webadmin/pico-hsm
1
0
Fork 0
mirror of https://github.com/polhenarejos/pico-hsm synced 2026-04-14 11:22:55 +02:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 2666573050 Fix dkek status report when device is initialized without dkek. Pol Henarejos 2022-08-12 01:00:27 +02:00
  • 5506b46c9d Fix finding MKEK file. Pol Henarejos 2022-08-12 00:57:08 +02:00
  • 7b27cb7a1c MKEK is also stored with SO encryption. Pol Henarejos 2022-08-12 00:41:04 +02:00
  • 84a70a1de0 Adding MKEK_SO file descriptor. Pol Henarejos 2022-08-12 00:39:25 +02:00
  • 1756ec49ad When user resets retry counter and sends the SO-PIN (P1=0x0) it becomes authenticated in this session. Pol Henarejos 2022-08-12 00:29:34 +02:00
  • 7b286b04b1 Introducing MKEK (Master Key Encryption Key). Pol Henarejos 2022-08-12 00:20:02 +02:00
  • a731e88c78 Adding MKEK ef id. Pol Henarejos 2022-08-11 22:59:54 +02:00
  • ffd31f2ea7 Memset kcv to 0 always when called. Pol Henarejos 2022-08-10 23:58:01 +02:00
  • 356eeea505 Added support for ECDH_XKEK. Pol Henarejos 2022-08-10 23:51:41 +02:00
  • 34d9469157 When creating XKEK domain, it returns key domain UID. Pol Henarejos 2022-08-10 23:29:08 +02:00
  • 36b1bf9875 Added ECDH algorithms for XKEK and AUT. Pol Henarejos 2022-08-10 23:28:44 +02:00
  • 7badd19a07 Upgrading PICO SDK to v1.4 and adding new boards. Pol Henarejos 2022-08-09 01:28:39 +02:00
  • f122a9ab28 Upgrade to version 2.6. v2.6 Pol Henarejos 2022-08-09 00:42:58 +02:00
  • 14dbad4dd7 Do not return PIN unitialized if PKA is enabled. Pol Henarejos 2022-08-09 00:27:53 +02:00
  • cdce9ab50b Adding pka_enabled() to check whether the device is configured with PKA. Pol Henarejos 2022-08-09 00:26:56 +02:00
  • 30d3270e1d Adding clarification on setting PKA and PIN with SCS3. Pol Henarejos 2022-08-09 00:26:35 +02:00
  • 157923decc Clafiricate docs about PKA and PIN Pol Henarejos 2022-08-06 01:44:24 +02:00
  • 7bbcbc57eb Removing unnecessary debug. Pol Henarejos 2022-08-06 01:36:03 +02:00
  • 9074463f4e Added clarification on PKA and PIN Pol Henarejos 2022-08-06 01:27:51 +02:00
  • 3ebf4fdff5 User authentication is unlinked from session_pin Pol Henarejos 2022-08-06 01:11:51 +02:00
  • 77e5fa2d2b Added static files for device key and certiticate. Pol Henarejos 2022-06-15 15:57:54 +02:00
  • 6bd2e65459 Add function for building PrKD asn1 Pol Henarejos 2022-06-15 15:38:11 +02:00
  • 3363e9ad0c Updating ccid. Pol Henarejos 2022-06-14 19:12:31 +02:00
  • d1f0f45525 Added support for native PKCS1.5 and OEP decryption. Pol Henarejos 2022-06-14 17:00:23 +02:00
  • efc1b4a4ae Fix meta deletion. Pol Henarejos 2022-06-14 16:45:06 +02:00
  • a45303d9e6 Added support for specific purposes. Added support for SHA512 operations. Pol Henarejos 2022-06-14 16:12:04 +02:00
  • 871ff69f56 Fix critical bug. v2.4 Pol Henarejos 2022-06-14 11:46:44 +02:00
  • d4b4289c0b Update extra_command.md Pol Henarejos 2022-06-14 11:27:49 +02:00
  • 32af000435 Upgrading to version 2.4. Pol Henarejos 2022-06-13 19:39:35 +02:00
  • 64178192ad Update README.md Pol Henarejos 2022-06-13 15:03:46 +02:00
  • 598752956f Update scs3.md Pol Henarejos 2022-06-13 14:58:09 +02:00
  • 4dce0e5958 Update public_key_authentication.md Pol Henarejos 2022-06-13 14:33:33 +02:00
  • 9f02aef930 Add PKA doc. Pol Henarejos 2022-06-13 14:28:09 +02:00
  • 0c25b0968b Update scs3.md Pol Henarejos 2022-06-13 11:59:28 +02:00
  • ddc0bd7202 Updated SCS3 doc. Pol Henarejos 2022-06-13 11:57:33 +02:00
  • 20727e1508 Point to last checkout. Pol Henarejos 2022-06-12 18:10:59 +02:00
  • 3afc1964dc Store in dynamic memory PUK authentication. Pol Henarejos 2022-06-12 18:10:37 +02:00
  • 914020fd36 Added PUK authentication. Pol Henarejos 2022-06-12 17:43:50 +02:00
  • 168a8cd5a6 Fix selecting PUK for AUT. Pol Henarejos 2022-06-12 17:42:21 +02:00
  • eb94ed7806 Separated routines for verifying and parsing CV certificates. Pol Henarejos 2022-06-10 20:04:48 +02:00
  • db6b3ec427 Added select MSE for puk AUT. Pol Henarejos 2022-06-10 20:04:32 +02:00
  • 32d0cdcea7 Save cached challenge length. Pol Henarejos 2022-06-10 18:58:35 +02:00
  • 332fe8c884 Generated challenges are cached and dev_name (ESTERMXXXXX) based on terminal certificate. Pol Henarejos 2022-06-10 16:40:51 +02:00
  • 59f0cf7732 Fix CA certificates selection. Pol Henarejos 2022-06-10 16:33:53 +02:00
  • b803505287 When a certificate is verified, the corresponding certificate description and the certificate are cached and saved. Pol Henarejos 2022-06-10 16:30:19 +02:00
  • 3542062ecd Added function to write the ASN1 certificate description. Pol Henarejos 2022-06-10 16:29:28 +02:00
  • 824c327a2c Added function to obtain EC params from root CA cert. Pol Henarejos 2022-06-10 16:28:55 +02:00
  • 76a41dffa1 Store all verified certificates (INS MSE) into CA_PREFIX files. Pol Henarejos 2022-06-10 11:59:06 +02:00
  • 65482cad9c Added dynamic public key references. Pol Henarejos 2022-06-10 11:09:39 +02:00
  • a17a4c0a3c Finished key public registration. Pol Henarejos 2022-06-10 11:09:25 +02:00
  • 2437cf09d1 Added EF for PUKs Pol Henarejos 2022-06-10 11:08:47 +02:00
  • c4c394845d Updated pico-ccid. Pol Henarejos 2022-06-09 21:25:33 +02:00
  • a4d4f9a944 Fix outer CAR value. Pol Henarejos 2022-06-09 21:25:17 +02:00
  • 5eb086935e Added INS_PSO. Pol Henarejos 2022-06-09 19:02:59 +02:00
  • 83a583a33f Fix CVC verification. Pol Henarejos 2022-06-09 19:02:22 +02:00
  • 143c2d279b Added cvc_verify to verify a cvcert with other CA cvcert. Pol Henarejos 2022-06-09 14:16:17 +02:00
  • 08dd596883 Added cvc_get_pub(). Pol Henarejos 2022-06-09 14:15:35 +02:00
  • a4ffcebb0f Added variable puk_store. Pol Henarejos 2022-06-09 14:15:17 +02:00
  • 8a14c22056 Added OID compilation. Pol Henarejos 2022-06-09 11:53:58 +02:00
  • 39f7b5284a Added OID definitions. Pol Henarejos 2022-06-09 11:53:35 +02:00
  • 4f58cd255b Adding PUK store. Pol Henarejos 2022-06-08 20:01:37 +02:00
  • d96d7a533e Added procedure for verifying CVC (unfinished). Pol Henarejos 2022-06-08 20:01:23 +02:00
  • 0e59166c64 Added MSE for B6 CRT. Pol Henarejos 2022-06-08 17:35:30 +02:00
  • 6d8161de73 Added functions to retrieve CAR and CHR from certs. Pol Henarejos 2022-06-08 17:34:17 +02:00
  • 494df64674 Added CVCA to burnt certificates. Pol Henarejos 2022-06-08 17:33:48 +02:00
  • d057729675 Fix returning the status of PIN1 when it is not initialized. Pol Henarejos 2022-06-07 19:58:21 +02:00
  • b14a323ef8 Added INS PUK with status query. Pol Henarejos 2022-06-07 19:44:47 +02:00
  • f2b66468ec Adding Public Key Authentication file template. Pol Henarejos 2022-06-07 19:44:33 +02:00
  • a48dfbbaf4 Some fixes with RAPDU. v2.2 Pol Henarejos 2022-06-06 14:27:33 +02:00
  • 61625c4c5e Update README.md Pol Henarejos 2022-06-06 11:53:39 +02:00
  • 3124f5e565 Upgrading build tool to version 2.2. Pol Henarejos 2022-06-06 00:29:55 +02:00
  • 48a05f9afc Upgrading to version 2.2. Pol Henarejos 2022-06-06 00:13:08 +02:00
  • 26fdf8b00c Upgrading Pico CCID to version 2.0. Pol Henarejos 2022-06-06 00:12:32 +02:00
  • 34cb360d62 Updated docs. Pol Henarejos 2022-06-05 20:40:41 +02:00
  • 4bf5a80a7a Added key usage counter to decryption operations. Pol Henarejos 2022-06-03 20:13:18 +02:00
  • 40efcd71c3 Added device option KEY_COUNTER_ALL. Pol Henarejos 2022-06-03 20:10:53 +02:00
  • aca291da9e Key usage counter is added for every generated key. Pol Henarejos 2022-06-03 20:04:14 +02:00
  • 7f6bcdfb11 Addded fast crc32 checksum for DKEK storage. Pol Henarejos 2022-06-03 15:51:52 +02:00
  • 696110a5b0 Key domain deletion and kek deletion are only allowed when key domain is empty. Pol Henarejos 2022-06-03 11:36:32 +02:00
  • 73fb61070f Added kek deletion in a particular key domain. Pol Henarejos 2022-06-03 11:30:08 +02:00
  • 23da8047bc Fix deleting key domain. Pol Henarejos 2022-06-03 11:22:15 +02:00
  • bf70a08c9f Added key domain deletion. Pol Henarejos 2022-06-03 11:16:40 +02:00
  • ce410dae65 Fix when setup a key domain. Pol Henarejos 2022-06-03 11:01:21 +02:00
  • 94a42c4267 Fix changing PIN with multiple domain. Pol Henarejos 2022-06-02 20:09:43 +02:00
  • f4cc1fed36 Fix meta parsing. Pol Henarejos 2022-06-02 19:30:09 +02:00
  • 7c27be784b Fix parsing meta data on key generation. Pol Henarejos 2022-06-02 14:12:11 +02:00
  • 7d1b22c337 Added meta information for symmetric keys. Pol Henarejos 2022-06-02 12:12:12 +02:00
  • 1e550c8866 Using custom mbedtls configuration file. Pol Henarejos 2022-06-01 12:58:19 +02:00
  • 2febbe2795 Fix missing comma. Pol Henarejos 2022-06-01 12:57:42 +02:00
  • 299516f576 Fix set point A. Pol Henarejos 2022-06-01 11:51:33 +02:00
  • 6edeab6f85 Signatures in CVC are in plain format. Pol Henarejos 2022-06-01 10:30:20 +02:00
  • 7b79d7ffde Moving CVC procedures to a separate file. Pol Henarejos 2022-06-01 09:46:23 +02:00
  • c4f06ccead Not used anymore. Pol Henarejos 2022-06-01 08:58:58 +02:00
  • 541d5b3c19 Fix CVC signature length. Pol Henarejos 2022-05-31 20:38:30 +02:00
  • e0b9a68fad Deregistering OpenSC. Pol Henarejos 2022-05-31 19:28:03 +02:00
  • d0098015fe Removing OpenSC dependency. Pol Henarejos 2022-05-31 19:26:00 +02:00
  • 3660a35c2c Implementing own functions for cvc manipulation. Pol Henarejos 2022-05-31 18:51:43 +02:00
  • 9132dd16f0 Fix decoding asn1 integer. Pol Henarejos 2022-05-31 01:14:09 +02:00
  • 652551269e Using own asn1 int decoder. Pol Henarejos 2022-05-31 00:40:29 +02:00
  • 81730f37a9 Removing sc_pkcs1_strip_digest(). Pol Henarejos 2022-05-31 00:25:54 +02:00