Skip to content

Releases: polhenarejos/pico-hsm

Version 2.0

19 Apr 17:34
@polhenarejos polhenarejos
v2.0
This tag was signed with the committer’s verified signature.
polhenarejos Pol Henarejos
GPG key ID: C0095B7870A4CCD3
Verified
Learn about vigilant mode.
86298f3
This commit was signed with the committer’s verified signature.
polhenarejos Pol Henarejos
GPG key ID: C0095B7870A4CCD3
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 2.0

This version incorporates a major refactor of the core functionalities, which are migrated into another repo.
Version 2.0 has the following capabilities:

  • Added Secure Messaging. It stablishes a secure channel, where the information and payloads are ciphered and authenticated to avoid attacks.
  • Added Session PIN.
  • Introducing the PKI for Pico HSM. It generates CVCerts and burns them onto the firmware. The process is a bit more complex, but it consists in generating a private key, making a CSR and sending to a remote PKI, which returns a signed CVCert. All private key, CVCert and CA CVCert are burned onto the firmware. All are used to stablishing the secure channel for Secure Messaging.

Full Changelog: v1.12...v2.0

Loading

Version 1.12

11 Apr 10:21
@polhenarejos polhenarejos
v1.12
239e01c
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 1.12

This version adds the following features:

  • Capability to store and retrieve arbitrary binary files. It can save and recover any data file up to 4 kB of size.
  • Real Time Clock to set and get current datetime.
  • Time counter to count seconds from boot.
  • Press-to-confirm feature to require user confirmation when loading a private/secret key to perform signature, decrypt, etc. With it, we can ensure that no malicious application is able to sign documents silently.
  • Capability to enable or disable press-to-confirm feature dynamically without reinitializing the device.

Full Changelog: v1.10...v1.12

Loading

Version 1.10

04 Apr 09:28
@polhenarejos polhenarejos
v1.10
d41a488
This commit was signed with the committer’s verified signature.
polhenarejos Pol Henarejos
GPG key ID: C0095B7870A4CCD3
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 1.10

This release adds Transport PIN and other initialization options.
Transport PIN allows provisioning the Pico HSM with some private and secret keys to deployed securely. Once disconnected after the device initialization with Transport PIN flag, the user cannot log in without the default password. It must be changed before start working.

Other options allow to reset retry counter by setting a new PIN or just resetting the counter, preserving the PIN.

Full Changelog: v1.8...v1.10

Loading

Version 1.8

31 Mar 12:37
@polhenarejos polhenarejos
v1.8
b4e9285
This commit was signed with the committer’s verified signature.
polhenarejos Pol Henarejos
GPG key ID: C0095B7870A4CCD3
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 1.8

This version adds comptatibility with SCS3 tool and allows PKCS#12 imports (private keys and certificates). It also adds support for RSA 4096 bits keys.
Also it fixes lots of bugs.

Full Changelog: v1.6...v1.8

Loading

Version 1.6

25 Mar 11:53
@polhenarejos polhenarejos
v1.6
43ec92d
This commit was signed with the committer’s verified signature.
polhenarejos Pol Henarejos
GPG key ID: C0095B7870A4CCD3
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 1.6

This release fixes lots of bugs. It is the first release that passes all tests.

Full Changelog: v1.4...v1.6

Loading

Version 1.4

20 Mar 23:57
@polhenarejos polhenarejos
v1.4
78d71a6
This commit was signed with the committer’s verified signature.
polhenarejos Pol Henarejos
GPG key ID: C0095B7870A4CCD3
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 1.4

Full Changelog: v1.2...v1.4

Loading

Version 1.2

16 Mar 22:32
@polhenarejos polhenarejos
v1.2
920cf3a
This commit was signed with the committer’s verified signature.
polhenarejos Pol Henarejos
GPG key ID: C0095B7870A4CCD3
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 1.2

Full Changelog: v1.0...v1.2

Loading

Version 1.0

14 Mar 00:03
@polhenarejos polhenarejos
v1.0
bad954a
This commit was signed with the committer’s verified signature.
polhenarejos Pol Henarejos
GPG key ID: C0095B7870A4CCD3
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 1.0

Initial release.

Full Changelog: https://github.com/polhenarejos/pico-hsm/commits/v1.0

Loading