unixdev.net


Switch to SpeakEasy.net DSL

The Modular Manual Browser

Home Page
Manual: (SunOS-5.10)
Page:
Section:
Apropos / Subsearch:
optional field

smartcard(5)          Standards, Environments, and Macros         smartcard(5)



NAME
       smartcard - overview of smart card features on Solaris

DESCRIPTION
       The  smart  card framework provides a mechanism to abstract the details
       of interacting with smart cards and smart cardreaders (called card ter-
       minals).  The  framework  is based on the OpenCard Framework V1.1 (OCF)
       with Sun extensions to allow OCF to operate in  a  multi-user  environ-
       ment.   The core OCF software protocol stack is implemented as a system
       service daemon. This implementation allows smart cards and card  termi-
       nals  to  be  shared  cooperatively among many different clients on the
       system while providing access control to the smart card and card termi-
       nal resources on a per-UID basis.

       An event dispatcher is provided to inform clients of events occuring on
       the card and at the card terminal, such  as  card  insertion  and  card
       removal.

       A  high-level  authentication mechanism is provided to allow clients to
       perform smart card-based authentications without requiring knowledge of
       specific card or reader authentication features.

       A  set  of  applet  administration tools is provided for JavaCards that
       support downloading Java applets (although applet build tools  are  not
       provided).

       Administration  of the smart card framework is provided with the smart-
       card(1M) command line administration utility  and  the  smartcardguiad-
       min(1) GUI administration tool.

       Support the following card terminal is provided:

         o  Dallas iButton Serial Reader (see ocf_ibutton(7D))


       Additional  card  terminals can be supported by implementing smart card
       terminal interfaces in a shared library.

       Support for several smart cards is provided:

         o  Schlumberger Cyberflex Access JavaCard

         o  Schlumberger MicroPayflex

         o  Dallas Semiconductor Java iButton JavaCard


       Each of the supported cards has a complete set  of  OCF  card  services
       that  implement  the  necessary  functionality  for  authentication and
       secure storage of data. For the two supported JavaCards, an authentica-
       tion and secure data storage applet is provided that can be loaded into
       these cards with the supplied applet administration tools.  See  smart-
       card(1M).

       A  PAM  smart card module is provided to allow PAM clients to use smart
       card-based authentication. See pam_smartcard(5)

       CDE is able to use the PAM smart card module for dtlogin and  dtsession
       authentication. CDE also uses the smart card framework event dispatcher
       to listen for events on the card  terminal  and  provide  corresponding
       visual feedback to the user.

SEE ALSO
       ocfserv(1M),    smartcard(1M),   libsmartcard(3LIB),   pam_start(3PAM),
       pam_smartcard(5), ocf_ibutton(7D), scmi2c(7D)



SunOS 5.10                        16 Oct 2002                     smartcard(5)