News

NLnet and Gartner to write vision for EC's Next Generation Internet initiative 2017/04/12

Dutch Ministry of Economic Affairs donates 0.5 million to "Internet Hardening Fund" 2016/12/16

Vietsch Foundation and NLnet cooperate in internet R&D for research and education 2016/09/28

RPKI-RTRlib contributes to secure interdomain routing 2016/02/15

 

Pitchfork

[Pitchfork -- till 2018/08]

The PITCHFORK is a free/libre hardware device for compartmentalizing key material and cryptographic operations in a small and durable USB device. It uses a Cortex-M3 processor and stores all keys in the CPUs flash. The PITCHFORK has an embedded radio interface over which it can do secure key exchanges with other devices, including "post-quantum" cryptography. Over USB it can send and receive messages using various modern low-level crypto protocols providing different aspects of overall security.

Description

Once a computer device you own is compromised, any cryptographic material on the device itself becomes available to the attacker to gain access to wherever that material can give access to - making your secrets as safe as the devices you use.

A Pitchfork board

In a PITCHFORK device, the cryptographic material your security depends on is stored in isolated hardware. It aims to directly protects cryptographic key material from adversaries in many different scenario's controlling the users environment such as network traffic, general computing devices, possession of the key container.

Comparison

The concept is similar to smartcard-based cryptographic key-compartmentalization devices like the Nitrokey/Cryptostick, however the team behind Pitchfork tries to address some different attack vectors which results in additional capabilities. The radio device allows for offline private key exchanges, while the on-device user interface is resilient against keylogging on a compromised device.

Pitchfork team

Calls

Send in your ideas.
Deadline August 8th, 2017.