1 unstable release

0.2.0 Jan 9, 2025

#576 in Hardware support

Download history 142/week @ 2025-01-09 55/week @ 2025-01-16 40/week @ 2025-01-23 17/week @ 2025-01-30 54/week @ 2025-02-06 63/week @ 2025-02-13 44/week @ 2025-02-20 139/week @ 2025-02-27 138/week @ 2025-03-06 40/week @ 2025-03-13 51/week @ 2025-03-20 21/week @ 2025-03-27 16/week @ 2025-04-03 26/week @ 2025-04-10

125 downloads per month

Apache-2.0 OR MIT

6KB
110 lines

Trussed backend leveraging the SE050 secure element

This backends reimplements the assymetric cryptography APIs from Trussed using the SE050 secure element. It also implements secure PIN handling following the trussed-auth APIs, as well as RSA operations (which aren't part of the core trussed API).

Differences with the main implementations

  • The UnwrapKey syscall cannot be used after the key has been deleted. As such, the key needs to be "cleared" with the Clear syscall if one wants to unwrap it again, leaving the metadata required for unwraping.

  • Public keys obtained through DeriveKey can only be valid for as long as the original private key they are derived from.

Dependencies

~1.7–2.4MB
~55K SLoC