SafeHouse can turn an ordinary USB memory stick or flash disk into a virtual smartcard. Software built into SafeHouse simulates the functions of a physical smartcard, giving you nearly all of the benefits of a real smartcard, with the convenience of using an off-the-shelf USB device you probably already have laying around your office.
|
|
|
|
|
|
|
You must initialize a USB device to be used as a virtual smartcard using the Create Virtual Smartcard dialog described below. If you fail to do this, SafeHouse will not recognize the device as a compatible smartcard.
This feature requires that you first enable the use of virtual smartcards. Instructions for doing so are included at the bottom of this page.
SafeHouse only needs about 200KB of space on the memory stick to save its .SMART file which simulates the smartcard. You can still use the rest of the space on your device how ever you choose.
SafeHouse will create a root folder on the device named SafeHouse. The SafeHouse.smart smartcard file will be saved to this folder. When using the USB device as a smartcard, SafeHouse will only attempt to read the one file named SafeHouse.smart. Any other .SMART files that you may have copied to this same folder will be ignored.
By only looking at this one specifically-named file, SafeHouse can always locate the file on its own as you play musical chairs with your USB devices.
Right click on the SafeHouse system tray padlock icon.
Choose the Tools & Options menu item.
Click the Options tab.
Click the Options button to display the Smartcard Properties dialog.
Click the Virtual Smartcard tab.
Click the Create button (see picture at bottom of this page).
Fill out this form and click Save to accept.
Type a short name or description for this virtual smartcard. This name will be displayed in a variety of SafeHouse's dialogs to help you distinguish one card from another.
Choose your password. We recommend at least 8 characters; preferably 10 or more.
See How to Change a Password for a list of tips for choosing strong passwords.
Type your password again to make sure you've got it right.
Select the Windows drive letter where you USB device is located.
If your device is not yet plugged in, please do so and the drop list will be updated to reflect its new drive letter. You'll still need to select it as the desired target device.
When available, some basic information about the selected device is displayed to the right of the Drive drop list.
Technically, SafeHouse will allow you to select drives which are not USB drives. In this case, the serial number association logic is disabled, but everything else will work as expected. This opens up the possibility of you keeping all of your passwords stored in a virtual smartcard located right on your main C: drive; which has the benefit of only needing to remember one PIN, but without needing to keep a USB device in your pocket.
Nearly all modern USB devices include a serial number embedded into the hardware. SafeHouse is able to use this information to tightly-associate the virtual smartcard you're about to create with this very specific USB device (by serial number).
When this feature is enabled, the serial number for the USB device is embedded into the .SMART virtual smartcard file in such a way that you'll only be able to open this file when this very same USB device is plugged into your PC. This is commonly known as two-factor authentication, because both the password in this specific USB device will be required to use the virtual smartcard.
Note that the requirement here is that the same USB device be plugged into the PC, not that the .SMART file be physically located on that device; although in practice, this will nearly always be the case. All that's really important is that the device be present to prove you've got physical possession of it.
Virtual smartcards keyed to a serial number can still be copied or backed up to other devices or hard drives. You just won't be able to open them from these other locations. You'll need to copy them back to their associated USB device to use them once again within SafeHouse; or at least plug that same device into your system to prove you have possession of it.
This field will be disabled if SafeHouse cannot obtain the serial number for the selected drive letter or certain minimum compatibility requirements are not met.
This feature requires Windows XP or later.
This screen shows where you'll find the button to launch the Create Virtual Smartcard dialog.
To use virtual smartcards in SafeHouse, you'll need to select them in the smartcard configuration drop list pictured below. This tab is accessed from the system tray utility.
