Scute: sec_error_pkcs11_function_failed (was Re: Crypto Stick released!)
On 05/03/2010 10:17 AM, Joke de Buhr wrote: > I'm using Ubuntu lucid (amd64) with firefox 3.6.3. > > On Monday 03 May 2010 15:49:35 Werner Koch wrote: >> On Mon, 3 May 2010 12:22, j...@seiken.de said: >>> selecting my key I always get this firefox error message >>> "sec_error_pkcs11_function_failed". >> >> Okay we need to check this. This should really work. I can report that I also experience this problem with Ubuntu lucid i386 and Scute 1.2. Slightly related: is there a reason that Scute-1.4 is not listed on the download page at http://www.scute.org/download.xhtml ? Thanks —Alex Mauer “hawke” signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
Any news about V2 ? Thanks AA On 11 June 2010 10:33, Werner Koch wrote: > On Thu, 3 Jun 2010 16:58, jroll...@finestructure.net said: > >> regards to the Crypto Stick? Is that something that can be patched, or >> is it a limitation of the communication protocol? > > Right that is a limitation of an internal communication protocol. Not > hard to change but there are more important things to be done. > > > Shalom-Salam, > > Werner > > -- > Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. > > > ___ > Gnupg-users mailing list > Gnupg-users@gnupg.org > http://lists.gnupg.org/mailman/listinfo/gnupg-users > ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
On Thu, 3 Jun 2010 16:58, jroll...@finestructure.net said: > regards to the Crypto Stick? Is that something that can be patched, or > is it a limitation of the communication protocol? Right that is a limitation of an internal communication protocol. Not hard to change but there are more important things to be done. Shalom-Salam, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
On Thu, 03 Jun 2010 16:43:19 +0200, Crypto Stick wrote: > Each of the three keys can be up to 3072 bit. In fact they can even be > 4096 bit long; but GnuPG does currently not support such key length in > cooperation with the Crypto Stick (but GnuPG can handle 4096 bit > soft-keys without the Crypto Stick). That's strange. What is the limitation with the bit length and GnuPG in regards to the Crypto Stick? Is that something that can be patched, or is it a limitation of the communication protocol? jamie. pgpZtUEt1mW7D.pgp Description: PGP signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
On 6/3/10 10:23 AM, Perry, James J. wrote: > From what I see on the advertisement, they say it has "Three independent > RSA keys (signature, encryption, authentication) with a length up to > 3072 bit." While I don't speak Marketing, it sure sounds like each key > is 1024 with the three of them taking up 3072 total. I noted that, too, but I currently have three 2048 bit keys on my card. James -- James P. Howard, II, MPA MBCS CGFM signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
On 6/3/10 10:12 AM, Joke de Buhr wrote: > My stick works fine with 3072bit rsa keys. I updated to 2.0.14 and that solved my problems. However, right now there is a new one I just discovered. Someone else posted this last month, too, but apparently when using the agent, the card will not allow signatures with hashes other than SHA1 or RIPEMD160. James -- James P. Howard, II, MPA MBCS CGFM signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
Each key can be 3072 bit. ssb> 3072R/0x96525A09870156C6 created: 2010-04-29 expires: never card-no: 0005 0569 ssb> 3072R/0x5354A50986C9F1CC created: 2010-04-29 expires: never card-no: 0005 0569 ssb> 3072R/0x22EDBA56D3E557E9 created: 2010-04-29 expires: never card-no: 0005 0569 On Thursday 03 June 2010 16:41:13 you wrote: > On 6/3/10 10:23 AM, Perry, James J. wrote: > > From what I see on the advertisement, they say it has "Three independent > > RSA keys (signature, encryption, authentication) with a length up to > > 3072 bit." While I don't speak Marketing, it sure sounds like each key > > is 1024 with the three of them taking up 3072 total. > > I noted that, too, but I currently have three 2048 bit keys on my card. > > James signature.asc Description: This is a digitally signed message part. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
Same with me. It seems to be a gnupg problem. If you don't use the scdaemon the stick can do sha512 signatures. I added I bug report a couple of days ago. https://bugs.g10code.com/gnupg/issue1229 On Thursday 03 June 2010 16:16:02 you wrote: > On 6/3/10 10:12 AM, Joke de Buhr wrote: > > My stick works fine with 3072bit rsa keys. > > I updated to 2.0.14 and that solved my problems. > > However, right now there is a new one I just discovered. Someone else > posted this last month, too, but apparently when using the agent, the > card will not allow signatures with hashes other than SHA1 or RIPEMD160. > > James signature.asc Description: This is a digitally signed message part. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
On Jun 3, 2010, at 10:23 AM, Perry, James J. wrote: >> From what I see on the advertisement, they say it has "Three independent > RSA keys (signature, encryption, authentication) with a length up to > 3072 bit." While I don't speak Marketing, it sure sounds like each key > is 1024 with the three of them taking up 3072 total. That is not correct. Each individual key can be up to 3072 bytes. The internal hardware can actually handle slightly more, but 3072 is the current limit. David ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
Each of the three keys can be up to 3072 bit. In fact they can even be 4096 bit long; but GnuPG does currently not support such key length in cooperation with the Crypto Stick (but GnuPG can handle 4096 bit soft-keys without the Crypto Stick). On 03.06.2010 16:23, Perry, James J. wrote: >> >From what I see on the advertisement, they say it has "Three independent > RSA keys (signature, encryption, authentication) with a length up to > 3072 bit." While I don't speak Marketing, it sure sounds like each key > is 1024 with the three of them taking up 3072 total. > > -Original Message- > From: gnupg-users-boun...@gnupg.org > [mailto:gnupg-users-boun...@gnupg.org] On Behalf Of Joke de Buhr > Sent: Thursday, June 03, 2010 10:12 AM > To: j...@jameshoward.us > Cc: gnupg-users@gnupg.org > Subject: Re: Crypto Stick released! > > My stick works fine with 3072bit rsa keys. > > On Tuesday 25 May 2010 15:21:05 James P. Howard, II wrote: >> On 5/10/10 5:04 PM, Olav Seyfarth wrote: >>> english version: >>> http://www.privacyfoundation.de/crypto_stick/crypto_stick_english/ >> >> My Crypto Stick arrived in the mail yesterday (Maryland, United >> States--ordered on May 14). >> >> One thing I am confused about, it suggests it accepts RSA keys up to >> 3072 bits. However, when I tried to copy my existing 2048-bit RSA > keys, >> GPG reponds with: >> >> Command> keytocard >> Signature key : [none] >> Encryption key: [none] >> Authentication key: [none] >> >> You may only store a 1024 bit RSA key on the card >> >> I take it I am missing something obvious in this? >> >> James > > Proud partner. Susan G. Komen for the Cure. > > Please consider our environment before printing this e-mail or attachments. > -- > CONFIDENTIALITY NOTICE: This e-mail may contain privileged or confidential > information and is for the sole use of the intended recipient(s). If you are > not the intended recipient, any disclosure, copying, distribution, or use of > the contents of this information is prohibited and may be unlawful. If you > have received this electronic transmission in error, please reply immediately > to the sender that you have received the message in error, and delete it. > Thank you. > -- > > ___ > Gnupg-users mailing list > Gnupg-users@gnupg.org > http://lists.gnupg.org/mailman/listinfo/gnupg-users > ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
RE: Crypto Stick released!
>From what I see on the advertisement, they say it has "Three independent RSA keys (signature, encryption, authentication) with a length up to 3072 bit." While I don't speak Marketing, it sure sounds like each key is 1024 with the three of them taking up 3072 total. -Original Message- From: gnupg-users-boun...@gnupg.org [mailto:gnupg-users-boun...@gnupg.org] On Behalf Of Joke de Buhr Sent: Thursday, June 03, 2010 10:12 AM To: j...@jameshoward.us Cc: gnupg-users@gnupg.org Subject: Re: Crypto Stick released! My stick works fine with 3072bit rsa keys. On Tuesday 25 May 2010 15:21:05 James P. Howard, II wrote: > On 5/10/10 5:04 PM, Olav Seyfarth wrote: > > english version: > > http://www.privacyfoundation.de/crypto_stick/crypto_stick_english/ > > My Crypto Stick arrived in the mail yesterday (Maryland, United > States--ordered on May 14). > > One thing I am confused about, it suggests it accepts RSA keys up to > 3072 bits. However, when I tried to copy my existing 2048-bit RSA keys, > GPG reponds with: > > Command> keytocard > Signature key : [none] > Encryption key: [none] > Authentication key: [none] > > You may only store a 1024 bit RSA key on the card > > I take it I am missing something obvious in this? > > James Proud partner. Susan G. Komen for the Cure. Please consider our environment before printing this e-mail or attachments. -- CONFIDENTIALITY NOTICE: This e-mail may contain privileged or confidential information and is for the sole use of the intended recipient(s). If you are not the intended recipient, any disclosure, copying, distribution, or use of the contents of this information is prohibited and may be unlawful. If you have received this electronic transmission in error, please reply immediately to the sender that you have received the message in error, and delete it. Thank you. -- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
My stick works fine with 3072bit rsa keys. On Tuesday 25 May 2010 15:21:05 James P. Howard, II wrote: > On 5/10/10 5:04 PM, Olav Seyfarth wrote: > > english version: > > http://www.privacyfoundation.de/crypto_stick/crypto_stick_english/ > > My Crypto Stick arrived in the mail yesterday (Maryland, United > States--ordered on May 14). > > One thing I am confused about, it suggests it accepts RSA keys up to > 3072 bits. However, when I tried to copy my existing 2048-bit RSA keys, > GPG reponds with: > > Command> keytocard > Signature key : [none] > Encryption key: [none] > Authentication key: [none] > > You may only store a 1024 bit RSA key on the card > > I take it I am missing something obvious in this? > > James signature.asc Description: This is a digitally signed message part. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
On 5/25/10 10:07 AM, Hauke Laging wrote: > What is the gpg version you use? IIRC You need 2.0.13 or 2.0.14 for 2048 bit > keys on a smartcard. That did the trick! I was on 2.0.12 and moved to 2.0.14. -- James P. Howard, II, MPA MBCS CGFM j...@jameshoward.us ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
Am Dienstag 25 Mai 2010 15:21:05 schrieb James P. Howard, II: > You may only store a 1024 bit RSA key on the card > > I take it I am missing something obvious in this? What is the gpg version you use? IIRC You need 2.0.13 or 2.0.14 for 2048 bit keys on a smartcard. CU Hauke -- PGP: D44C 6A5B 71B0 427C CED3 025C BD7D 6D27 ECCB 5814 signature.asc Description: This is a digitally signed message part. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 5/10/10 5:04 PM, Olav Seyfarth wrote: > english version: > http://www.privacyfoundation.de/crypto_stick/crypto_stick_english/ My Crypto Stick arrived in the mail yesterday (Maryland, United States--ordered on May 14). One thing I am confused about, it suggests it accepts RSA keys up to 3072 bits. However, when I tried to copy my existing 2048-bit RSA keys, GPG reponds with: Command> keytocard Signature key : [none] Encryption key: [none] Authentication key: [none] You may only store a 1024 bit RSA key on the card I take it I am missing something obvious in this? James - -- James P. Howard, II, MPA MBCS CGFM j...@jameshoward.us -BEGIN PGP SIGNATURE- iQEcBAEBCAAGBQJL+87BAAoJEHPMAEw+5CSeGCQH/3cv2suaLFZTptKkALg2XZa6 FRCpJ4um4QsO+xwwdNBQ314XYSWBjmVkvrwHIAYHkzBDwdbbRpH+yrZz41S6T98/ EIRfY4K5zI5dDA+Q6fu+hWiYisZk5coNVI/hEnjEhDjSAhx3QMOEDCZXmUMDdOeg tJR4ZFDC6Y2gT2FIpRZwf6i/HnT4MalHrn9fCywy+3UGWEWWzu2LvZUJGrpB99hq FlZiGF8EubbLlaWtpckQrT9SxZRzihrRQwfeldJOUKJUsE6w7zJK+W8VGtBPBXHT ppBgDYjCr6ABjMkuDDaQdlDEeYtohhLPhiD7598YoI+8wNWpp5MmcEIQ69QTPVE= =AFVC -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
On Thu, May 20, 2010 at 9:17 AM, Frank wrote: ... > The stick is yes, a openpgp smartcard with a USB > interface not more than that. Well, the programmable 32bit ARM MCU in there isn't to be forgotten :) -- Roscoe ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
Hi everybody, I just got my crypto stick from privacyfoundation.de - I do not speak nor read German well myself, but there is a english version of the site too that you might just want to check out. As for the delievery and service - very good, It took about 10 days to ship Germany to Norway which is not bad at all, i recommend all you to give this a try. The stick is yes, a openpgp smartcard with a USB interface not more than that. -- Frank ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
Try passing it a URL using "https" as protocol. I got a similar error and a note saying to request the URL using the latter. Did you see this URL? http://www.privacyfoundation.de/crypto_stick/crypto_stick_english/ - John On Tue, 11 May 2010 00:52:23 +0200 Joke de Buhr wrote: > The developers said they are going to translate the shop soon. > > As stated within the first email of this thread: > > "The Online Shop is currently in German only. Please mail me if you > want to purchase a Crypto Stick and have trouble placing the order." > > So mail him and ask for help: cryptost...@privacyfoundation.de > > > > On Monday 10 May 2010 21:14:02 JB JB wrote: > > It looks like a great tool but unfortunately the shop is only in > > German which I do not understand. > > > > I attempted to translate it with Google translate but it does not > > accept the page because it is using port 443 (I think). > > > > "Sorry, this URL is invalid > > http://www.privacyfoundation.de:443/wiki/CryptoStickSoftware"; > > > > > > Send your photos by email in seconds... > > TRY FREE IM TOOLPACK at > > http://www.imtoolpack.com/default.aspx?rc=if3 Works in all emails, > > instant messengers, blogs, forums and social networks. > > > > ___ > > Gnupg-users mailing list > > Gnupg-users@gnupg.org > > http://lists.gnupg.org/mailman/listinfo/gnupg-users signature.asc Description: PGP signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
The developers said they are going to translate the shop soon. As stated within the first email of this thread: "The Online Shop is currently in German only. Please mail me if you want to purchase a Crypto Stick and have trouble placing the order." So mail him and ask for help: cryptost...@privacyfoundation.de On Monday 10 May 2010 21:14:02 JB JB wrote: > It looks like a great tool but unfortunately the shop is only in German > which I do not understand. > > I attempted to translate it with Google translate but it does not accept > the page because it is using port 443 (I think). > > "Sorry, this URL is invalid > http://www.privacyfoundation.de:443/wiki/CryptoStickSoftware"; > > > Send your photos by email in seconds... > TRY FREE IM TOOLPACK at http://www.imtoolpack.com/default.aspx?rc=if3 > Works in all emails, instant messengers, blogs, forums and social networks. > > ___ > Gnupg-users mailing list > Gnupg-users@gnupg.org > http://lists.gnupg.org/mailman/listinfo/gnupg-users signature.asc Description: This is a digitally signed message part. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
Olav Seyfarth wrote: > Hi *, > > english version: > http://www.privacyfoundation.de/crypto_stick/crypto_stick_english/ That's the only page I've seen in English, Olav. Check the Shop links: http://www.privacyfoundation.de/shop/ and http://www.privacyfoundation.de/shop/crypto-stick.html Google Translate and Babblefish only do so much of the job. Best Regards, -John -- John P. Clizbe Inet:John (a) Mozilla-Enigmail.org You can't spell fiasco without SCO. hkp://keyserver.gingerbear.net or mailto:pgp-public-k...@gingerbear.net?subject=help Q:"Just how do the residents of Haiku, Hawai'i hold conversations?" A:"An odd melody / island voices on the winds / surplus of vowels" signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 Hi *, english version: http://www.privacyfoundation.de/crypto_stick/crypto_stick_english/ Olav - -- The Enigmail Project - OpenPGP Email Security For Mozilla Applications -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.14 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQGcBAEBAwAGBQJL6HTRAAoJEKGX32tq4e9WeXAMAIndHF/TckbTVeSqlvhX/XXp qz9ftVmfMdg+E0GAd1KlDFN2wevHs6c4sMPi+Ihyt3peWeP2veURdGFmysJMHLmm LwKGa4JL8CiTisqpf7zOqYaVfNV+Csvvy5OKpZ00qjJyuhNNihjlas/4DFjz3t26 vregHwH+pkbvvy/zf0+4ZhUx0mj7+rF2lgJ7YkUO3OgUPDmGrpP9pYDF4sOuLWV+ Wix6zFRhAEgcA530v4Idje22yGRDB7Hkv4QbuNn8v6IP+FdnF90apA45LvOxS1bu mcTM8Vcd1jgREhzjy0iVy223ccJh1O/xSlTeyLH/EDdVNxLW7NZqYM7I+em0SA8g 6YDAO2/TVyIcpqEiYCRZv4E2o8V7PN2t4YCmOSmehRiNeOx3LpFaxiQXt9nORRQh trc89V+whZoQlG1OtevR1FW1jRxfLvZMML0hhsVU0AVd7MVTV4/NCApo4vNdmy/X eMl9pDx2iWcThATUm+OCcwFMxMl8suIEjdGlp1citw== =dVv/ -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
RE: Crypto Stick released!
It looks like a great tool but unfortunately the shop is only in German which I do not understand. I attempted to translate it with Google translate but it does not accept the page because it is using port 443 (I think). "Sorry, this URL is invalid http://www.privacyfoundation.de:443/wiki/CryptoStickSoftware"; Send your photos by email in seconds... TRY FREE IM TOOLPACK at http://www.imtoolpack.com/default.aspx?rc=if3 Works in all emails, instant messengers, blogs, forums and social networks. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
I'm using Ubuntu lucid (amd64) with firefox 3.6.3. On Monday 03 May 2010 15:49:35 Werner Koch wrote: > On Mon, 3 May 2010 12:22, j...@seiken.de said: > > selecting my key I always get this firefox error message > > "sec_error_pkcs11_function_failed". > > Okay we need to check this. This should really work. > > > Shalom-Salam, > >Werner signature.asc Description: This is a digitally signed message part. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
On Mon, 3 May 2010 12:22, j...@seiken.de said: > selecting my key I always get this firefox error message > "sec_error_pkcs11_function_failed". Okay we need to check this. This should really work. Shalom-Salam, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
I tried scute but it didn't work. I tried the versions 1.0, 1.1, 1.2, 1.4 and the svn sources. Scute compiled without problem. I followed the documentation on how to setup gpgsm. Firefox lists crypto device and the private key on the key shows up underneath the crypto device. As soon as I visit a protected page firefox asks which key to choose and after selecting my key I always get this firefox error message "sec_error_pkcs11_function_failed". It doesn't matter which scute version I'm using it's always the same error. It's not specify to a website. I tried several. On Monday 03 May 2010 12:02:51 Werner Koch wrote: > On Sat, 1 May 2010 01:54, j...@seiken.de said: > > an openpgp card version 2.0 which isn't supported by opensc yet. So you > > can't use opensc's firefox integration unless opensc releases an updated > > Checkout http://www.scute.org . > > > Salam-Shalom, > >Werner signature.asc Description: This is a digitally signed message part. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
On Sat, 1 May 2010 01:54, j...@seiken.de said: > an openpgp card version 2.0 which isn't supported by opensc yet. So you can't > use opensc's firefox integration unless opensc releases an updated Checkout http://www.scute.org . Salam-Shalom, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
> Looks very interesting. I'm curious how this differs from the SIM-sized card > in a SIM-sized USB reader? For example, the regular 2.0 OpenPGP card in a > SCR3320 USB stick reader > (http://www.scmmicro.com/security/view_product_en.php?PID=6). Currently we are developing the next version which will contain more features: - hardware encrypted storage - simple HTML- and text-file-interfaces providing OpenPGP functionality without any software requirement - many more... ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
I think it is. But isn't all packed within an usb dongle. There isn't a sim slot. You can't simply change the openpgp card. At least without opening (breaking) the casing. The SCR3320 seems to be a little more universal. On Saturday 01 May 2010 02:02:59 Christoph Anton Mitterer wrote: > On Fri, 2010-04-30 at 19:44 -0400, David Shaw wrote: > > Looks very interesting. I'm curious how this differs from the > > SIM-sized card in a SIM-sized USB reader? For example, the regular > > 2.0 OpenPGP card in a SCR3320 USB stick reader > > (http://www.scmmicro.com/security/view_product_en.php?PID=6). > > I thought it would be exactly like this? OpenPGP SIM card + USB reader? > > > Cheers, > Chris. signature.asc Description: This is a digitally signed message part. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
On Fri, 2010-04-30 at 19:44 -0400, David Shaw wrote: > Looks very interesting. I'm curious how this differs from the > SIM-sized card in a SIM-sized USB reader? For example, the regular > 2.0 OpenPGP card in a SCR3320 USB stick reader > (http://www.scmmicro.com/security/view_product_en.php?PID=6). I thought it would be exactly like this? OpenPGP SIM card + USB reader? Cheers, Chris. smime.p7s Description: S/MIME cryptographic signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
They seem to be trustworthy. I ordered a crypto stick last sunday. It arrived on friday (inner german transport). The stick works fine with ubuntu 10.04 but you have to install a patched driver for libccid but it's quite possible the patch will be included upstream. The stick works only with gnupg as far as I can talk now. The gnupg support is flawless. But the stick doesn't seem to work with opensc because the stick uses an openpgp card version 2.0 which isn't supported by opensc yet. So you can't use opensc's firefox integration unless opensc releases an updated openpgp card driver. The Firefox extension FireGPG works since it uses gpg. I only tested the stick on linux and I haven't test things like pam authentication up till now. On Friday 30 April 2010 23:41:47 Andre Amorim wrote: > Thats what I'm looking for... > but the shop is all in german, so does anyone knows if > privacyfoundation.de a trustable company? (I mean, there are so many > scams these days) But if it's ok I will be happy to buy one and give a > try. > Thanks > AA. > > On 30 April 2010 16:02, Crypto Stick wrote: > > Recently the German Privacy Foundation released the open source Crypto > > Stick! > > > > The GPF Crypto Stick is a USB stick in a small form factor containing an > > integrated OpenPGP smart card to allow easy and high-secure encryption > > e.g. of e-mail or for authentication in network environments. As opposed > > to ordinary software solutions, private keys are always inside the > > Crypto Stick so that their exposure is impossible. All cryptographic > > operations (precisely: decryption and signature because of public key > > cryptography) are executed on the PIN-protected Crypto Stick. In case > > the Crypto Stick was stolen, got lost, or is used on a > > virus-contaminated computer (e.g. Trojan horse) no attacker is able to > > access the private keys so that all encrypted data stays secure. > > > > The Crypto Stick is developed as a non-profit open source project and > > ensures a very high level of security due to verifiability and an > > attractive price. The open interface of the used OpenPGP smart card > > allows optimal compatibility with various software applications (e.g. > > GnuPG, Mozilla Thunderbird + Enigmail, OpenSSH, Linux PAM, OpenVPN, > > Mozilla Firefox). > > > > You can find more information at: > > http://www.privacyfoundation.de/crypto_stick/crypto_stick_english/ > > > > The Online Shop is currently in German only. Please mail me if you want > > to purchase a Crypto Stick and have trouble placing the order. > > > > ___ > > Gnupg-users mailing list > > Gnupg-users@gnupg.org > > http://lists.gnupg.org/mailman/listinfo/gnupg-users signature.asc Description: This is a digitally signed message part. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
On Apr 30, 2010, at 11:02 AM, Crypto Stick wrote: > Recently the German Privacy Foundation released the open source Crypto > Stick! > > The GPF Crypto Stick is a USB stick in a small form factor containing an > integrated OpenPGP smart card to allow easy and high-secure encryption > e.g. of e-mail or for authentication in network environments. As opposed > to ordinary software solutions, private keys are always inside the > Crypto Stick so that their exposure is impossible. All cryptographic > operations (precisely: decryption and signature because of public key > cryptography) are executed on the PIN-protected Crypto Stick. In case > the Crypto Stick was stolen, got lost, or is used on a > virus-contaminated computer (e.g. Trojan horse) no attacker is able to > access the private keys so that all encrypted data stays secure. Looks very interesting. I'm curious how this differs from the SIM-sized card in a SIM-sized USB reader? For example, the regular 2.0 OpenPGP card in a SCR3320 USB stick reader (http://www.scmmicro.com/security/view_product_en.php?PID=6). David ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Crypto Stick released!
Thats what I'm looking for... but the shop is all in german, so does anyone knows if privacyfoundation.de a trustable company? (I mean, there are so many scams these days) But if it's ok I will be happy to buy one and give a try. Thanks AA. On 30 April 2010 16:02, Crypto Stick wrote: > Recently the German Privacy Foundation released the open source Crypto > Stick! > > The GPF Crypto Stick is a USB stick in a small form factor containing an > integrated OpenPGP smart card to allow easy and high-secure encryption > e.g. of e-mail or for authentication in network environments. As opposed > to ordinary software solutions, private keys are always inside the > Crypto Stick so that their exposure is impossible. All cryptographic > operations (precisely: decryption and signature because of public key > cryptography) are executed on the PIN-protected Crypto Stick. In case > the Crypto Stick was stolen, got lost, or is used on a > virus-contaminated computer (e.g. Trojan horse) no attacker is able to > access the private keys so that all encrypted data stays secure. > > The Crypto Stick is developed as a non-profit open source project and > ensures a very high level of security due to verifiability and an > attractive price. The open interface of the used OpenPGP smart card > allows optimal compatibility with various software applications (e.g. > GnuPG, Mozilla Thunderbird + Enigmail, OpenSSH, Linux PAM, OpenVPN, > Mozilla Firefox). > > You can find more information at: > http://www.privacyfoundation.de/crypto_stick/crypto_stick_english/ > > The Online Shop is currently in German only. Please mail me if you want > to purchase a Crypto Stick and have trouble placing the order. > > ___ > Gnupg-users mailing list > Gnupg-users@gnupg.org > http://lists.gnupg.org/mailman/listinfo/gnupg-users > -- Andre Amorim GnuPG KEY ID: 0x587B1970 FingerPrint: 42AE C929 4D91 4591 4E75 430F 78D9 53B4 587B 1970 Download: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x587B1970 ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Crypto Stick released!
Recently the German Privacy Foundation released the open source Crypto Stick! The GPF Crypto Stick is a USB stick in a small form factor containing an integrated OpenPGP smart card to allow easy and high-secure encryption e.g. of e-mail or for authentication in network environments. As opposed to ordinary software solutions, private keys are always inside the Crypto Stick so that their exposure is impossible. All cryptographic operations (precisely: decryption and signature because of public key cryptography) are executed on the PIN-protected Crypto Stick. In case the Crypto Stick was stolen, got lost, or is used on a virus-contaminated computer (e.g. Trojan horse) no attacker is able to access the private keys so that all encrypted data stays secure. The Crypto Stick is developed as a non-profit open source project and ensures a very high level of security due to verifiability and an attractive price. The open interface of the used OpenPGP smart card allows optimal compatibility with various software applications (e.g. GnuPG, Mozilla Thunderbird + Enigmail, OpenSSH, Linux PAM, OpenVPN, Mozilla Firefox). You can find more information at: http://www.privacyfoundation.de/crypto_stick/crypto_stick_english/ The Online Shop is currently in German only. Please mail me if you want to purchase a Crypto Stick and have trouble placing the order. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users