Go to Top

sc/interface

Icon-scinterfacesc/interface is smart card middleware which integrates security tokens into IT environments, enabling uses like authentication, digital signatures, and single sign-on. This flexible solution supports more than 80 different smart card profiles across all major operating systems and their platform-specific interfaces.

 

In a nutshell

The rising demand for electronic identity verification requires much more than simple user names and passwords. Two-factor authentication – especially based on a smart card or another security token and a PIN – is therefore a must. As a very mature solution, smart cards have been widely deployed for years on bank cards and more recently on electronic ID cards.

With many different smart card options, the hardware typically is not an issue. In fact, successful projects depend much more on the middleware used. A middleware is software connecting a security token to applications. In the current heterogeneous IT world, a middleware should not depend on specific operating systems or devices. Instead, it should be platform independent and support a broad number of applications across differing devices. In addition, strong security demands middleware that utilizes standards based protocols and advanced cryptographic methods.

sc/interface is a powerful smart card middleware which connects applications (for instance: Windows, Outlook, Safari, Mozilla, etc.) to the desired smart card. It supports all relevant cryptographic interfaces for every major operating system: Microsoft CSP and Minidriver (for Windows and Windows Mobile), Tokend (for macOS), and PKCS#11 (for
Linux derivatives, Windows, and macOS). With hardware support for over 80 card types, sc/interface removes dependence on any single card vendor and provides unrivaled interoperability.

Supporting both RSA and Elliptic Curve Cryptography, sc/interface meets the most demanding encryption standards recommended by USA-based NSA and the German BSI. With its platform independence, a modular architecture, and advanced cryptographic algorithm use, sc/interface is the most versatile and mature product of its kind on the market.

Frequently asked questions

What Is A Smart Card Middleware?

Operating system login, VPN access, secure web portal access, and similar applications need appropriate protection. Many enterprises still use passwords for this purpose, which are neither secure nor convenient. As a replacement for passwords, more and more enterprises currently issue smart cards (or smart tokens) to their employees. A smart card is used for storing secret keys, which can be used as a secure replacement for passwords, but also for encryption and digital signatures. In order to use a smart card on a PC, a smart card middleware is necessary. A smart card middleware is a software component that connects a smart card (or a smart token) with one or several applications. The core of it is a driver, which offers a high-level crypto interface to applications and which talks to the smart card via a (proprietary) low-level interface. In addition, many smart card middlewares comprise a management tool for formatting, personalization and similar tasks. Smart card middleware technology is far from trivial. As many users use the same card on different platforms (e.g. PC and PDA), several operating systems need to be supported. In addition, there are dozens of smart card types with proprietary card interfaces. Finally, there are different crypto interfaces.

Which Crypto Interfaces are supported?

The most popular crypto interface is PKCS#11. It is supported, among others, by the Mozilla suite, Lotus Notes, Adobe Reader and many Linux applications. Microsoft has created their own crypto interfaces. Originally, the Microsoft Cryptographic API was released for Windows 2000 and XP clients as well as Windows Mobile devices.

With Windows Vista, a new interface named CNG (Cryptography API Next Generation) was introduced. CNG includes the concept of Smart Card Minidriver. A Minidriver is a module which allows organizations to easily deploy smart cards by automatically downloading necessary connectors from Microsoft.

sc/interface supports both MS-CAPI and CNG and provides for a Smart Card Minidriver. Finally, sc/interface supports the Apple crypto interface Tokend.

What applications can I realize with?

  • Disk encryption
  • eID
  • WWW login
  • system login
  • VPN login
  • secure WiFi
  • SSO
  • secure e-mail
  • document encryption and signature

What Cards are Supported?

  • ATOS CardOS: M4.01A / V4.2 / V4.2B / V4.2C / V4.3 / V4.3B / V4.4 / V5.0 / V5.3
  • AustriaCard JCOP: 21 V2.2 / 21 V2.3.1 / 31 V2.2 / 31 V2.2 contactless / 31 V2.3.1 / 31 V2.3.1 contactless / 31/72 V2.3.1 / 31 / 72 V2.3.1 contactless / 41 V2.2.1 / 41 V2.2.1 contactless / 41 V2.3.1 / 41 V2.3.1 contactless / 41 V2.4 / 41 V2.4 contactless
  • Bundesdruckerei: GoID card V1, V2
  • ePasslet-Suite 1.1/1.2: on JCOP V2.4.1R3, on JCOP V2.4.1R3 with PACE Profile
  • ePasslet-Suite 2.0: on JCOP V2.4.2R3, on JCOP V2.4.2R3 with PACE Profile
  • Gemalto: TOP IM GX4
  • G&D Sm@rtCafé: Expert: 3.1 / 3.1 contactless / 3.2 / 4.0 / 5.0 / 6.0 / 6.0 SCP 03 / 7
  • G&D STARCOS: 3.0 / 3.2 / 3.4 (Swiss Health Card eGK) / 3.5 
  • HID Crescendo: C700 / C700 contactless
  • Infineon: JCLX80 jTOP / JCLX80 jTOP contactless
  • NXP JCOP: V 2.1 / V2.2 / V2.2 Contactless / V2.2 / V2.3.1 / V2.4 / V2.4.1 / V2.4.2 / V2.4.2 R3 / V2.4.2 R3 SCP 03
  • SwissSign: suisseID (CardOS M4.3B / M4.4)
  • D-Trust: D-Trust Card 3.0
  • TCOS: Signature Card 2.0
  • Microsoft Virtual Smart Card

What Tokens are Supported?

Among others, sc/interface supports the following tokens:

  • Certgate microSD (NXP JCOP)
  • G&D Sm@rtCafé Expert 3.2 USB token
  • NXP JCOP: V2.2.1 IDptoken 200
  • SwissSign SwissID (CardOS M4.3B)
  • Swissbit
  • IDENTIV @MAXX (SCT3512)

Does sc/interface support Virtual Smart Card (VSC)?

Virtual Smart Card (VSC) is a technology introduced by Microsoft that enables the use of the Trusted Platform Module (TPM) for key storage via a smart-card-type interface. sc/interface supports this technology. This means that with sc/interface not only cards and tokens can be used for storing keys, but also a TPM.

Who uses sc/interface?

sc/interface is used (among others) by the following customers:

  • Allianz: Allianz, one of the largest insurance companies in the world, has licenced sc/interface for over 80,000 employees.
  • E.ON: The German energy supplier E.ON has issued 70,000 smart cards to its employees for authentication. The smart card middleware in use is sc/interface.
  • Husky Energy: The Canadian energy supplier Husky Energy uses sc/interface for securing laptops.
  • Minimax: The German fire protection supplier Minimax uses sc/interface for smart card authentication.

The Technical Part

Supported Systems

  • Windows 7, 8.x, 10
  • Windows Server 2008 R2, 2012 R2
  • Centos 6, 7, Debian 7, 8, RedHat 6, 7, Ubuntu 14.04 LTS / 16.04 LTS
  • macOS Mavericks (10.9), Yosemite (10.10.4), El Capitan (10.11), Sierra (10.12)
  • Citrix XenDesktop 7
  • VMware Horizon

PDF-Download-grayred-smallDownload sc/interface
Product Brief

PDF-Download-grayred-smallDownload sc/interface
PIV EDITION Product Brief

PDF-Download-grayred-smallDownload
sc/interface Technical Data Sheet

  • sc/interface contains the following modules

    • Admin tool (sc/manager): Provides a complete range of card/token management functions, including initialisation, profiling, and administration.
    • User tool (sc/utility): Provides administration functions relevant for the user. It is mainly used to change the user PIN.
    • Register tool: Registers digital certificates stored on the card or token (Windows).
    • CSP module: Connects to Microsoft Crypto API for use with most Windows versions.
    • Smart Card Minidriver: Connects to the Cryptographic API Next Generation interface for use with Windows 8.1 / 10 and Windows Server 2008 / 2012 R2.
    • PKCS#11 module: Connects to the PKCS#11 interface for use with Linux derivatives and Mozilla based browsers.
    • Tokend module: Connects to the Tokend interface for macOS and clients.
  • sc/interface
    sc/interface is an advanced smart card and token middleware ideal for uncompromising customers who demand a high security level without compromising flexibility. When dealing with projects in the scope of millions of banking customers or citizens worldwide, broad platform support is crucial for user adoption and success. Leveraging sc/interface is the solution of choice, whenever smart cards or other security tokens are to be used for public key infrastructures for encryption, authentication, or digital signatures. The flexibility that sc/interface delivers allows for a single security token to become a multipurpose device. With it you can consolidate physical access with payment applications or secure website access with digital form signing needed for e-commerce or online government services.
    Platforms
    sc/interface is available for Windows, Linux, BSD, and macOS in 32 and 64 Bit. A user can use the same smart card on different platforms.

    Smart Card Types
    sc/interface supports over 80 smart card types. Among others, cards supplied by Atos, Infineon, NXP, Gemalto, G&D, Siemens and Austria Card can be used. Virtual Smart Card (VSC) is supported, too. One card model can easily be replaced by another.

    Crypto Interfaces
    sc/interface interoperates with virtually every application program on the market (e.g. Internet Explorer, Firefox, MS Outlook), because it supports all major crypto interfaces: PKCS#11, CSP, Minidriver, and Tokend.

    Form Factors
    sc/interface supports both contact and contactless smartcards. Along with smart cards, USB tokens, microSD cards and SIM cards smartphones can be used.

    eID Documents
    The scope of government projects with millions of cards issued requires coverage on all platforms for broad user acceptance. sc/interface covers all major client OS and supports modern standards like PACE.

    Biometrics
    As an alternative to a PIN, it is possible to use a fingerprint template for protecting a smart card. This option is more secure and more convenient. sc/interface supports third party Match-on-Card biometric technology.

    • Next Generation Crypto API
    • Password Authenticated Connection Establishment (PACE)
    • Virtual Smart Card support
    • Biometry
    • Elliptic Curve Cryptography (ECC)
    • Remote desktop operation and terminal servers
    • Localization support via language files
  • compare

Success story

SwissSign, a leading provider of innovative identity solutions and subsidiary of Swiss Post uses cryptovision’s smart card middleware sc/interface for their product SuisseID. SuisseID is a smart card, which stores certificates and private keys of its owner. SuisseID is accompanied by a signature software (SwissSigner) and a solution for secure communication (IncaMail). The easy handling is granted by sc/interface, which is bundled with the SuisseID software. Thanks to sc/interface the SwissSign signature cards and tokens can be used on Windows, macOS and Linux computers. No matter if the user accesses protected websites, signs PDF documents digitally or performs other cryptographic operations, sc/interface always works transparently in the background and thus rises customer satisfaction.

Related Products

  • PKIntegrated: PKI solution for Novell eDirectory and IDM
  • CAmelot: Fully modular PKI solution
  • SCalibur: Distributed Smart Card/Token Middleware