----------------------
This project implement the OpenPGP card functionality. OpenPGP is an open standard for signing and encrypting. It enables RSA or ECC sign/encrypt operations using a private key stored on a smartcard (such as ), through common interfaces like PKCS#11.
The AID of the applet should be according to the OpenPGP card standard v2.0.1
License
-------
The upstream project was released under the GPLv2+ and our fork uses the same license. All of our changes are released under the same license. See the file LICENSE for more information.
Building
--------
There are several ways to build the project:
1) With JCIDE.
2) With Eclipse and eclipse-jcde.
3) ......
We usually suggest using JCIDE, it lets you quickly and easily develop Java Card Applet. .
Installing JCKit
----------------
Install the Java Card Development Kit version 2.2.2, download it from here.
Note:
1) The default user PIN(PW1) is '123456', and the admin PIN(PW3) is '12345678' . That is, the APDU of VERIFY command can be :
Code: Select all
00 20 00 81 06 31 32 33 34 35 36 and
Code: Select all
00 20 00 83 08 31 32 33 34 35 36 37 38Security Advisory
1) The source code contains a logical flaw related to user PIN (aka PW1) verification that allows an attacker with local host privileges and/or physical proximity (NFC) to perform security operations without knowledge of the user’s PIN code.
