EIDAuthenticate - Smart card logon on stand alone computers and local accounts

Overview

EIDAuthenticate is the solution to offer smart card logon on stand alone computers or to protect local accounts on domain computers. Made by certified security experts, EIDAuthenticate respects the spirit of the deep internal Windows security mechanisms and offers a user friendly interface.

Download for free the Community Edition or test or buy online the Enterprise Edition.

Don't have a smart card ? Checkout EIDVirtual !

General requirements

  • Windows XP or Windows 2003 or later.
  • A local user account (on a stand alone computer or a domain joined computer)

For Windows XP, 2003, these OS are supported only not joined to a domain. The Remote Desktop protocol (terminal services) is working with or without NLA authentication.

Smart card requirements

A Smart Card coming with CSP support or with a mini driver is required.
You can check the compatibility with this procedure.

We recommand using Gemalto IDPrime alias Axalto Cryptoflex .NET with EIDAuthenticate.

You can consult our experimental "MySmartLogon database" to view up-to-date compatibility reports.

Note : tokens using the SafeSign CSP (G&D, ...) present instability problems.
OpenSC bellow and including 0.13 contains a bug with CardRSADecrypt. Use later version or nightly build.

Secure Design

As most logon programs require specific smart card driver, storage facility on the smart card itself or user process authentication, this program is the only one which does the authentication inside of the security kernel of Windows (lsass.exe) : even with signature only card, your data is safe. For example EIDAuthenticate is the only solution supporting natively the windows "force smart card logon" policy, used to secure the local administrator accounts in datacenters or to comply with HSPD-12.

Differences between the Community and the Enterprise Edition

MySmartLogon has two editions of EIDAuthenticate. The first is the Community Edition designed for individuals wanted to use their smart card at home. It is distributed freely but is restricted to Home editions of Windows. This version is based on the 0.5 core.

The second is the Enterprise Edition designed for large companies or governments. This version is based on the 1.0 core which is a complete rewrite of the code made in a secure development livecycle.

 Community EditionEnterprise Edition
Source code Open Source Closed source. Custom compilation available to governments
Price Free See the purchase page
Security core 0.5 1.0
Number of smart cards for one account 1 Unlimited
Administrator facilities No Configure another account, command line interface
CRL / OCSP Checking No Activated by default
HSPD-12 compliant No Yes
Operating System supported Windows Seven or Windows 8 Windows XP, 2003, Vista, Seven, 2008, 8, 2012
Windows Edition supported Home basic or Home Premium All Editions (Home, Pro, Enterprise)

FAQ

1) Does have EIDAuthenticate any certification ?

 EIDAuthenticate may be elligible to a FIPS 201 certification. However authentication software is not yet in the GSA categories.

2) Can security audits be performed on EIDAuthenticate ?

The source code of the Community Edition is published on sourceforge. For the Enterprise Edition, audits can be performed by government entities on demand (the cost is 10 000€)

3) I'm a home user who has Windows Pro. The Community Edition isn't installing. Can I get the Enterprise Edition ?

Currently not yet, but we are thinking about a "home use program".

Download

Community Edition

Download the latest Community Edition release: (2013-01-20)

Note : The Community Edition works only on Home Editions of Windows.

The use of EIDAuthenticate Community Edition within any organization or for commercial purposes is prohibited.

Enterprise Edition

The Enterprise Edition be purchased here.

Don't hesitate to test EIDAuthenticate before making a purchase decision.

Here is the user and functional documentation :