Comment by 77pt77

This is by far the most likely reason.

I personally use pages that authenticate via a smartcard using this exact scheme.

There is a Java "plugin" that is nothing but a mini webserver that listens on a specific port and performs authentication.