Mirrors
/
open-keychain
mirror of https://github.com/open-keychain/open-keychain.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Updated Security Tokens (markdown)

Dominik Schürmann 2018-09-07 20:16:48 +02:00
parent 321c407197
commit de64dc8abf
1 changed files with 6 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
Security-Tokens.md

@ -33,12 +33,12 @@ Roughly every third key generation on card fails with all tested smart cards and
## Are there other compatible security tokens besides the recommended ones?
Besides Fidesmo, YubiKey, we don't know of other NFC-enabled security tokens that support OpenPGP out of the box. You can however buy one of the following products and install [ykneo-openpgp](https://github.com/Yubico/ykneo-openpgp) by yourself. We wouldn't encourage you to do this as it requires to install special tools.
* [J3D081, JCOP v2.4.2 Card from cryptoshop.com](http://www.cryptoshop.com) (TESTED, works with ykneo-openpgp applet)
* [JCOP-Card from javacardos.com](http://www.javacardos.com) (TESTED, works with ykneo-openpgp applet)
* [A22CR & A40CR from javacardos.com](http://www.javacardos.com) (NEEDS HACK; Secure Messaging support needs to be stripped from ykneo-openpgp)
* [JavaCOS A22 dual interface Java card - 150K from smartcardfocus.us](http://www.smartcardfocus.us) (NOT RECOMMENDED; has issues with RSA signing)
* [J3A040 or J3A080 from smartcardsource.com](http://www.smartcardsource.com) (NOT TESTED)
* [J3A040 or J3A080 from motechno.com](http://www.motechno.com) (NOT TESTED)
| Card | ykneo-openpgp | SmartPGP | Notes |
|------|------|------|------|
| [J3D081, JCOP v2.4.2 Card from cryptoshop.com](http://www.cryptoshop.com) | ✔ | 𐄂 | |
| [A22CR & A40CR from javacardos.com](http://www.javacardos.com) | 𐄂 | 𐄂 | NEEDS HACK; Secure Messaging support needs to be stripped from ykneo-openpgp |
| [J3H081 SCP02 and SCP03](https://www.motechno.com/buy/j3h081-jcop3/) | ✔ | MUST USE v3.0.1 branch |
## Are external USB Smartcard Reader supported?
Not officially. However, you can turn on "Allow untested USB Devices", under experimental settings and try your reader. It must have a CCID interface and you should insert the OpenPGP card before plugging in the reader. We found that Nexus 5X reboots, but Nexus 6P works. Readers on [this page](https://pcsclite.alioth.debian.org/ccid/supported.html) will work with higher probability but we cannot provide any recommendations, we still recommend one of the supported security tokens from the table above. Some discussions about this is in [#1912](https://github.com/open-keychain/open-keychain/issues/1912)