3.2 Supported features for Athena smart cards
See section 2.1, Supported features for a description of the features supported by smart cards.
3.2.1 Features
The following MyID features are smart card or middleware specific. The table below indicates which smart card-dependent features are available in MyID with Athena smart cards.
|
|
Features |
|||||||||
|---|---|---|---|---|---|---|---|---|---|---|
|
Smart card |
||||||||||
|
Athena IDProtect |
Y |
P |
|
|
Y |
P |
|
|
Y |
Y |
Key:
- Y – Fully supported.
- P – Partially supported. See below for details.
- blank – Not supported.
3.2.1.1 PIN management
The following Athena cards support a limited range of PIN management features:
|
|
Smart card |
|---|---|
|
Feature |
Athena IDProtect |
|
Lock the PIN after issuance. |
Y |
|
Identify when the PIN is locked. |
Y |
|
Replace the SOPIN with a randomized value. |
Y |
|
Replace the SOPIN with the factory SOPIN at cancellation. |
Y |
|
Unlock the PIN using the SOPIN. |
Y |
|
Provide a remote unlock code. |
Y |
|
Reset the PIN at cancellation. |
Y |
|
Configure on-card PIN policy. |
P |
Key:
- Y – Fully supported.
- P – Partially supported. For details of supported on-card PIN policy features, see section 3.4.1, PIN policy settings.
- blank – Not supported.
3.2.1.2 PKI – ECC
The following Athena smart cards support a limited range of PKI – ECC features:
|
|
Smart card |
|---|---|
|
Feature |
Athena IDProtect |
|
Generate a private key for a certificate request. |
Y |
|
Write a certificate to the smart card. |
Y |
|
Specify the default certificate for Windows logon. |
Y |
|
ECC NIST P256 Curve |
Y |
|
ECC NIST P384 Curve |
Y |
|
ECC NIST P521 Curve |
Y |
|
Remove certificates. |
Y |
|
Archive certificates. |
|
|
Enumerate certificates on the card. |
Y |
Key:
- Y – Fully supported.
- blank – Not supported.