|
|
|
|
|
|
by teenageSec
3985 days ago
|
|
|
In the kickstarter page, you say that "a private key is stored, which is encrypted using military-grade encryption methods with his fingerprint". How does this work? It seems to me that there is no way of encrypting data with a fingerprint (since it varies drastically depending on how it is placed on the scanner). So are you encrypting the RSA priv key with the fingerprint or just checking the fingerprint before using the key? Also, how are you planning on getting websites to use jar for authentication? Another question: "fully-encrypted cloud storage". But previously in the description you say "losing your JAR does not create a continuous lock-out for the user". How does this work? How much storage is available on the jar? Also, you say "The private key stored on your JAR is generated when setting JAR up for the first time, using your fingerprint as a random input". Do you have another source of entropy for the jar? Because a fingerprint does not have that much entropy (certainly not enough for a 2048 bit encryption key). |
|
|