Smart cards
Werner Koch
wk at gnupg.org
Thu Dec 13 08:13:58 CET 2018
On Tue, 11 Dec 2018 19:27, arthur at ulfeldt.com said:
> using openkeychain with a yubikey nfc is totally solid, and convenient.
> I've been using them for years. they also plug into the bottom of the
> phones which some people prefer.
You should keep in mind that you can eavesdrop on NFC communication
within several meters. Right, it is required that the card is niot more
than about 10cm away from the reader but that is only to convey the
power to the card, the HF is readable from several meters as soon as the
card is powered up.
If you care about side channel attacks, NFC communication is a bad idea
because the decrypted session key can easily be picked up. To avoid
this, /secure communication/ needs to be used but that is cumbersome
because this requires a shared secret between host and card. But well,
smartphones are not a safe device anyway.
Shalom-Salam,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 227 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20181213/30f42942/attachment.sig>
More information about the Gnupg-users
mailing list