Nexus' software components have new names:

Nexus PRIME -> Smart ID Identity Manager
Nexus Certificate Manager -> Smart ID Certificate Manager
Nexus Hybrid Access Gateway -> Smart ID Digital Access component
Nexus Personal -> Smart ID clients

Go to Nexus homepage for overviews of Nexus' solutions, customer cases, news and more.


Skip to end of metadata
Go to start of metadata

This article describes planned features and improvements in Smart ID Workforce.

Click any column heading to sort the list.


In progress

Planned

Coming features

Feature

Status

Digital Access

Identity Manager & Self-Service

Physical AccessDesktop AppMobile AppMessaging

Kubernetes support

running the Smart ID server components in a Kubernetes environment

in ProgressXX

X

X

Batch synchronization improvements

Adding improvements to BatchSync, such as start and stop from Identity Manager, configurable date format conversion and some performance and usability improvements.

In progress
X



SiPass PACS Connector

Adding Standard Connector to Siemens SiPass PACS for Entitlement Management 

In

progress



X


Postgres 11/12

Implementing support for latest PostGres Versions in Physical Access and Identity Manager

In

progress


XX


Freja Organization ID 

Implement the interface to the Freja Organization ID, including upgrading the existing Freja eID implementation to the latest version.

In progressX




Smart ID Mobile App with BLE

Integrate Windows Logon over BLE functionality into Smart ID Mobile App to use digital identities provisioned to the device, for secure remote login/unlock of Windows based laptops and computers.

Use Smart ID Mobile App as a certificate and keystore for a remote laptop to perform email encryption/decryption and signing operations.

In progress


XX

Adding APDU encoding framework

Enabling Identity Manager to encode Crypto Chips via low-level APDU commands without using any standard middleware libraries.

In progress
X



Certificate bootstrapping

Align certificate bootstrapping for Smart ID, by giving all components the same bootstrap certificates and the same approach how to replace them.

PlannedXX
XX

Common database initialization

Provide the possibility to add a description and version information to the configuration deployment, for better control of which configuration is deployed.

PlannedXX
XX

Common Smart ID authentication

All user authentication to any Smart ID component (e.g. Identity Manager or Self-Service) should go via Digital Access. Have one central authentication endpoint and one place where authentication is configured/ managed

PlannedXX
XX

WebAuthn end-to-end solution

Support WebAuthn on the client side to issue credentials, manage the lifecycle, including enrollment, registration and provisioning, and use it in Smart ID Digital Access for single sign-on (SSO).

PlannedXX
XX

Improve Identity Manager Admin usability

Several improvements for Identity Manager Admin are planned: clone configuration items, introduce refresh buttons, add post-login processes to Identity Manager.

Planned
X



Replace java with Smart ID Desktop App for PKI encoding

Replacing java encoder with Smart ID Desktop App for the last remaining case: full personalization including card printing, RFID encoding and PKI encoding via the Card SDK client. 

Planned
X



Encryption of Identity Manager configuration files

Add possibility to encrypt the configuration ZIP files when exporting them in Identity Manager and Identity Manager Admin.

Planned
X



Version information to configuration deployment

Providing the possibility to add a description and version information to the configuration deployment, for better control of which configuration is deployed.

Planned
X



Digital Access component provisioning

Extending the functionality for provisioning and managing of authentication types to Digital Access component.

Planned
X



Improved configuration deployment

Introducing possibility to deploy configuration deltas and runtime-delete.

Planned
X



SAML single logout (SLO)

Introduce SAML single logout (SLO) functionalities for SP and IdP.

PlannedX




Identity Broker

Introduce functionality to transfer data between different service providers and identity providers.

PlannedX




TLS 1.3 support

Support TLS 1.3 with built-in web server.

PlannedX




Admin wizard

Introduce administration configuration based on most common use cases.

PlannedX




FIDO2 support

Support authentication with FIDO2 token incl. self-registration of new token.

PlannedX




Configuration export

Export and import configuration to enable predefined sets and allow fast deployment.

PlannedX




Smart ID dashboard

Add system-wide dashboard to show important statistic and resource usage.

PlannedX




Merge of Smart ID Desktop App and Personal Desktop Client

Move smart card support via Minidriver and PKCS#11 into Smart ID Desktop App to give end users one common Desktop App for all PKI functionality.

Planned


X

MacOS support

To port Smart ID Desktop App to MacOS and utilize the secure key chain

Planned


X

Mobile Middleware for shared mobile devices

Mobile Middleware is an upcoming super feature of the Smart ID Mobile App which generally speaking provides the capability to read and use external tokens such as NFC smartcards, passports, hardware security tokens from the mobile device.

The primary purpose for this feature in context of this roadmap item is to bring a secure and user-friendly solution to the shared mobile device use-case, i.e. the scenario where many users can share the same mobile for strong online autentication via an external token rather than via a secure identity stored in the mobile device.

Planned



X

FIDO2

Use Smart ID Mobile App as a FIDO2 token in the FIDO2/WebAuthn arcihtecture.

Planned



X

Intune and S/MIME support

Integration with Intune for mobile device management (MDM).

Installation and management of S/MIME certificates. 

Planned



X


Nexus reserves the right to change the roadmap due to recent requests. 

For other Smart ID components, see Component roadmaps

Contact

If you want to know more about our roadmaps and plans for the future, do not hesitate to contact us