Introduction
Trust1Connector v3 Release Documentation
A Word of Introduction
The Trust1Connector is a technical local service that aims to make all hardware devices and tokens, used for authentication and digital signing, interoperable in a web environment. No operating system dependencies to take into account, no browser dependencies, and compatible with smart-card readers, contactless readers and pin-pad readers/terminals. The Trust1Connector provides you with a secured communciation channel between your local device and a web browser.
Our mission is straight forward with a focus in enabling secured communication, from a web application, to a desktop device, in the world of personal or device identity, mainly for the following use cases:
Read token information (personal info, ICAO, ...)
Read certificates, certificate chains or certificate information
Verify a known password (PIN, PUK, CAN, ...)
Authenticate using a hash
Digitally sign a hash
Validate digitally signed hashes
Our mission is to add as many token or security profiles we find in B2C and B2B, government, banking, insurance, health, telco, transportation, IoT (Internet of Things) or other domains.
This library is an SDK meant for fast integration in a web application. We promote although the use of the REST API which is addressable as any other microservice used in software architectures. After installation of the middleware, from an application perspective, you can consume the functionalities without tackling all the security complexity connection devices and browsers in various topologies. The application can use, beside the Javascript SDK, any REST client, in any language to enable all card or device functionalities.
As the connector exists for more than 10 years, Trust1Team decided to enhance the design, security, functionalities, ... and to incorporate all feedback from existing partners into the Trust1Connector v3.
The library has evolved as a technology product for smart card communication to a framework of secured communication from ANY browser to ANY hardware device. In our eco-system we have implemented communication to various printers, signature tablets, biometric devices etc.
During the years, the Trust1Connector has evolved from a product to be installed on standalone dekstops to a product which can be used on shared environments such as Citrix, XenApp, ...
In order to guarantee secured communication, former versions needed a user to have administrator rights during the installation. From this release on, the solution runs completely in user space, sandboxed and hardened. No user data is compromised and thus the solution is GDPR compliant.
Additionally the Trust1Connector acts as a decentralised identity provider. Various protocols such as OIDC, CHAPI, SIOP, ... and many more are on the development roadmap.
The Trust1Connector targets to couple Decentralized Identity to PSD2 payment solutions. This prepares the Trust1Connector to form a bridge between EIdAS and PSD2, or between identity, authentication, digital signatures and payment use cases.
Characteristics of Trust1Connector
The following list describes the characteristics of the Trust1Connector:
Browser independent (no impact upon browser update)
No need for browser plugin
Based on official communication standards, security standards and regulations
No additional software needed, the middleware includes it's own dependencies
Recoverability build-in, preventive checks and tamper-proof
Coops with multiple card readers/terminals (contact and contactless)
Coops with multiple card types (we call it card application profiles)
Extendable and secured framework, we are open to add any card the business needs on our platform
Installers for all supported versions of Mac, Windows and Linux
Installers for Citrix, XenApp or other shared environments
Last updated