Key Atkey.card User Manual

1

2

| Table of Content

• About ATKey.Card Page 3

• Outlook Page 4

• Highlights Page 5

• 3 Steps Quick Start Page 6

• USB Page 7

• BLE Page 8

• NFC Page 9

• LED Page 11

• Fingerprint enrollment Page 12

• APP – ATKey for Windows Page 16

• APP – ATKey for Mac Page 18

• Windows Hello Page 20

• Mac Companion Page 22

• FIDO2: Azure AD Page 23

• FIDO2: Microsoft account Page 25

• FIDO U2F Page 27

• NFC Access Control Page 32

• Regulations Page 33

3

• USB HID + BLE + NFC device, no driver needs

• Portable key for any Windows, Mac or Chromebook

• Up to 8x fingerprints, matching < 1 sec., FAR < 1/50,000, FRR < 2 %

• FIDO2 certificate

4

| Outlook

• Each key has his own unique keycode

• It’s equal to serial number

• Check keycode for production records,

customer service and also warranty

LED#1 (Blue)

LED#2 (RGB Tri-color)

Fingerprint sensor

Power button

Keycode

Mifare ID, 8-digits

90mAh Li-on rechargeable
battery

NFC Antenna area

USB Connector (back side)

5

| Highlights

Before Starts:

• Please do battery charging before you use the card – insert card to USB port
or any USB power adaptor

• If ATKey.card connected to USB port but nothing happened (no LED ON), please

wait for a while since there is protect circuit to make sure the battery voltage is not
lower than 3.0V

• USB port of PC: USB mode, ATKey.card can work as USB key

• USB power adaptor: BLE mode, ATKey.card can work as BLE key

• ATKey.card will be OFF automatically if it’s in idle state for 60 seconds (no any

operations, not insert to USB port, no BLE device connected)

• NFC is off, only when fingerprint matched, NFC is ON for 15 seconds (not is

USB mode, not in BLE mode)

firmware

JavaApplet

• Recommended firmware version 3.00.21.37 or later version

• You can do firmware/JavaApplet upgrade through ATKey app

* JavaApplet needs to sync with firmware version; recommended by 2.0.1

6

| 3 Steps Quick Start

Step 3

Fingerprint matching for authentication

Step 2

Register ATKey to device or Service

Step 1

Enroll fingerprint to ATKey

Windows Hello (option)

FIDO U2F

FIDO2

• Add ATKey to Azure AD as
security key

• Add ATKey to MSFT account
as security key

Windows Logon (via CDF)

Login Google, Facebook, Dropbox,

Salesforce, Gitlab via Chrome

browser as 2ndfactor

Passwordless login Microsoft account

or other FIDO2 authentication via

Browsers on Windows , Mac and

Chromebook

OTP (option)

2FA via OTP

Azure AD Passwordless logon

By Standalone enrollment (patent filing)

https://youtu.be/BdF_1jbowXw

or through “ATKey for Windows” app

or through Windows Settings (build 1903

or after builds) via USB or BLE (doing BLE

paring with Windows first)

Or through Chrome Canary browser
(version 81.0.3991.0 or later version)

* If your Windows joined Azure AD, don’t enable this one

* This is only for customization projects or customers

You can find FIDO security key readiness services from here:

https://www.dongleauth.info/

7

| USB

• USB 2.0 Type A

• USB HID device

• USB for data and also battery charge

• Plug USB connect out from backside,

insert it into USB port

• If ATKey.card connected to USB port but
nothing happened (no LED ON), please
wait for a while since there is protect
circuit to make sure the battery voltage
is not lower than 3.0V

• If it’s USB port of PC: USB mode,

ATKey.card can work as an USB key

• If it’s USB power adaptor: BLE mode,

ATKey.card can work as a BLE key

What we can do through USB:

• Add/Delete fingerprint

• through ATKey for Windows

• through Windows Settings

• Firmware version and upgrade

• through ATKey for Windows

• FIDO2

• USB security key for

Windows, Mac and
Chromebook via Edge,
Chrome, Firefox browsers

• Azure AD Passwordless login

• FIDO U2F

• USB security key for Chrome

browser for Windows, Mac
and Chromebook

• Windows Hello

• Battery charge

• OTP (options)

LED:

LED#1 LED#2

ON OFF USB mode, battery is

100% charged

ON flashing Battery charging

flashing Wait for fingerprint

verification

OFF OFF Battery voltage is lower

than 3.0V, please wait for

a while doing battery
charges until LED#2
showing yellow flashing

LED#1

LED#2

LED indicator in USB mode:

8

| BLE - Bluetooth low energy

• Bt4.2 BLE mode

• 1stthing: pair target device & ATKey.Card

What we can do through BLE:

• Add/Delete fingerprint

• through ATKey for Windows

• Through ATKey for Mac

• through Windows Settings

• Firmware version and upgrade

• through ATKey for Windows

• Through ATKey for Mac

• FIDO2

• BLE security key for Windows,

Mac and Chromebook via
Edge, Chrome, Firefox
browsers

• Azure AD Passwordless login

• FIDO U2F

• BLE security key for Chrome

browser for Windows, Mac ,
Chromebook, Android, IOS
(app Smart Lock needs)

• Windows Hello via BLE

• Mac login via BLE

LED:

LED#1 LED#2

ON Flashing BLE broadcasting

ON ON BLE connected to device

flashing ON BLE connected and wait

for fingerprint verification

ON flashing BLE secure pairing mode

ON flashing Touch fingerprint sensor

to confirm the pairing

ON Slow

flashing

Battery low – please do
battery charging via USB

LED#1

LED#2

LED indicator in BLE mode:

ON

Device (Windows, Mac,

Chromebook, iOS,

Android) or App is ready

for pairing

• Power on ATKey.card

• Double-click power

button to secure
pairing mode (LED#2)

• Scan and find
specific card –

check the

keycode to
identify the card

• Select it to pair

• Touch fingerprint

sensor to confirm the
pairing (LED#2)

9

| NFC

• Work with ISO 14443 Mifare Type A

(for 13.56MHz NFC reader)

• USB/BLE NFC card reader

• Android Phone

• NFC access control

• NFC door locker

• NFC is off, only boost after

fingerprint matching for 15 seconds

• 8-digits unique Mifare ID

• App is running on JavaApplet

What we can do through NFC:

• FIDO2 (via JavaApplet) – by demands

• NFC security key for Windows,

Mac and Chromebook via Edge,
Chrome, Firefox browsers

• Azure AD Passwordless login

• FIDO U2F (via JavaApplet)

• NFC security key for Chrome

browser for Windows, Mac ,
Chromebook AND Android

• NFC access control or door locker

(via MiFare ID)

• Power on ATKey.card, verify

fingerprint to turn NFC ON,

then it’s same as normal

NFC card to
touch/touchless to reader
to unlock; NFC is ON for 15

seconds

• But if ATKey.card is in USB mode
or BLE connected mode, NFC

won’t be enabled

LED:

LED#1 LED#2

flashing Flashing Verify fingerprint to

enable NFC

ON ON NFC is ON

LED#1

LED#2

LED indicator in NFC mode:

10

| OS vs. Interface vs. Functionalities

BLE USB NFC

Enroll fingerprint

√ √

Azure AD logon (FIDO2)

√ √

by demands

Windows 10

build 1903 or later version

•

FIDO2 (Edge, Chrome, Firefox)

•

U2F (Chrome)

√ √ √

Windows 10 build 1809 …

•

FIDO2 (edge, Chrome, Firefox)

•

U2F (Chrome)

√

Windows logon via Windows Hello (CDF)

√ √

Android:

•

FIDO2 (Chrome browser on Android)

•

U2F (Chrome browser on Android)

√

iOS:

•

U2F (Chrome browser on iOS via Smart Lock)

√

Mac OS X logon

√

Mac OS FIDO2 and U2F via Chrome browser

√ √ √

Chromebook FIDO2 and U2F via Chrome browser

√ √ √

NFC door locker (

Mifare typeA)

√

• For FIDO2, FIDO U2F or Windows Hello, you can just register by one interface (USB or BLE), then you can use the
card via any interface (USB, BLE, NFC) for authentications