Releases · safetechio/SafeKey_Firmware_Version_Tracking

15 Apr 15:57

V1.8.3

eac418c

Require PIN to use CS Factory Reset Latest

Latest

Change suggested by the red4sec audit report - require PIN to execute Factory Reset.

Without this, the SafeKey could be maliciously cleared anytime from its data, assuming the user would confirm the disguised request by touching the device. Now the PIN is required for clearing (by requiring authenticated session).

Assets 3

13 Nov 15:05

JurgenSchouppe

V1.8.2

eac418c

V1.8.2 Correct Windows issues, improve UX

Correct Windows issues, improve UX

Disable buffers clearing immediately after successful read (fixes Windows communication issue)
Refresh session token on each successful read/write command, without need for relogin and touch (to correct in Javascript - remove PIN cache and relogin each 45 seconds);
Add missing error code checks where required.

Assets 3

30 Oct 14:09

JurgenSchouppe

V1.8.0

eac418c

V1.8.0 Improved security and stability

This release brings:

strict CS protocol check;
fuzzing-sourced fixes.

Assets 3

30 Oct 14:08

JurgenSchouppe

V1.7.1

eac418c

V1.7.1 FIDO2 PIN bruteforce protection improvement, DOS protection

This release brings:

FIDO2 PIN store protected with PBKDF2 to achieve the same strength as CS PIN hash;
non-intrusive to CS communication fuzzing recommendations applied.

The FIDO2 PIN storage will be upgraded on the first power-up cycle of the device without any friction.

Assets 3

30 Oct 14:05

JurgenSchouppe

V1.6.1

eac418c

V1.6.1 Disable debug-adapter access

Disable debug-adapter access. Correct bootloader downgrade protection (only newly produced; not activated for market firmware update).
Build process improvements

Assets 3