1 unstable release
0.2.0 | Jan 9, 2025 |
---|
#576 in Hardware support
125 downloads per month
6KB
110 lines
Trussed backend leveraging the SE050 secure element
This backends reimplements the assymetric cryptography APIs from Trussed using the SE050 secure element. It also implements secure PIN handling following the trussed-auth APIs, as well as RSA operations (which aren't part of the core trussed API).
Differences with the main implementations
-
The
UnwrapKey
syscall cannot be used after the key has been deleted. As such, the key needs to be "cleared" with theClear
syscall if one wants to unwrap it again, leaving the metadata required for unwraping. -
Public keys obtained through
DeriveKey
can only be valid for as long as the original private key they are derived from.
Dependencies
~1.7–2.4MB
~55K SLoC