EviPass NFC HSM
Patented Technologies
EviPass NFC HSM contactless hardware password management technology: how it works and why you need it
EviPass NFC HSM (Encrypted Virtual Interface – Near Field Communication – Hardware Security Module), a groundbreaking technology, seeks to overcome the challenges associated with passwords, one of the most common and widely used methods for online accounts and services authentication. Despite their ubiquity, passwords come with a myriad of drawbacks and limitations. For instance:
- They are vulnerable to theft, phishing, brute force attacks and other common threats.
- They are hard to remember and manage, especially when users have multiple accounts and passwords.
- They are inconvenient and time-consuming to enter, especially on mobile devices or public computers.
- They are not secure enough against quantum attacks, which could break the encryption and verification methods based on traditional cryptography.
To overcome these challenges, Freemindtronic has developed a new innovative hardware-based contactless password management solution with passwordless function. It works without a server, without a database, without the need to know, memorize, enter a password, or know the username or its identifier or identify the equipment used to connect without contact in multi factors authentication: EviPass NFC HSM.
EviPass NFC HSM is a secure and decentralized password management technology that uses contactless passwordless authentication and post-quantum encryption to protect users’ online accounts and secrets. Users can access their online accounts without entering or remembering passwords or secrets. Users can also manage their passwords and secrets on their device compatible with EviPass NFC HSM technology using the web browser extension. EviPass NFC HSM is compatible with all websites and Android NFC phones. EviPass NFC HSM can work on online or offline or local network Android NFC computer or phone systems.
How does EviPass NFC HSM work?
EviPass NFC HSM works by using contactless passwordless authentication and post-quantum encryption to protect users’ online accounts and secrets. Here are the main steps of how it works:
- Users install the EviPass web browser extension on their computer or phone. The extension allows them to access their online accounts without entering or remembering passwords or secrets.
- Users pair their device compatible with EviPass NFC HSM technology with their computer or phone via NFC (Near Field Communication) technology. The pairing process involves verifying the identity of both devices using several factors of physical origin authentication.
- Users store their passwords and secrets on their device compatible with EviPass NFC HSM technology. The device encrypts the data using post-quantum encryption algorithms based on lattice problems, such as learning with errors (LWE) or ring learning with errors (RLWE). These problems are hard to solve, even for quantum computers, and have proofs that their security reduces to a worst-case problem. LWE and RLWE are also efficient and compatible with existing communication protocols and networks.
- Users log in to their online accounts by presenting their device compatible with EviPass NFC HSM technology under the NFC antenna of their computer or phone. The device decrypts the data using the physical origin trust criterion and the segmented key authentication method. The device sends the decrypted data to the web browser extension, which automatically fills in the login form. Users can also log in contactlessly directly with their Android NFC phone via the device compatible with EviPass NFC HSM technology without having to enter their credentials and password.
- Users can manage their passwords and secrets on their device compatible with EviPass NFC HSM technology using the web browser extension. They can add, edit, delete, copy, share or backup their data. They can also customize their factors of physical origin authentication.
What are the functions of EviPass by EviCore NFC HSM?
You can access these functions from the EviCore app on your Android phone or from the EviCore NFC HSM Browser Extension on your web browser. Here is a table that lists all the functions of EviCore NFC HSM:
| Fonction | Description |
|---|---|
| Create | Create a new secret in RSA-4096 on your NFC HSM device. You can choose the type of secret (password, cryptocurrency, IOTA, encryption key, identification card, bank account, recovery phrase, phone number, or secret note) and enter the required information. You can also generate a random password or a QR code for your secret. |
| Read | Read an existing secret from your NFC HSM device. You can scan the QR code of your secret or select it from the list of stored secrets on your device. You can also copy the secret to the clipboard or send it to another application. |
| Modify | Modify an existing secret on your NFC HSM device. You can change the type, name, logo, color, or label of your secret. You can also modify the information of your secret, such as the password, address, key, or note. |
| Delete | Delete an existing secret from your NFC HSM device. You can scan the QR code of your secret or select it from the list of stored secrets on your device. You can also delete all secrets from your device at once. |
| Duplicate | Duplicate an existing secret on your NFC HSM device. You can scan the QR code of your secret or select it from the list of stored secrets on your device. You can also choose a new name, logo, color, or label for your duplicated secret. |
| Clone | Clone an existing secret from one NFC HSM device to another NFC HSM device. You can scan the QR code of your secret or select it from the list of stored secrets on your source device. You can also choose a new name, logo, color, or label for your cloned secret on your destination device. |
| Share | Share an existing secret from your NFC HSM device with another user who has an NFC HSM device using Freemindtronic® technology. You can scan the QR code of your secret or select it from the list of stored secrets on your device. You can also set a time limit for sharing your secret and a trust level for encrypting your secret. |
| Encrypt | Encrypt a file or text using a secret stored on your NFC HSM device. You can choose the file or text you want to encrypt and select the secret you want to use as the key. You can also choose a encryption algorithm and mode, such as AES 256-bit ECB, CBC, CFB, OFB, CTR, or GCM. |
| Decrypt | Decrypt a file or text using a secret stored on your NFC HSM device. You can choose the file or text you want to decrypt and select the secret you want to use as the key. You can also choose a decryption algorithm and mode, such as AES 256-bit ECB, CBC, CFB, OFB, CTR, or GCM. |
This table provides a comprehensive view of advanced features for contactless management and use of secrets stored in the NFC HSM. It allows users to create, read, modify, delete, duplicate, clone, share, encrypt and decrypt their secrets securely and conveniently.
EviPass NFC HSM Technical Sheet
Here is a summary of the main features and specifications of EviPass NFC HSM:
| Feature | Value |
|---|---|
| Product name | EviPass NFC HSM |
| Product description |
|
| Product features |
|
| Product compatibility |
|
Here is a table that provides some technical specifications of EviCore NFC HSM:
| Specification | Value |
|---|---|
| Dimensions | Consult the technical documents |
| Weight | Consult the technical documents |
| Operating temperature | -40°C to +85°C |
| Storage temperature | -65°C to +150°C |
| Humidity | 5% to 95% non-condensing and resin-coating free |
| Shock resistance | Up to 1000 G and resin-coating free |
| Vibration resistance | Up to 20 G and resin-coating free |
| NFC frequency | 13.56 MHz |
| NFC range | Up to 10 cm |
| NFC data rate | Up to 424 kbps |
| NFC | ISO/IEC 14443 Type A/B, ISO/IEC 15693, ISO/IEC 18092 (NFCIP-1), ISO/IEC 21481 (NFCIP-2), ISO/IEC 18000-3 Mode 1/2/3 |
| Secure element (SE) | ST M24LR64E-R NFC EEPROM |
| Memory size (SE) | Up to 64 KB EEPROM |
| EviCore NFC HSM cryptographic algorithms | AES, RSA, ECC, DES/3DES, SHA, HMAC, CRC, LWE, RLWE |
| EviCore NFC HSM cryptographic standards | FIPS PUB 197, FIPS PUB 186-4, FIPS PUB 180-4, FIPS PUB 198-1, ISO/IEC 9797-1 MAC Algorithm 3 (Retail MAC), ISO/IEC 9797-1 MAC Algorithm |
EviKeyboard and EviPass NFC HSM: Contactless & Wireless Virtual Keyboard Technology
EviKeyboard by Freemindtronic is a new and special virtual keyboard. It is better than other virtual keyboards because of its security, convenience, and compatibility. This article tells you why EviKeyboard is amazing.
| FEATURE | EVIKEYBOARD BY FREEMINDTRONIC |
|---|---|
| Security | Highly secure: Utilizes NFC communication with a pairing system. The virtual keyboard does not store secrets and operates in real-time contactless mode. |
| Convenience | Highly convenient: Requires no installation or configuration. Everything is automated and supported by EviCore NFC HSM. Simply bring your phone close to the device to activate and utilize secrets from an NFC HSM. |
| Compatibility | Highly compatible: Works with any device supporting USB HID keyboards and any application that accepts keyboard input. |
EviKeyboard BLE: A Secure Bluetooth Keyboard with EviPass NFC HSM
EviKeyboard BLE is a device that allows you to use your phone or tablet as a wireless keyboard for your computer. It uses Inputstick technology to connect to your computer’s USB port and EviCore NFC HSM technology to secure your keystrokes. You can use the EviKeyboard app on your phone or tablet to choose the keyboard language and type passwords or cryptographic information.
Why EviKeyboard BLE?
EviKeyboard BLE has several advantages over other wireless keyboards, such as:
- Eliminate the risk of theft, interception or corruption of keystrokes, by using Bluetooth encryption and random order of keystrokes
- Simplify the user experience, by not requiring installation or configuration on the computer, and by starting automatically when plugged in
- Improve the security and privacy of users, by using state-of-the-art encryption and verification methods that resist quantum attacks
- Enable faster and more convenient access to online and offline systems and services, by using your phone or tablet as a wireless keyboard for your computer
- Be compatible with any computer and any application that requires keyboard input. You can use it with Windows, Linux, Mac OS X and many other platforms.
How to use EviKeyboard BLE?
To use EviKeyboard BLE, you need a device compatible with EviPass NFC HSM technology and an EviKeyboard BLE device. You also need the EviKeyboard app on your phone or tablet. Here is what you need to do:
- Connect your device compatible with EviPass NFC HSM technology to your phone or tablet with NFC.
- Open the EviKeyboard app and choose the language of the virtual keyboard from the list.
- Plug your EviKeyboard BLE device into your computer’s USB port.
- Tap on “Connect” in the app and enter the encryption key.
- Type on your phone or tablet and see the text on your computer screen.
You can also use the app to get user info, password info, crypto info, IOTA info or secret note info from your device compatible with EviPass NFC HSM technology. You can copy them or send them to your computer.
Read moreEviKeyboard NFC: A Secure Contactless Keyboard with EviPass NFC HSM
EviKeyboard NFC is a device that allows you to use your phone or tablet as a contactless keyboard for your computer. It uses EviCore NFC HSM technology to secure your keystrokes. You can use the EviKeyboard app on your phone or tablet to choose the keyboard language and type passwords or cryptographic information.
Why EviKeyboard NFC?
EviKeyboard NFC is very secure. It uses NFC communication with a pairing system. The virtual keyboard does not store secrets and works in real-time contactless mode. This protects users from hackers or unauthorized access.
EviKeyboard NFC is very convenient. It does not require installation or configuration. Everything is automatic and supported by EviCore NFC HSM. It starts by bringing your phone close to the device and lets you use secrets from an NFC HSM.
EviKeyboard NFC is very compatible. It works with any device that supports USB HID keyboards and any application that takes keyboard input. You can use it with Windows, Linux, Mac OS X and many other platforms.
EviKeyboard NFC is a new and special virtual keyboard that is secure, convenient and compatible. It is a great way to use your phone as a contactless keyboard for your computer.
How to use EviKeyboard NFC?
To use EviKeyboard NFC, you need a device compatible with EviPass NFC HSM technology and an EviKeyboard NFC device. You also need the EviKeyboard app on your phone or tablet. Here is what you need to do:
- Connect your device compatible with EviPass NFC HSM technology to your phone or tablet with NFC.
- Open the EviKeyboard app and choose the language of the virtual keyboard from the list.
- Plug your EviKeyboard NFC device into your computer’s USB port.
- Bring your phone close to the EviKeyboard NFC device to activate the virtual keyboard.
- Type on your phone or tablet and see the text on your computer screen.
You can also use the app to get user info, password info, crypto info, IOTA info or secret note info from your device compatible with EviPass NFC HSM technology. You can copy them or send them to your computer.
Read moreHow does EviPass compare to other password managers?
EviPass is a unique technology that allows you to manage your passwords and secrets in a secure and decentralized way, but also centralizable in air gap. It stands for Encrypted Virtual Interface – Near Field Communication – Hardware Security Module. It differs from other password managers in several ways:
Security and privacy
Unlike virtual password managers, such as those integrated into web browsers or software applications, EviPass does not store your passwords on your phone, your computer or your cloud. Instead, it stores them in a NFC HSM via the EviPass technology. Your passwords are never exposed to hackers or third-party services. Even if your phone or computer is compromised, your passwords are always safe in a NFC HSM via the EviPass technology.
Convenience and durability
Unlike hardware password managers, such as those that use USB keys or smart cards, EviPass does not require any battery, connector, screen or cable. It works by using NFC technology to transmit your passwords wirelessly from your device to your phone or computer. You do not have to worry about charging or connecting your device. You can use EviPass with any device that has an NFC reader, such as Android phones, Windows PCs, Macs and Linux computers.
Versatility and innovation
EviPass can store and protect without contact not only passwords, but also other sensitive information such as identification or access control data. It also has a management and a generator of codes for digicodes.
EviPass uses a patented system that allows you to exchange passwords between remote NFC HSM using an RSA-4096 key that can be generated at will without contact stored encrypted in aes-256, non-extractable, non-displayable. This key also allows you to generate a public key that can be shared via a QR Code encrypted in RSA-4096.
This QR Code can be transmitted by any existing means of communication securely including in air gap. It can be stored on any support including online or shared between remote or nearby NFC HSM devices.
This system also offers the possibility of centralizing passwords through a physically decentralized contactless hardware password management system.
EviPass also allows you to manage an RSA-4096 key that can be generated at will to perform encrypted backups of your passwords on any type of fixed, removable or online storage support even via an email or sms. Advantageously, the use of the public key of the RSA-4096 key allows you to share passwords between remote or nearby HSM via a QR code encrypted in RSA-4096. As a result, this also offers a simple solution for centralizing passwords that can be further secured with the addition of trust criteria.
EviPass is the ultimate technology for managing your passwords and secrets in all types of computer, phone, information and communication systems including proprietary digital and hardware systems such as access control via the bios of a motherboard for example or the TMP2.0.
EviPass is a contactless hardware password manager that uses NFC technology to provide security, privacy, convenience, versatility and innovation for your passwords and secrets.
How does EviPass NFC HSM contactless hardware password manager compare to FIDO-based solutions?
FIDO (Fast Identity Online) is a set of standards and specifications that aim to provide a universal framework for passwordless authentication. FIDO-based solutions use public key cryptography to verify the identity of users and devices, without relying on passwords or shared secrets. FIDO-based solutions include FIDO U2F (Universal 2nd Factor), FIDO UAF (Universal Authentication Framework) and FIDO2, which consists of WebAuthn and CTAP (Client to Authenticator Protocol). EviPass NFC HSM does not use FIDO technology, but an alternative technology that encrypts password usage from end to end from a device compatible with EviPass NFC HSM technology. EviPass NFC HSM has similarities with FIDO-based solutions, such as offering passwordless and contactless authentication, and using multi-factor authentication. However, EviPass NFC HSM also has differences and advantages over FIDO-based solutions, such as:
- Serverless and databaseless authentication: EviPass NFC HSM does not require any server or database to authenticate users. Everything is done in real time in volatile memory, without storing or exposing any identification, password or authentication information on the computer or phone terminal. This makes EviPass NFC HSM independent of the security of these terminals that can be corrupted in various legal or illegal ways. FIDO-based solutions, on the other hand, require a server or database to store and verify the public keys of users and devices.
- Post-quantum encryption: EviPass NFC HSM uses post-quantum encryption algorithms based on lattice problems, such as learning with errors (LWE) or ring learning with errors (RLWE). These problems are hard to solve, even for quantum computers, and have proofs that their security reduces to a worst-case problem. LWE and RLWE are also efficient and compatible with existing communication protocols and networks. FIDO-based solutions use elliptic curve cryptography (ECC) or RSA cryptography, which are vulnerable to quantum attacks.
- Physical origin trust criterion: EviPass NFC HSM encrypts and decrypts data using a criterion that depends on the physical origin of the device or the biometric feature used for authentication. This adds an extra layer of security and privacy to user data. FIDO-based solutions do not use a physical origin trust criterion.
- Segmented key authentication: EviPass NFC HSM splits the key into two or more segments that can be held by different parties who need to be reunited to reconstruct the key. This allows more flexibility and control over key management and distribution. FIDO-based solutions do not use segmented key authentication.
- Compatibility with all websites: EviPass NFC HSM is compatible with all intranet or internet websites in the world that use a web browser, without requiring the website to be compatible with EviCore NFC HSM technology. Users can log in to any website using their device compatible with EviPass NFC HSM technology and the web browser extension. FIDO-based solutions, on the other hand, require the website to comply with FIDO standards and specifications.
- Compatibility with Android NFC phones: EviPass NFC HSM contactless hardware password manager is compatible with Android NFC phones. Users can log in contactlessly directly with their Android NFC phone via the device compatible with EviPass NFC HSM technology without having to enter their credentials and password. FIDO-based solutions are not compatible with Android NFC phones.
- No USB connector: EviPass NFC HSM does not use a USB connector to connect to computer or phone systems. It uses wireless NFC communication, which is more secure and convenient. The device compatible with EviPass NFC HSM technology does not need to be plugged in or recharged. It can be used with any device that has an NFC antenna. FIDO-based solutions use a USB connector, which can be compromised for attacks via the USB port of a computer or an OTG phone. Moreover, some companies do not allow the connection of USB devices, which limits the use of FIDO-based solutions.
- No reliance on third-party services: EviPass NFC HSM does not depend on any third-party service or provider for authentication. Users have full control and ownership of their data and keys. FIDO-based solutions, on the other hand, may rely on third-party services or providers for authentication, such as Google, Microsoft or Facebook. This may pose privacy and security risks for users.
Here is a summary table of the comparison between EviPass NFC HSM and FIDO-based solutions:
| Feature | EviPass NFC HSM | FIDO-based solutions |
|---|---|---|
| Serverless and databaseless authentication | Yes | No |
| Post-quantum encryption | Yes | No |
| Physical origin trust criterion | Yes | No |
| Segmented key authentication | Yes | No |
| Compatibility with all websites | Yes | No |
| Compatibility with Android NFC phones | Yes | No |
| No USB connector | Yes | No |
EviPass NFC HSM is an innovative and secure solution for wireless access control to protected devices or applications. EviPass allows you to protect your sensitive data and critical applications with a simple approach of your smartphone to a Freemindtronic NFC HSM. The contactless hardware password manager EviPass is the ideal solution for businesses, public administrations, schools or individuals who want to enhance the security of their computer access.
NFC Hardware Password Manager EviPass relies on Freemindtronic’s international patented technology, a company based in Andorra, which designed and developed several inventions in the field of computer security and access control. These inventions are the system of wireless access control to a device protected by pre-set authentication factors (WO2017129887) and the system of segmented key authentication for a computer application (WO2018154258). These patents were invented by Jacques Gascuel, the president of Freemindtronic .
EviPass contactless technology combines these two inventions to offer a secure and decentralized password management solution but also centralized via an innovative end-to-end encrypted air gap sharing system in RSA 4096 between two NFC HSMs.
EviPass does not store your passwords on your computer or phone, but encrypts and decrypts them on the fly thanks to an NFC HSM device compatible with EviPass, such as a smartphone or a security key. EviPass does not ask you to enter your passwords, but transmits them wirelessly and without password using NFC. EviPass uses post-quantum encryption, which resists attacks from quantum computers.
With EviPass, you benefit from the advantages of NFC HSM:
- You enjoy a high level of security, using secret keys and multiple authentication factors.
- You simplify the authentication process, avoiding complex passwords or one-time codes.
- You easily manage your permissions, configuring the authentication factors and tokens associated.
- You adapt your solution to different types of devices or applications protected, using controllable switches.
EviPass works with two technologies EviCore NFC HSM or EviCore HSM OpenPGP from Freemindtronic, which implement these two patents among others. These technologies are secure hardware modules (HSM) that allow you to generate, store and use cryptographic keys securely. They comply with international standards, such as NFC, Bluetooth, AES 256 bits, RSA 4096 bits, IEC/ISO 15639, IEC/ISO 7816:2020, IEC/ISO 8859-1:1998, IEC/ISO 13157-2:2016 and IEC/ISO 15408-1:2022 .
EviPass is also compatible with a new technology of authentication by segmented key in two levels (people), requiring the proximity of two people to use the services of the HSM NFC technology of EviCore. This means that to access a protected device or application, you need two NFC HSM mobile devices and two segments, which are held by two different people. It is mandatory to present both NFC HSM containing each one segment to reconstitute the password that can exceed 256 bits. This segmented key authentication by tiers is already compatible with the EviCore HSM OpenPGP technology by segmenting AES-256 OpenPGP encryption key.
This technology of authentication by segmented key in two levels offers a high level of security, requiring the physical presence and cooperation of two people to access a protected system from a computer or phone system using identification and/or password. It also significantly reduces the risks of password corruption in case of loss or theft, by dividing them into two distinct parts and entrusting them to two different people who only know their segment.
NFC hardware password manager EviPass is therefore a solution based on Freemindtronic’s patented technology, which offers you wireless access control to protected devices or applications, without compromising security or simplicity. EviPass is the solution you need to protect your data and applications with confidence.
Conclusion
EviPass NFC HSM is a secure and decentralized password management solution that uses contactless passwordless authentication and post-quantum encryption to protect users’ online accounts and secrets. It offers several advantages over traditional password-based authentication, such as:
- Eliminating the risk of theft, phishing, brute force attacks and other common threats, by not storing or exposing any password or secret on the computer or phone terminal.
- Simplifying the user experience and reducing the cognitive load of remembering and managing multiple passwords, by allowing users to log in to their online accounts without entering or remembering passwords or secrets.
- Increasing the security and privacy of users, by using strong encryption and verification methods that resist quantum attacks, by using a physical origin trust criterion and by splitting the key into multiple segments.
- Enabling faster and more convenient access to online and offline systems and services, by using a physical device for contactless authentication.
- Being compatible with all websites and Android NFC phones. EviPass NFC HSM can work on online or offline or local network Android NFC computer or phone systems.
- Not relying on any third-party service or provider for authentication. Users have full control and ownership of their data and keys.
EviPass NFC HSM uses the EviCore NFC HSM Technology and EviCore NFC HSM Browser Extension compatible with the device compatible with EviPass NFC HSM technology. For more information about the device compatible with EviPass NFC HSM, please visit https://freemindtronic.com/datasheets-nfc-hsm. If you are interested in EviPass NFC HSM, you can click here to order it.
EviPass NFC HSM est une technologie nouvelle et innovante qui fournit une solution sécurisée et décentralisée de gestion des mots de passe. Il s’agit d’un gestionnaire de mots de passe matériel sans contact qui utilise un cryptage post-quantique et une authentification multifacteur. C’est une excellente alternative aux solutions basées sur FIDO qui utilisent des connecteurs USB et la cryptographie traditionnelle. Si vous souhaitez protéger vos comptes en ligne et vos secrets contre les pirates et les attaques quantiques, vous devriez essayer EviPass NFC HSM dès aujourd’hui.