Introduction To Admin Commands
Introduction To Admin Commands
| Admin Command | Description |
|---|---|
| Seed Administration | Manage cryptographic seeds that are essential for key generation and security operations. |
| Change Pairing Key | Change the pairing key to maintain secure communication between devices. |
| Derive Key | Derive keys from existing seeds for various cryptographic purposes. |
| Get Public Key (Pubkey) | Retrieve the public key associated with a specific private key stored on the device. |
| Get History | Access the history of operations or transactions performed by the device. |
| Set Pin Authentication (Pin Auth) | Configure PIN-based authentication mechanisms to enhance device security. |
| Set Pinless Path | Define operations or paths that can be executed without PIN authentication. |
| User Key Management (Add, Check, and Delete) | Introduce a new user key into the device’s key management system, verify an existing key, and remove a user key from the device. |
| Challenge Response | Implement challenge-response authentication protocols to verify identities securely. |
Communication Libraries
Python Library: A Python library for card communication, enabling high-level functions to interact with Cryptnox devices.
- Link To The Repository:Â Python Repository
Rust Library: A Rust library providing high-level functions to send instructions and manage the lifecycle of Cryptnox smartcard applets.
- Link To The Repository:Â Rust Repository
Note
We currently offer the documentation for Python library. The documentation for the Rust library will soon be made available.
These libraries are designed to streamline the integration of Cryptnox devices into your projects, offering a programmatic approach to execute admin commands and manage device functionalities effectively.
Card Object
The following code snippet shows the Python object to get the Cryptnox card:
def get_card():
return cp.factory.get_card(cp.Connection())
card: BasicG1 = get_card()Additional Admin Commands
Command | Description |
INIT | Initializes the device or resets it to a predefined state. Often used during personalization or factory setup. |
Open Secure Channel | Establishes a secure communication channel using cryptographic protocols such as GlobalPlatform SCP or proprietary equivalents. |
Mutually Authenticate | Performs a mutual authentication handshake between the host and device to ensure trust on both sides. |
Change PIN | Allows modification of the PIN used for user authentication. May be restricted based on policy. |
Unblock PIN | Unblocks a locked PIN counter using an administrative key or PUK, restoring access to the device. |
Write Data | Writes protected data to the card’s non-volatile memory. Access is restricted to authenticated sessions. |
Set Public Key Export | Configures whether certain public keys can be exported or used externally. |
Generate Key | Generates new cryptographic key pairs inside the secure device. May support key derivation paths or templates. |
Reset | Resets the device, session, or secure channel. May be used to clear session states or reinitialize contexts. |
- Updated 6 months ago