The Hard Token Management Framework is a software solution designed for organizations to manage the entire life cycle of their smart cards and USB dongles, providing secure and efficient management of hardware tokens.
This software is an add-on for the EJBCA Certificate Authority, and it comes with several key features. It supports Setec 4.3.1 and 4.4.1 cards and allows for issuing cards with one or more certificates. It also supports 2 PINs (basic and signature) and contains a "Card Analyser" to help card administrators identify any potential issues with the card. Additionally, it allows for the issuance of ordinary, temporary, and project cards with different validities.
When generating an ordinary or project card, all previous cards are revoked, and when issuing a temporary card, the ordinary card is placed on hold until it is reactivated. User data is fetched from the existing data source, and it's even possible to unlock cards without exposing the PUK, as the PUK is stored encrypted in the EJBCA database. If you are renewing an expiring card, this software makes it easy.
Cards that are no longer in use can be revoked and erased, and administrators can manage the system remotely (even without the card). In 24/7 working environments, a colleague can issue a "card unlock" or "issue temporary" card request that is sent to a central support unit for approval. The software even includes error reporting functionality, allowing technical administrators to analyze unexpected errors.
The latest release of the software includes several important bug fixes, such as ensuring key ceremony parts compile with Java 1.5 and fixing display issues related to PIN unblocking approvals. Other updates include support for only returning the 8 significant serial numbers of HardTokenSN, using Java Web Start instead of applet support, and adding a basic pine parameter to IToken.removeObject. The software also supports uninitialized SetCos 4.4.1 cards using NetID 4.9.0.19, and an AutoLogon controller through PKCS11 has been added.
Version 1.0: N/A