- Please let me know, why you do not add a button for each encryption transaction verification like in Yubikey?
Can you please suggest an USB cable which would have a timer breaking USB circuit after a few minutes after pressing the button.
I have not a better idea than just ironing a big AC timer like this:
into a general USB cable circuit break.
So that when I need some operation with token I would activate a timer for a few minutes.
It will short the USB circuit, say power line and token will get connected to computer for a few minutes.
- Please suggest how well Nitrokey is protected from unauthorized reflashing with a modified firmware with a trojan if taken unnoticed from me for example at night during sleeping?
Do you have a protection from reflashing in a service mode? Do you check a digital signature of the firmware like microcode updates are checked in Intel CPU?
Someone on your forum mentioned even a public commercial service for crypto keys extraction from a token: