Smartcards are tokens in the form of plastic cards that resembles bank cards

containing an implanted microchip including a processor, memory and I/O ports

used to provide authentication, authorization, confidentiality and identification.
Organizations can utilise smart cards to provide strong two factor authentication
using something you have (a smart card) and something you know (a Personal
Identification Number (PIN)) to access the smart card. Some common uses of
smart cards are windows smart card log on and secure Virtual Private Networks
(VPN) access. A more applicable example of smart cards is the University of the
West Indies Identification Card which now uses smart card technology to give
students access to the campus and other registered services such as
examinations and the gym. The use of smart card readers are required for this
technology to work. They can be a separate physical device such as an
Automatic Teller Machine (ATM) or an attachment to a computer. Newer
technologies include the creation of pocket readers and the adding of readers to
keyboards.
Three types of memory storage techniques are typically employed by smart
cards. These are Random Access Memory (RAM), Electronically Erasable
Programmable ROM (EEPROM) and Read Only Memory (ROM). Examples of data
that is stored in ROM are card numbers, the name of the card owner and the card
operating system. EEPROM stores the programs and application data that the
card is able to run. Stored in RAM is the temporary data that is generated by the
executed applications. Smart cards save data in their microchips. The smart
card reader unlocks a section of the smart card with a digital key and writes data
to the section of the card to which the key fits. Smart cards can have various
sections which enables multiple application data to be stored. The memory size
of a smart card determines/limits the number of application data which can be
stored.
Digital certificates are issued via trusted third party such as GlobalSign which are
stored on the smart cards to be used in order to confirm the users identity to the
network. The manufacturer of the smart cards provides software that allows the
user to set up a Personal Identification Number (PIN). In addition to this, the user
needs to have a smart card reader installed or attached to a machine with an
Operating System (OS) that supports smart card authentication. The user can
then proceed to insert the card and enter the PIN to be granted access.
Smart cards/chips employ various different technologies. Two classifications are
contactless chip and contact chip. Contactless smart chips do not make physical
contact with a smart card reader but instead they employ a radio frequency
between the reader and the card. Power is supplied to the card using
electromagnetic fields and no physical contact with a reader. The University of
the West Indies uses these for building and secure area access. Unlike
contactless smart chips, contact smart chips must be inserted into the reader.
Power is supplied to contact cards via the reader. The University of the West
Indies also use these for accessing services such as accessing the gym and
borrowing books. There also exists hybrid cards which combine the two.
Smart cards are a more secure form of user authentication, safe to transport and
they offer greater portability being so small and personal. They offer flexibility in
that they replace the need to carry multiple cards, for example, they can double
as an Identification card and they can easily be replaced if lost. On the flip side,

there is the possible risk of having your identity stolen, they are slowly being
adopted as not much people deem smart cards as secure. Another problem with
smart cards is that although they are fairly cheap, smart card readers are not.