[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] adding smartcard support to Tor

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] adding smartcard support to Tor
From: grarpamp <grarpamp@xxxxxxxxx>
Date: Tue, 20 Oct 2015 15:59:45 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 20 Oct 2015 16:00:17 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :content-type; bh=zCDlQYGiBn8DpQSWYuXoXQ2YDzUtAZsRsHgI+ZbR4Os=; b=RzhftLVc69Aht7zL4SJAlWGDK22enVnTOasJyB0d0nc0J3TJ/hr9kOqvmhZa4+PWBg 4m9w6MLdcb2ilvMlOwJi83DQiwd1Yt/sJdeBVgX680XRGnJ7Lw259XzsvWpOxBoPlojD VnsmtfJ4RNIXMehxSAYUvZIpLhQA+3Ct3PPS3GiFNxBs0C8q5x1PtJgSl0L2+Ew3qNmT JBkPvgFW02HxVh901soYCMTy1s9CVJjBBpNpPyGus5z5jZ5rrNIwd03hjUrziZCDi7yy /g9/1Asa+Uhcfb4lQinSxCzc7Tdf+MymuU9NRFsqiKW7GcX/g4k1hH7abvE7hKh8pkKf m44A==
In-reply-to: <56269067.3020502@xxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <CAFnyNAdw5P53+6-YyOBfa1dmc_TMO2yCta_=4oj3ss3zR9JbuQ@xxxxxxxxxxxxxx> <5621A7CD.9070600@xxxxxxxxxx> <CAFnyNAdcY3aTHqbmdTWVGpx6N4PS8iDzKmA3GqvtJ0YWc9_-VA@xxxxxxxxxxxxxx> <5622954B.7000706@xxxxxxxxxxx> <CAFnyNAdAMGx41CmB+znVcH30OsWt3ddzsK3OdXAAEqSzoo+aFg@xxxxxxxxxxxxxx> <56229EC9.2090704@xxxxxxxxxxx> <5622A116.3050003@xxxxxxxxxx> <5622A675.4000703@xxxxxxxxxxx> <5622B250.4030503@xxxxxxxxxx> <CAFnyNAeK0zAaetcd-pLBFZ_Y68ao-tu9NJwMg9mN4jtc_z1V2w@xxxxxxxxxxxxxx> <CAD2Ti28OKNz9jU6a4aKxyzKyJCR3SyeWzRwW9Y20N+fKZZkLsg@xxxxxxxxxxxxxx> <CAD2Ti2-PmEoDBksFXwwueCeuafJ=gq29Rq9YXn+m9=QcpPQGnA@xxxxxxxxxxxxxx> <56269067.3020502@xxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

On Tue, Oct 20, 2015 at 3:05 PM, Ivan Markin <twim@xxxxxxxxxx> wrote:
> No, I will be secure. An adversary could sniff your PIN and sign
> whatever they want to, true. But revealing the PIN != revealing the key.
> In this case your identity key is still safe even if your PIN is
> "compromised".

Yes the private key may be safe, but the smartcard may be stolen or
removed from your sphere of access and reutilized with the sniffed
pin, thus your onion or relay or node is no longer under your control,
which was the point of the project. The enablement of the smartcard
needs to be out of band, or use some strong one way challenge
response like pki/totp/hotp/skey/opie.
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Follow-Ups:
- Re: [tor-dev] adding smartcard support to Tor
  - From: Razvan Dragomirescu

References:
- [tor-dev] adding smartcard support to Tor
  - From: Razvan Dragomirescu
- Re: [tor-dev] adding smartcard support to Tor
  - From: Ivan Markin
- Re: [tor-dev] adding smartcard support to Tor
  - From: Razvan Dragomirescu
- Re: [tor-dev] adding smartcard support to Tor
  - From: Ken Keys
- Re: [tor-dev] adding smartcard support to Tor
  - From: Razvan Dragomirescu
- Re: [tor-dev] adding smartcard support to Tor
  - From: Ken Keys
- Re: [tor-dev] adding smartcard support to Tor
  - From: Ivan Markin
- Re: [tor-dev] adding smartcard support to Tor
  - From: Ken Keys
- Re: [tor-dev] adding smartcard support to Tor
  - From: Ivan Markin
- Re: [tor-dev] adding smartcard support to Tor
  - From: Razvan Dragomirescu
- Re: [tor-dev] adding smartcard support to Tor
  - From: grarpamp
- Re: [tor-dev] adding smartcard support to Tor
  - From: grarpamp
- Re: [tor-dev] adding smartcard support to Tor
  - From: Ivan Markin

Prev by Author: Re: [tor-dev] adding smartcard support to Tor
Next by Author: Re: [tor-dev] Effect of padding on end to end correlation false positive rate
Previous by thread: Re: [tor-dev] adding smartcard support to Tor
Next by thread: Re: [tor-dev] adding smartcard support to Tor
Index(es):
- Author
- Thread