|
|
|
|
|
|
by at-fates-hands
1147 days ago
|
|
|
I remember seeing a pen-test that was done way back in the mid aughts that identified a bunch of vulnerabilities. It was so long ago, I wonder if they were mitigated or just given lip service. EDIT: I found it. Pretty interesting read:
https://cure53.de/pentest-report_nitrokey.pdf This penetration test against the Nitrokey Storage firmware, as well as the Nitrokey
desktop app, was performed by a team of three penetration-testers and took eleven
days in total to complete. The test is part of a larger series of security assessments. In
later phases, security-focused assignments will include tests against the hardware itself,
alongside detailed look into other models of the Nitrokey and its accompanying
applications and tools. |
|
|