(Node.js) ScMinidriver - Get Public Keys from Smart Card Key Container

See more ScMinidriver Examples

Demonstrates how to query a key container on a smart card (or USB token) to get the public part of the private keys that are present. A key container can hold two separate private keys -- one in the "signature" position, and the other in the "key exchange" position.

Install Chilkat for Node.js and Electron using npm at

Chilkat npm packages for Node.js
Chilkat npm packages for Electron
on Windows, Linux, MacOS

var os = require('os');
if (os.platform() == 'win32') {  
  var chilkat = require('@chilkat/ck-node23-win64'); 
} else if (os.platform() == 'linux') {
    if (os.arch() == 'arm') {
        var chilkat = require('@chilkat/ck-node23-linux-arm');
    } else if (os.arch() == 'arm64') {
        var chilkat = require('@chilkat/ck-node23-linux-arm64');
    } else {
        var chilkat = require('@chilkat/ck-node23-linux-x64');
    }
} else if (os.platform() == 'darwin') {
  var chilkat = require('@chilkat/ck-node23-mac-universal');
}

function chilkatExample() {

    // This example requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    // Chilkat recommends the following free tool for interactively examining the contents of your smart card
    // through the ScMinidriver interface:  MGTEK Tool for Minidriver enabled Smart Cards

    // Let's first look at our smart card..
    // Here's the view of our Gemalto (Thales) IDPrime MD T=0 smart card in the MGTEK tool:

    

    var scmd = new chilkat.ScMinidriver();

    // First we need to acquire a context to the smart card in the reader where it is inserted.
    // Reader names (smart card readers or USB tokens) can be discovered
    // via List Readers or Find Smart Cards
    var readerName = "Alcor Micro USB Smart Card Reader 0";
    var success = scmd.AcquireContext(readerName);
    if (success == false) {
        console.log(scmd.LastErrorText);
        return;
    }

    // If successful, the name of the currently inserted smart card is available:
    console.log("Card name: " + scmd.CardName);

    // We likely shouldn't need to authenticate with the smart card (use a PIN) to simply get a public key,
    // so we can skip the PIN authenticatin step..

    // Let's get the key(s) present in Container #7.
    // In our case (shown in the image above), there is a private key in the "key exchange" position, but no key in the "signature" position.
    var pubkey_sig = new chilkat.PublicKey();
    var pubkey_kex = new chilkat.PublicKey();

    success = scmd.GetContainerKeys(7,pubkey_sig,pubkey_kex);
    if (success == false) {
        console.log(scmd.LastErrorText);
        return;
    }

    if (pubkey_sig.Empty == true) {
        console.log("No signature key is present.");
    }
    else {
        console.log("Signature key:");
        console.log(pubkey_sig.GetPem(true));
    }

    if (pubkey_kex.Empty == true) {
        console.log("No Key Exchange key is present.");
    }
    else {
        console.log("Key Exchange key:");
        console.log(pubkey_kex.GetPem(true));
    }

    scmd.DeleteContext();

    console.log("Success.");

    // Here's the output of the above sample code:

    // Card name: IDPrime MD T=0
    // No signature key is present.
    // Key Exchange key:
    // -----BEGIN RSA PUBLIC KEY-----
    // MIIBCgKCAQEAsXeRhM55P13FbpNcXAMR3olbw2Wa6keZIHu5YTZYUBTlYWId+pNi
    // wUz3zFIEo+0IfYR0H27ybIycQO+1IIzJofUFNMAL3tZps2OKPlsjuCPls6kXpXhv
    // /gvhux8LrCtp4PcKWqJ6QVOZKChc7WAx40qFWzHi57ueqRTv3x0kESqGg/VjsqyT
    // Evb55psJO2RsfhLT7+YVh3hImRM3RDaJdkTkPuOxeFyT6N7VXD09329sLuS3QkUb
    // E9zEKDnz9X3d8dEQdJhSI9ba5fxl8R7fu8pB67ElfzFml96X1jLFtzy1pzOT5Fc4
    // ROcaqlYckVzdBq9sxezm6MYmDBjNAcibRwIDAQAB
    // -----END RSA PUBLIC KEY-----

}

chilkatExample();