| Yubico Forum https://forum.yubico.com/ |
|
| [Question] How to check firmware https://forum.yubico.com/viewtopic.php?f=26&t=1559 |
Page 1 of 1 |
| Author: | Incom [ Wed Oct 29, 2014 12:40 pm ] |
| Post subject: | [Question] How to check firmware |
Hi! I just received my yubikey via mail. As the envelope which it was send with was nearly open my question is: How can i check whether the yubikey has been tampered with? Could an attacker for example replace the GPG applet with one which leaks its secret? And if yes, is there some kind of checksum or similar which i can check? |
|
| Author: | Tom [ Wed Oct 29, 2014 2:12 pm ] |
| Post subject: | Re: [Question] How to check firmware |
Hello, The Yubikeys are shipped with locked card-management keys, thus applet cannot be uploaded/deleted/modified. The are no secrets on the openpgp applet, it is opensource and available on our developers website https://developers.yubico.com Generate secrets following this best practice guide: http://blog.josefsson.org/2014/06/23/of ... smartcard/ |
|
| Author: | Incom [ Wed Oct 29, 2014 4:43 pm ] |
| Post subject: | Re: [Question] How to check firmware |
So i can not install an own applet? |
|
| Author: | brendanhoar [ Wed Oct 29, 2014 9:40 pm ] |
| Post subject: | Re: [Question] How to check firmware |
Incom wrote: So i can not install an own applet? Correct. And neither can an attacker (unless they have compromised Yubico). B |
|
| Page 1 of 1 | All times are UTC + 1 hour |
| Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/ |
|