Support trussed-secret-app of NitroKey's for HMAC calculation #7

stv0g · 2023-10-11T07:40:31Z

The NitroKey 3 offers USB-C for the first time. The Nitrokey 3 combines the features of previous Nitrokey models: FIDO2, one-time passwords, OpenPGP smart card, Curve25519, password manager, Common Criteria EAL 6+ certified secure element, firmware updates.

It uses the Trussed Secrets app to implement the YKOATH protocol.

stv0g · 2023-10-12T07:28:03Z

The NitroKey team decided to you diverge from the original YKOATH protocol description and roll their own version starting around the v0.6 version of their app.

See: Nitrokey/trussed-secrets-app#103

Also from their design document:

remove YKOATH protocol compatibility, specifically authentication through challenge-response

Still supporting a NitroKey would be nice. But I think we should implement this in a separate Go package to keep the conciseness of the code and avoid misunderstandings.

stv0g mentioned this issue Oct 11, 2023

YKOATH compatability Nitrokey/trussed-secrets-app#103

Closed

stv0g closed this as completed Oct 12, 2023

stv0g transferred this issue from cunicu/go-ykoath Oct 13, 2023

stv0g changed the title ~~Support NitroKey 3~~ Support trussed-secret-app of NitroKey's for HMAC calculation Oct 13, 2023

stv0g reopened this Oct 13, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Support trussed-secret-app of NitroKey's for HMAC calculation #7

Support trussed-secret-app of NitroKey's for HMAC calculation #7

stv0g commented Oct 11, 2023

stv0g commented Oct 12, 2023

Support trussed-secret-app of NitroKey's for HMAC calculation #7

Support trussed-secret-app of NitroKey's for HMAC calculation #7

Comments

stv0g commented Oct 11, 2023

stv0g commented Oct 12, 2023