Important Notice: Our web hosting provider recently started charging us for additional visits, which was unexpected. In response, we're seeking donations. Depending on the situation, we may explore different monetization options for our Community and Expert Contributors. It's crucial to provide more returns for their expertise and offer more Expert Validated Answers or AI Validated Answers. Learn more about our hosting issue here.

Isn’t this less secure than using a secure hardware module, such as a smart card?

card hardware isn’t module Secure SMART
0
Posted

Isn’t this less secure than using a secure hardware module, such as a smart card?

0 CommentsAdd a Comment

1 Answer

0

No. The security models of these two schemes are quite different. With SolidPass™, the user interface and token are under the control of the user. With a smart card, the keys are safe within the token but the user has little control over the user interface. An untrusted terminal can generate any number of signatures for any kind of transaction and is therefore open to attack. For example, after the user has entered his smart card and PIN code into an untrusted terminal device, the device can generate any number of signatures for any kinds of transactions without the user having any control over this. The mobile device, which is in the users own possession, can be considered a trusted device.

0 CommentsAdd a Comment

Related Questions

What is your question?

*Sadly, we had to bring back ads too. Hopefully more targeted.

Experts123