Skip to content

Latest commit

 

History

History
97 lines (56 loc) · 5.62 KB

public_key_authentication.md

File metadata and controls

97 lines (56 loc) · 5.62 KB

Public Key Authentication

Public Key Authentication (PKA) is a mechanism to authenticate a legit user without introducing any PIN (see Notes below). The authentication is performed by signing a challenge and checking the signature result.

  1. A Pico HSM #A contains a private key, whose public key will be used for authentication.
  2. The public key of #A is registered into a second Pico HSM #B.
  3. When a user wants to login into #B, #B generates a challenge that is passed to #A for signature.
  4. #A signs the challenge and returns the signature.
  5. #B verifies the signature against the challenge with the public key of #A, previously registered.
  6. If the signature is valid, #B grants access to the user.

To enable PKA, the device must be initialized beforehand. In case the device has secret/private keys, all shall be exported and reimported when the set up is finished.

Requirements

To take advantage of PKA, the following is required:

  1. Two Pico HSM: one will be used only for authentication (it can be any device able to generate a private key and sign arbitrary data).
  2. SCS3 tool to authenticate the user. At this time, OpenSC does not support PKA, only initialization.
  3. A secret key of ECC 256 bits.

Usage

Before using SCS3, it must be patched scs3.patch.txt. See SCS3 for further details.

Generate the authentication key

On a secondary device, generate a private key, on the ECC 256 bits (brainpoolP256r1 or secp192r1). Label it with an easy name, such as "Authentication".

Once finished, export the public key.

Initialization

On the primary device, initialize it. When prompting for an authentication mechanism, select "Public Key Authentication".

Captura de Pantalla 2022-06-13 a les 12 14 48

Once finished, register the exported public key. A message of 0 authenticated public key(s) in 1 of 1 scheme will appear if it is properly registered.

Captura de Pantalla 2022-06-13 a les 12 16 17

Authentication

Plug the secondary device that stores the private key (do not load the device in the SCS3 tool) and initiate the public key authentication.

Select the secondary card and the Authentication private key (or the name you labeled it).

Introduce the PIN of the secondary device.

If the private key matches with the registered public key, the primary device will grant access and it will display User PIN authenticated (9000) (despite no PIN is provided).

From now on, you have full access and can operate normally with the primary device.

Notes on DKEK

Pico HSM uses the PIN to protect the DKEK, which is lately used to protect private/secret keys and wrap/unwrap. However, when PKA is enabled, the authentication is not performed by introducing any PIN. Authenticated privileges are granted when PKA succeeds, regardless of PIN, which is optional.

Nevertheless, it is extremely recommended to combine PKA with PIN. Note that when combined, only PKA grants authenticated privileges. Therefore, if both schemes are setup, it is necessary to unlock the DKEK with PIN verification. Otherwise, it will not be possible to operate with private/secret keys despite the user will be logged in.

With this scheme, multiple custodians may authenticate the device individually and remotely and, when fully authenticated, the master user can unlock the DKEK with the PIN.

Moreover, with this approach the device is kept safe and neither the DKEK nor the private/secret keys are stored in plain text in the device. Even though the flash memory is dumped by an attacker, it will not be possible to decipher any sensitive data or key.

Initialization of the device with PKA and PIN can be achieved with SCS3 or OpenSC:

Note: do not import any DKEK share or DKEK operation before PKA and PIN setup.

With OpenSC

Use the following command (or similar), which accepts the use of PIN parameter and PKA configuration:

sc-hsm-tool -X --so-pin 1234567890123456 --pin 648219 -K 1 -n 1 -s 1

and PKA and PIN are enabled, jointly with DKEK protection.

With SCS3

Unfortunately, SCS3 does not allow to initialize the device with PKA and PIN at the same time, though it can be achieved in separated steps:

  1. Initialize the device with PKA. When done, the PIN will not be initialized but it will advice that 3 attemps can be performed.
  2. There is NO default PIN. So, DO NOT attempt to log in yet. A reset PIN shall be requested.
  3. Click on Reset User-PIN, introduce the SO-PIN configured during the initialization and introduce the desired User-PIN.

When done, the device will be configured with PIN and PKA.