OpenPGP Card is an ISO/IEC 7816-4 compatible smartcard that is integrated with many OpenPGP functions, including signature, encryption, and authentication. It provides an trustful computing environment isolated from the host computer, to guard one's private keys from attacks and exposures. ZetiControl in Germany is the first manufacturer of OpenPGP Card based on BasicCard platform. Since then, compatible USB tokens have also been manufactured, such as Yubikey and Nitrokey.

Currently for compatible USB tokens, there are two approaches of OpenPGP Card implementation:

  1. Based on secure hardware.
    • The hardware is usually temper-proof to some extents, but the system is usually proprietary with mandatory NDA required, such as Yubikey.
  2. Based on generic microcontroller, with gnuk firmware developed by Niibe Yutaka.
    • It allows 100% free hardware design and software, but the chip is not hardened for security thus vulnerable to physical attacks.

In other words, the user is forced to choose between security and transparency.

But thanks to the IoT hype, many NDA-free and regulation-free "secure elements" for cryptograpic key storage have entered the market. This project is going to perform early experiments with a ATECC508A chip by Atmel, and see if it is possible to integrate it to the gnuk USB token to improve the physical security, allowing users to secure their private data with GnuPG with a high degree of physical security.

Looking for mad skills in:

gnupg gpg pgp security cryptography embedded arm microcontroller stm32 atmega

This project is part of:

Hack Week 17

Activity

  • about 1 year ago: biergaizi added keyword "atmega" to Improving the Security of OpenPGP USB Token with a Secure Chip
  • about 1 year ago: biergaizi added keyword "stm32" to Improving the Security of OpenPGP USB Token with a Secure Chip
  • about 1 year ago: biergaizi added keyword "microcontroller" to Improving the Security of OpenPGP USB Token with a Secure Chip
  • about 1 year ago: biergaizi added keyword "arm" to Improving the Security of OpenPGP USB Token with a Secure Chip
  • about 1 year ago: biergaizi added keyword "embedded" to Improving the Security of OpenPGP USB Token with a Secure Chip
  • Show History

    Comments

    • TBro
      about 1 year ago by TBro | Reply

      Did you heard of: https://www.nitrokey.com/de Seems to be open hardware =)

    Similar Projects

    libpathrs by cyphar

    The plan is to implement a safe path resolution...


    openSUSE/SLE/Mainline U-boot for some not-yet-supported ARM64 boards by ldevulder

    The Khadas VIM (http://khadas.com/vim/) is an a...


    work on sunxi a64 cpufreq driver (for teres-1, pine64) by mbrugger

    With the teres-1 [1] laptop we have a first arm...