Keyfactor recommends authenticating with EJBCA in a high security environments by using a hard token. This means you use a hardware token instead of storing the private key directly in the browser.
This allows you to:
Keep keys secret:
The private key is never exposed outside the token.
Keep keys secure:
The token can lock itself if someone tries to guess the PIN.
