Features

Same as physical smartcard

Smartcards are defined by standardized specifications, ensuring interoperability and security. KeypMe supports both Personal Identity Verification (PIV) cards, a standard used by the United States federal government, and OpenPGP.

KeypMe smartcards offer advanced capabilities like digital signature and encryption, enhancing data security and integrity.

These cards can be used in conjunction with physical smartcards and passwords, allowing for a gradual deployment process that minimizes disruption. Users have the flexibility to choose between KeypMe smartcards and physical smartcards based on their preferences and security requirements.

In the event that a user loses or has their smartphone stolen, a temporary smartcard and reader can be provided, or password login can be temporarily enabled as a fallback option.

Similar to physical smartcards, KeypMe smartcard digital certificates are seamlessly integrated into your company's Public Key Infrastructure (PKI) and signed by the relevant Certificate Authority (CA). This ensures the authenticity and security of your smartcard-based transactions.

Better than physical smartcard

Hardware-Independent and lower costs: KeypMe eliminates the need for additional hardware, such as physical smartcards and readers and complex middleware, resulting in significant cost savings.

Reduced Loss or Theft: Smartphones are generally less likely to be lost, stolen, or forgotten compared to physical cards, providing an added layer of security.

Easy Provisioning: KeypMe offers a streamlined provisioning process, simplifying the deployment and management of smartcards.

Simplified Certificate Renewal: Renewing expired certificates is easier with KeypMe. This is particularly beneficial when using smartcards to access sensitive data, as shorter validity periods can be implemented to enhance security.

Enhanced Cryptographic Capabilities: KeypMe leverages the powerful computing capabilities of smartphones to support stronger cryptographic algorithms, ensuring robust data protection.

Simplified Updates: KeypMe's software-based nature makes it easier to update in response to security vulnerabilities, ensuring ongoing protection.

Security

Reduce or Eliminate Password Authentication: KeypMe enables you to reduce or eliminate password authentication in your IT infrastructure, enhancing security and user convenience.

Industry-Standard Security: KeypMe adheres to industry-standard security and cryptographic algorithms defined by organizations such as the US NIST. This ensures the highest level of security, comparable to the smartcards used by US federal employees and contractors.

Leverage Smartphone Secure Element: KeypMe utilizes the secure element within your smartphone, a dedicated electronic component for storing cryptographic private keys, providing enhanced security.

Enable Complex Biometric Verification: KeypMe supports complex biometric verification methods, adding an extra layer of protection against unauthorized access.

Secure PIN Entry: The KeypMe smartphone application includes a PIN keypad, preventing the risk of PIN theft from your computer.

Reduce Phishing Attacks: KeypMe enforces email signatures, ensuring the authenticity of senders and protecting users from phishing scams. Major email clients like Microsoft Outlook, Mozilla Thunderbird, Apple Mail, and Evolution already support smartcard-based email signing.

Pushing security feature limits

Hardware Security Module (HSM)

Enhanced Security: For organizations with stringent security requirements, KeypMe can leverage an enterprise Hardware Security Module (HSM) to store smartcard secrets, providing an even higher level of protection.

Tighter Control: HSMs offer tighter security control over smartcard usage, minimizing the risk of unauthorized access.

Usage Monitoring: HSMs enable real-time monitoring of smartcard usage, allowing you to detect and respond to any suspicious activity.

Support post-quantum cryptography

Quantum computing poses a significant threat to current encryption algorithms, including those used by physical smartcards.

As quantum computers become more powerful, they will be able to break these algorithms more efficiently.

To address this emerging threat, physical smartcards will need to be replaced with solutions that support post-quantum cryptography. However, post-quantum cryptographic algorithms may evolve over time as quantum computing technology advances.

KeypMe's smartcard solution offers a forward-thinking approach by leveraging the computational power of smartphones or HSMs to support post-quantum cryptography. This ensures that your organization remains protected against future quantum computing threats.

A Seamless Integration with Existing Systems

Widely Adopted Technology: Smartcards are already integrated into major directory services like Microsoft Active Directory and Open-Source Samba. Additionally, smartcard technology is a built-in feature of all major operating systems (Windows, macOS, Linux).

    Broad Application Compatibility: Many applications have native support for smartcards, eliminating the need for proprietary solutions. This includes:
  • Internet Browsers: Log in to websites that support smartcard authentication using Google Chrome, Mozilla Firefox, Microsoft Edge, or Apple Safari.
  • Email Clients: Sign emails with your smartcard using Microsoft Outlook, Mozilla Thunderbird, Apple Mail, or Evolution.
  • Office Suites: Utilize smartcards with Microsoft Office Suite or LibreOffice Suite.
  • Virtual Private Networks (VPNs): Replace passwords and One-Time Passwords (OTPs) with KeypMe smartcards in VPNs like OpenVPN, NordVPN, ExpressVPN, or Mullvad VPN.
    Building Access:
  • Beyond Computers: Smartcards are not limited to computer-based applications. They can also be used for building access control. KeypMe's compatibility with smartcard technology enables its use with digital locks.
  • Widespread Support: Many smart access door locks already support smartcard-controlled access.