Skip to content

Latest commit

 

History

History
272 lines (158 loc) · 14.1 KB

readme.md

File metadata and controls

272 lines (158 loc) · 14.1 KB

Satochip-DIY

A collection of tools, software and documentation to build and flash Satochip, Satodime and Seedkeeper Javacard based DIY Crypto hardware devices.

Why Satochip?

Many DIY options for hardware wallets involve major trade-offs for usability (Some are stateless) and also physical security. Furthermore, most DIY options use general purpose micro-controllers, sometimes without any ability to secure the physical hardware. The challenge is that most hardware that is security hardened is only available for development under NDA, both limiting it's usabulity in DIY applications while also limiting vendors ability to disclose vulnerabilities they discover.

Java Card is the leading open, interoperable platform for secure elements, enabling smart cards and other tamper-resistant chips to host multiple applications using Java technology. Java Card is an execution platform that can store and update multiple applications on a single resource-constrained device, while retaining the highest certification levels and compatibility with standards. Oracle (Company that Defines the Javacard Specification)

Fortunatly, Java Card devices provide a platform that lends itself to Open Source (and therefore DIY) development, allowing for development of software that can run on hardened platform with a Secure Element, without needing an NDA, while still using commodity hardware that can be sourced from a number of different vendors in a range of form factors.

Overview

The process for having a working DIY Satochip device is generally.

  1. Obtain a compatible Javacard
  2. Obtain a Smart Card Reader (Or NFC Reader)
  3. Obtain CAP File to Load on Javacard
  4. Install Java (If not already installed)
  5. Flash Applets to Javacards
  6. Lock Cards (Optional)
  7. Installing other Applets (Optional)

If you purchase the hardware (Reader and cards) directly from Satochip and use their pre-built CAP files, the whole process can be completed in 5 minutes...

Hardware Selection

Navigating the Javacard ecosystem can be difficult... There are many different configuration options that are available, even within the same chipset. For example, while there are multiple Javacards that use the NXP JCOP4 P71, it is generally the SECID versions that will work, whereas EMV versions will not. (With some models, such as the J3R150, being available in both versions)

Tested and Working Javacards

The following cards are readily available and tested and confirmed to work.

  • NXP JCOP4 P71 SECID Based Javacards
  • NXP JCOP3 P60 SECID Based Javacards
    • J3H145
  • THD-89 Based Javacards (These currently don't work reliably with the official builds, but this repository also includes some versions tweaked to support them)
    • CodeWav NFC Sticker Tag Micro Edition
    • THETAKey T101
    • THETAKey T104 (CodeWav-2 NFC Card)

Javacard Features Required

The list of tested cards above isn't exhaustive and generally speaking a Javacard needs to support the following features:

  • Javacard 3.0.4 (Or higher)
  • Support the following Functions
    • javacard.security.KeyAgreement: ALG_EC_SVDP_DH_PLAIN, ALG_EC_SVDP_DH_PLAIN_XY
    • javacard.security.Signature: ALG_ECDSA_SHA_256
    • javacard.security.MessageDigest: ALG_SHA_256, ALG_SHA_512
    • javacard.security.RandomData: ALG_SECURE_RANDOM
    • javacardx.crypto.Cipher: ALG_AES_BLOCK_128_ECB, ALG_AES_BLOCK_128_CBC_NOPAD

You can find a database of various Javacards and their supported functions here: https://www.fi.muni.cz/~xsvenda/jcalgtest/table.html

If you attempt to flash the applets to an unsupported card, you will likely get an error after the CAP file has been loaded.

Some examples of these kinds of errors are:

Error: INSTALL [for install and make selectable] failed: 0x6444

You will get this error if the applet calls a function that your Javacard doesn't support

or

Error: INSTALL [for install and make selectable] failed: 0x6F00

You will get this error if the applet calls a function that your Javacard doesn't support

or

LOAD failed: 0x6438

You will get this error if the applet was build with a JavacardSDK version higher than what your card supports

Where to Buy

You can source these Java Smartcards from a range of different websites depending on where in the world you live. Generally speaking, purchasing single cards is rarely cost-effective and you will often end up paying $20+ USD on shipping.

If you want to be sure that the card will work and support development of this project, it is best to source the card through SatoChip... (Their pricing is quite competitive, especially for a single card) Buy from Satochip

SmartCard Readers

You can both program and use Satochip applets with either hard-wired (Contact) or NFC (Contactless) Smart Card Readers.

Generally speaking, any generic USB Smart-Card reader will work fine for both programming and operation of Satochip cards.

Compatibility Notes

  • Some Smartcards might work fine over the NFC interface, but not work correctly over the contact interface. (This may be resolved in future updates)
  • The ACS ACR 122U reader is unreliable for flashing applets and may brick your card. (Though works fine for normal operation after they have been flashed)

Obtaining Applets to Flash to Javacards

Easiest Method - Downloading Official Releases

The fastest and simplest method is to simply flash CAP files from the releases.

Official Satochip Releases

Official Seedkeeper Releases

Official Satodime Releases

For unofficial builds (eg: THD-89 devices) you will need to either build the applets yourself or download them from Github Actions...

Once you have the CAP file you want, you can move on to Flash Applets to Javacards

Easy Method for Testing (Not Recommended for Storing Actual Funds) - Downloading from Github Actions

This repository automatically builds the official and THD-89 builds using Github Actions.

If you have a Github account and are logged in, you can view and download the build artifacts (Compiled applets, ready to flash) by clicking the "Build Satochip DIY Applets" button below, selecting the most recent run and scrolling down to the Artifacts and downloading a zip file contining all of the compiled applets.

Build Satochip DIY Applets

On this screen, you can also click on the Build job button to view a log of the build process and verify that the SHA256 sums of the applets match those that you downloaded.

Once you have the CAP file you want, you can move on to Flash Applets to Javacards

Harder, but Better Method - Building on your own PC

Cloning this Github Repository

This repository includes resources from other Github repositories, so it is nessesary to use Git to download it recursively.

Simply downloading the zip file directly from Github will not work...

If your system has Github for Windows installed, you can simply click the Code button on this page and select Open with GitHub Desktop

Alternatively, you can use Git for Windows: https://git-scm.com/download/win

If your system already has Git installed, you can open a terminal and type

git clone --recursive https://github.com/3rdIteration/Satochip-DIY.git

Download and Unzip Apache Ant

If you are in Linux, you can normally install ant via apt (sudo apt install ant).

If you are in Windows, you can download a binary distribution of Ant here: https://ant.apache.org/bindownload.cgi you can then unzip it and then run Ant via ant.bat that comes with it.

The examples below assume that you have extracted Ant to your C: drive

Building

Open a command prompt (or terminal) and navigate to the folder of this Github Repository.

Once there, you can simply run Ant.

On Windows (Assuming you unzipped the Ant Binary distribution onto C drive, in this example it is for version 1.9.16...)

"C:\apache-ant-1.9.16\bin\ant.bat"

On Linux

ant

Once complete, you will notice that there is a new folder that was created called Build which will contain all of the compiled applets.

Download and Install Java

Regardless of whether you are flashing pre-compiled CAP files or building from source, you will need a working installation of Java.

If you are simply flashing pre-build CAP files, any version of the Java Runtime Environment (JRE) will generally be fine and you may already have one installed.

If you are building the CAP files from source, you will need the Java Software Development Kit (SDK), so unless you have been doing other software development work on your PC, you probably don't already have this installed... While there are far newer versions of the Java SDK available, Java 8 works with all the tools we need for this guide, supports the widest number of Javacard SDKs and has Long Term Support until 2030, so is the simplest version to recommend and support...

You can find out more about supported Java versions here: https://github.com/martinpaljak/ant-javacard/wiki/JavaCard-SDK-and-JDK-version-compatibility

On Windows

You can download OpenJDK 8 here: https://adoptium.net/temurin/releases/?version=8

Once downloaded, you can install it with all the defaults.

On Linux

sudo apt install openjdk-8-jdk

Flashing Applets to Javacards

This repository includes a release of GlobalPlatformPro which can be used to flash the applets.

GlobalPlatformPro requires a working installation of Java, so if you didn't install Java at an earlier step, you need to do that before proceeding...

To flash the appletse using the default AIDs (Which is required to work with existing Satochip compatible software) you can use the following commands. (Run this in Command Prompt or Terminal)

On Windows

gp.exe --install ./build/FILENAME.cap

On Other Operating Systems

java -jar gp.jar --install ./build/FILENAME.cap

Applets can be uninstalled in the same way using the --uninstall command.

Error Messages from Locked Cards

Depending on where you sourced your Javacard from, it's possible that it will already have been locked with some custom keys.

If you see an error similar to this:

Read more from https://github.com/martinpaljak/GlobalPlatformPro/wiki/Keys
STRICT WARNING: Card cryptogram invalid!
Card: 626FC84D83315BED
Host: B8A9A7C85B1BFF34
!!! DO NOT RE-TRY THE SAME COMMAND/KEYS OR YOU MAY BRICK YOUR CARD !!!

You need to stop attempting to flash it and contact the vendor you purchased the cards from.

You will also get this message if you had previously locked the card with a custom key (See below)

Locking Javacards (Optional)

While it is not possible download applets (And wallet data) from an unlocked card, leaving the card unlocked makes it very easy for someone to discover what applets are installed on the card, delete these applets and potentially install other applets of their own. (Including those which could exploit yet-to-be-discovered weaknesses in the Javacard OS or Applet segregation protections) Locking cards is easy and is a good idea...

To lock the cards, you simply run the --lock command with a 32 character hexidecimal key.

Be sure to notes this key down, as you will need it if you want to perform any install/uninstall/unlock operations on the card.

For example, to lock the cards with the key 010B0371D78377B801F2D62AFC671D95

On Windows

gp --lock 010B0371D78377B801F2D62AFC671D95

On Other Operating Systems

java -jar gp.jar --lock 010B0371D78377B801F2D62AFC671D95

After this command has been run, further operations will require that the key is specified with the --key argument

For example installing an applet on a card locked with the key 010B0371D78377B801F2D62AFC671D95 would be:

On Windows

gp.exe --key 010B0371D78377B801F2D62AFC671D95 --install ./build/FILENAME.cap

On Other Operating Systems

java -jar gp.jar --key 010B0371D78377B801F2D62AFC671D95 --install ./build/FILENAME.cap

Installing other Applets (Optional)

Javacards allow you install and use multiple applets, with the Javacard OS maintaining segregation between each applet.

This means that there might be instances where you can use other applets to do things like being able cryptographically verify identity or posession of a physical card, add plausible deniability throught a secondary function or even to have multiple instances of the same applet installed on the card with custom AIDs.

There are limits as to what you can fit on your Javacard, so the number and size of additional applets you can install will vary...

Some other applets that you might consider installing are:

SmartPGP:

Allows you go generate a PGP key on-card to verify card identity without needing to enter a device PIN, as well as other PGP operations.

Repository and CAP Downloads: https://github.com/github-af/SmartPGP

Compatability Notes: THD-89 Devices require a special tweaked build of SmartPGP, the official releases don't currently work...

TOTP:

NFC based TOTP Authenticator, compatible with the Yubico Authenticator App.

Repository: https://github.com/VivoKey/apex-totp CAP File Download: https://github.com/DangerousThings/flexsecure-applets

Compatability Notes: I have been unable to get this applet to work on any J3H145 devices that I have here...

Further Reading, Applets and Resources

FlexSecure Applets

An Excellent collection of applets and documentation.

https://github.com/DangerousThings/flexsecure-applets

Curated List of Javacard Applications

A great list of various Javacard applications.

https://github.com/crocs-muni/javacard-curated-list