Nitrokey 3: Firmware 1.8.0 and Pynitrokey 0.7.1 released

The firmware of the Nitrokey 3 has been updated to version 1.8.0. Also a new version 0.7.1 of Pynitrokey has been released.

You can upgrade your Nitrokey either using the nitropy cli tool with

nitropy nk3 update

or using the Nitrokey-app2.

The changes to the firmware:

v1.8.0 Latest

Features

OpenPGP: add support for additional curves when using the se050 backend: (#524)
    NIST P-384
    NIST P-521
    brainpoolp256r1
    brainpoolp384r1
    brainpoolp512r1
admin-app: Add command to list all supported config fields (admin-app#28)
admin-app: Add opcard.disabled configuration option to disable OpenPGP (#539)
piv: Add support for PIV, powered by the SE050 secure element (#534)
Improve external flash mounting to decrease startup time (#440)

Notes

This release adds a second CCID (smartcard) application, PIV. This may change the behavior of some programs like OpenSC when trying to access the existing CCID application, OpenPGP. The following workarounds are available:

- Disable the PIV application on the Nitrokey 3 with nitropy nk3 set-config piv.disabled true.
- Explicitly select the OpenSC application to use by setting the OPENSC_DRIVER environment variable, for example  
  OPENSC_DRIVER=openpgp.

Known issues

PIV: uploading a large certificate (> 1KiB) to the device might fail. Power cycling the device and retrying often solves the issue.

Changes for Pynitrokey:

v0.7.1 Latest

Restrict hidapi dependency and release v0.7.1

You can upgrade your existing pynitrokey installation by using the command

pipx upgrade pynitrokey

• News
• Nitrokey
• Tools
• Hardware