Go to file
Charles-Edouard de la Vergne 9f3130e88b
PRODUCT: Change Key slots management
- Only a single slot for "Nanos"
- 3 slots for other platforms
- No more Variants to manage, only OpenPGP is a valid App Name
2024-02-14 09:29:14 +01:00
.github/workflows CI: Add basic CI workflow 2023-10-10 17:57:37 +02:00
doc Fix linter output and formatting 2024-01-08 17:20:43 +01:00
glyphs Use the latest SDK 2024-02-14 09:29:07 +01:00
icons Use the latest SDK 2024-02-14 09:29:07 +01:00
pytools/gpgcard Fix linter output and formatting 2024-01-08 17:20:43 +01:00
src PRODUCT: Change Key slots management 2024-02-14 09:29:14 +01:00
.clang-format Fix linter output and formatting 2024-01-08 17:20:43 +01:00
.gitattributes Add all PNG files again 2020-11-25 16:25:41 +01:00
.gitignore Fix linter output and formatting 2024-01-08 17:20:43 +01:00
ledger_app.toml Activate Standard App Files; Add App manifest 2024-02-14 09:29:13 +01:00
LICENSE Initial commit 2017-03-21 15:21:34 +01:00
Makefile PRODUCT: Change Key slots management 2024-02-14 09:29:14 +01:00
README.md Fix linter output and formatting 2024-01-08 17:20:43 +01:00

GnuPG application

GnuPG application for Nano S and Nano X

This application implements "The OpenPGP card" specification revision 3.3. This specification is available in doc directory and at https://g10code.com/p-card.html.

The application supports:

  • RSA with key up to 4096 bits
  • ECDSA with secp256k1
  • EDDSA with Ed25519 curve
  • ECDH with secp256k1 and curve25519 curves

This release has known missing parts (see also Add-on) :

  • Ledger Blue support
  • Seed mode ON/OFF via apdu

Installation and Usage

See the full doc at https://github.com/LedgerHQ/blue-app-openpgp-card/blob/master/doc/user/blue-app-openpgp-card.pdf

Add-on

The GnuPG application implements the following addon:

  • serial modification
  • on screen reset
  • 3 independent key slots
  • seeded key generation

Technical specification is available at https://github.com/LedgerHQ/blue-app-openpgp-card/blob/master/doc/developer/gpgcard3.0-addon.rst

Key slot

"The OpenPGP card" specification specifies:

  • 3 asymmetric keys : Signature, Decryption, Authentication
  • 1 symmetric key

The application allows you to store 3 different key sets, named slot. Each slot contains the above 4 keys. You can choose the active slot on the main screen. When installed the default slot is "1". You can change it in settings.

seeded key generation

A seeded mode is implemented in order to restore private keys on a new token. In this mode key material is generated from the global token seeded.

Please consider SEED mode as experimental.

More details to come...

On screen reset

The application can be reset as if it was fresh installed. In settings, choose reset and confirm.