Collaborate Disseminate
I need to use NFC to run Yubikey, which is running on a USB connection.
However, when I try to do so, I get the following error:
GPG:
> gpg –card-status
gpg: selecting card failed: No such device
gpg: OpenPGP card not available: No suc… Continue reading Using Yubico Yubikey 5 NFC with NFC in Windows 10
PIN-pad smartcard readers (class 2) for secure PIN entry exist, but I have only seen them for smartcards (that come in a card form factor) and they are both a PIN-pad and a card reader. Is there something analogous for USB security tokens … Continue reading Using USB Security Token with PIN-Pad for Secure PIN Entry [closed]
Context: I’m trying to design an SRS solution for your personal secrets – "Anki for passwords." (This is mostly a learning-exercise, to help me develop my intuition for writing secure(-ish?) code, and to explore the problem-spac… Continue reading Is there a way to store a verification-hash of a secret on a ‘consumer HSM’ like Yubikey or another WebAuthn device?
I wonder if it is possible for an attacker to dump the certificate of a smart card using microscopy. For example an electron microscope.
Please do not blame me if there is nothing to see because the flash storage looks always the same. I a… Continue reading How safe is a certificate on a smart card in terms of microscopy?
If "smartcard required" is ticked in an active directory user account the password is wiped.
In my enviroment there are a lot of applications with webinteface logins connected via ldap to AD. The User have to known there password… Continue reading Smardcard-Login and LDAP-Webinterfaces
My YubiKey stores my OpenPGP subkeys for signing, encryption and authentication with SSH, emails, code signing, etc. However, it also implements WebAuthn (not all sites enforce PIN checks), PIV and TOTP.
Anyone with the device can simply p… Continue reading How do I hide OpenPGP key fingerprints from smartcard info (specifically YubiKey)?
I’ve recently been enjoying using my YubiKey to authenticate SSH via GPG Agent, TOTPs, and encrypting emails. However, I realised if I were to attend, say, a key signing party, that since the public key URL (as well as the fingerprint) is … Continue reading How to prevent my identity being revealed in the event my YubiKey is stolen?
Extracting private keys directly from the card is nearly impossible. With some acid package destruction and electron microscope work, a skilled team, and enough time, money, and luck you can in theory extract keys but it involves not only… Continue reading How do RSA smartcards prevent key exfiltration?
https://dev.gnupg.org/T6097
I am trying to get GnuPG to work with my SmartCard-HSM 4K on Windows, using the GP4Win bundle.
Kleopatra doesn’t recognise the SC-HSM 4K at all, even though, it does recognise the YubiKey 5 NFC in both PIV and O… Continue reading GnuPG: gpa.exe hangs when I click on "smartcards" AND scdaemon cannot recognise SC-HSM 4K
I want to make a smart card reader app, that sends read data to a server. In order to be certain in the integrity of the data, I want to use a client certificate to communicate with the server and I don’t want the certificate to be availab… Continue reading Make certificate and private key available only to a single app