Smart card security: Disable a lost smart card and track with GPS?

Is it possible to track a lost or stolen smart card with GPS? In this IAM expert response, Randall Gamby gives advice on enhancing smart card security in such a situation.

Randall Gamby, HP

I have reason to believe one of our enterprise's employees sold a smart card to someone outside the company. We've disabled the smart card so it can no longer be used, but is there any way to track a lost smart card?

Unless you have the unlikely capability of coupling your smart card with a GSM chip or signal transmitter for use with the Global Positioning System (GPS) satellite network -- which is possible if you are using a mobile two-factor authentication scheme, I'm afraid there's really no way to track it down.

Assuming you've developed and distributed a corporate policy concerning the appropriate use of smart cards and/or other access devices to support your actions should this become a legal matter, you should have disabled the smart card, which is the reasonably expected action.

For more information:

Get more info in this security token and smart card learning guide.
The pros and cons of implementing smart cards: Read more.
Smart card technology over comes static pin problems: Read more.

This was last published in February 2010

Smart card security: Disable a lost smart card and track with GPS?

Is it possible to track a lost or stolen smart card with GPS? In this IAM expert response, Randall Gamby gives advice on enhancing smart card security in such a situation.

Dig Deeper on Two-factor and multifactor authentication strategies

Top 3 advantages of smart cards -- and potential disadvantages

smart card

Smart cards: security risks

Smart cards: security risks

Related Q&A from Randall Gamby

Manage unsuccessful login attempts with account lockout policy

For minimum password length, are 14-character passwords sufficient?

How has enterprise SSO technology evolved?