OpenSK

Go to file

kaczmarczyck 7ab1b568fb Updated README to reflect maintenance status (#660 )

* Updated README to reflect maintenance status

This PR is to be merged after the branches are reworked.

* FIDO -> CTAP

* Wording change to default branch

2023-11-09 14:28:39 +01:00

.github

Removes broken workflows (#656 )

2023-11-08 10:05:46 +01:00

boards/nordic

Bump versions to 1.0 for FIDO2 certification.

2020-12-16 18:22:15 +01:00

docs

Ported documentation (#413 )

2021-11-19 17:55:12 +01:00

examples

Fix desktop tests for bugfix and stable (#395 )

2021-11-19 17:55:12 +01:00

fuzz

Submit Cargo.lock (#555 )

2022-10-10 15:34:05 +02:00

libraries

Submit Cargo.lock (#555 )

2022-10-10 15:34:05 +02:00

metadata

Updates the metadata to MDS 3 (#654 )

2023-11-08 11:05:32 +01:00

patches

Fix nRF52 boards with bootloader (#560 )

2022-10-18 17:31:10 +02:00

reproducible

Changed reproducible

2020-10-09 15:15:22 +00:00

rules.d

Initial commit

2020-01-30 11:47:29 +01:00

src

Fix desktop tests for bugfix and stable (#395 )

2021-11-19 17:55:12 +01:00

third_party

Submit Cargo.lock (#555 )

2022-10-10 15:34:05 +02:00

tools

updates libfido to version 1 (#558 )

2022-10-11 01:36:02 +02:00

.gitignore

Submit Cargo.lock (#555 )

2022-10-10 15:34:05 +02:00

.gitmodules

Ignore dirty submodules

2020-11-30 08:46:02 -08:00

.markdownlint.json

Initial commit

2020-01-30 11:47:29 +01:00

.pylintrc

Make internal python linter happy.

2020-03-03 14:56:11 +01:00

build.rs

Remove compile time crypto material.

2020-12-16 18:22:15 +01:00

Cargo.lock

Submit Cargo.lock (#555 )

2022-10-10 15:34:05 +02:00

Cargo.toml

Remove elf2tab dev-dependency (#366 )

2021-08-10 13:20:33 +02:00

deploy.py

Fix desktop tests for bugfix and stable (#395 )

2021-11-19 17:55:12 +01:00

fuzzing_setup.sh

Install Rust tools with stable compiler

2021-09-09 07:04:24 +02:00

layout.ld

Remove writable flash regions support

2020-05-06 15:18:27 +02:00

LICENSE

Initial commit

2020-01-30 11:47:29 +01:00

nrf52840_layout.ld

Merge branch 'master' into no_wfr

2020-04-30 16:18:41 +02:00

OpenSK.code-workspace

Use a vscode workspace instead of local settings.

2020-12-10 10:02:48 +01:00

README.md

Updated README to reflect maintenance status (#660 )

2023-11-09 14:28:39 +01:00

reproduce_board.sh

Address review comment.

2020-06-09 16:56:38 +02:00

reproduce_hashes.sh

Add reference elf2tab and binary hashes to the uploaded reproduced.tar file.

2020-07-24 15:33:45 +02:00

reset.sh

Install elf2tab in its own directory.

2020-09-29 12:56:21 +02:00

run_desktop_tests.sh

Remove ram_storage feature

2020-12-10 13:06:05 +01:00

rust-toolchain

Update rust-toolchain to be a symlink to third_party/libtock-rs/rust-toolchain.

2020-08-07 15:09:07 +02:00

rustfmt.toml

Initial commit

2020-01-30 11:47:29 +01:00

SECURITY.md

adds and links new security policy

2021-07-09 13:05:18 +02:00

setup-submodules.sh

Submit Cargo.lock (#555 )

2022-10-10 15:34:05 +02:00

setup.sh

updates libfido to version 1 (#558 )

2022-10-11 01:36:02 +02:00

update_hashes.sh

Update hashes and add a script to automate that from GitHub artifacts.

2020-09-24 12:11:13 +02:00

README.md

This branch is unmaintained. It implements the CTAP 2.0 version of OpenSK. Please check out the default branch for maintained code. If you are a developer, go to the develop branch.

OpenSK

This repository contains a Rust implementation of a FIDO2 authenticator. We developed OpenSK as a Tock OS application.

We intend to bring a full open source experience to security keys, from application to operating system. You can even 3D print your own open source enclosure! You can see OpenSK in action in this video on YouTube!

FIDO2

This branch implements the CTAP2.0 specification and is FIDO certified. OpenSK supports U2F, and non-discoverable credentials created with either protocol are compatible with the other.

⚠️ Disclaimer

This project is proof-of-concept and a research platform. It is NOT meant for a daily usage. The cryptography implementations are not resistent against side-channel attacks.

We're still in the process of integrating the ARM® CryptoCell-310 embedded in the Nordic nRF52840 chip to enable hardware-accelerated cryptography. Our placeholder implementations of required cryptography algorithms (ECDSA, ECC secp256r1, HMAC-SHA256 and AES256) in Rust are research-quality code. They haven't been reviewed and don't provide constant-time guarantees.

Hardware

You will need one the following supported boards:

Nordic nRF52840-DK development kit. This board is more convenient for development and debug scenarios as the JTAG probe is already on the board.
Nordic nRF52840 Dongle to have a more practical form factor.
Makerdiary nRF52840-MDK USB dongle.
Feitian OpenSK dongle.

Installation

To install OpenSK,

follow the general setup steps,
then continue with the instructions for your specific hardware:

To test whether the installation was successful, visit a demo website and try to register and login. Please check our Troubleshooting and Debugging section if you have problems with the installation process or during development. To find out what else you can do with your OpenSK, see Customization.

Contributing

See Contributing.md.

Reporting a Vulnerability

See SECURITY.md.