update docs

This commit is contained in:
Conor Patrick
2018-10-09 21:31:25 -04:00
parent eb106c978a
commit 8c2d4123cb
2 changed files with 54 additions and 12 deletions

View File

@@ -7,26 +7,22 @@ include SSH, GPG, and cryptocurrency. Solo is an upgrade to [U2F Zero](https://
![](https://i.imgur.com/vwFbsQW.png?1)
The Solo FIDO2/U2F code base is designed to be easily ported to different embedded systems.
Right now, it has been ported to the NRF52840 and EFM32J. Soon to be supported is the SAM L11.
Right now, it has been ported to the NRF52840 and EFM32J. Soon to be supported is the STM32L442.
No hardware is needed for development. You can run and extend the FIDO2 code base
using just your PC.
# Security
Solo is based on the SAM L11 secure microcontroller. It offers the following security features.
Solo is based on the STM32L442 microcontroller. It offers the following security features.
- True random number generation to guarantee random keys.
- Side channel resistant RAM and AES for physically secure key derivation.
- ARM TrustZone to provide security isolation for master key.
- Scrambled key storage to prevent invasive flash readout methods.
- Secure boot to ensure application integrity.
- Firewall feature for code and secret data isolation.
- Locked flash
The SAM L11 is one of the best chips for this application in terms of security,
when considering the NDA-free market.
It also has up to 256 KB of memory, meaning it has room for side channel and fault resistant crypto implementations, plus other features.
Solo can be trusted to be running the open source code. The firmware can be readout using a debugger to verify that a Solo is running
the code posted publicly. The secret information is of course inaccessible.
Each chip ships with a read-only USB bootloader, put in place by ST. This can be leveraged to completely reset and reprogram the device, to make sure you can trust it's running the right code. The bootloader can be disabled.
# How do I get one?
@@ -34,11 +30,11 @@ We are still working on open sourcing an implementation that anyone can cheaply
build and program, just like with U2F Zero. This will be released soon. It will be easy to solder :)
In the meantime, you can port the code to your favorite microcontroller, or support
us by [signing up for our Kickstarter](https://solokeys.com/). Our aim is to crowdfund enough to make an economic
us by [signing up for our Kickstarter](https://solokeys.com/kickstarter). Our aim is to crowdfund enough to make an economic
bulk order and provide open source security tokens for everyone that is interested. We will offer
"hackable" tokens that come with USB bootloaders and are reprogrammable.
[Sign up here](https://solokeys.com/)!
[Sign up here](https://solokeys.com/kickstarter)!
# Setting up