gnuk/doc/NOTES

USB communication
=================

  * No command chaining, but extended APDU and extended Lc and Le

  * dwMaxCCIDMessageLength: 64


OpenPGP card protocol implementation
====================================

I try to follow "no clear password(s)" policy.
After key import, keystrings are also removed.
But because of this, it is not that easy to overwrite key(s).


How a private key is stored
===========================

KEYPTR
         ----> [   P   ][   Q   ][       N        ]
               <---encrypted----><---  plain  ---->

key_addr                       4-byte
additional_data_encrypted      16-byte
dek_encrypted_by_keystring_pw1 16-byte
dek_encrypted_by_keystring_rc  16-byte
dek_encrypted_by_keystring_pw3 16-byte

... decrypted to

[   P   ][   Q   ]
check   4-byte
random  4-byte
magic[] 8-byte
more changes 2010-09-03 15:42:36 +00:00			`USB communication`
			`=================`

			`* No command chaining, but extended APDU and extended Lc and Le`
works now again 2010-09-05 16:55:29 +00:00
more changes 2010-09-03 15:42:36 +00:00			`* dwMaxCCIDMessageLength: 64`


			`OpenPGP card protocol implementation`
			`====================================`

works now again 2010-09-05 16:55:29 +00:00			`I try to follow "no clear password(s)" policy.`
			`After key import, keystrings are also removed.`
fixes and enhancements 2010-09-09 16:25:44 +00:00			`But because of this, it is not that easy to overwrite key(s).`
more changes 2010-09-03 15:42:36 +00:00

works now again 2010-09-05 16:55:29 +00:00			`How a private key is stored`
			`===========================`
more changes 2010-09-03 15:42:36 +00:00
			`KEYPTR`
			`----> [ P ][ Q ][ N ]`
			`<---encrypted----><--- plain ---->`

			`key_addr 4-byte`
			`additional_data_encrypted 16-byte`
			`dek_encrypted_by_keystring_pw1 16-byte`
			`dek_encrypted_by_keystring_rc 16-byte`
			`dek_encrypted_by_keystring_pw3 16-byte`

			`... decrypted to`

			`[ P ][ Q ]`
			`check 4-byte`
			`random 4-byte`
			`magic[] 8-byte`