pico-hsm

Author	SHA1	Message	Date
Pol Henarejos	16bd415fb9	Adding sanity checks. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-02-22 18:26:02 +01:00
Pol Henarejos	173d64dd0e	Finalizing EC key generation and storage. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-02-22 15:36:32 +01:00
Pol Henarejos	67698eca94	Fixed bug with size of cvc. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-02-22 14:27:13 +01:00
Pol Henarejos	f97555a8da	Adding ECC storing keygen. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-02-22 13:22:09 +01:00
Pol Henarejos	a28f217c57	Inner signature of CVC encodes the full certificate body. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-02-22 00:55:36 +01:00
Pol Henarejos	e1126b5951	In order to announce the public key, the response must be cvc request authenticated. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-02-22 00:37:02 +01:00
Pol Henarejos	2a770ee7c9	DKEKS are also initialized. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-02-21 16:24:32 +01:00
Pol Henarejos	0ef2ee40ac	Adding update_ef command. Flash is reset when initialize Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-02-21 16:06:09 +01:00
Pol Henarejos	4e3b43ec35	Adding storage of PRKD and CD. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-02-21 12:21:16 +01:00
Pol Henarejos	fe429bf5af	Adding signature to public file. Storing private key in disk. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-02-21 00:27:53 +01:00
Pol Henarejos	ecfeb63273	Storing private keys as only P and Q for RSA. They are converted on the fly upon a request. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-02-20 20:05:46 +01:00
Pol Henarejos	e620b891e1	Adding RSA response (unfinished). Adding ECC generation (no response yet). Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-02-20 01:59:48 +01:00
Pol Henarejos	0ae8733d9b	Adding keypair generation. At this moment, only RSA works but without any security check. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-02-19 02:16:29 +01:00
Pol Henarejos	d6e7fc7cce	Adding PIN login. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-02-18 16:19:54 +01:00
Pol Henarejos	eaa0265f74	Adding import dkek shares. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-02-18 15:46:46 +01:00
Pol Henarejos	e59c0d08c4	Adding initialization. - PINs are never stored, neither in flash nor in RAM. - PINs are stored in flash in doubled salted way. - PINs are stored in RAM in single salted way. - SOPIN in RAM (single salted) is used to encrypt/decrypt DKEK. - PINs in RAM (single salted) are used to encrypt/decrypt private keys related with user/so pins. - DKEK is only used to export/import data. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-02-18 13:28:41 +01:00
Pol Henarejos	633f005efd	Adding INS_CHALLENGE for DKEK generation. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-02-17 19:50:12 +01:00
Pol Henarejos	c8325babb2	Fixed pin reset Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-02-14 00:29:04 +01:00
Pol Henarejos	86cef892ff	Adding PIN reset counter. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-02-13 18:27:49 +01:00
Pol Henarejos	0017284103	Starting migration from gnuk to own solution. gnuk/openpgp will be left as another pkcs15 app. Lots of work has been done in the meanwhile. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-02-13 01:17:14 +01:00

20 Commits