dearsky/pico-hsm
1
0
Fork 0
Code Issues 17 Pull Requests 4 Actions Packages Projects Releases 26 Wiki Activity
82 Commits 2 Branches 32 Tags
4e3b43ec3596830229945f94c9c5ed91b96a7c41
Commit Graph

12 Commits

Author SHA1 Message Date
Pol Henarejos
4e3b43ec35 Adding storage of PRKD and CD. 
Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
 2022-02-21 12:21:16 +01:00
Pol Henarejos
fe429bf5af Adding signature to public file. 
Storing private key in disk.

Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
 2022-02-21 00:27:53 +01:00
Pol Henarejos
ecfeb63273 Storing private keys as only P and Q for RSA. They are converted on the fly upon a request. 
Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
 2022-02-20 20:05:46 +01:00
Pol Henarejos
e620b891e1 Adding RSA response (unfinished). 
Adding ECC generation (no response yet).

Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
 2022-02-20 01:59:48 +01:00
Pol Henarejos
0ae8733d9b Adding keypair generation. At this moment, only RSA works but without any security check. 
Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
 2022-02-19 02:16:29 +01:00
Pol Henarejos
d6e7fc7cce Adding PIN login. 
Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
 2022-02-18 16:19:54 +01:00
Pol Henarejos
eaa0265f74 Adding import dkek shares. 
Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
 2022-02-18 15:46:46 +01:00
Pol Henarejos
e59c0d08c4 Adding initialization. 
- PINs are never stored, neither in flash nor in RAM.
- PINs are stored in flash in doubled salted way.
- PINs are stored in RAM in single salted way.
- SOPIN in RAM (single salted) is used to encrypt/decrypt DKEK.
- PINs in RAM (single salted) are used to encrypt/decrypt private keys related with user/so pins.
- DKEK is only used to export/import data.

Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
 2022-02-18 13:28:41 +01:00
Pol Henarejos
633f005efd Adding INS_CHALLENGE for DKEK generation. 
Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
 2022-02-17 19:50:12 +01:00
Pol Henarejos
c8325babb2 Fixed pin reset 
Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
 2022-02-14 00:29:04 +01:00
Pol Henarejos
86cef892ff Adding PIN reset counter. 
Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
 2022-02-13 18:27:49 +01:00
Pol Henarejos
0017284103 Starting migration from gnuk to own solution. 
gnuk/openpgp will be left as another pkcs15 app.
Lots of work has been done in the meanwhile.

Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
 2022-02-13 01:17:14 +01:00