简体繁体 English

在Win 8.1和Win 10下禁用虚拟智能卡的PIN缓存

[英]Disable PIN caching for Virtual Smart Cards under Win 8.1 & Win 10

原文 2018-12-18 16:52:02 6 1 security/ smartcard/ tpm

We want to store digital certificates for PDF signing in virtual smart cards. 我们希望在虚拟智能卡中存储数字证书以进行PDF签名。 Due to regulatory reasons (FDA, we are developing medical devices), we have to assure that the PIN protecting the certificate has to be (re-)entered again for each document to be signed. 由于监管原因（FDA，我们正在开发医疗设备），我们必须确保对于要签名的每个文档，必须再次（重新）输入保护证书的PIN码。 The default behavior seems to be that the PIN has to be entered only for the first document during a windows session. 默认行为似乎是在Windows会话期间仅必须为第一个文档输入PIN。 Is there any option to configure a "always prompt" policy, like it can be usually done for conventional smart cards? 是否有配置“始终提示”策略的选项，就像常规智能卡通常可以做到的那样？

1 个解决方案

First check that you are actually relying on the smartcard itself and not a kerberos ticket or something derived liek that, try klist and klist purge . 首先，检查您实际上是在依靠智能卡本身，而不是kerberos票证或类似的衍生东西，然后尝试klist和klist purge 。

Check the Base CSP PIN Cache Policy settings here . 在此处检查基本CSP PIN缓存策略设置。

Alternatively, you can forcefully remove the PIN from the cache if you are using an CSP with: CryptSetProvParam(hProv, PP_SIGNATURE_PIN, NULL, 0) 或者，如果您使用的CSP具有以下CryptSetProvParam(hProv, PP_SIGNATURE_PIN, NULL, 0)则可以从缓存中强制删除PIN： CryptSetProvParam(hProv, PP_SIGNATURE_PIN, NULL, 0)

在 Javascript 中可以接受 PIN 缓存吗？ - Is PIN caching acceptable in Javascript?

Windows C++ 加密 API：如何禁用智能卡的密码 UI - Windows C++ crypto API: how to disable pin code UI for smart card

智能卡基本安全问题 - Smart Cards basic security issues

如何在 iTextSharp v5 中添加链接以打开没有 Win10 安全警告的文件 - How to add a link to open a file without a Win10 security warning in iTextSharp v5

在Windows Store应用程序上强制PIN（8.1） - Enforcing PIN on Windows Store Apps (8.1)

不使用PIN读取智能卡信息吗？ - Read smart card information without PIN?

如何在Win7和Win8上访问存储的凭据（PasswordVault？）？ - How to access the stored credentials (PasswordVault?) on Win7 and Win8?

Win32API / Win驱动程序：如何检测是否访问了文件 - Win32API/Win drivers: How to detect if file is accessed

重置具有Muscle卡小程序的Smart Card销 - Reset Smart Card pin having Muscle card applet

CAC卡和“通用”智能卡有什么区别？ - What's the difference between CAC cards and a 'generic' smart card?

暂无

暂无

声明:本站的技术帖子网页，遵循CC BY-SA 4.0协议，如果您需要转载，请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 在 Javascript 中可以接受 PIN 缓存吗？ - Is PIN caching acceptable in Javascript? Windows C++ 加密 API：如何禁用智能卡的密码 UI - Windows C++ crypto API: how to disable pin code UI for smart card 智能卡基本安全问题 - Smart Cards basic security issues 如何在 iTextSharp v5 中添加链接以打开没有 Win10 安全警告的文件 - How to add a link to open a file without a Win10 security warning in iTextSharp v5 在Windows Store应用程序上强制PIN（8.1） - Enforcing PIN on Windows Store Apps (8.1) 不使用PIN读取智能卡信息吗？ - Read smart card information without PIN? 如何在Win7和Win8上访问存储的凭据（PasswordVault？）？ - How to access the stored credentials (PasswordVault?) on Win7 and Win8? Win32API / Win驱动程序：如何检测是否访问了文件 - Win32API/Win drivers: How to detect if file is accessed 重置具有Muscle卡小程序的Smart Card销 - Reset Smart Card pin having Muscle card applet CAC卡和“通用”智能卡有什么区别？ - What's the difference between CAC cards and a 'generic' smart card?

相关标签

粤ICP备18138465号 © 2020-2024 STACKOOM.COM