So I bought two Nitrokey HSM 2 and would like to check if I should update the firmware before I put them into production use.
The Nitrokey HSM 2 documentation I could find at Getting Started - Nitrokey Documentation does neither mention the firmware update process nor are there pointers how to check for the firmware version.
The latest firmware versions are 4.1 for the current JCOP4/JCOP4.5 platform, 3.6 for the previous JCOP3 platform, 2.7 for the older JCOP 2.4.2r3 and 2.6 for the oldest JCOP 2.4.1r3.
If you purchased the device after October 2023, then it should be a JCOP4 chip with version 4.x.
The firmware is pretty much feature complete and very well tested. So only if bugs are found, we will release a new version. Any new version will be announced in this forum.
Release notes as well as the latest AGD document can be found in the CDN.
Thank you for the answer.
What is AGD? I couldn’t find an explanation of that term. A google search on the Nitrokey website didn’t turn up anything useful.
On which Content Delivery Network are you hosting that documentation? Cloudfront? Akamai? Is there a URL where I can find it?
CDN means CardContact Developer Network. That is the platform where we share source code and documentation with developers.
AGD is a term from Common Criteria and means Guidance Documentation, which is the user documentation for the firmware (the applet implementing the key management functions of the HSM). Users rarely need this low level documentation, as they typically interface with the device using one of the available crypto middlewares (PKCS#11, Minidriver, JCE etc.).
