CertiSur
mToken CryptoID — USB Cryptographic Token
USB cryptographic token for secure storage of digital certificates and private keys. Compatible with PKCS#11 and Microsoft CryptoAPI, widely used in Argentina for digital signatures and certificate-based authentication.
What is mToken CryptoID? Qué es mToken CryptoID
mToken CryptoID is a USB cryptographic token distributed by CertiSur that enables secure storage of digital certificates and their associated private keys. The device acts as a hardware cryptographic smart card: all cryptographic operations (signing, decryption, authentication) are performed inside the token, so the private key never leaves the device.
It is one of the most widely used tokens in Argentina for storing personal and organizational digital certificates, compatible with all major PKI standards and operating systems.
Technical specifications Especificaciones técnicas
- Interface: USB Type-A, plug-and-play — no external power supply required. Interface USB Tipo-A, plug-and-play — no requiere fuente de alimentación externa.
- Supported algorithms: RSA 1024/2048, ECC P-256/P-384, AES 128/256, 3DES, SHA-1/256. Supported algorithms RSA 1024/2048, ECC P-256/P-384, AES 128/256, 3DES, SHA-1/256.
- Storage: up to 4 digital certificates and their associated key pairs. Storage hasta 4 certificados digitales y sus pares de claves asociadas.
- Standards: PKCS#11, Microsoft CryptoAPI (CAPI/CNG), PC/SC, ISO 7816. Standards PKCS#11, Microsoft CryptoAPI (CAPI/CNG), PC/SC, ISO 7816.
- Operating systems: Windows 7/10/11, macOS 10.13+, Linux (major distributions). Operating systems Windows 7/10/11, macOS 10.13+, Linux (principales distribuciones).
- PIN protection: configurable with automatic lockout after multiple failed attempts. PIN protection configurable con bloqueo automático tras múltiples intentos fallidos.
Main use cases Casos de uso principales
- Storing personal digital certificates (Authentication Bureau ID) for legally valid digital signing under Law 25.506.
- Certificate-based authentication for access to corporate systems, VPNs, and web portals.
- Secure storage of code signing certificates, avoiding private key exposure in the file system.
- Two-factor authentication (2FA): something you know (PIN) + something you have (physical token).
- Integration with authentication systems and regulatory compliance platforms.
Key benefits Beneficios clave
- Private key generation and storage inside the device — never exportable.
- Plug-and-play: no external drivers required on modern systems.
- Compatible with all PKI applications that use PKCS#11 or Microsoft CryptoAPI.
- PIN protected: automatic lockout prevents brute force attacks.
- Portable and durable: small form factor, resistant to daily use.
- CertiSur distributes it integrated with its digital certificate issuance — one-stop solution.