openpgp-card-app/README.md

## GnuPG application: blue-app-gnupg

GnuPG application for Nano S and Nano X

This application implements "The OpenPGP card" specification revision 3.0. This specification is available in *doc* directory and at https://g10code.com/p-card.html .

The application supports:
  - RSA with key up to 4096 bits 
  - ECDSA with secp256k1
  - EDDSA with Ed25519 curve 
  - ECDH with secp256k1 and curve25519 curves


This release has known missing parts (see also Add-on) :

   * Ledger Blue support
   * Seed mode ON/OFF via apdu


## Installation and Usage

See the full doc at https://github.com/LedgerHQ/blue-app-openpgp-card/blob/master/doc/user/blue-app-openpgp-card.pdf


## Add-on

The GnuPG application implements the following addon:
  - serial modification
  - on screen reset
  - 3 independent key slots
  - seeded key generation

Technical specification is available at https://github.com/LedgerHQ/blue-app-openpgp-card/blob/master/doc/developper/gpgcard3.0-addon.rst

   
### Key slot

"The OpenPGP card" specification specifies:
  - 3 asymmetric keys : Signature, Decryption, Authentication
  - 1 symmetric key

The blue application allow you to store 3 different key sets, named slot. Each slot contains the above 4 keys.
You can choose the active slot on the main screen.
When installed the default slot is "1". You can change it in settings.

   
### seeded key generation

A seeded mode is implemented in order to restore private keys on a new token.
In this mode key material is generated from the global token seeded.

Please consider SEED mode as experimental.

More details to come... 

### On screen reset

The application can be reset as if it was fresh installed. In settings, choose reset and confirm.
update description 2017-03-21 14:35:56 +00:00			`## GnuPG application: blue-app-gnupg`

Add NanoX support - embed shake256 as NanoX bug workarround - replace 'C' by 'C' in PIN Entry - fix the fact cx_hash does not accept any more NULL as output buff - add clang formatter 2019-06-14 08:38:37 +00:00			`GnuPG application for Nano S and Nano X`
update description 2017-03-21 14:35:56 +00:00
1.0 RC1 Add-on Spec: Add intermediate SHA256 in seeded key derivation Beautify spec Pytool: Remove some log App: Fix GET_CHALLENGE commande to support addon mode Add '01F2' '01F1' access control Replace ugly temporary cx_sha_t address definition by clean union Rewrite dynamic menu management in ui Add 'About' menu Build: Rename application from GNUPG3 to OpenPGP and version to 1.0 Lock path & curve Compile in optimization mode 2017-03-27 13:14:51 +00:00			`This application implements "The OpenPGP card" specification revision 3.0. This specification is available in doc directory and at https://g10code.com/p-card.html .`
update description 2017-03-21 14:35:56 +00:00
			`The application supports:`
			`- RSA with key up to 4096 bits`
Add NanoX support - embed shake256 as NanoX bug workarround - replace 'C' by 'C' in PIN Entry - fix the fact cx_hash does not accept any more NULL as output buff - add clang formatter 2019-06-14 08:38:37 +00:00			`- ECDSA with secp256k1`
update description 2017-03-21 14:35:56 +00:00			`- EDDSA with Ed25519 curve`
Add NanoX support - embed shake256 as NanoX bug workarround - replace 'C' by 'C' in PIN Entry - fix the fact cx_hash does not accept any more NULL as output buff - add clang formatter 2019-06-14 08:38:37 +00:00			`- ECDH with secp256k1 and curve25519 curves`
update description 2017-03-21 14:35:56 +00:00
Fix onscreen PIN Add onscreen PIN modification Fix default PIN mode management 2017-04-13 10:31:13 +00:00
Update README.md Add on-screen PIN configuration for gnupg 2017-07-09 06:10:31 +00:00			`This release has known missing parts (see also Add-on) :`
update description 2017-03-21 14:35:56 +00:00
			`* Ledger Blue support`
			`* Seed mode ON/OFF via apdu`


Reference the new documentation 2017-08-31 15:13:55 +00:00			`## Installation and Usage`
Update README.md 2017-04-24 11:08:18 +00:00
Reference the new documentation 2017-08-31 15:13:55 +00:00			`See the full doc at https://github.com/LedgerHQ/blue-app-openpgp-card/blob/master/doc/user/blue-app-openpgp-card.pdf`
Update README.md 2017-04-24 11:08:18 +00:00

update description 2017-03-21 14:35:56 +00:00			`## Add-on`

			`The GnuPG application implements the following addon:`
Update README.md 2017-03-21 14:55:42 +00:00			`- serial modification`
update description 2017-03-21 14:35:56 +00:00			`- on screen reset`
			`- 3 independent key slots`
			`- seeded key generation`

Reference the new documentation (try 2...) 2017-08-31 15:15:48 +00:00			`Technical specification is available at https://github.com/LedgerHQ/blue-app-openpgp-card/blob/master/doc/developper/gpgcard3.0-addon.rst`
update description 2017-03-21 14:35:56 +00:00

			`### Key slot`

			`"The OpenPGP card" specification specifies:`
			`- 3 asymmetric keys : Signature, Decryption, Authentication`
			`- 1 symmetric key`

			`The blue application allow you to store 3 different key sets, named slot. Each slot contains the above 4 keys.`
			`You can choose the active slot on the main screen.`
			`When installed the default slot is "1". You can change it in settings.`


			`### seeded key generation`

			`A seeded mode is implemented in order to restore private keys on a new token.`
			`In this mode key material is generated from the global token seeded.`

1.0 RC1 Add-on Spec: Add intermediate SHA256 in seeded key derivation Beautify spec Pytool: Remove some log App: Fix GET_CHALLENGE commande to support addon mode Add '01F2' '01F1' access control Replace ugly temporary cx_sha_t address definition by clean union Rewrite dynamic menu management in ui Add 'About' menu Build: Rename application from GNUPG3 to OpenPGP and version to 1.0 Lock path & curve Compile in optimization mode 2017-03-27 13:14:51 +00:00			`Please consider SEED mode as experimental.`

update description 2017-03-21 14:35:56 +00:00			`More details to come...`

			`### On screen reset`

			`The application can be reset as if it was fresh installed. In settings, choose reset and confirm.`