You should also have a look at the applets I finetuned for the eID card. Four applets are available (so far):
  1. a tool to view the content of an eID card and which allows you to securely change your pin on your smartcard reader (provided you are using a DP 850), or via a pseudo-secure pinpad.
  2. an ssh applet to establish a secure shell between your local computer and a (remote) ssh server. If the applet finds a DP 850 smartcard reader, you will be asked to enter your PIN on that reader, if not, you will be asked to enter your PIN through my very neat pseudo-secure PIN pad.
  3. an sftp applet to establish a secure file transfer application to securely transfer files between your local computer and a (remote) ssh server. You can enter your PIN through the cool pseud-secure PIN pad, or on the pin pad reader.
  4. an applet which allows you to read out your public (authentication) key. The (remote) ssh server requires this key in the ~/.ssh/authorized_keys file if you want to use the ssh and/or sftp applets...
The source code for these applets is available in the respective jar files. They are based on the source code you find below. The code has been tested using j2se version 1.4.2_05 sdk on Windows XP and Linux/debian with reasonably recent versions of the mainstream browsers (Opera, Mozilla, FireFox, Internet Explorer, Netscape).

----

begin ===================== Disclaimer ===================== begin

A man of genius makes no mistakes. His errors are volitional and are the portals of discovery -- James Joyce, "Ulysses"

end ===================== Disclaimer ===================== end

----


Open source software to illustrate the eID card's basic functionality -- no guarantees -- undocumented -- use at your own risk ];->>

System requirements:

  1. a smartcard reader supported by your operating system and a properly configured pcsc service/daemon. The installation and configuration of your smartcard reader and corresponding system drivers is beyond this page's scope.
  2. a decent computer system with java (mandatory) and openssl (optional: only necessary if you wish to interpret or verify the eid card's certificates). I use the linux variant of j2sdk1.4.2 as can be found at http://java.sun.com and the openssl which comes with a plain debian installation. I use j2sdk1.4.2 and win32openssl-v0.9.7d on windows xp. The installation and configuration of this software is beyond this page's scope. Have a look at my knoppix installation instructions if you do not feel comfortable with your alien operating system ];-)
  3. a software bridge between the java application and the pcsc service/daemon. I use JPCSC, which is a JNI library offering Java applications the access to PCSC functions by mapping their requests to an underlying native PCSC implementation. The software found below thus depend on JPCSC to communicate with real smart cards. JPCSC depends on a properly installed and setup PCSC environment. Especially, the LD_LIBRARY_PATH should list the directories where the PCSC client libraries and the native JPCSC library libjpcsc.so are installed, the CLASSPATH variable should list the JPCSC jar file jpcsc.jar. If the installation procedure below is followed, these issues will automatically be dealt with. The ``official'' PCSC package can be found here. If you follow the procedure below, all system/environment settings will automatically be set up to provide a working environment.

# For windows users: unpack the zip file generation.one.v0007.zip in c:\ so that the unzip program can propagate its content into c:\eid. I use the script c:\eid\eid.script.bat to test the functionality described on this page (this batch file relies on the existance of a decent java virtual machine (i.e., the command ``java'') somewhere in the default path). This script creates a directory c:\eid.data to store its output.


# Quick pointer to what you need if you are using a Unix variant:


# Unix users may paste the following instructions: