status-im / status-keycard

Our Javacard Implementation for making secure transactions within Status and Ethereum
Apache License 2.0
215 stars 65 forks source link

Support for generating and storing FIDO2 Keys and possibly GPG Keys #79

Closed mulles closed 3 years ago

mulles commented 3 years ago

This would allow technical users with NFC Hardware to:

  1. Login to SSH Servers without the risk of getting FIDO2 key stolen from client-machine
  2. Login to Linux Desktop/Android/(iOS), instead of Biometrics authentication with its drawbacks
  3. Use it as Key(FIDO2) for keyslot of LUKS
  4. Sign git commits (GPG)
  5. Encrypt data (Email, etc.) (GPG)
  6. Use it for Openkeychain (Android App to use GPG) -Passphrasemanager -Sign and Encrypt Emails
  7. Gag: Open door locks.

Example: https://github.com/hoytech/defido2 (command-line contract-based ethereum wallet based on FIDO2)

The initial motivation to buy a Keycard (Smartcard) is to secure Crypto close to the pricetag of getting a new creditcard. On the long run, it could be used to secure ones digital life: devices, keyfiles, passphrases (if still needed), conversations, files etc.

As soon as enough have a reason to adapt a keycard, one can backup by shamir secret sharing with friends.

This seems the key problem to solve to free data from big provides, with nowadays provide gratis, more or less secure storage of our data.