Idem Card Version 2.5 Product data sheet This document supports the version of each product listed and supports all subsequent versions until the document is replaced by a new edition. To check for more recent editions of this document, contact support@GoTrustID.com. Date Nov-28-2019 GoTrustID Inc. www.GoTrustID.
Copyright 2018, GoTrustID Inc. All rights reserved. NOTICE TO LICENSEE: This source code and/or documentation (“Licensed Deliverables”) are subject to GoTrustID Inc. intellectual property rights under International Copyright Laws. These Licensed Deliverables contained herein is PROPRIETARY and CONFIDENTIAL to GoTrustID Inc. and is being provided under the terms and conditions of a form of GoTrustID Inc. software license agreement by and between GoTrustID Inc.
Contents 1 Overview of GoTrust Idem Card .............................................................................................. 6 2 Features ................................................................................................................................... 7 3 Idem Card Specification ........................................................................................................... 8 4 Applications of Idem Card ..........................................................
About this document This document describes the features of GoTrust Idem Card. Revision History A revision occurs with each release of the product, or as needed. A revised version can contain minor or major changes. Table 1 lists the versions of this manual. Table 1. Revision History Revision Description 08/10/2018 The first version of GoTrust Idem Card v2.2 data sheet 08/20/2018 Change the timing of touch behavior Add Chap. 6.3.
Document Feedback GoTrustID Inc welcomes your suggestions for improving our documentation. If you have comments, send your feedback to support@gotrustid.com FCC Compliance Information FCC 15.21 The changes or modifications not expressly approved by the party responsible for compliance could void the user’s authority to operate the equipment. FCC 15.105 This equipment has been tested and found to comply with the limits for a Class B digital device, pursuant to part 15 of the FCC Rules.
1 Overview of GoTrust Idem Card GoTrust Idem Card, hereinafter referred to as Idem Card, is a revolutionary product solving user identity and 2nd factor authentication (2FA) across mobile devices and work places. It possesses a number of attractive features listed below: • Computer login, door access, 2FA for Google, Facebook, Amazon, Dropbox, etc. As one of GoTrust FIDO series products, users can use Idem Card to connect and authenticate to all FIDO U2F and FIDO2 services in BLE supported devices.
2 Features Idem card has 6 major components: BLE chip, Touch Sensor, Security Chip (a Java Card Chip), Battery and Power Management, NFC antenna, and ISO7816 pad. • NFC (ISO14443 Type A, Mifare, FeliCa) user authentication or physical access o The NFC on Idem Card is passive component, which means it operates without GoTrustID Inc. www.GoTrustID.
power supply of its own and is reliant on an active device to come into range before Idem Card is activated. • PKI Applications • FIDO U2F and FIDO2 • Windows Hello and Mac OS Sign In via GoTrust ID software. • Touch to Turn On 3 Idem Card Specification • FIDO U2F certified (BLE and NFC) • FIDO2 certified (BLE and NFC) • ISO 7180 ID-1 standard form factor • JAVA Card Specification o Java Card 3.0.4 on GP 2.2.
• ▪ ISO14443 Type A ▪ MIFARE Plus & DESFire (optional) ▪ FeliCa (optional) Power Management o Support to charge using a standard smart card readers o Standby for 120 days o 60 days operation unlocking computer up to 10 times per day o Fully charged around 2 hours 4 Applications of Idem Card 4.1 Idem Card as FIDO2 Token on Windows Idem Card can be used as a FIDO2 and U2F token on Windows, macOS, Android and iOS devices. Idem card supports both FIDO2 and U2F.
• Step 2: Touch Idem Card to power on it and keep touching 5 seconds. Idem Card will enter pairing mode and you’ll see Idem Card device showed in the screen of “Add a device”. • Step 3: Enter pairing code which is showed at back of Idem Card. GoTrustID Inc. www.GoTrustID.
4.1.2 Manage FIDO2 Token in Windows • Step 1: Go to “Settings” -> “Accounts” -> “Sign-in options” and find button “Manage” of “Security Key”. • Step 2: Touch to power on Idem Card when following dialog is popped up. GoTrustID Inc. www.GoTrustID.
• Step 3: New (Add) Security Key PIN • Step 4: Change Security Key PIN GoTrustID Inc. www.GoTrustID.
4.1.3 Idem Card as FIDO2 Authenticator for Web Apps on Windows FIDO2 Webauthn API is already fully supported on Windows. Table below is the FIDO2 support matrix. There’re web apps which can use Idem Card as FIDO2 authenticator over BLE/NFC interface on Windows and FIDO2 BLE/NFC interface (CTAP2 BLE/NFC) is not enabled in macOS.
Mac Sign-in In MAC OS, there is no system service for an app to do computer sign-in similar to Windows Hello companion device framework. To enable user sign into Mac OS without password, GoTrust ID stores an encrypted user’s password in Idem Card during the registration process and sends encrypted password to Mac from Idem card when user is signing in. Detail information of the signing in process is described in “GoTrust ID Solution Product data sheet”.
https://developers.google.com/identity/fido/android/native-apps and https://developers.google.com/android/reference/com/google/android/gms/fido/packagesummary for more detail. 5 Idem Card Operation 5.1 Charging Idem Card can be charged by Idem Card charger or by conventional smart card reader. To charge using a conventional smart card reader, users need to install GoTrust Authenticator Manager on their Windows computer to ensure proper charging. • Charge 1.5 hour to 80% of battery.
5.3 Automatic Powered Off Behavior • When Idem Card is powered on and the card is idled for 15 seconds. Idem Card will be powered off automatically. • When Idem Card is under pair mode and the card is idled for 30 seconds. Idem Card will be powered off automatically. • When Idem Card is used for computer login, Idem Card will be powered off automatically right after computer is logged in.
6 GoTrust Authenticator Manager To make Idem Card easy to use and enable seamless integration into existing Windows smart card applications and card management systems, GoTrust provides GoTrust Authenticator Manager for Windows 10 users. GoTrust Authenticator Manager Features • PC/SC driver for Idem Card: PC/SC is a widely used Windows driver for applications to access smart card by a Windows API – winscard. Many legacy smart card applications use winscard API.
• Make conventional smart card reader as charger for Idem Card : Idem Card can be charged by a conventional smart card reader. However, most smart card reader will stop providing power to Idem Card when there is no operation. GoTrust Authenticator Manager will detect card inserted to smart card reader. When Idem Card is inserted, GoTrust Authenticator Manager will make smart card reader keep providing power to Idem Card.