Trussed backend leveraging the SE050 secure element

This backends reimplements the assymetric cryptography APIs from Trussed using the SE050 secure element. It also implements secure PIN handling following the trussed-auth APIs, as well as RSA operations (which aren't part of the core trussed API).

Differences with the main implementations

The UnwrapKey syscall cannot be used after the key has been deleted. As such, the key needs to be "cleared" with the Clear syscall if one wants to unwrap it again, leaving the metadata required for unwraping.
Public keys obtained through DeriveKey can only be valid for as long as the original private key they are derived from.

Name		Name	Last commit message	Last commit date
Latest commit History 141 Commits
.github/workflows		.github/workflows
extensions/se050-manage		extensions/se050-manage
src		src
.gitignore		.gitignore
CHANGELOG.md		CHANGELOG.md
Cargo.toml		Cargo.toml
FILESYSTEM.md		FILESYSTEM.md
Makefile		Makefile
README.md		README.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Trussed backend leveraging the SE050 secure element

Differences with the main implementations

About

Releases 4

Packages

Contributors 2

Languages

Nitrokey/trussed-se050-backend

Folders and files

Latest commit

History

Repository files navigation

Trussed backend leveraging the SE050 secure element

Differences with the main implementations

About

Resources

Stars

Watchers

Forks

Releases 4

Packages 0

Contributors 2

Languages

Packages