Added VSC deprecation notice

windows/security/information-protection/tpm/how-windows-uses-the-tpm.md

@@ -62,6 +62,8 @@ These TPM features give Platform Crypto Provider distinct advantages over softwa
 
 ## Virtual Smart Card
 
+[!INCLUDE [virtual-smart-card-deprecation-notice](../../includes/virtual-smart-card-deprecation-notice.md)]
+
 Smart cards are highly secure physical devices that typically store a single certificate and the corresponding private key. Users insert a smart card into a built-in or USB card reader and enter a PIN to unlock it. Windows can then access the card's certificate and use the private key for authentication or to unlock BitLocker protected data volumes. Smart cards are popular because they provide two-factor authentication that requires both something the user has (that is, the smart card) and something the user knows (such as the smart card PIN). Smart cards are difficult to use, however, because they require purchase and deployment of both smart cards and smart card readers.
 
 In Windows, the Virtual Smart Card feature allows the TPM to mimic a permanently inserted smart card. The TPM becomes "something the user has" but still requires a PIN. Although physical smart cards limit the number of PIN attempts before locking the card and requiring a reset, a virtual smart card relies on the TPM's dictionary attack protection to prevent too many PIN guesses.

windows/security/information-protection/tpm/tpm-fundamentals.md

@@ -34,23 +34,15 @@ For info about which versions of Windows support which versions of the TPM, see
 
 The following sections provide an overview of the technologies that support the TPM:
 
--   [Measured Boot with support for attestation](#measured-boot-with-support-for-attestation)
-
--   [TPM-based Virtual Smart Card](#tpm-based-virtual-smart-card)
-
--   [TPM-based certificate storage](#tpm-based-certificate-storage)
-
--   [TPM Cmdlets](#tpm-cmdlets)
-
--   [Physical presence interface](#physical-presence-interface)
-
--   [TPM 1.2 states and initialization](#tpm-12-states-and-initialization)
-
--   [Endorsement keys](#endorsement-keys)
-
--   [TPM Key Attestation](#key-attestation)
-
--   [Anti-hammering](#anti-hammering)
+- [Measured Boot with support for attestation](#measured-boot-with-support-for-attestation)
+- [TPM-based Virtual Smart Card](#tpm-based-virtual-smart-card)
+- [TPM-based certificate storage](#tpm-based-certificate-storage)
+- [TPM Cmdlets](#tpm-cmdlets)
+- [Physical presence interface](#physical-presence-interface)
+- [TPM 1.2 states and initialization](#tpm-12-states-and-initialization)
+- [Endorsement keys](#endorsement-keys)
+- [TPM Key Attestation](#key-attestation)
+- [Anti-hammering](#anti-hammering)
 
 The following topic describes the TPM Services that can be controlled centrally by using Group Policy settings:
 [TPM Group Policy Settings](trusted-platform-module-services-group-policy-settings.md).
@@ -61,6 +53,8 @@ The Measured Boot feature provides antimalware software with a trusted (resistan
 
 ## TPM-based Virtual Smart Card
 
+[!INCLUDE [virtual-smart-card-deprecation-notice](../../includes/virtual-smart-card-deprecation-notice.md)]
+
 The Virtual Smart Card emulates the functionality of traditional smart cards. Virtual Smart Cards use the TPM chip that is available on an organization's computers, rather than using a separate physical smart card and reader. This greatly reduces the management and deployment cost of smart cards in an enterprise. To the end user, the Virtual Smart Card is always available on the computer. If a user needs to use more than one computer, a Virtual Smart Card must be issued to the user for each computer. A computer that is shared among multiple users can host multiple Virtual Smart Cards, one for each user.
 
 ## TPM-based certificate storage