Yubico Forum
https://forum.yubico.com/

[QUESTION] YubiKey 4 CCID touch sensor
https://forum.yubico.com/viewtopic.php?f=16&t=2169
Page 1 of 1

Author:  rkapl [ Mon Jan 18, 2016 8:47 pm ]
Post subject:  [QUESTION] YubiKey 4 CCID touch sensor

I have configured Yubikey in PIV/CCID mode. When I imported the certificates and their keys, I have specified,
Code:
--touch-policy=always

From that point on, Linux has required me to touch the YubiKey whenever a cryptographic operation is requested (it alerts You by blinking). But on Windows, the YubiKey happily performs the operation without me touching it.

I have YubiKey 4 with PIV applet version 4.2.7 and one certificate in slot "Digital Signature". I tested the setup with Pageant-CAC and WinScp (works nicely!), albeit this should have no relevance, as the touch policy should be enforced by the applet. OpenPGP applet correctly requires touch when signing.

Is there any way to force the YubiKey to require touch before letting me use the key? Is there a source code for the PIV applet (like there is for the PGP one) ?

Page 1 of 1 All times are UTC + 1 hour
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/