Nexus' software components have new names:

Nexus PRIME -> Smart ID Identity Manager
Nexus Certificate Manager -> Smart ID Certificate Manager
Nexus Hybrid Access Gateway -> Smart ID Digital Access component
Nexus Personal -> Smart ID clients

Go to Nexus homepage for overviews of Nexus' solutions, customer cases, news and more.


Skip to end of metadata
Go to start of metadata

 

Nexus Smart ID Desktop App lets you provision and manage virtual smart cards, which are hosted on your laptop. Virtual smart cards, Yubico Yubikey tokens and ID06 cards can be used via the app for Windows-related use cases, such as two-factor authentication to external resources, protection of data by secure encryption, and integrity through reliable signing. The app also supports PKI encoding of smart cards as part of the Smart ID Digital ID solution. 


Virtual smart cards on your local computer helps to digitalize securely

Secure your day-to-day business

Today, most organizations need to offer their employees and other end users secure access to applications and information at all times and wherever they are. With virtual smart cards on the desktop, you get an integrated and user-friendly two-factor authentication (2FA) method. 

Save time and costs

Physical smart cards are often chosen for their high level of security, but they cost money to buy, renew or replace, and require manual processes to distribute. By using Windows virtual smart cards (VSC), end users can say goodbye to passwords while complexity, logistics and costs for the business are reduced, since the process for supplying physical smart cards, hardware tokens and smart card readers is completely obsolete. With virtual smart cards, you can take advantage of automated and purely digital processes for provisioning and management.

Ensure same level of security as for physical cards

Smart ID Desktop App is based on the Microsoft technologies Virtual Smart Card (VSC) and Universal Windows Platform (UWP). Keys are securely created and stored on the Trusted Platform Module (TPM) chip, which is available on most laptops.The TPM fulfills the same level of security as the physical smart card in terms of non-exportability, cryptography isolation and anti-hammering.

Offer users a seamless experience

Virtual smart cards are easy to use and do not require users to carry additional physical devices with them. Users can easily get started by requesting a virtual smart card via self-service, and activating it by clicking an activation link. Using virtual smart cards in the Smart ID Desktop App offers users a seamless experience that is based on native Windows use cases. 

Get started without delay

Since there is no need to distribute physical cards or tokens, it is quick and easy for an organization to get started with virtual smart cards. Smart ID Desktop App lets you provision and manage virtual smart cards, that can be used for Windows-related use cases, such as two-factor authentication to external resources, protection of data by secure encryption, and integrity through reliable signing. The app is distributed via Microsoft Store or as an MSI installer via Nexus support portal. 


Use Smart ID Desktop App with other tokens

Use a Yubikey for authentication and signing

Certificates can be enrolled as part of from Smart ID Identity Manager to Yubico Yubikey 5 tokens and then used via Smart ID Desktop App for online authentication and signing as part of the Smart ID Digital access solution, or any other Windows use cases. For more information, see Yubikey 5 overview.

Import ID06 card certificates 

Users that hold an ID06 card with certificates can import the certificates to a new profile in Smart ID Desktop App, to use them for online authentication and signing in the Smart ID context. 

Store keys in Microsoft keystore

If TPM hardware is not available on the laptop, keys can be stored in Microsoft keystore instead. Keys in softstore can be used for all the Windows use cases, similar to virtual smart cards. 



Manage the lifecycle of tokens

The Smart ID Desktop App is integrated into Nexus' Smart ID Digital ID solution that includes standard workflows, self-service and automation for easily manage on- and offboarding, enrollment of certificates and common use cases throughout the lifecycle. 

The Identity Manager, which is included in the Digital ID solution, gives a good overview of current users, virtual smart cards and other tokens. Thanks to the use of a public REST API, the solution can also be integrated into other vendors’ infrastructure.

PKI-encode smart cards 

As part of the Smart ID Digital ID solution, the Smart ID Desktop App can be used to PKI-encode smart cards, in integration with Smart ID Identity Manager and a smard card middleware. The solution provides ready-to-use workflows to issue, activate and renew employee cards, and change card PIN. 

Specification

  • Support for Windows 10, 64-bit 
  • Requires Trusted Platform Module (TPM) according to ISO/IEC 11889, version 1.2 or higher.
  • Smart ID Desktop App uses minimal or no hard disk space, RAM and CPU. 
  • Requires integration with Nexus Hermod messaging service 2.3.1 or higher
  • Support for Yubico Yubikey 5 and other tokens for authentication, signing and encryption.
  • Language support according to language settings in Windows 10, for English, German and Swedish.

For more information, see Smart ID Desktop App requirements and interoperability.