Windows-related use cases, such as these: 

• Windows logon, logging in to a PC or laptop
• TLS client cert authentication in Microsoft Edge
• Remote access using VPN or direct access¹
• Native app integration through MS crypto APIs CAPI or CNG
• Secure email using S/MIME

Independently of Personal Desktop App, the following use cases also apply:

• Document protection by signing or encryption
• BitLocker drive encryption for data volumes

Integrate PKCS#11 clients with the virtual smart card, for example with Firefox.

Modern user interface which allows the user to:

• View profile and certificate details
• Delete profiles
• Change PIN
• Import certificate from file
• Read logs and manage log levels
• Change colour theme
• Automatically use the language according to Windows setting, for supported languages

For more information on language support etc, see Personal Desktop App requirements and interoperability.

Integrated into the overall Nexus Smart ID architecture for:

• Remote provisioning of certificates to the virtual smart card
• Remote PIN reset in case user forgets their PIN
• Web browser online authentication via plugout, see Plugout web browser integration.
• Web browser online signing via plugout, see Plugout web browser integration.

For more information on use cases, see Virtual smart card management in Smart ID.

Virtual smart cards have the same level of security as a physical smart card:

• Keys used for authentication are created and stored in cryptographically secured hardware (TPM)
• Non-exportability, isolated cryptography and anti-hammering by using the TPM