to each desktop.
■ Hardware. A smart card reader, as well as a smart card that is on the Microsoft Windows hardware compatibility list or includes drivers for Windows 2000, Windows XP, or Windows Server 2003 clients on your network. Alternatively, a USB token, which is a combination USB reader and card, can be used.
■ Software. A smart card cryptographic service provider (CSP) that allows the Microsoft cryptographic application programming interface (CryptoAPI) to interact with the smart card.
Note The Windows operating system ships with default CSPs manufactured by GemPlus, Infineon, and Schlumberger. The default CSPs do not work with all versions of smart cards by these manufacturers, however. You must determine whether updated CSPs are needed for the smart cards selected by your organization.
Was this article helpful?