IsoApplet
GlobalPlatformPro
IsoApplet | GlobalPlatformPro | |
---|---|---|
2 | 3 | |
158 | 640 | |
- | - | |
4.0 | 5.4 | |
4 months ago | 29 days ago | |
Java | Java | |
GNU General Public License v3.0 only | GNU Lesser General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
IsoApplet
- A sane SSH(1) key management example
-
Security keys are now supported for SSH Git operations
If you're interested in contactless cards with an option in the future to upgrade to something like Omni ring (https://store.nfcring.com/products/omni), then do this:
1) Buy a contactless card reader from a good source e.g. https://www.javacardsdk.com/product/acr1252u or last two from this table https://webshop.d-logic.net/nfc-rfid-device-comparison, don't buy NFC ones, you need smartcard support specifically.
Also steer clear of cheep ACR122U readers from ebay or ali, for some reason there are a lot of fakes https://www.acs.com.hk/en/press-release/2266/advanced-card-s...
2) Buy a few of contactless cards e.g. https://www.javacardsdk.com/product/j3h145/, don't buy EMV ones unless you're Europay, Mastercard or VISA.
3) Once you get them install opensc, pcsc-lite, ccid and get gp.jar from https://javacard.pro/globalplatform/ and read some pages from https://github.com/philipWendland/IsoApplet/wiki, it will get you started.
GlobalPlatformPro
- How do you put your private key files (.ppk) on a security key (HYPERFIDO U2F/FIDO2/HOTP) ?
-
Tillitis Security Key – Mullvad spin-off inspired by measured boot and DICE
JavaCard is the answer for smartcards. You can find example card software all over github, and you're looking for the JavaCard SDK from Oracle and GlobalPlatformPro to program them: https://github.com/martinpaljak/GlobalPlatformPro. There's even an ant task around somewhere that allows you to use ant tooling. Blank cards with "developer"/default keys can be picked up pretty much anywhere.
Buy blank cards, write your applet, test in an emulator if you want, push to card, test for real with your software that talks to the card, profit. Be aware that if your goal is to write custom cryptography implementations in Java on the Javacard, these will be prohibitively slow. No need to take my word for it, Niels Duif did exactly this: https://research.tue.nl/en/studentTheses/smart-card-implemen...
> Java Card proves to be a worthless platform for high-speed cryptography. Despite the
-
Using a smart card to log in
You then have to get the binary (CAP file) and use a tool like GlobalPlatformPro to install it. Hopefully your JavaCard has default authentication keys, otherwise you have to ask for this from whomever you bought it from.
What are some alternatives?
YubiKey-Guide - Guide to using YubiKey for GnuPG and SSH
FIDO2 - FIDO2 toolbox in Java and X-FIDO JavaCard applet
android-usb-gadget - Convert your Android phone to any USB device you like! USB Gadget Tool allows you to create and activate USB device roles, like a mouse or a keyboard. 🛠🛡📱
SatochipApplet - The open source hardware wallet smartcard - Satochip.io
yubikey-full-disk-encryption - Use YubiKey to unlock a LUKS partition
ejbca-ce - EJBCA® – Open-source public key infrastructure (PKI) and certificate authority (CA) software.
OpenSC - Open source smart card tools and middleware. PKCS#11/MiniDriver/Tokend
secretive - Store SSH keys in the Secure Enclave
OpenFIPS201 - An open source reference card application for NIST FIPS 201-2 / NIST SP800-73-4, targeting Javacard 3.0.4+