Solutions
Several complex solutions have been designed and developed during the last years - all based on the Infineon SICRYPT® Secure Token Platform. The following examples will give a brief overview and provide examples of successful and advanced application scenarios.
FingerTIP™ SensorCard
The latest development based on the SICRYPT® Secure Token Platform is the implementation of the "matcher on card (MoC)" technology into a SICRYPT® based smart card controller. This development has been done within a funded project of the European Commission (see also:
www.finger-card.org). Incorporating the matching process on the smart card ensures that the security relevant template of the fingerprint does not leave the tamper proof security controller. Therefore the security level of a system using biometric authentication can be increased significantly. The product is planned to be available by 2003.
Novacard GmbH has developed a unique solution based on the integration of Infineon's FingerTIP™ sensor module into an ISO smart card and the MoC enabled SICRYPT® Secure Token Platform module.
The main advantage of such a solution is the portability of the biometric finger print sensor and the integrated matcher. When it comes to fingerprint sensor technology there is a low degree of penetration in the IT environment as well as a hesitancy by users to share one sensor module with other users. By integrating all relevant elements on one credit-card-sized personal and portable device, these obstacles are eliminated and the additionally risk of manipulation of a fixed sensor is no longer relevant.
File / Folder Encryption
The encryption of files and folders within a PC application is quickly becoming a standard requirement. Many users want to secure information on the PC or on their laptops in a transparent way. This means that no special actions for encryption or decryption is required - simply move or store the file into a dedicated folder and the file is encrypted automatically. This directory may be local or on a mapped network drive. The crucial point is the access to the underlying cryptographic keys, that are used for the file encryption / decryption. This key material should be protected by secure hardware.
Eracom Technologies is a software product house offering encryption solutions. The ProtectFile product suite ranges from a simple stand-alone client based software product up to a PKI integrated token-based encryption solution for companies.
Eracom Technolgies offers a CSP based product version that uses keys and certificates already generated on a token. The Infineon SICRYPT® Secure Token Platform together with the Infineon SICRYPT® Base Smart Card CSP software library have been tested and implemented successfully.
PC-Access
Secure PC access / smart card logon is an important security software feature. The combination username / domain / password is one way of authentication valid for all Microsoft Windows® platforms. Windows® certificates may be used for Kerberos logon under Windows® 2000 and higher. Additionally biometric authentication schemes can be added for even higher levels of security.
United Access is the sales channel for a product called smartGINA, which covers all possible ways of secure smart card access to Windows® based systems. The SICRYPT® Secure Token Platform was the first operating system to be integrated into smartGINA. The behavior of smartGINA may be personalized in an extensive way; additionally a sign on to applications (e.g. Outlook ®, ODBC, browser based applications etc) and network resources can be combined.