dearsky/pico-hsm
1
0
Fork 0
Code Issues 17 Pull Requests 4 Actions Packages Projects Releases 26 Wiki Activity

Commit Graph

  • 4dce0e5958 Update public_key_authentication.md Pol Henarejos 2022-06-13 14:33:33 +02:00
  • 9f02aef930 Add PKA doc. Pol Henarejos 2022-06-13 14:28:09 +02:00
  • 0c25b0968b Update scs3.md Pol Henarejos 2022-06-13 11:59:28 +02:00
  • ddc0bd7202 Updated SCS3 doc. Pol Henarejos 2022-06-13 11:57:33 +02:00
  • 20727e1508 Point to last checkout. Pol Henarejos 2022-06-12 18:10:59 +02:00
  • 3afc1964dc Store in dynamic memory PUK authentication. Pol Henarejos 2022-06-12 18:10:37 +02:00
  • 914020fd36 Added PUK authentication. Pol Henarejos 2022-06-12 17:43:50 +02:00
  • 168a8cd5a6 Fix selecting PUK for AUT. Pol Henarejos 2022-06-12 17:42:21 +02:00
  • eb94ed7806 Separated routines for verifying and parsing CV certificates. Pol Henarejos 2022-06-10 20:04:48 +02:00
  • db6b3ec427 Added select MSE for puk AUT. Pol Henarejos 2022-06-10 20:04:32 +02:00
  • 32d0cdcea7 Save cached challenge length. Pol Henarejos 2022-06-10 18:58:35 +02:00
  • 332fe8c884 Generated challenges are cached and dev_name (ESTERMXXXXX) based on terminal certificate. Pol Henarejos 2022-06-10 16:40:51 +02:00
  • 59f0cf7732 Fix CA certificates selection. Pol Henarejos 2022-06-10 16:33:53 +02:00
  • b803505287 When a certificate is verified, the corresponding certificate description and the certificate are cached and saved. Pol Henarejos 2022-06-10 16:30:19 +02:00
  • 3542062ecd Added function to write the ASN1 certificate description. Pol Henarejos 2022-06-10 16:29:28 +02:00
  • 824c327a2c Added function to obtain EC params from root CA cert. Pol Henarejos 2022-06-10 16:28:55 +02:00
  • 76a41dffa1 Store all verified certificates (INS MSE) into CA_PREFIX files. Pol Henarejos 2022-06-10 11:59:06 +02:00
  • 65482cad9c Added dynamic public key references. Pol Henarejos 2022-06-10 11:09:39 +02:00
  • a17a4c0a3c Finished key public registration. Pol Henarejos 2022-06-10 11:09:25 +02:00
  • 2437cf09d1 Added EF for PUKs Pol Henarejos 2022-06-10 11:08:47 +02:00
  • c4c394845d Updated pico-ccid. Pol Henarejos 2022-06-09 21:25:33 +02:00
  • a4d4f9a944 Fix outer CAR value. Pol Henarejos 2022-06-09 21:25:17 +02:00
  • 5eb086935e Added INS_PSO. Pol Henarejos 2022-06-09 19:02:59 +02:00
  • 83a583a33f Fix CVC verification. Pol Henarejos 2022-06-09 19:02:22 +02:00
  • 143c2d279b Added cvc_verify to verify a cvcert with other CA cvcert. Pol Henarejos 2022-06-09 14:16:17 +02:00
  • 08dd596883 Added cvc_get_pub(). Pol Henarejos 2022-06-09 14:15:35 +02:00
  • a4ffcebb0f Added variable puk_store. Pol Henarejos 2022-06-09 14:15:17 +02:00
  • 8a14c22056 Added OID compilation. Pol Henarejos 2022-06-09 11:53:58 +02:00
  • 39f7b5284a Added OID definitions. Pol Henarejos 2022-06-09 11:53:35 +02:00
  • 4f58cd255b Adding PUK store. Pol Henarejos 2022-06-08 20:01:37 +02:00
  • d96d7a533e Added procedure for verifying CVC (unfinished). Pol Henarejos 2022-06-08 20:01:23 +02:00
  • 0e59166c64 Added MSE for B6 CRT. Pol Henarejos 2022-06-08 17:35:30 +02:00
  • 6d8161de73 Added functions to retrieve CAR and CHR from certs. Pol Henarejos 2022-06-08 17:34:17 +02:00
  • 494df64674 Added CVCA to burnt certificates. Pol Henarejos 2022-06-08 17:33:48 +02:00
  • d057729675 Fix returning the status of PIN1 when it is not initialized. Pol Henarejos 2022-06-07 19:58:21 +02:00
  • b14a323ef8 Added INS PUK with status query. Pol Henarejos 2022-06-07 19:44:47 +02:00
  • f2b66468ec Adding Public Key Authentication file template. Pol Henarejos 2022-06-07 19:44:33 +02:00
  • a48dfbbaf4 Some fixes with RAPDU. v2.2 Pol Henarejos 2022-06-06 14:27:33 +02:00
  • 61625c4c5e Update README.md Pol Henarejos 2022-06-06 11:53:39 +02:00
  • 3124f5e565 Upgrading build tool to version 2.2. Pol Henarejos 2022-06-06 00:29:55 +02:00
  • 48a05f9afc Upgrading to version 2.2. Pol Henarejos 2022-06-06 00:13:08 +02:00
  • 26fdf8b00c Upgrading Pico CCID to version 2.0. Pol Henarejos 2022-06-06 00:12:32 +02:00
  • 34cb360d62 Updated docs. Pol Henarejos 2022-06-05 20:40:41 +02:00
  • 4bf5a80a7a Added key usage counter to decryption operations. Pol Henarejos 2022-06-03 20:13:18 +02:00
  • 40efcd71c3 Added device option KEY_COUNTER_ALL. Pol Henarejos 2022-06-03 20:10:53 +02:00
  • aca291da9e Key usage counter is added for every generated key. Pol Henarejos 2022-06-03 20:04:14 +02:00
  • 7f6bcdfb11 Addded fast crc32 checksum for DKEK storage. Pol Henarejos 2022-06-03 15:51:52 +02:00
  • 696110a5b0 Key domain deletion and kek deletion are only allowed when key domain is empty. Pol Henarejos 2022-06-03 11:36:32 +02:00
  • 73fb61070f Added kek deletion in a particular key domain. Pol Henarejos 2022-06-03 11:30:08 +02:00
  • 23da8047bc Fix deleting key domain. Pol Henarejos 2022-06-03 11:22:15 +02:00
  • bf70a08c9f Added key domain deletion. Pol Henarejos 2022-06-03 11:16:40 +02:00
  • ce410dae65 Fix when setup a key domain. Pol Henarejos 2022-06-03 11:01:21 +02:00
  • 94a42c4267 Fix changing PIN with multiple domain. Pol Henarejos 2022-06-02 20:09:43 +02:00
  • f4cc1fed36 Fix meta parsing. Pol Henarejos 2022-06-02 19:30:09 +02:00
  • 7c27be784b Fix parsing meta data on key generation. Pol Henarejos 2022-06-02 14:12:11 +02:00
  • 7d1b22c337 Added meta information for symmetric keys. Pol Henarejos 2022-06-02 12:12:12 +02:00
  • 1e550c8866 Using custom mbedtls configuration file. Pol Henarejos 2022-06-01 12:58:19 +02:00
  • 2febbe2795 Fix missing comma. Pol Henarejos 2022-06-01 12:57:42 +02:00
  • 299516f576 Fix set point A. Pol Henarejos 2022-06-01 11:51:33 +02:00
  • 6edeab6f85 Signatures in CVC are in plain format. Pol Henarejos 2022-06-01 10:30:20 +02:00
  • 7b79d7ffde Moving CVC procedures to a separate file. Pol Henarejos 2022-06-01 09:46:23 +02:00
  • c4f06ccead Not used anymore. Pol Henarejos 2022-06-01 08:58:58 +02:00
  • 541d5b3c19 Fix CVC signature length. Pol Henarejos 2022-05-31 20:38:30 +02:00
  • e0b9a68fad Deregistering OpenSC. Pol Henarejos 2022-05-31 19:28:03 +02:00
  • d0098015fe Removing OpenSC dependency. Pol Henarejos 2022-05-31 19:26:00 +02:00
  • 3660a35c2c Implementing own functions for cvc manipulation. Pol Henarejos 2022-05-31 18:51:43 +02:00
  • 9132dd16f0 Fix decoding asn1 integer. Pol Henarejos 2022-05-31 01:14:09 +02:00
  • 652551269e Using own asn1 int decoder. Pol Henarejos 2022-05-31 00:40:29 +02:00
  • 81730f37a9 Removing sc_pkcs1_strip_digest(). Pol Henarejos 2022-05-31 00:25:54 +02:00
  • 4b86e96660 Removing card_context from store_keys(). Pol Henarejos 2022-05-31 00:14:30 +02:00
  • 271240f11c Fix initializing device. Pol Henarejos 2022-05-31 00:09:21 +02:00
  • 00e8596a0e Adding asn1_find_tag() for searching for a tag in a asn1 string. Pol Henarejos 2022-05-30 23:31:17 +02:00
  • 39ab429c88 Adding key domain to key generation, wrap, unwrap, export and import. Pol Henarejos 2022-05-30 16:13:51 +02:00
  • 96175c9fd3 Adding usb descriptors Pol Henarejos 2022-05-30 16:13:20 +02:00
  • cee3e83077 Moving again to tinyUSB Pol Henarejos 2022-05-29 01:53:01 +02:00
  • 4fa8d4ba64 Fix warnings Pol Henarejos 2022-05-27 20:58:45 +02:00
  • 1ac4402f99 res_APDU SHALL NOT BE moved, only memcpied or memmoved. Pol Henarejos 2022-05-27 00:58:35 +02:00
  • 8554262aaf Migrating away from tinyUSB. Pol Henarejos 2022-05-27 00:36:33 +02:00
  • d4d989e562 Moving from tinyUSB to low level custom solution. Pol Henarejos 2022-05-26 14:16:55 +02:00
  • d2766b2225 Using printf instead of TU Pol Henarejos 2022-05-26 14:16:32 +02:00
  • f124ee52ce Do not add FMD in FCI. Pol Henarejos 2022-05-24 23:31:46 +02:00
  • 2167d28514 Add meta files. Pol Henarejos 2022-05-24 22:57:59 +02:00
  • 80792dc555 Private/secret keys can be selected. Pol Henarejos 2022-05-24 13:06:00 +02:00
  • 080337f847 Added key domain setup Pol Henarejos 2022-05-24 11:08:29 +02:00
  • 5e20c830fd Return key domain not found only when they are prepared. Pol Henarejos 2022-05-24 10:48:22 +02:00
  • b754fdb449 Refactoring initialize command to support no dkek, random dkek, dkek shares and key domains. Pol Henarejos 2022-05-24 10:44:00 +02:00
  • a926239613 Returning not initialized key domains. Pol Henarejos 2022-05-24 09:24:54 +02:00
  • c80b723112 Using dynamic dkek number and current shares, for each key domain. Pol Henarejos 2022-05-24 09:18:35 +02:00
  • a062b92dad Replacing low level data access to high level routines. Pol Henarejos 2022-05-24 00:30:42 +02:00
  • 89d40b7c94 Extending DKEK and key storage to key domains. Pol Henarejos 2022-05-24 00:29:19 +02:00
  • 7b5cb48dcc Added key domains for device initialization and dkek import. Pol Henarejos 2022-05-23 20:06:06 +02:00
  • 7de0121db5 Introducing MANAGE KEY DOMAIN (INS 52) Pol Henarejos 2022-05-23 14:26:36 +02:00
  • cb338af8fb Return SW 6600 when button timeouts. Pol Henarejos 2022-05-05 22:30:07 +02:00
  • 89bb5d2815 Fix val returned on wait_button() Pol Henarejos 2022-05-05 22:27:38 +02:00
  • fffe2fb451 Now press-to-confirm button has a timeout of 15 secs. Pol Henarejos 2022-05-05 20:56:28 +02:00
  • 373a3ce491 Fix patch_vid version, which now uses ccid version. Pol Henarejos 2022-05-05 20:56:04 +02:00
  • 0a798b9f9a Upgrading pico-ccid. Pol Henarejos 2022-05-05 20:10:35 +02:00
  • 5f0b15b5e9 Fix returning wrong pin retries. Pol Henarejos 2022-04-22 19:21:41 +02:00
  • 9a93c8afe0 Adding new features of 2.0. Pol Henarejos 2022-04-19 19:41:44 +02:00
  • fe990100d9 I am not sure why is being modified. Pol Henarejos 2022-04-19 19:41:09 +02:00