Versions Compared

Old Version 2

changes.mady.by.user Serg Black

Saved on

compared with

New Version Current

changes.mady.by.user Serg Black

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Two-Factor Authentication on Android App - Use Case Description

The AirID Login Keychain Sample App demonstrates the PIN-Input in conjunction with the AirID card reader and the inserted smart card. After starting the App, the user is first prompted to enter the smart card PIN before he can access the info data.


1. Please check before you start:

For this use case on Android you will require:

  1. A smart card, CardOS 4.4 OpenSC initialized with a test certificate (provided with the AirID Evaluation-Kit)
  2. An AirID Version 1, wireless smart card reader (provided with the AirID Evaluation-Kit)
  3. An Android device with Bluetooth Low Energy functionality and an Android version from 4.4 upwards
  4. Internet connection to download the AirID Login Keychain Sample App





Tip

Please use this smart card and PINs for two-factor authentication on Android App demo use case:

  • User PIN: 123456
  • PUK: 12345678


2. Initial Installation 

Follow the steps below to install and configure the software components:

  • AirID Central App installation 
  • Bluetooth pairing 
  • Login Keychain Sample App  installation 

2.1 AirID Central App Installation

Follow the steps below to install the AirID Central App.

The AirID Central is a management App for your AirID. The App provides you with information and settings options for your AirID when your AirID is connected to your Android device. Furthermore, the initial Bluetooth pairing needs to be realised within the AirID Central App.

    1. Go to the Google Play Store on your Android device
    2. Install the AirID Central App (https://play.google.com/store/apps/details?id=de.unicept.airid.central)

The AirID Central App has been installed and the next step will be Bluetooth Pairing of the AirID with your Android device.

2.2 Bluetooth Pairing

To pair your Android device with the AirID reader follow these steps:

    1. Insert your smart card to power on the AirID reader and activate Bluetooth at the AirID reader by navigating to the connection menu and pressing the jog dial control element. The AirID should display:
    2. Make sure that Bluetooth is activated on your Android device (Settings > Bluetooth > On)
    3. Open the AirID Central App
    4. Select the AirID (serial number) in the shown device list

    5. A six-digit pairing key will be show on AirID display   and also on the Android device. If the PIN matches press Connect on the Android device and choose Yes on the AirID by scrolling down in the menu and pressing the jog dial control element

    6. After succesful pairing, the device name of the paired device will be displayed on the AirID.

    The AirID has been paired with your Android device and next step will be the Login Keychain Sample App installation.

2.3 Login Keychain Sample Installation

Cover art

To install the App, simply find the Login Keychain Sample App, by searching for Login Keychain Sample in the official Google Play Store and install it (https://play.google.com/store/apps/details?id=de.unicept.airid.howto.pinlogin.keychain).

Now, the App is installed and from now on you will be able using the smart card for login.















Note

If you already paired AirID with another device, please navigate to "Prefered Device" in the AirID menu press the Jog-Dial and choose "new". Then press the Jog-Dial again to confirm. 


3. Using Login Keychain Sample App

Cover art

The Login Keychain Sample App demonstrates the PIN-input in combination with the smart card in the AirID reader. The Login Keychain Sample App provides two login variants: "Standard Login" and "Personalized Login". To use the app please follow these two steps:

  1. Open the Login Keychain Sample App
  2. Wait until keys are exchanged and the connection to AirID is established  

3.1 Standard Login

The standard login only verifies that the entered PIN matches with the PIN of the smart card (PIN verify). No certificate of the smart card is read.

    1. Enter your smart card PIN to login and confirm
    2. The gate opens and you can see AirID information (→ Here there would be your content after integrating AirID to your App!)
    3. To logout press the button

3.2 Personalized Login

This Login variant uses a certificate based authentication. This means that the certificate is read before the PIN entry and that the App is linked to the user after the first login.

    1. Select personalize app
    2. Choose the certificate you want to use and confirm the personalization
    3. Enter your smart card PIN (=123456) to login and confirm
    4. The gate opens and you can see certificate information (→ Herethere  would be your content after integrating AirID to your App!)
    5. To logout press the button

If you want to delete the stored certificate from the App, select the button delete certificate while you are logged in.


Note

The functioning of the AirID Apps with your Android device cannot be guaranteed due to the heterogeneity of Android. In case of an unstable connection of AirID with your Android device or issues concerning the establishment of the connection, please contact our support support@certgatesupport@AirID.com!

Here is the list of tested devices:

  • Samsung Galaxy Note 3
  • Samsung Galaxy S5 Neo
  • OnePlus 2
  • LG G4
  • Nexus Tablet
  • Nexus 5X
  • Pixel


3.3 Using automated "Distance Log-Out" with AirID

The AirID reader locks the Android Login Keychain Sample App automatically, if a (preset) distance between your device and your AirID has been exceeded.

The "Distance Log-Out" is managed in AirID settings using "Distance Sensor". 

Please set the "Distance Sensor" value so that the access to the device is automatically locked when the predefined distance from AirID is exceeded.

    1. Make sure, AirID is connected via BLE with your working device
    2. Take your AirID and navigate to Settings > Distance Sensor
    3. Select On
    4. Select Presetting and Mid

Optionally, you can select any other presetting value or do a manual setting.



Note

Settings can only be changed with an active Bluetooth connection between your device and AirID reader.


Tip

To avoid unintended disconnects, keep in mind that the minimum distance for the automated log-out is about three meters between your device and AirID reader.


Tip

The distance value for the "Distance Sensor" feature represents a relative value. It depends on the signal strength of the AirID, on the environment and on other interferencing signals.