Be the first to like this
Got some time, around 50$, a soldering iron and want to secure your passwords ? This talk presents an open hardware-based password manager that anyone can build and use.
This project is based around a Teensy 3.0 device. Since it can emulate a keyboard, we started building a secure hardware storage using a 1.8 TFT LCD, touch input, a SD card reader and a 3D printed box. Using various libs and many arduino-fu, we managed to design a rather simple yet secure (we hope so) password storage that stores the passwords on the SD card and can type them on your laptop. As the Teensy also offers the possibility to use a RTC with the addition of a simple oscillator, we also added the possibility to use it as a hardware token that supports the TOTP algorithm. In this presentation, we will show the following things :
* What we did to protect the passwords, both on the SD card and in memory
* The tricks we added in order to prevent some attacks like timing attacks for example
* What encryption algorithms we used We'll finish with the best part : Everything is released as open source software.