Re: [Cryptech Tech] road to berlin

2016-05-03 Thread Peter Stuge
Paul Selkirk wrote: > >> It appears that the AVR is programmed through a 6-pin SPI header with a > >> usbtiny programmer, but we will need a software-based upgrade path (PC > >> -> STM32 -> AVR). > > > > That's not possible on the Alpha board since the STM32 is not > > connected in parallel with

Re: [Cryptech Tech] road to berlin

2016-05-02 Thread Basil Dolmatov
dol@ с iPad > 2 мая 2016 г., в 16:26, Pavel Shatov написал(а): > > 02.05.2016 10:43, Fredrik Thulin пишет: >> On Monday, May 02, 2016 12:37:50 AM Paul Selkirk wrote: ... >>> The AVR has to do approximately the following: - receive a tamper >>> interrupt from an

Re: [Cryptech Tech] road to berlin

2016-05-02 Thread Fredrik Thulin
On Monday, May 02, 2016 04:26:40 PM Pavel Shatov wrote: ... > I think, some people will even object to DFU option being present for > the tamper detection block. What if malicious user crafts dummy tamper > detection firmware, that only lights the red panic LED, but skips actual > wiping of the

Re: [Cryptech Tech] road to berlin

2016-05-02 Thread Pavel Shatov
02.05.2016 10:43, Fredrik Thulin пишет: On Monday, May 02, 2016 12:37:50 AM Paul Selkirk wrote: ... The AVR has to do approximately the following: - receive a tamper interrupt from an external circuit (currently a panic button) - wipe the MKM - raise an interrupt on the ARM, so it can do

Re: [Cryptech Tech] road to berlin

2016-05-02 Thread Fredrik Thulin
On Monday, May 02, 2016 12:37:50 AM Paul Selkirk wrote: ... > The AVR has to do approximately the following: > - receive a tamper interrupt from an external circuit (currently a panic > button) > - wipe the MKM > - raise an interrupt on the ARM, so it can do whatever it needs to do > - light an

Re: [Cryptech Tech] road to berlin

2016-05-01 Thread Paul Selkirk
On 04/30/2016 08:52 PM, Paul Selkirk wrote: > On 04/29/2016 01:09 PM, Peter Stuge wrote: >> Paul Selkirk wrote: >>> It appears that the AVR is programmed through a 6-pin SPI header with a >>> usbtiny programmer, but we will need a software-based upgrade path (PC >>> -> STM32 -> AVR). >> >> That's

Re: [Cryptech Tech] road to berlin

2016-04-29 Thread Peter Stuge
Paul Selkirk wrote: > It appears that the AVR is programmed through a 6-pin SPI header with a > usbtiny programmer, but we will need a software-based upgrade path (PC > -> STM32 -> AVR). That's not possible on the Alpha board since the STM32 is not connected in parallel with the ISP header.

Re: [Cryptech Tech] road to berlin

2016-04-26 Thread Fredrik Thulin
On Tuesday, April 26, 2016 08:32:57 AM Rob Austein wrote: ... > Yes, this is roughly what we discussed in some previous iteration, a > daemon to handle multiplexing of an arbitrary number of PKCS #11 > clients into a single physical communication channel with the HSM. Yes, I recall. Paul - is

Re: [Cryptech Tech] road to berlin

2016-04-26 Thread Rob Austein
At Tue, 26 Apr 2016 10:49:47 +0200, Fredrik Thulin wrote: > On Monday, April 25, 2016 05:34:49 PM Paul Selkirk wrote: > ... > > 3. RPC client: This runs on a PC on the other end of the USB cable. > > Currently it's a static library (libhal hal_rpc_* functions), but it > > needs to be able to

Re: [Cryptech Tech] road to berlin

2016-04-26 Thread Joachim Strömbergson
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Aloha! Paul Selkirk wrote: > Commands will probably include: ... > - create master key - list keys - show stats ... > 6. AVR tamper detection: We have an ATTiny828 connected to the > Master Key Memory, and to a tamper circuit (currently a