Home

Awesome

SSKR for JavaCard

Build status

This is an implementation of Sharded Secret Key Reconstruction (SSKR) for JavaCard environments.

Gradle project contains one module:

Building

Run the buildJavaCard task:

./gradlew buildJavaCard

Generates a new cap file ./applet/build/javacard/com.proxy.sskr.cap

Typical output:

[ant:convert] [ INFO: ] Converter [v3.1.0]
[ant:convert] [ INFO: ] Copyright (c) 1998, 2021, Oracle and/or its affiliates. All rights reserved.
[ant:convert]
[ant:convert] [ INFO: ] conversion completed with 0 errors and 0 warnings.

[ant:cap] INFO: using JavaCard 3.1.0 SDK in ./libs-sdks/jc310r20210706_kit
[ant:cap] INFO: targeting JavaCard 3.0.4 SDK in ..libs-sdks.jc304_kit
[ant:cap] Building CAP with 1 applet from package com.proxy.sskr (AID: FFFFFF040506)
[ant:cap] com.proxy.sskr.Applet FFFFFF04050607
[ant:compile] Compiling files from ./applet/src/main/java
[ant:compile] Compiling 4 source files to /tmp/jccpro5411199499583907175
[ant:verify] Verification passed
[ant:cap] CAP saved to ./applet/build/javacard/com.proxy.sskr.cap
[ant:exp] EXP saved to ./applet/build/javacard/com.proxy.sskr.exp/com/proxy/sskr/javacard/sskr.exp

Installation on a (physical) card

Warning Make sure to set the correct ISD key in gradle.properties. Attemping to authenticate with an incorrect key will increment the internal retry counter of most secure elements, and eventually lock the card permanently.

# Replace with a real key (use GRADLE_OPTS env variable or -P command line arg
# to override in release builds, do not add your real key to source control).
issuerKey=40:41:42:43:44:45:46:47:48:49:4A:4B:4C:4D:4E:4F

Warning This will delete any previous instances of the applet on your card. Make sure you are prepared to lose any persistent data they store.

./gradlew installJavaCard

To override project variables on the command line, for example to specify a production key, use the -P command line arg:

./gradlew installJavaCard -PissuerKey=...

To inspect already installed applets:

./gradlew listJavaCard

Running tests

./gradlew test --rerun-tasks --info

Typical output:

tests.AppletTest > echo() STANDARD_OUT
    DEBUG | 2023-03-03 12:50:56 | [Test worker] cardTools.CardManager:307 | --> 800000000142 (6 B)
    DEBUG | 2023-03-03 12:50:56 | [Test worker] cardTools.Util:115 | --> [800000000142] (6 B)
    DEBUG | 2023-03-03 12:50:56 | [Test worker] cardTools.Util:122 | <-- 42 9000 (1 B)
    DEBUG | 2023-03-03 12:50:56 | [Test worker] cardTools.CardManager:315 | <-- 42 9000 (1) [0 ms]

tests.ShamirTest > roundtrip1() STANDARD_OUT
    secret: 0FF784DF000C4380A5ED683F7E6E3DCF
    0: 00112233445566778899AABBCCDDEEFF
    1: D43099FE444807C46921A4F33A2A798B
    2: D9AD4E3BEC2E1A7485698823ABF05D36
    3: 0D8CF5F6EC337BC764D1866B5D07CA42
    4: 1AA7FE3199BC5092EF3816B074CABDF2
    from 1: D43099FE444807C46921A4F33A2A798B
    from 2: D9AD4E3BEC2E1A7485698823ABF05D36
    from 4: 1AA7FE3199BC5092EF3816B074CABDF2
    recovered secret: 0FF784DF000C4380A5ED683F7E6E3DCF
    verified secret: true

tests.ShamirTest > roundtrip2() STANDARD_OUT
    secret: 204188BFA6B440A1BDFD6753FF55A8241E07AF5C5BE943DB917E3EFABC184B1A
    0: 2DCD14C2252DC8489AF3985030E74D5A48E8EFF1478AB86E65B43869BF39D556
    1: A1DFDD798388AADA635B9974472B4FC59A32AE520C42C9F6A0AF70149B882487
    2: 2EE99DAF727C0C7773B89A18DE64497FF7476DACD1015A45F482A893F7402CEF
    3: A2FB5414D4D96EE58A109B3CA9A84BE0259D2C0F9AC92BDD3199E0EED3F1DD3E
    4: 2B851D188B8F5B3653659CC0F7FA45102DADF04B708767385CD803862FCB3C3F
    5: A797D4A32D2A39A4AACD9DE48036478FFF77B1E83B4F16A099C34BFB0B7ACDEE
    6: 28A19475DCDE9F09BA2E9E881979413592027216E60C8513CDEE937C67B2C586
    from 3: A2FB5414D4D96EE58A109B3CA9A84BE0259D2C0F9AC92BDD3199E0EED3F1DD3E
    from 4: 2B851D188B8F5B3653659CC0F7FA45102DADF04B708767385CD803862FCB3C3F
    recovered secret: 204188BFA6B440A1BDFD6753FF55A8241E07AF5C5BE943DB917E3EFABC184B1A
    verified secret: true

tests.ShamirTest > recoverFromReference1() STANDARD_OUT
    recovered secret: 0FF784DF000C4380A5ED683F7E6E3DCF
    verified secret: true

tests.ShamirTest > recoverFromReference2() STANDARD_OUT
    recovered secret: 204188BFA6B440A1BDFD6753FF55A8241E07AF5C5BE943DB917E3EFABC184B1A
    verified secret: true

tests.SSKRTest > roundtrip() STANDARD_OUT
    secret: 7DAA851251002874E1A1995F0897E6B1
    0: 001111010091405D03C53896A1AB7FEA914B659E0F
    1: 00111101018F53CF68BDBFC092973B06D2AEE60559
    2: 0011110102AD6662D5352D3AC7D3F729179A78B3A3
    3: 001111120000112233445566778899AABBCCDDEEFF
    4: 0011111201FC2D359E6DC33A031129B9D0A95039A3
    5: 00111112022E3E180843AC4ABEB10F5B7E835040D3
    6: 0011111203D2020FA56A3A16CA28BF4815E6DD978F
    7: 0011111204450806B605A9587ABA37226670DAC5C1
    from 1 (0.1): 00111101018F53CF68BDBFC092973B06D2AEE60559
    from 2 (0.2): 0011110102AD6662D5352D3AC7D3F729179A78B3A3
    from 3 (1.0): 001111120000112233445566778899AABBCCDDEEFF
    from 5 (1.2): 00111112022E3E180843AC4ABEB10F5B7E835040D3
    from 6 (1.3): 0011111203D2020FA56A3A16CA28BF4815E6DD978F
    recovered secret: 7DAA851251002874E1A1995F0897E6B1
    verified secret: true

tests.SSKRTest > recoverFromReference1() STANDARD_OUT
    recovered secret: 7DAA851251002874E1A1995F0897E6B1
    verified secret: true

tests.SSKRTest > recoverWithPartialTransactions() STANDARD_OUT
    recovered secret: 7DAA851251002874E1A1995F0897E6B1
    verified secret: true

tests.SSKRTest > recoverWithTwoTransactions() STANDARD_OUT
    recovered secret: 7DAA851251002874E1A1995F0897E6B1
    verified secret: true

tests.SSKRTest > recoverWithDuplicates() STANDARD_OUT
    recovered secret: 7DAA851251002874E1A1995F0897E6B1
    verified secret: true

tests.SSKRTest > reset() STANDARD_OUT
    recovered secret: 7DAA851251002874E1A1995F0897E6B1
    verified secret: true

Finished generating test XML results (0.006 secs) into: ./applet/build/test-results/test
Finished generating test html results (0.009 secs) into: ./applet/build/reports/tests/test

Performance

Average of three runs to generate a set of shares from a 128-bit secret.

SharesJCOP3 J3H145SLJ52WML140
1 of (1,1)125 ms42 ms
1 of (2,3)388 ms242 ms
1 of (3,5)818 ms608 ms
2 of (2,3), (2,3), (2,3)1440 ms860 ms

Origin, Authors, Copyright & Licenses

Unless otherwise noted (either in this README.md or in the file's header comments) the contents of this repository are Copyright © 2023 by Proxy, Inc, and are licensed under the BSD-2-Clause Plus Patent License.

This table below also establishes provenance (repository of origin, permalink, and commit id) for files included from repositories that are outside of this repository. Contributors to these files are listed in the commit history for each repository, first with changes found in the commit history of this repo, then in changes in the commit history of their repo of origin.

FileFromCommitAuthors & Copyright (c)License
GF256.java GF256Test.javacodahale/shamircodahale/shamir@f44e1ce2017 Coda Hale (coda.hale@gmail.com)Apache-2.0

Dependencies

Based on the crocs-muni/javacard-gradle-template-edu template, which uses:

Supported Java versions

Java 8-u271 is the minimal version supported.

Make sure you have up to date java version (-u version) as older java 8 versions have problems with recognizing some certificates as valid.

Only some Java versions are supported by the JavaCard SDKs. Check the following compatibility table for more info: https://github.com/martinpaljak/ant-javacard/wiki/Version-compatibility