| 词条 | OpenPGP card | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| 释义 |
| direction = vertical | width = 220 | image1 = OpenPGP card 2.0.jpg | alt1 = OpenPGP card | caption1 = This is an image of an OpenPGP card from the vendor ZeitControl. This card is pre-punched to be used in ID-000 readers, as shown below | image2 = Gemalto usb shell token with a punched OpenPGP card inside.jpg | alt2 = Card inside USB shell In cryptography, the OpenPGP card[1] is an ISO/IEC 7816-4, -8 compatible smart card[2] that is integrated with many OpenPGP functions. Using this smart card, various cryptographic tasks (encryption, decryption, digital signing/verification, authentication etc.) can be performed. It allows secure storage of secret key material; all versions of the protocol state, "Private keys and passwords cannot be read from the card with any command or function."[1][3] However, new key pairs may be loaded onto the card at any time, overwriting the existing ones. The original OpenPGP card was built on BasicCard, and remains available at retail. Several mutually compatible JavaCard implementations of the OpenPGP Card's interface protocol are available as open source software and can be installed on generic JavaCard smart cards, including NFC-enabled cards.[4] Nitrokey[5] and Yubico provide USB tokens implementing the same protocol through smart card emulation. The smart card daemon, in combination with the supported smart card readers,[6] as implemented in GnuPG, can be used for many cryptographic applications. With gpg-agent in GnuPG 2, an ssh-agent implementation using GnuPG, an OpenPGP card can be used for SSH authentication also. Vendor IDsAn OpenPGP card features a unique serial number to allow software to ask for a specific card. Serial numbers are assigned on a vendor base and vendors are registered with the FSFE. Assigned vendor ids are:[7]
References1. ^1 OpenPGP Card specification - version 3.3.2, Achim Pietig, 2018. URL: https://github.com/Nitrokey/openpgp-card/blob/master/OpenPGP%20Card%20Specification%203.3.2.pdf {{cryptography navbox | public-key}}2. ^The OpenPGP Card - How to use the Fellowship Smartcard - The GnuPG Smartcard HOWTO, Rebecca Ehlers, Thorsten Ehlers, et al., Free Software Foundation Europe e. V., 2005. URL: http://www.gnupg.org/howtos/card-howto/en/ch01.html#id2472312 3. ^OpenPGP Card specification - version 1.1, Achim Pietig, PPC Card Systems GmbH, 2004. URL: http://www.g10code.com/docs/openpgp-card-1.1.pdf 4. ^{{cite journal |url=https://lwn.net/Articles/696078/ |author=Nathan Willis |date=August 3, 2016 |title=Free software and smartcards |journal=LWN.net}} 5. ^Nitrokey, https://www.nitrokey.com/ 6. ^Required Hardware - How to use the Fellowship Smartcard - The GnuPG Smartcard HOWTO, Rebecca Ehlers, Thorsten Ehlers, et al., Free Software Foundation Europe e. V., 2005. URL: http://www.gnupg.org/howtos/card-howto/en/ch02s02.html#id2519120 7. ^OpenPGP Card Vendors. URL: https://git.gnupg.org/cgi-bin/gitweb.cgi?p=gnupg-verein.git;a=blob;f=office/misc/OpenPGP-Card-Vendors 2 : Smart cards|OpenPGP |
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| 随便看 |
|
开放百科全书收录14589846条英语、德语、日语等多语种百科知识,基本涵盖了大多数领域的百科知识,是一部内容自由、开放的电子版国际百科全书。