The vSEC:CMS S-Series is fully functional with minidriver enabled smart cards and it streamlines all aspects of a smart card management system by connecting to enterprise directories, certificate authorities, physicalaccess control systems, email servers, log servers, biometric fingerprint readers, PIN mailers... the list goes on. With vSEC:CMS organizations can issue smart cards to employees, personalize the smart card with authentication credentials and manage the lifecycle of the smart card - directly from the off-the-shelf product.
vSEC:CMS Connectors (see figure above)
1. Smart card printer for batch operations
2. User directory for looking up users
3. File and database servers
4. Secure transport of PIN codes
5. Event & log management
6. User photo capture
7. Certificate/PKI services
8. Physical access control systems
9. Hardware security module
10. Secondary/out-of-band communication
11. Key archival & key recovery
12. Credential provider -login screen interface
13. Remote security device management
14. User self-service application
15. Physical & virtual smart cards/tokens
16. Administrative operator console
The vSEC:CMS S-Series is fully functional with minidriver enabled smart cards and it streamlines all aspects of a smart card management system by connecting to enterprise directories, certificate authorities, physical access control systems, email servers, log servers, biometric fingerprint readers, PIN mailers... the list goes on. With vSEC:CMS organizations can issue smart cards to employees, personalize the smart card with authentication credentials and manage the lifecycle of the smart card - directly from the off-the-shelf product.
vSEC:CMS S-Series Version 5.9 is now available.
Enhancements found in vSEC:CMS S5.9 include the following:
------------------------------------------------------------
vSEC:CMS S5.7 adds support for the following:
-----------------------------------------------------------------
vSEC:CMS 5.5 adds support for the following:
New features within vSEC:CMS include the following:
vSEC:CMS Connectors (see figure above)
1. Smart card printer for batch operations
2. User directory for looking up users
3. File and database servers
4. Secure transport of PIN codes
5. Event & log management
6. User photo capture
7. Certificate/PKI services
8. Physical access control systems
9. Hardware security module
10. Secondary/out-of-band communication
11. Key archival & key recovery
12. Credential provider -login screen interface
13. Remote security device management
14. User self-service application
15. Physical & virtual smart cards/tokens
16. Administrative operator console
Smart cards are secure devices that are used for many purposes, with perhaps the most important being as combined identification badges for enterprises.
With all professional smart card use, the cards must be managed across the entirety of the smart card lifecycle.
At the base level, personalization tasks include setting PIN codes, setting policies, loading certificates, provisioning and setting management keys.
At the management level, tasks include unblocking PIN codes, setting new PIN codes, and renewing and issuing new certificates.
Revocation typically ends the smart card lifecycle, but it is also the point when the card can be personalized again.
All of these tasks and many more are handled by the vSEC:CMS smart card management system.
Lifecycle management
All smart card operations within vSEC:CMS focus on the smart card lifecycle.
We use a state diagram to graphically visualize the lifecycle;
the diagram clearly shows the operator each card, its location in the lifecycle and available actions/processes from this state.
The same diagram is also used by the administrator when configuring the processes.
Credentials are generally user authentication devices such as physical smart cards, vertical smart cards or tokens. The number of supported credential types is continuously increasing with every new product version.
The table below is showing the supported credentials.
Supported Credentials vSEC:CMS |
|||
ACS ACOS5-64 |
yes |
yes |
yes |
ACS CryptoMate64 |
yes |
yes |
yes |
Athena CNS |
yes |
yes |
yes |
Athena IDProtect Key Nano USB |
yes |
yes |
yes |
Athena IDProtect Key USB Token |
yes |
yes |
yes |
Athena IDProtect Smart Card |
yes |
yes |
yes |
Avtor CryptoCard337 |
yes |
yes |
yes |
CardOS 4.4/5.3 |
yes |
yes |
|
Cryptovision ePKI Applet |
yes |
yes |
|
Feitian ePass2003/eJave |
yes |
yes |
yes |
Gemalto IDPrime .NET 510/5500 |
yes |
yes |
yes |
Gemalto IDPrime MD 830/840/940/3810/3840/3940 |
yes |
yes |
yes |
Gemalto IDPrime PIV Card v2.1/v3.0 |
yes |
yes |
|
Gemalto Safenet eToken 5110/5300 |
yes |
yes |
|
HID C200 |
yes |
yes |
yes |
HID C1150 |
yes |
yes |
yes |
Identiv uTrust MD |
yes |
yes |
|
Longmai mToken CryptoID |
yes |
yes |
|
Microsoft minidriver enabled smart cards |
yes |
yes |
yes |
Mifare DESFIRE EV1 |
yes |
yes |
|
Morpho ypsID S2 |
yes |
yes |
yes |
Morpho ypsID S3 |
yes |
yes |
|
Oberthur Authentic |
yes |
yes |
yes |
Oberthur IAS ECC |
yes |
yes |
yes |
Oberthur PIV 8.1 |
yes |
yes |
|
Open FIPS 201 Applet |
yes |
yes |
|
Raak Technologies C2 |
yes |
yes |
yes |
SafeTrust-PIV on Placard |
yes |
yes |
|
Taglio C2 |
yes |
yes |
|
Taglio PIVKey |
yes |
yes |
|
TCOS TeleSec IDKey |
yes |
yes |
|
Virtual Smart Cards |
yes |
yes |
|
Yubico YubiKey 5 NFC/5C/5 Nano/5C Nano |
yes |
yes |
|
Yubico YubiKey 4/4 Nano/4C/4C Nano |
yes |
yes |
|
Yubico YubiKey NEO/NEO-n |
yes |
yes |
NOTE
✔ The credential is supported by the product.
vSEC:CMS Connectors (see figure above)
1. Smart card printer for batch operations
2. User directory for looking up users
3. File and database servers
4. Secure transport of PIN codes
5. Event & log management
6. User photo capture
7. Certificate/PKI services
8. Physical access control systems
9. Hardware security module
10. Secondary/out-of-band communication
11. Key archival & key recovery
12. Credential provider -login screen interface
13. Remote security device management
14. User self-service application
15. Physical & virtual smart cards/tokens
16. Administrative operator console
The vSEC:CMS S-Series is an innovative, easily integrated and cost-effective smart card management system that helps organizations deploy and manage smart cards quickly and efficiently. The vSEC:CMS S-Series is clientserver based.
It streamlines all aspects of smartcard management by easily connecting to enterprise directories, certificate authorities, smart card printers,external databases, physical access control systems,and more.
The S-Series is designed for several operators and users working in parallel without a need for synchronization;
each operator requires access to the operator application and the operator’s operator smart card only.
Operating Systems:
Server:
Smart Cards:
Card Features:
Compatibility:
Security Features:
Performance: