[Cryptography] Durable HSM with fingerprint reader?
Ron Garret
ron at flownet.com
Sat May 19 18:33:32 EDT 2018
On May 19, 2018, at 11:07 AM, Ray Dillinger <bear at sonic.net> wrote:
> I'm looking for long-lasting, tamper-resistant secure hardware that does
> a cryptographically simple job. It stores a bunch of unique keys, gets
> to sit on people's desktops, and in principle never needs to be moved
> (except that someone might want to store it to keep it safe - it is
> potentially a high-value target for thieves or saboteurs).
>
> It needs to have a fingerprint reader - a pretty good one in terms of
> being hard to spoof. Other than that a red LED and a green LED are the
> only UI necessary.
>
> It needs to get time from a reasonably reliable external source such as
> a GPS signal and/or the atomic clock broadcast. Correctness of time will
> also be enforced by limited time windows during which particular keys
> are authorized for answering challenges.
The hardware you’ve described is an iPhone with touchID. However...
> It's a device for the user to periodically check-in and assert that "I
> am alive and free, today."
Whoa, nellie. How is this device going to distinguish “alive and well” from (how shall I put this delicately?) out of commission and digitally truncated?
rg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 455 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20180519/ef453d26/attachment.sig>
More information about the cryptography
mailing list