Dual-factor authentication is much stronger than password-based authentication, because in the worst-case scenario, only one person at a time can use the cryptographic token. Generate rsa key pair on the pkcs11 token. For example, the opensc pkcs11 provider is located at usrlibpkcs11opensc-pkcs11. So on unix or at opensc-pkcs11. Each pkcs11 provider can support multiple devices.Having bought a subscription, you can download this or other directories on our website. To download the file, click on the button below.